popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 9d3d13c55b2614c0_590aee7bdd69b59b.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\590aee7bdd69b59b.customdestinations-ms
Size 7.8KB
Processes 2088 (powershell.exe)
Type data
MD5 3eb6fb80f9dbbc1201de9e762252141b
SHA1 c6d1e6ea5f2fef6f4458695b8ed7586aed429f1c
SHA256 9d3d13c55b2614c0615acea119139123b2a29f2a0daded7edd5146e4614a78e6
CRC32 23B7285A
ssdeep 96:YtuCaGCPDXBqvsqvJCwo9tuCaGCPDXBqvsEHyqvJCwor/tDHXyWlUVul:YtzXo9tzbHnorlTyo
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis
Name c09261b23dc64327_sbvc.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\sbvc.exe
Size 661.6KB
Processes 1280 (Downloader.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 9c2b0f492a0508407985c350013e0603
SHA1 63d02fe346812faae5096bd43ca7f62db828fe8d
SHA256 c09261b23dc6432752d736fcb94aae170038b10671e48dde01d8c98ea7120226
CRC32 B8905D49
ssdeep 12288:8zxzTDWikLSb4NS7ET+tG1XPHZadMPCiI2U7YcnLesEzcpnoip31cbT+h:6DWHSb4NhnadMP4T7tnLesEcFoiQbah
Yara
  • OS_Processor_Check_Zero - OS Processor Check
  • UPX_Zero - UPX packed file
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis