Dropped Files

Name 4ef51838a263809d_sims 2 trainer.exe
Download Submit file
Filepath C:\Windows\win32dc\Sims 2 trainer.exe
Size 317.8KB
Processes 2604 (2d48396aa0392939_ut2004 cdfix.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 87ef1550678cdd8673839bd69abd9cac
SHA1 8a5bb0565f4276803a02a03703fca09baeea026a
SHA256 4ef51838a263809dc122baae440604639863ce6162f4b9e2580015369dceaf5c
CRC32 89EB4D51
ssdeep None
Yara
  • UPX - (no description)
  • suspicious_packer_section - The packer/protector section names/keywords
  • network_irc - Communications over IRC network
  • network_dropper - File downloader/dropper
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
  • spreading_share - Malware can spread east-west using share drive
  • win_mutex - Create or check mutex
  • win_registry - Affect system registries
VirusTotal Search for analysis
Name d0191d90a48d4893_quake3(crack).exe
Download Submit file
Filepath C:\Windows\win32dc\Quake3(crack).exe
Size 321.8KB
Processes 2604 (2d48396aa0392939_ut2004 cdfix.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 4d759e263c14b3705c81485dc036a995
SHA1 099296a22772d9ac8c4be334c45a9d404adcb8ee
SHA256 d0191d90a48d48936d1a08cf1763ed402ee80605e41c67bffddd2b56cdc45ceb
CRC32 02870E36
ssdeep None
Yara
  • UPX - (no description)
  • suspicious_packer_section - The packer/protector section names/keywords
  • network_irc - Communications over IRC network
  • network_dropper - File downloader/dropper
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
  • spreading_share - Malware can spread east-west using share drive
  • win_mutex - Create or check mutex
  • win_registry - Affect system registries
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.