popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 43ffcee5ff2c5d5f_xrjnzc.exe
Submit file
Filepath C:\ProgramData\pinterests\XRJNZC.exe
Size 5.7MB
Processes 940 (cp.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 d4d062f232be92ac114e6298fb110e93
SHA1 6a0e1fc9c37e56dcdc8d7aa23757e7056fb84977
SHA256 43ffcee5ff2c5d5f6ab1b737bc8967e61b23d37e1d8180b141b1ae469a615fe8
CRC32 5D5D6FD8
ssdeep 98304:zuwYa1PNDvc/eCCcoQ1B4Hv73Pv7KEvsWV18EgNgqVpbTYVgZoj47MZ5FV0ZIvYX:zug7Dvc//oQSHn8EgNvpbXZ778hsIvYX
Yara
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
  • UPX_Zero - UPX packed file
  • themida_packer - themida packer
VirusTotal Search for analysis
Name 546b5171581a00d5_sq4.0.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\sq4.0.bat
Size 176.0B
Processes 940 (cp.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 7b210ff30cb4de8c5ab1a24779c3e298
SHA1 2653b8184d869eac576b18e01060300adefea2cc
SHA256 546b5171581a00d58201cacc770e901975ae30bd466799ffc6c0c2de6324c4eb
CRC32 05A60CE1
ssdeep 3:mKDDCMNqTtvL5mZkREH0jfrRBvmqRDmWxpcL4E2J5xAI5LsHm1mWxpcL4E2J5xA+:hWKqTtTPA0jlBvmq1mQpcLJ23fVsHm1P
Yara None matched
VirusTotal Search for analysis