popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 053c6f56faf484c9_832866432405
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\832866432405
Size 85.0KB
Processes 2112 (bstyoops.exe)
Type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x768, frames 3
MD5 014126ff194b34bfe21a0db021433efe
SHA1 518aaf7f3237e458a22238ec13d8273be9bffe7d
SHA256 053c6f56faf484c9a5c076b848541b966f8eca289526e884309805fab9c04e4f
CRC32 17EF85AB
ssdeep 1536:08qQRlKOtginlqeQf4gq7W9r8Wa8+3vMqHILIIsw/jUrBt5qN:NRlk8lqjQg/N8WA0qoLhd/jUFt5W
Yara
  • JPEG_Format_Zero - JPEG Format
VirusTotal Search for analysis
Name e3b0c44298fc1c14_cred64.dll
Empty file or file not found
Filepath C:\Users\test22\AppData\Roaming\c75c6c37b2d7a3\cred64.dll
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 0e41ffd44bc8a085_bstyoops.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\b6ba12ff32\bstyoops.exe
Size 231.0KB
Processes 792 (O77vNQG6.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 90e1482208611ebf4b36413d6bf05f42
SHA1 9e54348e958c9ecf2dc8a7b59ddc27489a0b5935
SHA256 0e41ffd44bc8a085a3bd49058ff0051538476c8a05f086593b02bc87b30268dc
CRC32 1BA51FB9
ssdeep 3072:eSO3Te83mI75HrE+kqQUULV5J3T1XiRuiibP5o/l7RSKFyLiJGu7dqvyEzkzwkr8:se83mQ4LBVvZT1ilF/WKFrGu7duMAVa
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
VirusTotal Search for analysis