popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name ca2811a706c9eb25_zggceady1e0vnvg9ffb1xqkkpmttyl.vbe
Submit file
Filepath C:\comWin\zgGceADY1e0vnvG9ffB1xQKkPMTtYL.vbe
Size 212.0B
Processes 2560 (p5Y.exe)
Type data
MD5 85b2605bae584adf6ab5d1b3d298f4f5
SHA1 af3fbf08feed2392579a8cba73e58e79a3bf9d25
SHA256 ca2811a706c9eb25633c8a6eb4aa2ac948976a5a580f3ec32618fab253ece3c5
CRC32 539CFA79
ssdeep 6:GUwqK+NkLzWbH9WF08nZNDd3RL1wQJRro0MLOjBLBh/M:GlMCzWL74d3XBJJMeLBVM
Yara None matched
VirusTotal Search for analysis
Name 5f3a9492d94bb814_ulr1uzoork0oxse1tpb1ujz5kgi8u.bat
Submit file
Filepath C:\comWin\UlR1UZOORK0oxse1tpb1Ujz5kGI8U.bat
Size 24.0B
Processes 2560 (p5Y.exe)
Type ASCII text, with no line terminators
MD5 83e6b21fee1ea4cbfca414405763ff7d
SHA1 9ab6ba77e248972ca663eadcf5abb54b4028982f
SHA256 5f3a9492d94bb8147bb769254452d53cb2c0c81cb89d7c05d15eee810d8b78d5
CRC32 855E8D1D
ssdeep 3:I5ifkA0En:I0pJ
Yara None matched
VirusTotal Search for analysis
Name 87454b5b67f23c9b_hyperweb.exe
Submit file
Filepath C:\comWin\hyperWeb.exe
Size 1.6MB
Processes 2560 (p5Y.exe)
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 e4222c8fa6e2af84ebfa25836abb788d
SHA1 a354e66a02210738b17d9970e703bc246ef72e7a
SHA256 87454b5b67f23c9bf78ab3f42f2a3e309bba53d1d5a87e8eb96fcb4ae71a21f5
CRC32 37836C21
ssdeep 24576:i1OV7m7sNrgtRt4qNWFaDPqmDWRPn43xlN6TNLgSp2UgenVQ+J82:8OesNrA4qNaBmapn4cJsMVQ+J
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Library_Zero - Malicious_Library
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • OS_Processor_Check_Zero - OS Processor Check
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name e3b0c44298fc1c14___tmp_rar_sfx_access_check_4863421
Empty file or file not found
Filepath C:\comWin\__tmp_rar_sfx_access_check_4863421
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis