popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 3f9c0e203e29e7d2_issas.exe
Submit file
Filepath C:\Windows\Performance\WinSAT\issas.exe
Size 128.0MB
Processes 1076 (dnlib.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 531babcb6eca955e031e9cc1fb2f548a
SHA1 10675be0985606ffd40c9208afeb084c48a94d1e
SHA256 4ff40aff5ab879289560e39d5398e067de866374127658bc2c95061b2f5a8c25
CRC32 17CAB9A3
ssdeep 3072:/AZRAgCwqJH0XzLV5bXu6HyybNt0je0z8Es:IMmfb9S38Es
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name d50ab8c831a3dbfe_crash.exe
Submit file
Filepath C:\Users\test22\AppData\Local\CrashDumps\Crash.exe
Size 128.0MB
Processes 1076 (dnlib.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 531babcb6eca955e031e9cc1fb2f548a
SHA1 10675be0985606ffd40c9208afeb084c48a94d1e
SHA256 4ff40aff5ab879289560e39d5398e067de866374127658bc2c95061b2f5a8c25
CRC32 17CAB9A3
ssdeep 3072:/AZRAgCwqJH0XzLV5bXu6HyybNt0je0z8Es:IMmfb9S38Es
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis