popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e35598cf683778c1_system.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\System.exe
Size 56.0KB
Processes 2544 (get.php)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 cbd833c27725ba4196e08db1f4d3fc8a
SHA1 85f07d6d74e6181b05b70ff53a8407ca87a90a35
SHA256 e35598cf683778c1143ccf60ae2063e55b99e53ead74414e6be06f92523a4c76
CRC32 B0884DC8
ssdeep 768:o2qiHpR9EfFbieCl4zhrM+rMRa8NuTFtCaSdfz:btHpRydbA2zS+gRJNYqaSdfz
Yara
  • Win_Backdoor_njRAT_Zero - Win Backdoor njRAT
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name c20d89a5dbcdc9d7_extrimhack_csgo_05.03.2023.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\extrimhack_csgo_05.03.2023.exe
Size 94.5KB
Processes 2544 (get.php)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 80e154610c2e444ef69ca09b615ef240
SHA1 1b2d8fef6963310a11dbe72589de22e12c42820f
SHA256 c20d89a5dbcdc9d7d6a50514ce86b8ceb2c17bb9cfbe7616f7a42610aaaa4d49
CRC32 68DC78BD
ssdeep 1536:6BDiVa0BgiVa9tHpRydbA2zS+gRJNYqaSdfz4:6BDiVa0BgiVa9tJQ9lS+yJ6W4
Yara
  • Win_Backdoor_njRAT_Zero - Win Backdoor njRAT
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • mzp_file_format - MZP(Delphi) file format
VirusTotal Search for analysis
Name c4b2328b84249297_autorun.inf
Submit file
Filepath C:\autorun.inf
Size 56.0B
Processes 2784 (None)
Type Microsoft Windows Autorun file, ASCII text, with CRLF line terminators
MD5 d3b7232d5e9a361a55388c81c601e8e9
SHA1 37387e36e3f062a9a86aba9949bd359f7d0722dc
SHA256 c4b2328b84249297b74e881d557209b1e5ca58d7cad2ade1ceac233f007b89aa
CRC32 219688C1
ssdeep 3:It1KV2rGgpskAyK0x:e1KOAk9D
Yara None matched
VirusTotal Search for analysis