Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
05.04 10:05
mediacje.png
05.04 10:05
Portal orzeczeń - Sąd ...
05.04 04:05
2708.bson
05.04 04:05
289e4f9df20d686b_{4fc7...
05.04 04:05
2616.bson
05.04 04:05
460.bson
05.04 04:05
70f316a5492848bb_down[1]
05.04 04:05
41e3f69ecc09290e_httpe...
05.04 04:05
07d07a467e4988d3_favce...
05.04 04:05
3a2afe884e38a649_dnser...

Latest News
05.04 09:05
Whatsapp’s neue Datens...
05.04 09:05
KI-Fehler: Wenn Fantas...
05.04 09:05
KI im Visier von Cyber...
05.04 09:05
Chrome-Ersatz mit KI-F...
05.04 08:05
A Delay Line Memory De...
05.04 06:05
Security Essen 2026: D...
05.04 05:05
Frnisi DMC-100: A Clam...
05.04 03:05
Threat Actors Attackin...
05.04 03:05
[부고] 삼성물산 정혜야 그룹장 시모상
05.04 02:05
3D Printed Cable-Drive...

Dropped Files | ZeroBOX

Name	be87583bb114b961_6ccacd8608530fba3a93e87ae2225c7032aa18c1 Submit file
Filepath	C:\FontCrtMonitorDllSvc\6ccacd8608530fba3a93e87ae2225c7032aa18c1
Size	200.0B
Processes	1808 (FontCrtMonitorDllSvcreviewNetsvc.exe)
Type	JPEG 2000 image
MD5	`0413c88d4fbbbc69859a7d0ae4d05828`
SHA1	`97d0814770654712b6076478eb98e55b69d677f3`
SHA256	`be87583bb114b9617eb760da36736ad8a8908c0e00c5cd7928b535f2c8708f70`
CRC32	`944B8AF8`
ssdeep	`3:EgWKFQuDBkf7RxxV/cRQI2Lmy4xyK92ydcmoQCM4SNmLlCvjgIwzJdvf894O6dgK:EgNFnMY6O9VUE8YvcIkJMIT`
Yara	None matched
VirusTotal	Search for analysis

Name	2b612666b8b0664e_ve7wyr01rvanast1gimb.vbe Submit file
Filepath	C:\FontCrtMonitorDllSvc\vE7Wyr01RvAnAST1giMb.vbe
Size	217.0B
Processes	564 (sadexe.exe)
Type	data
MD5	`30249dc0e717ec6b17f006ed1eb9221b`
SHA1	`43ed3498e441f2d3cfb17f234fc5de1c93161eef`
SHA256	`2b612666b8b0664e638d36d591713d8bf2a98fed60a02ffe236b65f1adfac0a9`
CRC32	`0DDE8C1F`
ssdeep	`6:GmvwqK+NkLzWbHa/JUrFnBaORbM5nC+D3tFK+XPA2xaOs:G1MCzWLauhBaORbQC+rtFK+bxk`
Yara	None matched
VirusTotal	Search for analysis

Name	b8d5c301795b7f70_gcy11flh4bc7hvxsu1m.bat Submit file
Filepath	C:\FontCrtMonitorDllSvc\gCY11fLh4bC7HvXSu1m.bat
Size	62.0B
Processes	564 (sadexe.exe)
Type	ASCII text, with no line terminators
MD5	`ce0b278441796215b13a4914369db914`
SHA1	`af815b921fdc983b1036d1ddbd83db8645fe91ff`
SHA256	`b8d5c301795b7f706f695847716bef42036b9c054064fa5fc859949c4cf55a37`
CRC32	`14075BDF`
ssdeep	`3:I52awTG9QRmBwTGkSr0j4AH:IoXGWRFGP0j4AH`
Yara	None matched
VirusTotal	Search for analysis

Name	7d10d846fbea08bc_69ddcba757bf72f7d36c464c71f42baab150b2b9 Submit file
Filepath	C:\Windows\System32\netcorehc\69ddcba757bf72f7d36c464c71f42baab150b2b9
Size	545.0B
Processes	1808 (FontCrtMonitorDllSvcreviewNetsvc.exe)
Type	ASCII text, with very long lines, with no line terminators
MD5	`9c069d4133abd11067f6e9512f0bf6e6`
SHA1	`292a4e18d58f50b43a9425755bbe96331b2a6329`
SHA256	`7d10d846fbea08bc1a4095619beadd7f3106012915fcbd11f7032b4a8c89decd`
CRC32	`E902C3EE`
ssdeep	`12:dNnffqA95fw6jxtgUSUK0sv3ETP6qdPOoOd5dYXTaAes4sNz:dZffk6jxtgUS10svUmqdPad5MTaAes4a`
Yara	None matched
VirusTotal	Search for analysis

