popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name df1752ef6e8594fe_microsoft works.exe
Submit file
Filepath C:\Users\test22\Documents\Hnc\Microsoft Visual Studio 8\Microsoft Works.exe
Size 12.0MB
Processes 2540 (5689_4833.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 230ba53f680cb571ac552e432bcbadec
SHA1 3b00ccfac07fdb44091a475ca68258b7ba6bf06e
SHA256 df1752ef6e8594fe04a654cbebf85b053bae8300bde3c8260f290169fa1c2190
CRC32 F151D653
ssdeep 196608:XMO3UEyW4bkSMYMv2/gkBX1L3lIUlOLuQMPGnuzSDBa4Z4wz1a9:Xt3UEyNY2/gkBDgBMP1zSt89
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • Network_Downloader - File Downloader
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis