popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e3b0c44298fc1c14_taskhost.exe
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\1000397001\taskhost.exe
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 563acabe49cc451e_oneetx.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\207aa4515d\oneetx.exe
Size 198.0KB
Processes 1440 (Rocks.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 a64a886a695ed5fb9273e73241fec2f7
SHA1 363244ca05027c5beb938562df5b525a2428b405
SHA256 563acabe49cc451e9caac20fae780bad27ea09aaefaaf8a1dfd838a00de97144
CRC32 C2E57BBA
ssdeep 3072:lWgR9+o+G2K47yLk6E9EzwHxFTTDYUSNt2kLu5gf7or7wy+wXRcWfnPjt:lWu+5a4ukZSwH/TT2NE4u5gTovv
Yara
  • UPX_Zero - UPX packed file
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 8d8e4e8aec582156_ss41.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\1000468001\ss41.exe
Size 504.0KB
Processes 2200 (oneetx.exe)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 1288bfdc55e3095fc002791bf886ee53
SHA1 46330d4e4feeaf4312b6763fe7269441677b535a
SHA256 8d8e4e8aec582156611d8b55e54ed90429da131193db9616a1e75f1a7a6bb1a4
CRC32 BE7D83FC
ssdeep 6144:3V+Kq99UF5hvvfjhEKq99UF5hvvfpo32NCKlAjwjlsk5qv6sblzgaeEubfpR0cQ3:gQnDSQnhCrwjqk5Ablzg3bf7RQrOtylR
Yara
  • UPX_Zero - UPX packed file
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
VirusTotal Search for analysis