popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ab4126229b73320d_svchost.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\svchost.exe
Size 1.3MB
Processes 2548 (gfhghfdg.exe)
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 ec0431d7e177b29ebe913a6230500436
SHA1 31ff77cef10425476fa23eda78e000af95b8ad44
SHA256 ab4126229b73320d15647edcd1af5fbd138d651fa2869cc20be9845f70570e79
CRC32 B1DCFD24
ssdeep 24576:DNKPdZs4Cna/uOC1cJcFvMandWGRAW1UpMrnPSv677LtSHVbo18pp7enVyBrhw6:hKg4Ca2H1H9fdTimUpMX7vl8b7eV96
Yara
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis
Name 586af0edc736ff62_tmp5588.tmp.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp5588.tmp.bat
Size 153.0B
Processes 2548 (gfhghfdg.exe) 300 (cmd.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 4985fa6dd2092ddfa7d7ee3ff45045d4
SHA1 8ae90765573971d1bda4b6410bee11bf0ae73f12
SHA256 586af0edc736ff62dff4bec50a340ab2c82968927d3f202ec3cdc41516800364
CRC32 67214F89
ssdeep 3:mKDDCMNqTtvL5omWxpcL4EaKC5ZACSmqRDmWxpcL4E2J5xAInTRI6QfLa5ZPy:hWKqTtT6mQpcLJaZ5Omq1mQpcLJ23fTk
Yara None matched
VirusTotal Search for analysis