Dropped Files

Name c91b07a98f7d795d_lkdsu.txt
Download Submit file
Filepath C:\Users\Administrator\AppData\Local\Temp\lkdsu.txt
Size 160.0B
Processes 2360 (40390d043fe0131afcf00e297b2d350bd5d3d4bf6ead3efaef007aa635348fe7.exe)
Type ASCII text, with CRLF line terminators
MD5 c82c17c8a63c6d336f510c601b6e4295
SHA1 7a59ac5838875ee38823fd1458856ae06c01d42c
SHA256 c91b07a98f7d795dc91dafd0ccf5e00188b2235519d9964877427f31821db5c8
CRC32 227BCF0C
ssdeep None
Yara None matched
VirusTotal Search for analysis
Name be6b1d2c2d620cef_Windowsdef.txt
Download Submit file
Filepath C:\Users\Administrator\AppData\Roaming\Directory\Windowsdef.txt
Size 2.0MB
Processes 2360 (40390d043fe0131afcf00e297b2d350bd5d3d4bf6ead3efaef007aa635348fe7.exe)
Type PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5 f70f60158459bb96edd72d91a1cee472
SHA1 90276e1a393ddb992c987e689c0bc77f016e5899
SHA256 be6b1d2c2d620cef8d00c05bb914bc68fa81d3fa93a01e63fcf48833a1059961
CRC32 92CF2D7F
ssdeep None
Yara
  • suspicious_packer_section - The packer/protector section names/keywords
  • SEH__vba - (no description)
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.