Dropped Files

Name d79105acd52d40be_ghsdtd.exe
Download Submit file
Filepath C:\Users\Administrator\AppData\Local\Temp\ghsdtd.exe
Size 41.2KB
Processes 2436 (c372f14b5aab8bd3a7a4e02b6d84b5d6d1f005e8551ce20fd5bf5f125e494822.exe)
Type MS-DOS executable PE32 executable (GUI) Intel 80386, for MS Windows, MZ for MS-DOS
MD5 39181df8427b086fa6d837e4dc0b13a4
SHA1 bc0c1983d2c34cf778627aeab92ea5c4e5ecb616
SHA256 d79105acd52d40bea9459d98d6577fea465d11deb395d8c6e4fea803ac3736ab
CRC32 10B51B81
ssdeep None
Yara
  • Bublik - Bublik Trojan Downloader
  • screenshot - Take screenshot
  • keylogger - Run a keylogger
  • win_hook - Affect hook table
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.