Dropped Files

Name 2ee1b31f269c9e78_xbox.info.exe
Download Submit file
Filepath C:\Windows\Temp\Xbox.info.exe
Size 162.2KB
Processes 2464 (c21bb16736e6214f54fe1488e5bd50b000ec2fc0dde0f171b6ccbc4b20d2cacd.exe)
Type PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5 72a4c4c0c91258d5d4b0b407020a8bd8
SHA1 d1dadd9ddb8025d94ed5aca221597e583b0a53e9
SHA256 2ee1b31f269c9e7846a86efdf47e20ebd7c8f5e163a744e1a10d80be3bd3304a
CRC32 797E921A
ssdeep None
Yara
  • suspicious_packer_section - The packer/protector section names/keywords
  • keylogger - Run a keylogger
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
VirusTotal Search for analysis
Name 3f6ef1c596b02e79_winzip 8.0 + serial.exe
Download Submit file
Filepath C:\Windows\Temp\Winzip 8.0 + serial.exe
Size 162.4KB
Processes 2464 (c21bb16736e6214f54fe1488e5bd50b000ec2fc0dde0f171b6ccbc4b20d2cacd.exe)
Type PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5 07b521880b10f60938b443f9964c77ef
SHA1 f4e6b7ea602d2d6f1ab0f88dad7b7943a9ed714c
SHA256 3f6ef1c596b02e7976f1be0d2299382a6f3fd2d34950489934a0daf6a825c0d9
CRC32 73DA366A
ssdeep None
Yara
  • suspicious_packer_section - The packer/protector section names/keywords
  • keylogger - Run a keylogger
  • win_registry - Affect system registries
  • win_files_operation - Affect private profile
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.