popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name dfce2d4d06de6452_protect544cd51a.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Protect544cd51a.dll
Size 742.5KB
Processes 2056 (updates_installer.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 544cd51a596619b78e9b54b70088307d
SHA1 4769ddd2dbc1dc44b758964ed0bd231b85880b65
SHA256 dfce2d4d06de6452998b3c5b2dc33eaa6db2bd37810d04e3d02dc931887cfddd
CRC32 94895C27
ssdeep 12288:wCMz4nuvURpZ4jR1b2Ag+dQMWCD8iN2+OeO+OeNhBBhhBBgoo+A1AW8JwkaCZ+36:wCs4uvW4jfb2K90oo+C8JwUZc0
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 1c8143d72994d0a9_RegAsm.exe
Submit file
Filepath C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
Size 62.9KB
Type data
MD5 7421205535aa6f0a869083339c990c1f
SHA1 8b8ee3803dde47078c73e21d8e6ead0926cbb82d
SHA256 1c8143d72994d0a93142847ccd64114a0fc470a3f21a1b5e587a69412e3eedb5
CRC32 88F25F93
ssdeep 3::
Yara None matched
VirusTotal Search for analysis