popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 52ad86b7b1cbb235_tmp48B7.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp48B7.tmp
Size 1.3KB
Processes 2136 (docfile221021.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 c2292f643fdad3d7a0a7b314b72e110f
SHA1 275e2fa25641058f7d6cabf082e8b94e5931d5fa
SHA256 52ad86b7b1cbb23580479c6ed5a50996bd53b73c2e7c36d04664501d2f59cdb3
CRC32 7A5D9705
ssdeep 24:2dH4+S/4oL600QlMhEMjn5pwjVLUYODOLG9RJh7h8gK0ZR5xtn:cbk4oL600QydbQxIYODOLedq3YR5j
Yara None matched
VirusTotal Search for analysis
Name a9220271c0eb79e5_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 1696 (powershell.exe)
Type data
MD5 b0c9ff441742f3847ea27da9dee7f2cd
SHA1 c42a1eb32ba953a0ce5d8635caabf71b5b281495
SHA256 a9220271c0eb79e5750e0d0e62058ecac560e09cdf9e82ef61aeeabada5d48a4
CRC32 0BBCAB1A
ssdeep 96:RutuCOGCPDXBqvsqvJCwo+utuCOGCPDXBqvsEHyqvJCworSP7Hwxf2lUVul:UtvXoxtvbHnorrxQ
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name d71bdabf91e8f988_tmp4636.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp4636.tmp
Size 1.6KB
Processes 2504 (docfile221021.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 b33003a1c5ef3ef25fad7c181d36ab79
SHA1 9862a05c748b6621e76d1e5bb76902bd6162bba5
SHA256 d71bdabf91e8f9887e92a4aba1f23a1b34796fd40a3e0796d967f7fb6765271f
CRC32 9AE78BB3
ssdeep 24:2dH4+SEqCH/7IlNMFQ/rlMhEMjnGpwjpIgUYODOLD9RJh7h8gKBIIBtn:cbhf7IlNQQ/rydbz9I3YODOLNdq3es
Yara None matched
VirusTotal Search for analysis
Name 6d90b21172a7c555_task.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\task.dat
Size 52.0B
Processes 2136 (docfile221021.exe)
Type ASCII text, with no line terminators
MD5 bad96e9f2d2bcac4b707ab2b744436c9
SHA1 2ff4cfca231ec5f1a10960a889f48ae056159028
SHA256 6d90b21172a7c5551d7a6193678e87f0a919c6c6d7a3ccd405732cfdcb1052ac
CRC32 A4EF27D4
ssdeep 3:oNmWxpcL4E2J5xAIXdWULN:oNmQpcLJ23fXkSN
Yara None matched
VirusTotal Search for analysis
Name 039fc34f170cadb6_run.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\run.dat
Size 8.0B
Processes 2136 (docfile221021.exe)
Type Non-ISO extended-ASCII text, with no line terminators
MD5 f02aac859561039dd606f8a859686d3a
SHA1 30eb35dd516f70ea6c93887bffd999f9eadfa865
SHA256 039fc34f170cadb646d2961bf46c8017d8544bfa3ca29a70f0156ae3ad424062
CRC32 3956DB49
ssdeep 3:kP5:kR
Yara None matched
VirusTotal Search for analysis
Name 5347661365e7ad2c_catalog.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\catalog.dat
Size 232.0B
Processes 2136 (docfile221021.exe)
Type data
MD5 32d0aae13696ff7f8af33b2d22451028
SHA1 ef80c4e0db2ae8ef288027c9d3518e6950b583a4
SHA256 5347661365e7ad2c1acc27ab0d150ffa097d9246bb3626fca06989e976e8dd29
CRC32 36FCB1A3
ssdeep 6:X4LDAnybgCFcpJSQwP4d7ZrqJgTFwoaw+9XU4:X4LEnybgCFCtvd7ZrCgpwoaw+Z9
Yara None matched
VirusTotal Search for analysis
Name bb9181b3935b8681_tmp49F1.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmp49F1.tmp
Size 1.3KB
Processes 2136 (docfile221021.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 be81f72fa4dbc827132836ee2af92c96
SHA1 fe5ded04ab4932dea6cf414e9e4428f43da70d03
SHA256 bb9181b3935b8681a71b578f8166883e61380de6181df82d05f14829323fbf0f
CRC32 7AA438E3
ssdeep 24:2dH4+S/4oL600QlMhEMjn5pwjVLUYODOLG9RJh7h8gK0Rb5xtn:cbk4oL600QydbQxIYODOLedq3Sb5j
Yara None matched
VirusTotal Search for analysis