popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a2ce3a0fa7d2a833_e0f5c59f9fa661f6f4c50b87fef3a15a
Submit file
Filepath C:\Users\test22\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A
Size 893.0B
Processes 2128 (mshta.exe) 2812 (wscript.exe) 548 (wscript.exe)
Type data
MD5 d4ae187b4574036c2d76b6df8a8c1a30
SHA1 b06f409fa14bab33cbaf4a37811b8740b624d9e5
SHA256 a2ce3a0fa7d2a833d1801e01ec48e35b70d84f3467cc9f8fab370386e13879c7
CRC32 1C31685D
ssdeep 24:hBntmDvKUQQDvKUr7C5fpqp8gPvXHmXvponXux:3ntmD5QQD5XC5RqHHXmXvp++x
Yara None matched
VirusTotal Search for analysis
Name 84945ff6f4a4ca39_userassist.lnk
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\start menu\programs\startup\userassist.lnk
Size 712.0B
Processes 2128 (mshta.exe) 2596 (cmd.exe)
Type MS Windows shortcut, Item id list present, Has Relative path, Has command line arguments, ctime=Sun Dec 31 15:32:08 1600, mtime=Sun Dec 31 15:32:08 1600, atime=Sun Dec 31 15:32:08 1600, length=0, window=hidenormalshowminimized
MD5 51af7cd31f4c6674127d2f47876bf6b3
SHA1 9e02f4fa72cc907d9eb0f550e4674bb1a85ec57c
SHA256 84945ff6f4a4ca39236f7fdbfb489387ccad09c526a1df6690ffd57a8e493021
CRC32 7CE569DA
ssdeep 12:8AlXGC3pQVe/4VfgFDGR2W+feDJL1KDmNz4t2YLEPKzlX8:8ArpQQXF6J+fe5pBPy
Yara
  • Lnk_Format_Zero - LNK Format
VirusTotal Search for analysis
Name fa2e6ec0d5b36e7c_e0f5c59f9fa661f6f4c50b87fef3a15a
Submit file
Filepath C:\Users\test22\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E0F5C59F9FA661F6F4C50B87FEF3A15A
Size 252.0B
Processes 2128 (mshta.exe) 2812 (wscript.exe) 548 (wscript.exe)
Type data
MD5 e46983e72c9377067f7abc6a7edb1e3f
SHA1 8df3fa85abf54920750a8baed9a8a281b3f359b3
SHA256 fa2e6ec0d5b36e7c44a8193c9abb416eb906541ea7bb25dfdc0f2763d57fad18
CRC32 C1E40823
ssdeep 3:kkFkle6stfllXlE/vDkRkzHllPlzRkwWBARLNDU+ZMlKlBkvclcMlVHblB1yAbq+:kKz6s24CLliBAIdQZV7QAuDkl
Yara None matched
VirusTotal Search for analysis
Name 0b9c8953230ebdfb_pdgx.js
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\pdgx.js
Size 2.6KB
Processes 2128 (mshta.exe)
Type Little-endian UTF-16 Unicode text, with CRLF, CR line terminators
MD5 0465f48d3e05ab31c5225b0c5e3e2368
SHA1 71a9bac9a13f9ea82d525bcf8285d1179a0f53e7
SHA256 0b9c8953230ebdfbbf68432cee750737b520224116fd1bca806005d135ec8c26
CRC32 986B6F19
ssdeep 48:XuIKDi7r1nM+kec4JqmjSTOwR5gT/QHMhUjsueOcvv:XuIwWZtkRNZ5gT/QHMseFv
Yara None matched
VirusTotal Search for analysis
Name 28670c38781eaff4_index.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012021080920210810\index.dat
Size 32.0KB
Type Internet Explorer cache file version Ver 5.2
MD5 dab4db5c234d1fcf9cce6a79a79e9471
SHA1 318260afc37bcd681ce1c9ae7dec6daf9c363dff
SHA256 28670c38781eaff42a90916549a394e98f301d5a465f4f68d2cb9452986f769b
CRC32 9ED008A8
ssdeep 24:qjmOT9Dot2EP3fXJq8QoaZwt+njEUbIo:qTdM7/w8QxM+k
Yara None matched
VirusTotal Search for analysis
Name c6c1c3633de6ee27_p1xm4didmkxl3i=[1]
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\P1xM4diDmKxL3I=[1]
Size 4.2KB
Processes 2128 (mshta.exe)
Type HTML document, ASCII text, with very long lines, with CRLF line terminators
MD5 1e594adff06248af479ea9bac022a3d1
SHA1 50570171b39b7c4c7eb8a04c56293fe802dd43c0
SHA256 c6c1c3633de6ee27cc24c2397e993c8ebb57ba67897ddd1acf2ef5ea7a3dd6b6
CRC32 3783852D
ssdeep 96:VjSLRwGl0YVzV1CB/vendSsDkWZ8QSG1FTo3ZI8J:V2LRtLVzV14/m/DrIG1FTn8J
Yara None matched
VirusTotal Search for analysis