popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name fa0662bd66b7d8e5_z.9d
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS4F9377D3\z.9d
Size 1.7MB
Processes 2548 (herom.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 43cd803163c516fb4dbfea3200e331fe
SHA1 333b6962dcce8c19dd0e1f3890fc3d5f7ea95b02
SHA256 fa0662bd66b7d8e524f40e4ff3cb23a9a7447ba10a496cef9e7fe2807d25dc07
CRC32 76897DA9
ssdeep 49152:Kt6O+f9wsDOS8bfSA9fCpKlOWxMmFLIXdf:zN9w3AKUWdFLIXd
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 4f6b9b0d9b56dc9b__rj.cmd
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS4F9377D3\_rj.cmd
Size 20.0B
Processes 2548 (herom.exe)
Type ASCII text, with no line terminators
MD5 d52798ec3e475cab5af9b3dab3cb5d1a
SHA1 32917870e51aac8eae707cf075c3133c236239b8
SHA256 4f6b9b0d9b56dc9b7d3bed36d8a20c466f24d40a1caad20c0bab2a7cb9f043cb
CRC32 4BF5D96A
ssdeep 3:/aieXLwH:/uXcH
Yara None matched
VirusTotal Search for analysis