popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ae14b287be4c2cb0_o.exe
Submit file
Filepath C:\ProgramData\Roaming\O.exe
Size 5.5MB
Processes 1096 (svchost.exe)
Type MS-DOS executable, MZ for MS-DOS
MD5 a92a908cae30b9b020244bedf61a1dd4
SHA1 a45bf660ae267b2c8027327b2b97c61faa88d9ae
SHA256 ae14b287be4c2cb072802d65693beeb9efecefd6e6de5994abe49546b8ca0308
CRC32 F89FCD89
ssdeep 98304:pHrMX3ZbN6mocwdMpXYI6A2XwY0o7r5QBa2lAo3WTsKVnd/9lSD/WFIxUBzqHy:1MnZZPocwGpoRRXwY9rb2moBKVd/9lEJ
Yara
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • MPRESS_Zero - MPRESS packed file
VirusTotal Search for analysis
Name e2f6a171edcb1a74_sug.0.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\sug.0.bat
Size 168.0B
Processes 1096 (svchost.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 6aeb2f62e737a04bfdb8883f8d8e54d0
SHA1 541bc36e1816b1d13e1dd35fd1f6f1f35fc737fa
SHA256 e2f6a171edcb1a743e99a7e38ddc33cb3940999109d4110741540f7bcc257117
CRC32 3551FBE7
ssdeep 3:mKDDCMNqTtvL5mZkREaKC5XLvmqRDmWxpcL4E2J5xAImLx5grHm1mWxpcL4E2J5k:hWKqTtTPNZ5XLvmq1mQpcLJ23fmoHm1+
Yara None matched
VirusTotal Search for analysis