Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.15 01:11
wwbizsrvs.exe
11.15 01:11
op.exe
11.15 01:11
msf.exe
11.15 01:11
lum250.exe
11.15 01:11
msf443.exe
11.13 04:11
hello.exe
11.13 03:11
espsemhvcioff.exe
11.13 02:11
Geek_se.exe
11.13 02:11
cred64.dll
11.13 02:11
svhost.exe

Latest News
11.17 03:11
[일본 애니메이션]世界最高の暗殺者、異世界...
11.17 03:11
Playing Chess Against ...
11.17 03:11
IT Sicherheitsnews tae...
11.17 03:11
IT Sicherheitsnews tae...
11.17 01:11
IT Sicherheitsnews tae...
11.17 01:11
IT Sicherheitsnews tae...
11.17 01:11
TikTok Parent ByteDanc...
11.17 12:11
Hackers, Patents, and ...
11.17 12:11
IT Sicherheitsnews tae...
11.17 12:11
Umweltfreundlicher Wha...

Dropped Files | ZeroBOX

Name	1592e7a704b6d990_152138328664 Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\152138328664
Size	23.0KB
Processes	2444 (rgbux.exe)
Type	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x768, frames 3
MD5	`536799c99363af55d4d36639544eae04`
SHA1	`1922bd5c0e32bd34e0861466c3dd35b2526b5438`
SHA256	`1592e7a704b6d990481533c516c6236cb08e8d4b42ecb691b4d49da9bed27374`
CRC32	`5FD69517`
ssdeep	`384:0JaAaAIDjWFO3/vqcZdEydk4IEKbcEv6MAxYSPy6N:0AKInWUPvxlNAB6MZ2yw`
Yara	JPEG_Format_Zero - JPEG Format
VirusTotal	Search for analysis

Name	8360204284e644c1_152138328664 Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\152138328664
Size	23.0KB
Processes	2444 (rgbux.exe)
Type	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x768, frames 3
MD5	`48089ecb2adacd4d36f03dcfe2c370cd`
SHA1	`51ee724f9e3a2e5ac0830d7b21791bd580f37a11`
SHA256	`8360204284e644c1bc612d06a2600bc8720bc8c737fc2589e0df238808eebb1a`
CRC32	`108E8CBD`
ssdeep	`384:0JaAaAIDjWFO3/vqcZdEydk4IEKbcEv6/odsXk:0AKInWUPvxlNAB6XU`
Yara	JPEG_Format_Zero - JPEG Format
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_15213832866432405321 Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\15213832866432405321
Size	0.0B
Processes	2548 (taos.exe) 2444 (rgbux.exe)
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	09e90f1b1169b472_santa.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\santa\santa.exe
Size	332.5KB
Processes	2444 (rgbux.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`316b8cc927e4a9ad4258fc367873d988`
SHA1	`8e75a5925495fe7a496819ec00d880ccc0671237`
SHA256	`09e90f1b1169b4725f8f7f5daabde617449a1a6817f12eaacc945451e001c62f`
CRC32	`C4FCCB40`
ssdeep	`6144:H9h1HLyKYAm1P9PbzvOwrL5kcNTazVpMGt7Tm5R67mq:dhp2n7VPbz/rL5kCan7Tm5ct`
Yara	PE_Header_Zero - PE File Signature Malicious_Library_Zero - Malicious_Library IsPE32 - (no description)
VirusTotal	Search for analysis

Name	63cfd63d995ec04f_rgbux.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\82b34ed5a0\rgbux.exe
Size	377.1KB
Processes	2548 (taos.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`1d11bcec0aff60ec16a81131e2a4d7c3`
SHA1	`82de4e205ccd69ac729e63a469423930fb2a7c0a`
SHA256	`63cfd63d995ec04f7c337708ff20ce4e2e118ab32e92395f1a815847bd2c01e2`
CRC32	`25FA3B65`
ssdeep	`6144:PfXs0/QQPDE+49V1NAW42dX7PkKssJB152+c858D6SKz8ynq+C:PfXsRQPDE+49V1NAWjX7kKs85cByzDi`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description)
VirusTotal	Search for analysis