popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 8de11e5ca72bb006_xiojsse.vbs
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Xiojsse.vbs
Size 129.0B
Processes 2020 (Bitcrave.exe)
Type ASCII text, with no line terminators
MD5 ed031b2e662e9d0f6cd3610890d49f0d
SHA1 1928a03e2b9848833a380a6050767cc0b911b5ea
SHA256 8de11e5ca72bb006ee21379a0c8b7f7e4f88730fc7d7447a8dd0adae889db565
CRC32 2C48D298
ssdeep 3:FER/n0eFHHomWxpcL4E2J5xAIy0QJeJNkV6EoVcWVZMFjM:FER/lFHImQpcLJ23fdcek6EIIZM
Yara None matched
VirusTotal Search for analysis
Name caf6f141e7889d7e_dpwkkvetulruhfxfjrdt11720120210713093002.pdf
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Dpwkkvetulruhfxfjrdt11720120210713093002.pdf
Size 9.2KB
Processes 2020 (Bitcrave.exe)
Type HTML document, ASCII text, with very long lines
MD5 0b429190e6b8c6e81914cfc61d78ec19
SHA1 b3cf0fd91d393af6a2dbac050ad2fba8e7a24aef
SHA256 caf6f141e7889d7e370856601a7685cf3a54e3509c7512d950976ac9a1fa2748
CRC32 7BC4B493
ssdeep 192:XQb2Jhd9U6KJo18b+eegCwN23xKyD84tAf6WVQ+FR4FRmFRz8TWq:Ab2Jhd9bEo186fgCwYRtAfDVVR+RYRIr
Yara None matched
VirusTotal Search for analysis
Name 49c4a85bce2fb8cb_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2820 (powershell.exe)
Type data
MD5 4eba3b6a4f05a26106a2d772c79da044
SHA1 45ae375ea2f305e4409aabc22803cd1471f0983e
SHA256 49c4a85bce2fb8cb6db4279591d0966cbd2fb84bc43f252ee5ad14d3d615b2b5
CRC32 2DF7F691
ssdeep 96:YtuCaGCPDXBqvsqvJCwo9tuCaGCPDXBqvsEHyqvJCworM7HwxWlUVul:YtzXo9tzbHnornxo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 187c5699381bf375_Bitcrave.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Bitcrave.exe
Size 2.3MB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 415869c1ab4d22fdc26b5618672d793f
SHA1 bbd136b9aa1fdc1d39b5eae4307b5edf97590411
SHA256 187c5699381bf37552882dce7593759d8ab041e916c4493341080df0de46fdea
CRC32 38B2B342
ssdeep 49152:LB65PDuw5ekGUTnJ0GLJE2zj9SmfONWIUAGYYnIu:LB65qDkvnJ5La2zjIkOsHxYNu
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
VirusTotal Search for analysis