Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Files | ZeroBOX

Name	13e9704f2a318ef8_iotfztu.jqb Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\iotfztu.jqb
Size	8.0KB
Processes	2548 (vbc.exe)
Type	data
MD5	`a701754176f5574cfe8c3c84e92fd61e`
SHA1	`47306de98c97822f5a5d9db83497904a3c32472e`
SHA256	`13e9704f2a318ef868f114a97f6fdb28c08b7450d9d6b2070abf51e130fd99d3`
CRC32	`5E0BD51E`
ssdeep	`192:darcitQvArWiPv4Kb99CxGfZ+98A5CVWOYL5tC8MmLh:uCYrNPv4Mu2g8AAVy+Tm9`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nsrEFAF.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nsrEFAF.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	a6b6161746325c30_swciccqjxeucnn.exe Submit file
Filepath	C:\Users\test22\AppData\Roaming\uvqyuesa\swciccqjxeucnn.exe
Size	253.0KB
Processes	2632 (loignftpo.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`e0ddad93060fb1baf41b6636500a8792`
SHA1	`709fcdeac783b837ee2a063e596c362bae0478e8`
SHA256	`a6b6161746325c30a4aca63489e36db8f37fc9550aa00b62ee203f95c26a6f93`
CRC32	`F38B1652`
ssdeep	`6144:4eQMr6OkeAHYS2FwrkbibMLq70y3Ifos4PLQkSAagi196U51orR:bQuzkeAHYS2Fwrk2Is3IfoT9SMi196Us`
Yara	IsPE32 - (no description) OS_Processor_Check_Zero - OS Processor Check PE_Header_Zero - PE File Signature Malicious_Library_Zero - Malicious_Library UPX_Zero - UPX packed file
VirusTotal	Search for analysis

Name	ac96243d11630081_time_20230126_112458.jpg Submit file
Filepath	C:\Users\test22\AppData\Roaming\Screenshots\time_20230126_112458.jpg
Size	29.3KB
Processes	2708 (loignftpo.exe)
Type	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x768, frames 3
MD5	`cccec1cc097a8ccbca8ddc9df1235264`
SHA1	`3c6044ef9a1b4a3848bf2b6851c618bce7191899`
SHA256	`ac96243d11630081c32d85581933e2a355adcb4cf100c65af51e26fa737c35d8`
CRC32	`5E1962D7`
ssdeep	`384:B7ddUF5VpN4NPpe1Ucp6ygucGD6yocOxUzQYdfPtfq18:BLUF5BecplcGmZx4PtfZ`
Yara	JPEG_Format_Zero - JPEG Format
VirusTotal	Search for analysis

Name	7bcea6b9c6a4b67d_rjuswjk.lc Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\rjuswjk.lc
Size	491.0KB
Processes	2548 (vbc.exe)
Type	data
MD5	`a27fba9a4d83054cafe513142fd7cea0`
SHA1	`6544833389d1048041bab376f5238c57a84d2f85`
SHA256	`7bcea6b9c6a4b67dae8f6dbb0697210085ddc04c263e34defa5dd3fc41548209`
CRC32	`053BCF32`
ssdeep	`12288:YPOP+fUyuqrZ/Sb9pAA0+71P+qOjJqPQJowDOG15kUolP9Edg:YC+s/e+cCP/Oj8MtDOG15kNz`
Yara	None matched
VirusTotal	Search for analysis