popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 22994231ba7490bf_religiousplan.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\religiousplan.exe
Size 1.1MB
Processes 3064 (religiousplanpro.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 5d7db4959e2564fcd4c1862c363dddca
SHA1 8c95b17594734d69ac212732aeab382a895d5b6f
SHA256 22994231ba7490bf3987c47beb886fd3166900531a790073074b757f336c58d0
CRC32 0EEDABF2
ssdeep 24576:Ad8XtMsVejOeknvZRLTh2rHApfu2dQfBaqWuUnNW:sKtMEZRn6H47OZyN
Yara
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 2119f538120ad20d_023-08-04-11-08-23-373
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\023-08-04-11-08-23-373
Size 43.7MB
Processes 3064 (religiousplanpro.exe)
Type ISO Media, MP4 Base Media v1 [IS0 14496-12:2003]
MD5 a813991d8aeaab1c32874faba29ec08d
SHA1 d0fafc8e9328346097fb4c0a5b60205453cdb7b3
SHA256 2119f538120ad20ddc448e0df41a00b8713a246a480afadf1ea959e67c162ee4
CRC32 E70023FC
ssdeep 786432:kAr+5XPaPlRRMsw4BsWSxH+kFnoD+Ct76IDV4Cimohp1AxzcjEsddqyo:hcCf76MoTZjEseyo
Yara
  • anti_vm_detect - Possibly employs anti-virtualization techniques
VirusTotal Search for analysis