popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 9a07d5ad7be68e67_opera_package
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202111191103441\opera_package
Size 496.0KB
Processes 2772 (opera.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 a5e285b873cfa4758a4e40ac611a38fd
SHA1 a90b7b961b50da8ed088a9576989f99ef914caa2
SHA256 9a07d5ad7be68e67263f751d9aed8272e1bd9c4ada7735690466c8bd0828628d
CRC32 A833335C
ssdeep 12288:oAHiKgHJggQxpQupsNhq46LAbznRProAL+jYZCYfzyGU7Tm:oACKCgge4r/nRLLS4zeDTm
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name 0473f18de70d36ef_settings.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\Opera Software\Opera Stable\Crash Reports\settings.dat
Size 40.0B
Processes 2828 (opera.exe) 2772 (opera.exe)
Type data
MD5 1fb8eb0cb93733dc362b3a551dea4eb0
SHA1 df3b25adea1870a94eadcc2c1f8b086de96c254e
SHA256 0473f18de70d36ef58a6ff59be654d039f48a2264f462673e3281a0c9e83d138
CRC32 E1F4BFA8
ssdeep 3:FkUaeRBqn:sWBq
Yara None matched
VirusTotal Search for analysis
Name 0248bdeb8aa4bcc9_Opera_installer_2111190203443282988.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Opera_installer_2111190203443282988.dll
Size 3.8MB
Processes 2988 (opera.exe)
Type PE32 executable (DLL) (console) Intel 80386, for MS Windows
MD5 15196ed4850f6dba7ef4912497b8e137
SHA1 bb88f0272eb31e68f4d429568bfeff867de014a5
SHA256 0248bdeb8aa4bcc921e758d9d9fcae4dfe2d46ca12b1680ed41491002251f916
CRC32 48EA9784
ssdeep 98304:g+djiQ3kBUd8tnkBLD6dDFgKRyeyG732Q9jnz8BvJM/uy:vdjf3kBU0nkBLD6dDFgEjnz8Bvamy
Yara
  • Malicious_Packer_Zero - Malicious Packer
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
  • IsPE32 - (no description)
  • Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name 10cb674e71199b01_opera_installer_20211119110344062.log
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\.opera\Opera Installer\opera_installer_20211119110344062.log
Size 9.2KB
Processes 2772 (opera.exe)
Type ASCII text, with very long lines
MD5 5f706677184e1c02769d1412b84783d1
SHA1 4c22610e5be98d8e8a23845f2ff217e0260a963b
SHA256 10cb674e71199b013934399d54aa1967b62a84c9e9af7d819cf8549e244211f5
CRC32 49875EEA
ssdeep 192:94LYiCzQcyCeHhjYgfsjYy/5LUorXKP47NSLTPAQIk:9UiQbLuPs
Yara None matched
VirusTotal Search for analysis
Name 699b94fcc53da790_opera.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\.opera\Opera Installer Temp\opera.exe
Size 2.5MB
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 3c98acf1760cf6c13d4b82e4dc133252
SHA1 e1e721ada48953255b9740cbfd514e2cdb961655
SHA256 699b94fcc53da790da2dad2e68b38b66902f1381af98dc6962e2c6f982d951ba
CRC32 43AC57C3
ssdeep 49152:j7+nSHJ05LnIx//NUdVUhuhpUP278Sg4CyK7Ze1JMeyLy7hkZm:JYI7UdVUhUYIK+yI2Zm
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis