popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 9c20eecf353ca35a_gdi32.dll
Submit file
Filepath C:\Users\test22\AppData\Roaming\gdi32.dll
Size 439.5KB
Processes 2552 (cheet.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 1a9aa97a056a5ad38c7e456706ecce75
SHA1 aab8dbeba5e9bc7f5048a551fb3f2837aa3b7ca6
SHA256 9c20eecf353ca35abde0882d03ab2b3c4cb430f8ff4f9f3f81f89d4b723c8c07
CRC32 17E8203C
ssdeep 12288:254XXWMZKOK8B6AU7SD2PqHd95zoVVJu00YZG6:r55K8BBU7SE0d952uq
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Malicious_Packer_Zero - Malicious Packer
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis