popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b601545810eb9cd5_c_sj.7dU
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS8E33ADEA\c_sj.7dU
Size 2.3MB
Processes 1000 (herom.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 a9be8a37556ded5ca54a697adbbc766b
SHA1 d5e3527cbbc5b46759342c9e3a42bc366896cb53
SHA256 b601545810eb9cd54fc4096cb7fba9f8511c497353d48c625e68fab98aff2faf
CRC32 47F1CA93
ssdeep 49152:56O0t0zpHWvSKfydsDQiD8mseWAjh0qR34bylogB:56O0i12vSOQk2msnK0E34bylo
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 13df573deba35f72_Ps9stMiw.cmd
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS8E33ADEA\Ps9stMiw.cmd
Size 27.0B
Processes 1000 (herom.exe)
Type ASCII text, with no line terminators
MD5 41300e59f68bfb97333bbf5319d4e36c
SHA1 dceab59802f685561f1db529b27bafc7bc262a22
SHA256 13df573deba35f723347eab331f2b061421013fb8cdca362bc2cb848a7ce42a9
CRC32 0AE706D8
ssdeep 3:/YWAbHry:/bAC
Yara None matched
VirusTotal Search for analysis