popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 5f628663f71e3baa_Installer.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Installer.exe
Size 616.5KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 bed8cdced2d57be2bd750f0f59991ecd
SHA1 4e2a885b9387fcf040b7eb79892de2f9fe55bca4
SHA256 5f628663f71e3baa55f10e6021597f7860bef868284eb50b8958169dcbbff4fd
CRC32 866D5BB9
ssdeep 12288:22QRXDD1yed0fsU4GSWgOvPESGj4s32xEdRCSHsjAZi96VG6wl:22Q9NXw2/wPOjdGxYADEVU
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 5657416b7ef1e467_tmp1236.tmp.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp1236.tmp.bat
Size 163.0B
Processes 1648 (Installer.exe) 2668 (cmd.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 75e326f60979db29974a132776f1401d
SHA1 058b25a523d2f016eda5ff81b5fa48a886025d0c
SHA256 5657416b7ef1e467937068e0837f25c90cea4124c7688d9961939403ab8692b4
CRC32 02FEA750
ssdeep 3:mKDDCMNuwGv3DmWxpcL4E2J5xAIJsyEgXLNQDwU1hGDmWxpcL4E2J5xAInTRI+Xk:hWKuZLmQpcLJ23fJsXgXLSDNemQpcLJJ
Yara None matched
VirusTotal Search for analysis