Cuckoo Sandbox

Name	3e7a75056f3d7311_mscorsvw.exe Download Submit file
Filepath	C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
Size	648.0KB
Processes	2392 (e1d23b680933e123_w64.exe)
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`3356e0ffa7626724a49f8405a75deb9e`
SHA1	`129f6658ac93cc48785a7a3333f517fb506f393a`
SHA256	`3e7a75056f3d73111d095f17c481d7d80780a26b6e82bd13a8ba7293c501ba8d`
CRC32	`47A30E80`
ssdeep	`None`
Yara	anti_dbg - Checks if being debugged win_mutex - Create or check mutex win_registry - Affect system registries
VirusTotal	Search for analysis

Name	e05bddcd3859adf9_maintenanceservice.exe Download Submit file
Filepath	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
Size	1.2MB
Processes	2392 (e1d23b680933e123_w64.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`dc30ab0a3d66750005a5cbc0550f39e0`
SHA1	`01790518cadd2391ec7e6b158c857283dbfee6aa`
SHA256	`e05bddcd3859adf9f96e6184c40a5eaab10054d29bc8692794952190efa8aceb`
CRC32	`24275F62`
ssdeep	`None`
Yara	anti_dbg - Checks if being debugged create_service - Create a windows service escalate_priv - Escalade priviledges win_registry - Affect system registries win_token - Affect system token win_files_operation - Affect private profile
VirusTotal	Search for analysis

Dropped Files