popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 5866d67ba4682505_77tor.bat
Submit file
Filepath C:\jdksfhoisg\77tor.bat
Size 464.0B
Processes 808 (zcomue.com)
Type ASCII text, with CRLF line terminators
MD5 644533b9b7bd619e077be2096d503304
SHA1 ca39a87ab57f0ad0d05ca6e7b3786df90c93ac48
SHA256 5866d67ba4682505d1ece3efad271acb210f876e22f25571f026321fbfa3e4ab
CRC32 05512690
ssdeep 6:k4JlhFIvEpQ4USYkfhFoza8yP4Z4dCGOWlyTWly8RcrhFIv1cmnhFw/04LvKmnhH:fJFXs9a8kCZWkWNKV/BXn/fSWv
Yara None matched
VirusTotal Search for analysis
Name 51a1faa834e0f27d_397598.vbs
Submit file
Filepath C:\jdksfhoisg\397598.vbs
Size 82.0B
Processes 1136 (downloadmanager.exe)
Type ASCII text, with CRLF line terminators
MD5 21d20075ba212fafef818c61b67db90a
SHA1 04faa7b281ab8ad58d7857f6049858849a76075f
SHA256 51a1faa834e0f27ddfecfc13a568ae3a5c348d030aade2721f314bfbdef4ea12
CRC32 841916FF
ssdeep 3:jaPFEm8nByK2qQBgULYHLj5gW9n:j6NqEK21gUMHKW9n
Yara None matched
VirusTotal Search for analysis
Name 91d9e6e6d9a40515_siszeko.exe
Submit file
Filepath C:\jdksfhoisg\SISZEKO.exe
Size 1.1MB
Processes 808 (zcomue.com)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 d92fb0d5568982c0f300733a76f29b41
SHA1 13a5f87264a68acde78930aaca2d941a14b67c2f
SHA256 91d9e6e6d9a405155a3fab7d6966f3f201f304c46b919a01ef595aafa3a91004
CRC32 731CA89C
ssdeep 24576:HVFdaqmdnMZu3/zY7JL8CN2TMG+i8D68aTQQVeuJPnQFFF:HfaBVVJn
Yara
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • Win32_Trojan_Emotet_2_Zero - Win32 Trojan Emotet
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name e3b0c44298fc1c14___tmp_rar_sfx_access_check_32956000
Empty file or file not found
Filepath C:\jdksfhoisg\__tmp_rar_sfx_access_check_32956000
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 34dfe4869b0a524c_zcomue.com
Submit file
Filepath C:\jdksfhoisg\zcomue.com
Size 551.7KB
Processes 1136 (downloadmanager.exe)
Type PE32 executable (console) Intel 80386, for MS Windows
MD5 061f64173293969577916832be29b90d
SHA1 b05b80385de20463a80b6c9c39bd1d53123aab9b
SHA256 34dfe4869b0a524c63cc4696fafe30c83a22dc5fe4b994b9fe777f2c986733ce
CRC32 AF21EEA8
ssdeep 6144:lEFCsTIKlyUvQLPSvsN6UeLrfeH9Kv526R7mO/ak/QXcBgWxJiT40/abdBZAuO8U:SsDKl7omvhpr10Oj3xgTh/arNnaGcF
Yara
  • PE_Header_Zero - PE File Signature
  • OS_Processor_Check_Zero - OS Processor Check
  • Malicious_Library_Zero - Malicious_Library
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name c6ef15145fa3290c_88e.vbs
Submit file
Filepath C:\jdksfhoisg\88e.vbs
Size 100.0B
Processes 808 (zcomue.com)
Type ASCII text, with CRLF line terminators
MD5 e6d44cf02cb52f96ce6f21089ef4e6a4
SHA1 5e567fbdc5550ac5955f8fe03e2683a46588858b
SHA256 c6ef15145fa3290ce9747b0560d13ff52fde06a56983b204fcd78ad053d9b6ba
CRC32 CB928B1F
ssdeep 3:jaPFEm8nhwvyGqQBGnhFqaj5gW9n:j6NqhTG1GnhFgW9n
Yara None matched
VirusTotal Search for analysis
Name dc4be8eba55c27ef_dfshg.rar
Submit file
Filepath C:\jdksfhoisg\dfshg.rar
Size 352.2KB
Processes 1136 (downloadmanager.exe) 1644 (cmd.exe)
Type RAR archive data, flags: EncryptedBlockHeader
MD5 f9354c4551436324fd9c47c5db35c95e
SHA1 d09bab3d7bcefa562064f66f6dbd34ea13dab1ac
SHA256 dc4be8eba55c27ef0167a2c57215c9cbc54384167d2cb0b1a78fc9ba1a4e1ca1
CRC32 A39ADA8A
ssdeep 6144:MLgzkUrkdAmoQ8ceOoQCplRCZxscwRZnZ0lxmJ/BKhBM261g4tJOLXcG1DP7epy:MkzkUxmHSOoQsHCkcwTZ0lwxBKhYJSXr
Yara None matched
VirusTotal Search for analysis
Name 5711b9d7ab1c49cf_vut1.bat
Submit file
Filepath C:\jdksfhoisg\vut1.bat
Size 286.0B
Processes 1136 (downloadmanager.exe) 1644 (cmd.exe)
Type ASCII text, with CRLF line terminators
MD5 732820ce2c36e8ec494da5d0969d90ac
SHA1 6f1c64d7e7c51d9fbdf2c2a0bd1032af23c68461
SHA256 5711b9d7ab1c49cf55479497dc9118fdb3e7812b2d319e3eae16ada941874e76
CRC32 6FAE2750
ssdeep 6:pKuoT8fKvT4hlqV2K0DcFqq65L8j/2vvE12WC4iBsFk9MHyXv:poBv0hc9FGSuJW/1KMSXv
Yara None matched
VirusTotal Search for analysis