popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 3c86be28b8a059d4_server.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Update\server.txt
Size 10.0B
Processes 2576 (GGWS.exe)
Type ASCII text, with no line terminators
MD5 8e21ad6c3782e8eadb9031fa66049bcd
SHA1 45cec4a5f3c3f223e756b9b8bc32510e879b8f10
SHA256 3c86be28b8a059d46690ea434e9517a9436c729540cf70c3d718619190481fc0
CRC32 5EB6DEC6
ssdeep 3:SXHJ:SZ
Yara None matched
VirusTotal Search for analysis
Name ec966333cd05aaa7_ggwsupdate.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\GGWSUpdate.exe
Size 34.5KB
Processes 2576 (GGWS.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 2b1a769d68dd3486b48e3e5bd2296397
SHA1 53a2ed0d0b38560461058c52aeef6bd1032f78e5
SHA256 ec966333cd05aaa773d76001d184fe28c1fe7945ec942ec6912602b05b8df6ab
CRC32 E80668CE
ssdeep 384:qXoT2zOz/5wOCLINqp2oSVfLzE7lDhpnod4BJ8q0ffmkvsOn3Wn5:qXoT2n0kOzE79rF0nmkS
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
VirusTotal Search for analysis