Dropped Files | ZeroBOX
Name 0a811094a7380ba6_tjwcbu.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tjwcbu.exe
Size 194.5KB
Processes 2556 (borilpokonta2.1.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 085ca4ea20e5a3caadd139e6f92f6586
SHA1 16db2b86c5ac4fcd90cfb49712038d1ecf76d4bc
SHA256 0a811094a7380ba633c2f4c2924f9eb44844ab6d9dcaff0b95a1e82a500fb1d6
CRC32 50ED8F32
ssdeep 3072:w7rBBsKhjc2l+Xb/Bd/2HJEx0JJAh0O4Vz6PcJtCeetKZsb86Maug7XpKS1M8:w7oKhjc2l+1UJWu40O4/rCFwoAWM
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 6eaa63f036627c23_vngqybrcgd.e
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\vngqybrcgd.e
Size 205.1KB
Processes 2556 (borilpokonta2.1.exe)
Type data
MD5 9aa17eb883cfd882e2944e79f9f78735
SHA1 57c8597b7212b19cef39c6a819cf95dfeee98278
SHA256 6eaa63f036627c23b00fe9655d35e7c14aefb26a0ee278bfb50dd964d27cef75
CRC32 81E7CE75
ssdeep 6144:aitpr7ka7jh13xWAMtuvUluu2lLOaD9YP:H/T7D3xWZshZYP
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nsdF00D.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nsdF00D.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis