popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 0b3c1732b7e1cfe6_msi.centralserver.job
Submit file
Filepath C:\Windows\Tasks\MSI.CentralServer.job
Size 306.0B
Processes 2628 (ama.exe)
Type VAX-order 68k Blit mpx/mux executable
MD5 6e01f9be700fbd2238a841307dbe2c9a
SHA1 0c655cf115cdca9f4b09feae333e0d8018c8c374
SHA256 0b3c1732b7e1cfe6f73e89807ab8d74236dffe9033aa89daa970686a209ff689
CRC32 55DD9F19
ssdeep 6:IYYqDZXE/m/UEZ+lX1MAgIYQ4lq02VatI4y0l/VEt0:lYGlkm/Q12Iolq14V/VEt0
Yara None matched
VirusTotal Search for analysis
Name b7620bff5539ff22_msi.centralserver.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\One_Dragon_Center\MSI.CentralServer.exe
Size 1.4MB
Processes 2628 (ama.exe)
Type PE32 executable (console) Intel 80386, for MS Windows
MD5 04055601abbd16ec6cc9e02450c19381
SHA1 420bd7c7cad59f1b7cdd2c8a64282ef6f06cfe6e
SHA256 b7620bff5539ff22c251c32e62961beae4f5a91b0f6c73dde1a7da941b93fe13
CRC32 493DDA31
ssdeep 24576:HhSIBky91oHhqyp54SWIbts8MZHq9NGCzgNgpiZtsyCx+OO9OKfNgd5H4+3:B3J91qhDp5HWAsF28ZtsJsOO9WH4g
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis