popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 41be49894cef48d6_s8c.0.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\s8c.0.bat
Size 177.0B
Processes 300 (Update.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 9212e6e8b04b129aeba5558f434276b7
SHA1 f1653eda2dade1c4d4e1e42736284d12df835c93
SHA256 41be49894cef48d6c69acf6c43e8e0a702c5ecd16e03b9c9666bd727463b79df
CRC32 1AEA458B
ssdeep 3:mKDDCMNqTtvL5mZkREuKVEAMnvmqRDmWxpcL4E2J5xAIWcPkHm1mWxpcL4E2J5xz:hWKqTtTPtvmq1mQpcLJ23faHm1mQpcLI
Yara None matched
VirusTotal Search for analysis
Name bba61ab41bd0849e_pszc.exe
Submit file
Filepath C:\ProgramData\GoogleUpdater\PSZC.exe
Size 8.1MB
Processes 300 (Update.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 679c3af5f25af03f0703263673e1bb15
SHA1 f40dd8ce228e7c9a621d9498889c4b9962b5f3b8
SHA256 bba61ab41bd0849e06196b8fdeb58128ce8bada11ea3543a236f3fffcd16a069
CRC32 8F083768
ssdeep 196608:yNtzYNTe09Axlh/+7e6CvlLb4QZDfNUjF82/mI67Ad/w9:y/zYNTX9AJ/+TCvRbtxNUXuz7Mk
Yara
  • themida_packer - themida packer
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis