popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a8fdba9df15e41b6_novmUni.bat.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\novmUni.bat.exe
Size 462.5KB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 852d67a27e454bd389fa7f02a8cbe23f
SHA1 5330fedad485e0e4c23b2abe1075a1f984fde9fc
SHA256 a8fdba9df15e41b6f5c69c79f66a26a9d48e174f9e7018a371600b866867dab8
CRC32 71A0F262
ssdeep 6144:dxGRyCXBgoDhzoNKXzJ7BapCK5d3klRzULOnWyjLsPhAQzqO:CRZgQhIKXzJ4pdd3klnnWosPhnzq
Yara
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 9a7c0994094e76aa_novmUni.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\novmUni.bat
Size 12.4MB
Processes 2080 (pew.EXE)
Type ASCII text, with very long lines, with CRLF line terminators
MD5 03cfcfaf64b8e717e963c3f2ba72e183
SHA1 86b0c85f6de9cab513f2353c4134d0d9d0c4902c
SHA256 9a7c0994094e76aab678a08dd8af6436d68ea21a42a888ed4570698457e70640
CRC32 9FF9F9D1
ssdeep 49152:s4GaqhZ5RkGuI9jEVi5bQ4Y3LeaC/FsZlkaegg01dUsJJWxfVS+jL6Vuptunh8AG:q
Yara None matched
VirusTotal Search for analysis