popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 7422bc2c77e70c2e_ApiUpdater.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ApiUpdater.exe
Size 469.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 ebf341ab1088ab009a9f9cf06619e616
SHA1 a31d5650c010c421fa81733e4841cf1b52d607d9
SHA256 7422bc2c77e70c2e90c27d030a13eb3adf0bcfc1ef2bc55b62871181af5cd955
CRC32 D1DBD3A7
ssdeep 12288:Wmnk7iLJbpIpiRL6I2WhSKQ9ZsfZQSin9:uiLJbpI7I2WhQqZ7i9
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Network_Downloader - File Downloader
  • infoStealer_browser_b_Zero - browser info stealer
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name fe23daefea992a95_install.vbs
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\install.vbs
Size 548.0B
Processes 1372 (ApiUpdater.exe) 2156 (wscript.exe)
Type data
MD5 c1e2cca2b3279b273ea394825f2687bf
SHA1 1e869802a75d0f3fd3bc516cd673d58a4233f868
SHA256 fe23daefea992a95d2297f8e0f4db3d912a20c786471313a52fc8f06526242be
CRC32 A292CA11
ssdeep 12:4D8o++ugypjBQMB3Ds/Q1G9ZvFQ4lOnb/AllAlF0M/0aimi:4Dh+SMTL49hFNObooF0Nait
Yara None matched
VirusTotal Search for analysis