popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 2f15f2ccdc2f8e6e_gseddb.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\gsEDDB.tmp
Size 24.5KB
Processes 2572 (china.exe)
Type RIFF (little-endian) data, AVI, 143 x 313, 1.00 fps, video: RLE 8bpp
MD5 e667dc95fc4777dfe2922456ccab51e8
SHA1 63677076ce04a2c46125b2b851a6754aa71de833
SHA256 2f15f2ccdc2f8e6e2f5a2969e97755590f0bea72f03d60a59af8f9dd0284d15f
CRC32 3130CAC0
ssdeep 96:tfPlyPBvTfQ+lNZfPLtVJ5ndHHHHHJ1+AJF4J00m1t3wd+e/:tERfAGF4JLg8
Yara None matched
VirusTotal Search for analysis
Name 4ebf13835a117a25_gsed6d.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\GSED6D.tmp
Size 44.5KB
Processes 2572 (china.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 7d46ea623eba5073b7e3a2834fe58cc9
SHA1 29ad585cdf812c92a7f07ab2e124a0d2721fe727
SHA256 4ebf13835a117a2551d80352ca532f6596e6f2729e41b3de7015db558429dea5
CRC32 E0731A34
ssdeep 768:spFr7RYt4zFWfbMIFCET18ABkANlIY2+ljsdUSRCMhfvZ0Jqd2nZzYl:sTpvWzt7p8AeAPJ2+Z814UZ0ga
Yara
  • PE_Header_Zero - PE File Signature
  • ASPack_Zero - ASPack packed file
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • mzp_file_format - MZP(Delphi) file format
VirusTotal Search for analysis