Dropped Files

Name e65b04abcef7e4de_rifaien2-fy5zfzbaqpik85ow.exe
Download Submit file
Filepath C:\Users\Administrator\AppData\Local\Temp\rifaien2-Fy5zFzbaQPIK85oW.exe
Size 236.0KB
Processes 1988 (764f3883cebb8a1e31e3c2c181d226e7e00e8d4bd3edb67536bd27276cc79de8.exe)
Type PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5 269f1113b0c981eba1f3116d2357f49a
SHA1 384ae9fb417b6c3821e1323106e6c3e07edcc386
SHA256 e65b04abcef7e4de05fb08dd9ce5e561724da50fa09066cb98f861a7b1b35e74
CRC32 1CF91B15
ssdeep None
Yara
  • UPX - (no description)
  • suspicious_packer_section - The packer/protector section names/keywords
  • network_tcp_listen - Listen for incoming communication
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.