popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 800bbac5c5592474_YzAnM.baT
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS0F9F752D\YzAnM.baT
Size 53.0B
Processes 2544 (setup294.exe)
Type ASCII text, with no line terminators
MD5 d559d439fbc7fa219a09bd03941919eb
SHA1 7cd18ef000940bc3bce4d03152a7a00f071a668e
SHA256 800bbac5c5592474eafce2f0cb73daa922c805a2e1642556b47c6bdda1b478b1
CRC32 07A07BC4
ssdeep 3:MlpufRgbGjM6FHFx:MCfWajMu/
Yara None matched
VirusTotal Search for analysis
Name 8ce37cc4444b72a8_Mj7~.Cpl
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7zS0F9F752D\Mj7~.Cpl
Size 2.0MB
Processes 2544 (setup294.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 6df9d8b90a58b9a246737730bd618e1a
SHA1 bf38d56bffbae77c0f7a755c7271bb47302e8ce4
SHA256 8ce37cc4444b72a865c307c32b0f1d037d7b0080780c14c0710d804b7f8e730d
CRC32 11D93CB3
ssdeep 49152:xl+z6TBGdc3vbjmCnMupsQQuLPEpRmOeJ96/R+D0Is6kDcC:T+YBYETyCnMPQXLPqQbU5+Dec
Yara
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis