Dropped Files | ZeroBOX

Name	e3b0c44298fc1c14_nsy8A4E.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nsy8A4E.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	34098d2abce4a494_j0q977ncnicou Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\j0q977ncnicou
Size	286.0KB
Processes	2288 (vbc.exe)
Type	data
MD5	`d1e3583b150b3229648da8bdeef49610`
SHA1	`5c691fb15c10c756285036f33c8d3db2984d07a4`
SHA256	`34098d2abce4a494446b0d0f5b3c700bbdb90f4553850173b4d80061e9ebcd2c`
CRC32	`2BAD1E9D`
ssdeep	`6144:pWjWQQ1iBm7hnb3xzIqDMab++s4JLVvWheLDO3Ad8T2:psVQMYhnDxz31ZLtWheLDT8q`
Yara	None matched
VirusTotal	Search for analysis

Name	9b13a3ea948a1071_hosts Submit file
Filepath	C:\Windows\System32\drivers\etc\hosts
Size	835.0B
Processes	2388 (vbc.exe)
Type	ASCII text, with CRLF line terminators
MD5	`6eb47c1cf858e25486e42440074917f2`
SHA1	`6a63f93a95e1ae831c393a97158c526a4fa0faae`
SHA256	`9b13a3ea948a1071a81787aac1930b89e30df22ce13f8ff751f31b5d83e79ffb`
CRC32	`1C23CE7E`
ssdeep	`24:QWDZh+ragzMZfuMMs1L/JU5fFCkK8T1rTt8:vDZhyoZWM9rU5fFcP`
Yara	None matched
VirusTotal	Search for analysis

Name	64028363a513017f_eptafrhxqyb.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\nsn8A5E.tmp\eptafrhxqyb.dll
Size	86.5KB
Processes	2288 (vbc.exe)
Type	PE32 executable (DLL) (console) Intel 80386, for MS Windows
MD5	`fc83dcded3eb4a0574f2891d92338ad2`
SHA1	`a92c794d4888deed0fbdb7dadfc64268f4fa7854`
SHA256	`64028363a513017f2994bae638d33db9302c712c89f51dc30f9c9b9f1ef4562d`
CRC32	`14FBEFE7`
ssdeep	`1536:O+4WpXg+rjhFxoGmeqx7lDTnncIbUfsPFGkKHBCC:ic/h3yxxTntDF/K0`
Yara	PE_Header_Zero - PE File Signature OS_Processor_Check_Zero - OS Processor Check IsPE32 - (no description) IsDLL - (no description) Malicious_Library_Zero - Malicious_Library UPX_Zero - UPX packed file
VirusTotal	Search for analysis