popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name f4d28cf0f12006f9_590aee7bdd69b59b.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\590aee7bdd69b59b.customdestinations-ms
Size 7.8KB
Processes 2432 (powershell.exe)
Type data
MD5 b770148dd160455bac8fe186a882733d
SHA1 f41e6e10cf42b4aa831f43abfb27c031bf0f3d4a
SHA256 f4d28cf0f12006f93de9b6181d36369c8d85b6021f830ea407d76585cbda8b1e
CRC32 94B533F7
ssdeep 96:EtuCojGCPDXBqvsqvJCwoJtuCojGCPDXBqvsEHyqvJCwor3tDHXyGlUVul:Etu6XoJtu6bHnordTyY
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis
Name e63cbb1622efcccd_ready.ps1
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ready.ps1
Size 900.0B
Processes 3024 (ffa.exe)
Type UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5 866872709fd34f3d2005effe5ad166ca
SHA1 2fa1da7ed59400a3b58f16bc1cc0718e592dca43
SHA256 e63cbb1622efcccd147280dd19333e0ceb1d3e9cc9be608b2b1e0283814f1ebc
CRC32 3D150363
ssdeep 24:YRJ51bgZG48mEumQMGzPynMMnDZKQXp2RO51gHraGe5AF:Y7M+mvlqZMLjRF
Yara None matched
VirusTotal Search for analysis
Name b368338ea430f4d4_get-content.ps1
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\get-content.ps1
Size 2.5MB
Processes 3024 (ffa.exe)
Type ASCII text, with very long lines, with CRLF line terminators
MD5 bf3ee91d4639329312f5d617d67f2ed5
SHA1 4a832b494b895f1114d4c2d966adcebf4f590639
SHA256 b368338ea430f4d446fe7f80dd522c9c596f7d43b043c5094b4e4dbea155e02a
CRC32 4515A6B3
ssdeep 49152:UwUKC0s/TgsTZ77MB+4UAnUebzlSK8MmL:Y
Yara None matched
VirusTotal Search for analysis
Name 009dcc32a09b3ac5_promo.png
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\promo.png
Size 128.0MB
Processes 3024 (ffa.exe)
Type data
MD5 3702d62fe72e555e97ca68340e2accb7
SHA1 345030a5d126ba1d066163c4c87068275b08d989
SHA256 737baaf388dc96eb8915873d3a5d76c506fefa6b43898df43034435e188027c2
CRC32 790111C7
ssdeep 3145728:y+J9tHJ2LcZYHVJ4lZlhHZd1QccCyMSUBEbGrcBmTGgaLW+:yUNJ2LcWVilDhHj1QvyFqKcBMyLH
Yara None matched
VirusTotal Search for analysis