popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a1871f4f0149065a_Hooks.jpg.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Hooks.jpg.exe
Size 11.7MB
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 422f3763021f8f9bfc31a9a7e4b049f9
SHA1 d9b34b3cf62c66dd776ba5bed3abb0c409c6c3f0
SHA256 a1871f4f0149065abab263411d6afdd8ae962060db732e740e956898b62cee0b
CRC32 3CF322F7
ssdeep 196608:uBF+gGI892vAQENcXbc7zdgZpbHgCDoZ86F8l/SflHdINv2/sD/afUAbKs8hC3+q:uBvtlEhdwlHgCDoC6F8lYGJgspAbKs88
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 440bbe8365019a7c_graphicsperfsvcs.dll
Submit file
Filepath C:\Users\test22\AppData\Roaming\GraphicsPerfSvcs.dll
Size 23.7MB
Processes 3052 (Hooks.jpg.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 eb72d63d5e250781fb1b84f185581e1e
SHA1 262f689ab8a405404a0ed0fc876cfe8e4a0d6efb
SHA256 440bbe8365019a7cec572f1f91159a6209636d4bf3fe3b85506bad0ff5097bc4
CRC32 D7D4CF0F
ssdeep 393216:MQTzuoRbBfQYT042YKdmbBR0TH/IxcNT3cJkRfxBk:My3t7T042YKYGPTMJwI
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • Network_Downloader - File Downloader
  • Malicious_Packer_Zero - Malicious Packer
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name a9b1dc8eaa5fcd00_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 1116 (powershell.exe)
Type data
MD5 c1d8708bab1e838a2deda26d58bb8d42
SHA1 95d39e75a804752961c139bb6c0b67f84f685035
SHA256 a9b1dc8eaa5fcd0034694cf9742ae915a5932142a1477c3ab6fada45d98750b2
CRC32 E71AF2A2
ssdeep 96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworFS7HwxWlUVul:QtbXoFtbbHnor/xo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis