popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 8317da7d78f1ab5e_msedge.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\msedge.exe
Size 20.4MB
Processes 2240 (InstallUtil.exe)
Type PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5 19d6340743164342171504547933597f
SHA1 deede2b49d95021d0450b84b0ff90d58e24f4f1a
SHA256 8317da7d78f1ab5e517e5914fbdbbe20e079f71184279518dec1916271fcaea6
CRC32 A3F4C8D1
ssdeep 49152:27lgxQOjdfrB1VWuuJIwBXUVjDmXsScw2WEfykvNdM0a4J3C4ffysofoEIE1xL5C:2qfG+DPS1SQ0VEL7fTbdEwamHh
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • anti_vm_detect - Possibly employs anti-virtualization techniques
  • Malicious_Packer_Zero - Malicious Packer
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 611458b0884686ea_winlog.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\winlog.exe
Size 12.7MB
Processes 2240 (InstallUtil.exe)
Type PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5 60255ef7d90a35361e5fe2f5d5514734
SHA1 bef1b9033a5e8665da849fb64285601e9da82966
SHA256 611458b0884686eab54298c7e82e23daaad3a93482def2f42d8d259004e95774
CRC32 23EFCB69
ssdeep 49152:rlCm9habSnsmzuiuJtiks5bTJguq+Z0A19OO31Fb/n0EZOL/JGm/8sID0n1EY1eT:RrCliIid5nb/n5AM4mD01huEDmlvRrd
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • anti_vm_detect - Possibly employs anti-virtualization techniques
  • Malicious_Packer_Zero - Malicious Packer
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis