Dropped Files | ZeroBOX

Name	63cc4cd86a4b3ef6_loader.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\IXP000.TMP\Loader.exe
Size	356.6KB
Processes	1280 (Reaper%20cfx%20Spoofer%20V2.exe)
Type	MS-DOS executable, MZ for MS-DOS
MD5	`d707f494103f17e0cf2cc256d1a75290`
SHA1	`bdba81af5dd6d595fdc26f045abf938207d20564`
SHA256	`63cc4cd86a4b3ef683fdb8c17a7245628ae51532f0ce594818f9cba6a47f05ae`
CRC32	`8CCAE03F`
ssdeep	`6144:PK/cBqBnhiO2sTCevVbXoVVVU93gZgv2Ffwjow8WB/fX/:PK/wWnEOHp+5wfhH`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer Is_DotNET_EXE - (no description) IsPE32 - (no description)
VirusTotal	Search for analysis

Name	1f00b0f87c3ed645_cfx.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\IXP000.TMP\cfx.exe
Size	360.0KB
Processes	1280 (Reaper%20cfx%20Spoofer%20V2.exe)
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`be1f368b175370ecbd06b491b54ce960`
SHA1	`c1ef50cd8907e27ff93c635b1f0335a3585b17eb`
SHA256	`1f00b0f87c3ed645193cbcdab30df9c0f3965db1e871162cf36c78fc4715db83`
CRC32	`333C8D2D`
ssdeep	`6144:GID8CMsHzMfZnUT9G+C+E6VfaFcHYDKt79lbP5iBTgohO3WJAcSYH:T8AwfpM9vCD6taFuYDg9lAeoim`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis