popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b4e0012af22039d6_cfx.bat
Submit file
Filepath C:\Users\test22\AppData\Roaming\cfx.bat
Size 456.0B
Processes 4208 (12_CNB_Programas_de_Becas-70212-em.txt)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 40d179bacfb5c79aa369c639a7903f04
SHA1 fd32b120c8b974f9edc2b155b7c7c623e155c246
SHA256 b4e0012af22039d6a74955c385566ee3e1366e37e7f5ca9594cceac2bd114dfc
CRC32 C59946A3
ssdeep 12:w8VjNdCb8m4u46Xo5Z8VjuHsdCbmQsGEq:w8VnCb8v645Z8VKSCbmkz
Yara None matched
VirusTotal Search for analysis
Name 4d09b2cd079ea70d_12_cnb_programas_de_becas.pdf
Submit file
Filepath C:\Users\test22\AppData\Roaming\12_CNB_Programas_de_Becas.pdf
Size 945.6KB
Processes 4208 (12_CNB_Programas_de_Becas-70212-em.txt)
Type PDF document, version 1.7
MD5 d69b42fafde17bda52e53c18c825eceb
SHA1 af78cdbc1a71c3ac3f9e699d6c1fbea7d5f104af
SHA256 4d09b2cd079ea70d99e7302b31be9524a7734c60332a687fab3b2d4ca72e0f6e
CRC32 8B3FC6FB
ssdeep 12288:ZTzeQzhfbpn4V9CbpXhCsDz1s39ax4dck3mSHoGmJc5exAYn1BOZ32vf1JEohuzm:Z37z5pnQEPCY23m4exLmmvNRguO+p
Yara
  • anti_vm_detect - Possibly employs anti-virtualization techniques
VirusTotal Search for analysis
Name 60c47867c5e4806d_win.vbe
Submit file
Filepath C:\Users\test22\AppData\Roaming\win.vbe
Size 113.0B
Processes 4208 (12_CNB_Programas_de_Becas-70212-em.txt)
Type ASCII text, with CRLF line terminators
MD5 7c5872f4db15092068a5b8dec6196f58
SHA1 d414b8e231d32b57f03e1608223f68e3bd20f8c4
SHA256 60c47867c5e4806d2d3ae283c89d5d64a25cf318ebfe92daeae21df977bc96cc
CRC32 8EE34C41
ssdeep 3:WHCssFOtbp7PHsoDXwzjHVi7CEcGD4FJFFF:/1ItVPMoTwzjHCHcGUJ
Yara None matched
VirusTotal Search for analysis
Name 718373420be65328_debug.log
Submit file
Filepath C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size 198.0B
Processes 6116 (chrome.exe)
Type ASCII text
MD5 7fbd52655f95fa8c999cea9eff80c531
SHA1 38f6ea99174a0a0d7deac53adc74f60957a6376f
SHA256 718373420be65328b4aea8b5b250f74d89dc426325bd4dd1c2cec0c48ce96a31
CRC32 8CD84504
ssdeep 6:qQUX4/y+cRU4LGGFw3V4v8e9cERU4LGGFw3V4vF:rUXXRU4LG6w3V6gERU4LG6w3V6F
Yara None matched
VirusTotal Search for analysis
Name c07318dada4f3791_last version
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Last Version
Size 13.0B
Processes 3172 (chrome.exe)
Type ASCII text, with no line terminators
MD5 27badea5c6dfd30fb41db26efb8428c9
SHA1 263d2a8c3512f3c497af888ccc93e40a96ef9da7
SHA256 c07318dada4f37913d94909bf3129a3616fcb8eefa2be021745b86a0368cc2b7
CRC32 AD46D01F
ssdeep 3:tVLRkUU:uN
Yara None matched
VirusTotal Search for analysis
Name e0c9dd3d63d48a3f_metadata
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\metadata
Size 114.0B
Processes 6116 (chrome.exe)
Type data
MD5 579334a0280fd41c923fe032fdcd7e92
SHA1 2730d43f1021a9d957ac16c771315f31ed5bd2a2
SHA256 e0c9dd3d63d48a3f0556d26fe47a0e6b33650476f97c2a6ab4b991a5d03ccd58
CRC32 B245A08A
ssdeep 3:mTll+Xl09fSE/lal/lvlJlVCDbz4AIWdHYIdAURL+V/n:mTlE09aEtu/DVCD4AJH/dxt6n
Yara None matched
VirusTotal Search for analysis
Name 0e3dc4ccd259716b_settings.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
Size 40.0B
Processes 3172 (chrome.exe)
Type data
MD5 62325aa04f35880232330f344df8018c
SHA1 58fe9532ee8d96e8d12448408cf3ccf9d0542543
SHA256 0e3dc4ccd259716b24376fddb4ee07a6c227f8bcb2532a7dd75bb36a4290e7cc
CRC32 6F0BEA7C
ssdeep 3:FkXJRYcTUM:+wcTb
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14___tmp_rar_sfx_access_check_46666515
Empty file or file not found
Filepath C:\Users\test22\AppData\Roaming\__tmp_rar_sfx_access_check_46666515
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 843a025d76bcd0cf_aedd0046-ffc5-4770-b7fe-38b467588e14.dmp
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\reports\aedd0046-ffc5-4770-b7fe-38b467588e14.dmp
Size 601.4KB
Processes 6116 (chrome.exe)
Type Mini DuMP crash report, 11 streams, Tue May 11 17:46:18 2021, 0x0 type
MD5 a9b86daeb1259eaf2e967c5984f06969
SHA1 f607e7e63547a28f742edefb29367fdf53adc933
SHA256 843a025d76bcd0cfaabefe590f6d79b3b4748963f8c0426b7b087e3c5ff1671f
CRC32 53C7DBF0
ssdeep 3072:8oMORFmFwK31MXBbOyHtcTpo+XleEhBGJlVSaXj:oOZKl4BbOyUpoyBG9
Yara None matched
VirusTotal Search for analysis
Name c1cd1ef2124dfd83_system.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\System.exe
Size 7.2MB
Processes 4208 (12_CNB_Programas_de_Becas-70212-em.txt)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 0a17319439c1d3da44cfa6eba82638dc
SHA1 af3be9b5117dc2ba954ebd0eeae206e7c9fbfbb6
SHA256 c1cd1ef2124dfd83b6376f4612ae9b4896af3361adeb54f88932f68a65a4a46f
CRC32 5BF3D70E
ssdeep 196608:aW0MhCBBTX1QFhjwt25HnuGIGdfc7AGlro:XlA/OHuUaA
Yara
  • IsPE64 - (no description)
  • OS_Processor_Check_Zero - OS Processor Check
  • PE_Header_Zero - PE File Signature
VirusTotal Search for analysis