popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 04d6d3ec056f0317_xrjnzc.exe
Submit file
Filepath C:\ProgramData\pinterests\XRJNZC.exe
Size 6.0MB
Processes 1740 (cp.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 7603117e8e1611e887b8c6fccbdb9d4e
SHA1 64634c62c3eb74bbc5cdec26082dd612a304e45d
SHA256 04d6d3ec056f03179782070ab38d407197ff2e2fc5c943da11de18d0085b7f3b
CRC32 FF03F90E
ssdeep 98304:wCUQbcTwemgpj6KqG6F6MNl4or9cOFOoKc3lZsuavzeh/QYU+LR87CiFj4:HtbCLpjfqx/j9dF3livQ/Y4R87dq
Yara
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
  • VMProtect_Zero - VMProtect packed file
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name 7445463377013a7b_s1cc.0.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\s1cc.0.bat
Size 178.0B
Processes 1740 (cp.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 a08d2f0d221a66384e1399811bc7abbb
SHA1 3cb9880b6360a53595c497faaed6c1f8982b7381
SHA256 7445463377013a7b9ff1daa3405633507a365012885b52181bf8a3e8aaf34f4f
CRC32 9DF29B58
ssdeep 3:mKDDCMNqTtvL5mZkREH0jfrRBvmqRDmWxpcL4E2J5xAIftsHm1mWxpcL4E2J5xAc:hWKqTtTPA0jlBvmq1mQpcLJ23ffKHm17
Yara None matched
VirusTotal Search for analysis