popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 701898d92c23d00f_johnny10121.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\johnny10121.exe
Size 247.0KB
Processes 2504 (docjhny20230925.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 57130659d8e013ff29d209463a6db444
SHA1 1d83d5a93d9f5562c4a76584ae99b56060a665e6
SHA256 701898d92c23d00fd9911e7e63c4b8c6ab9009304e189ff8b30603063c908af2
CRC32 0069B45E
ssdeep 3072:ejC+38Kj81ETdoep76WOA4o2QgaT3FRQNmfIBG:o73808adoep76WOA4oFnT3Fi5B
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Is_DotNET_EXE - (no description)
  • Malicious_Packer_Zero - Malicious Packer
VirusTotal Search for analysis
Name 3629ed9b94ae5d0f_svchost.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\svchost.exe
Size 621.5KB
Processes 912 (docjhny20230925.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 ed9d91fe584d5109d4067734ac452753
SHA1 c277e57866833509d94787fc6f4d634a2714825d
SHA256 3629ed9b94ae5d0f2659d02dcb7ce258cb5c2497d5bf18f3c4fed78878fba030
CRC32 F9547DD3
ssdeep 3072:BgYB72Q1ulDBuk18+NRnZY5OWTP9inYRBCDMLKU+wmeqBXYcLho34dmeGmoE:B2Q1OkynW1NCD/XYkqodzo
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Is_DotNET_EXE - (no description)
VirusTotal Search for analysis