popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name fee735580b6b08f6_7z.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7z.dll
Size 1.1MB
Processes 2544 (DownYGX.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 d5d42c33a42d0351511b204c8b1f1126
SHA1 b099dce5071e19cc35ecba536e4fb1126b565f3e
SHA256 fee735580b6b08f6a602971881a385d52793810a68ef46bb72e3eca270930f65
CRC32 ADC43EFB
ssdeep 24576:v4K5hK124cWKupj+zEgf94/JEo2BXrXNH6YsPfRQuIeCoFkDe:v4wKYJuN+zEgoJSaNPpQuIeDkDe
Yara
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • Microsoft_Office_File_Zero - Microsoft Office File
  • Win32_Trojan_Emotet_2_Zero - Win32 Trojan Emotet
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name eda460401f4bf87c_7z.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\7z.exe
Size 288.5KB
Processes 2544 (DownYGX.exe)
Type PE32 executable (console) Intel 80386, for MS Windows
MD5 5859d8fca5e45c28aa4e4f708fbe50d7
SHA1 0843e9fbe29e226bc3eb186407920a611ab5c718
SHA256 eda460401f4bf87c9c1bfcbfc039eabd7c479cbd8a670e87642098d7fd380412
CRC32 9AD34928
ssdeep 6144:2deUJaXYOMqsGXKdFhLOWtE+Q2UsIEgbbe73aTL/VctpuaL:2dRVOsfCyE+QPsIEic3
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 75ad4d23601c9a2b_autF0D9.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\autF0D9.tmp
Size 624.7KB
Processes 2544 (DownYGX.exe)
Type data
MD5 7c78c3eebb0ad7b48c9977963918a355
SHA1 dc90cc7cccfbaff19159403c04baa826de7524f1
SHA256 75ad4d23601c9a2b15707aa11d102b8a24dd65ee00752fe04a7b88b1f61c974c
CRC32 598A5028
ssdeep 12288:Bf2KMqgPD5Pa7vSC96YKZsGnxHx05TUgqtDeMRLOF1nm2lLJ5TNnB7c4GmxtQM7B:BeKtg1Pa7vSCURntoUhFe2LgJp1BA0XF
Yara None matched
VirusTotal Search for analysis
Name b2ccb25e1485fda6_autF099.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\autF099.tmp
Size 175.2KB
Processes 2544 (DownYGX.exe)
Type data
MD5 12e0bdc3af7df49d79cca05735af72fa
SHA1 783b2692ef1b9076546404c1594617f585b1c224
SHA256 b2ccb25e1485fda694854df09983aa2c250f3a5dd796ce0031d5f789be1574df
CRC32 4D5D63E9
ssdeep 3072:zOQlkhd34kVTEInsoyR9++IxsX4zEtzLUC+IUWOC3MZiiq2Z52qNmhi:zOpf46EInslJmz2LUCWWX3dNk
Yara None matched
VirusTotal Search for analysis