Name	a9e0f4172119f9d0_fontcrtmonitordllsvcreviewnetsvc.exe Submit file
Filepath	C:\FontCrtMonitorDllSvc\FontCrtMonitorDllSvcreviewNetsvc.exe
Size	590.0KB
Processes	564 (sadexe.exe)
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`2c315119bccbfc01edcf25428f888343`
SHA1	`d9c0f6659ca70ac3d39b8072cfbfc96d7f00cfd0`
SHA256	`a9e0f4172119f9d033f93ab762b2675eb99584b1c3cf4c3de250a61c66af1617`
CRC32	`8D195E00`
ssdeep	`12288:WqnOgPNU8N7jAKUt2iQqu+6TANC2XOIJihFL6/pTjSGLHlctN:W+OgbjAN2BJKC2XOIJiX+/Oz`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description) OS_Processor_Check_Zero - OS Processor Check Is_DotNET_EXE - (no description) Malicious_Packer_Zero - Malicious Packer Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
VirusTotal	Search for analysis

Name	ca15f05f112c918a_886983d96e3d3e31032c679b2d4ea91b6c05afef Submit file
Filepath	C:\Windows\System32\api-ms-win-core-util-l1-1-0\886983d96e3d3e31032c679b2d4ea91b6c05afef
Size	80.0B
Processes	1808 (FontCrtMonitorDllSvcreviewNetsvc.exe)
Type	ASCII text, with no line terminators
MD5	`f1b818f5dd4f0d51e56a2ea70ba97d69`
SHA1	`a2750a970e64213d5c4ff4abd8c52feea339377a`
SHA256	`ca15f05f112c918aa7363f4256d0256b1195d14655befe616ea6ec38c2c77b17`
CRC32	`0A4E5E57`
ssdeep	`3:irsdcV+dz1SE2IIdrUU0hRif7S+pn:TdJdxGIIRUdif77p`
Yara	None matched
VirusTotal	Search for analysis

Name	256bde2c6db1fc52_e8aa3d0a77e909b354881c464e4c4a775ddb75b2 Submit file
Filepath	C:\Windows\System32\aclui\e8aa3d0a77e909b354881c464e4c4a775ddb75b2
Size	987.0B
Processes	1808 (FontCrtMonitorDllSvcreviewNetsvc.exe)
Type	ASCII text, with very long lines, with no line terminators
MD5	`17ea0f5cdbdf42f99518a629f46e719d`
SHA1	`e6242d2df868c035a2f42361a9b7df124ea25510`
SHA256	`256bde2c6db1fc5210291159b8a40cddf59f5ca15fafce70c221830b5e652dd8`
CRC32	`68FEDC8F`
ssdeep	`24:YUqetxD8LXh5ds/76CUgnmFKUO+gJMGM/JidyjYxYbl:YuX4LRvY763gmFKj+gJMeysxYZ`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14___tmp_rar_sfx_access_check_26954953 Empty file or file not found
Filepath	C:\FontCrtMonitorDllSvc\__tmp_rar_sfx_access_check_26954953
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	4ac7e923ebe85f64_758212d383505bcb2047553ad1d70e6d83d4ec56 Submit file
Filepath	C:\Program Files\7-Zip\Lang\758212d383505bcb2047553ad1d70e6d83d4ec56
Size	497.0B
Processes	1808 (FontCrtMonitorDllSvcreviewNetsvc.exe)
Type	ASCII text, with very long lines, with no line terminators
MD5	`e73d8ab346a090df7f32c5aed4c5a141`
SHA1	`3862875b14c364158041c81e39dc27f6a12f3dcc`
SHA256	`4ac7e923ebe85f648d037d2b23e7aef476e174099c2c93d5d82c2a5ef5eff4bd`
CRC32	`0C4D7BC2`
ssdeep	`6:lC+S3cwp/pztzQwLVv3f1wOT5G+/Qv08YvreWFyBp7XHISiWXccve6H8JeyTYsEp:k5nzQwLVv3fBGT7WIBpraWvvVcJeblJT`
Yara	None matched
VirusTotal	Search for analysis