Dropped Files | ZeroBOX

Name	066e04c15bfd285e_new Submit file
Filepath	C:\ProgramData\new
Size	2.3KB
Processes	1188 (mm.exe)
Type	ASCII text
MD5	`db8d16a9b4dbb925c386836a970e017d`
SHA1	`f47b0b7ee083b2c43ed103948f64d183e9f2b018`
SHA256	`066e04c15bfd285e65cecb7c71b8bbd35048b1507f13cc2779ddbc6a4745089c`
CRC32	`C1103AD0`
ssdeep	`48:CtWTHcW087UZylCfnnBwT1L8nCvfM9ECoECy0RGitdQd9Q:CtWTvcBwT1L8nCvfnCZCNFY9Q`
Yara	None matched
VirusTotal	Search for analysis

Name	7ba2ca18db5aa7cd_lockapp.exe Submit file
Filepath	C:\ProgramData\LockApp.exe
Size	1.3MB
Processes	1188 (mm.exe)
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`bcf77a342439f58ae9a13f927e6155d8`
SHA1	`092981ed9aecc1259eaf0ab5a73bd2d648d15fb8`
SHA256	`7ba2ca18db5aa7cd4bcfa7bdd9975cba0aa5bc5402f68207c5002c4e0c7efcbd`
CRC32	`5F522203`
ssdeep	`24576:ldoDrvYM8Rti01lzEQi7NrTYKC7Jn/uso7sxPkRlcnBvzV2mIGfpd+nUleGhV+3:ldoXYM8RSxNrT91so7sxPkRqNT7fvV`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsPE64 - (no description) Obsidium_Zero - Obsidium protector file UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis