popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ab88164c11b1b484_interception.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Lib\x64\interception.dll
Size 11.0KB
Processes 2580 (giftorder.exe)
Type PE32+ executable (DLL) (console) x86-64, for MS Windows
MD5 fe8b2a022297aa36a3546391221f635a
SHA1 346e04907eb628372f459fbbf109b6cff57cac13
SHA256 ab88164c11b1b48488772d4c3bfaa4509d5b0ae9dbc5a691dc4f96f0260443c8
CRC32 B974AFA7
ssdeep 192:wBKz1mGyRWIddjlkuSCqPDKSyFVzhveZhAk3M+j4sreC:EKsGyRhdtlkuSCLS8VcZhP344
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • IsDLL - (no description)
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 189b32e1744fd461_autohotinterception.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Lib\AutoHotInterception.dll
Size 31.5KB
Processes 2580 (giftorder.exe)
Type PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 72c6921fd9326411eb4ab924020a6933
SHA1 c02d857de0f7f9fb562d98240314a9e4bd5d299f
SHA256 189b32e1744fd46117c292bf829e1c3d8728757a7ca346d91d91018bc7240425
CRC32 25188814
ssdeep 768:EtuFydYLtqDjNGsJeXdWaatZYtEthYtrYtFYtHYtHYtQYtft0Ytnti5sRvRJ+LH6:E1dYLE58gXYefYBY/YdY9YyY1WY9RBRF
Yara
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • Is_DotNET_DLL - (no description)
VirusTotal Search for analysis