Dropped Files

Name ea6c8bb505824840_counter-strike patch.exe
Download Submit file
Filepath C:\Windows\win32dc\Counter-Strike patch.exe
Size 315.8KB
Processes 2872 (dd8e63ce09fe33fd_half-life 2 serial.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 bfc017d247e8b61cb9ecf1fb92728460
SHA1 8e233f03af294774f4a87bb561ea8b8059715851
SHA256 ea6c8bb50582484044ead66749d0a1413b4a1c758d8b09ad310a9e3374e740f7
CRC32 4529F502
ssdeep None
Yara
  • UPX - (no description)
  • suspicious_packer_section - The packer/protector section names/keywords
  • network_irc - Communications over IRC network
  • network_dropper - File downloader/dropper
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
  • spreading_share - Malware can spread east-west using share drive
  • win_mutex - Create or check mutex
  • win_registry - Affect system registries
VirusTotal Search for analysis
Name 421c3e3e7abc46e7_silent hill 4_trainer.exe
Download Submit file
Filepath C:\Windows\win32dc\Silent Hill 4_trainer.exe
Size 317.8KB
Processes 2872 (dd8e63ce09fe33fd_half-life 2 serial.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 96c3003d77a033b295a8e354003541a7
SHA1 90b0279b26ffc5419316a2c28e1b1ffdbe6aafa0
SHA256 421c3e3e7abc46e744a485968397ad2ceee9922288c5af408216023939ad62bf
CRC32 00271E32
ssdeep None
Yara
  • UPX - (no description)
  • suspicious_packer_section - The packer/protector section names/keywords
  • network_irc - Communications over IRC network
  • network_dropper - File downloader/dropper
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
  • spreading_share - Malware can spread east-west using share drive
  • win_mutex - Create or check mutex
  • win_registry - Affect system registries
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.