| Name | aef73e2e6fa6c6ae_fdyyo.exe |
|---|---|
| Filepath | C:\Users\Administrator\AppData\Local\Temp\fdyyo.exe |
| Size | 65.0KB |
| Processes | 2872 (797ca9d112537b75_winngphas.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 066797f76bc81b2d2f463a2522873a0d |
| SHA1 | 924a5e96a38fbd15d7ae63ff2b9f81504829d3e9 |
| SHA256 | aef73e2e6fa6c6aeb1cfb7fe6436da2b3c568a2eb44dde580e8d3b4096a50044 |
| CRC32 | AD5A3408 |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 444f9c7bbf216cbe_system.ini |
|---|---|
| Filepath | C:\Windows\system.ini |
| Size | 256.0B |
| Processes | 2872 (797ca9d112537b75_winngphas.exe) |
| Type | Windows SYSTEM.INI |
| MD5 | 96d97fb855ed0aaa8626f691f5645ef6 |
| SHA1 | c8b05265e9eb0a170c2191c9c2eb190aecdc080e |
| SHA256 | 444f9c7bbf216cbe74c1741edbd67cc36c02931d65615354ef26e8a355dfd504 |
| CRC32 | 6140987A |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |