popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 61c5edc73ae1bfe6_run.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\run.dat
Size 8.0B
Processes 2700 (basbcu.exe)
Type data
MD5 265a78e803f096773a963fdd11b9a1a4
SHA1 04a21c39854cdbaeba83b6e08ce3518a39f9056d
SHA256 61c5edc73ae1bfe6479bb2e7d49444143f1762e78873ebfdbd4a8f613d1890e6
CRC32 74161162
ssdeep 3:EM+t:EM+t
Yara None matched
VirusTotal Search for analysis
Name 1fc78e6fafda399b_wfcfg.dty
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\wfcfg.dty
Size 300.9KB
Processes 2556 (febono2.3.exe)
Type data
MD5 f9b191d7c12b329764e637b06e614c7d
SHA1 30942034eb7d31d6bd07962f196ad8c801e5949b
SHA256 1fc78e6fafda399b3d7a21c2b0b9280828b137c691a903d9e86e05d1a90251d9
CRC32 1D25B886
ssdeep 6144:zO1SHMvUImPAcK0R0Wj3DbkYBbBaI/CNr3OoFBnRURd1r/Pgxwl++:y18MvUF20RtLDFpBD09BReX3l++
Yara None matched
VirusTotal Search for analysis
Name 5eacf2974c9bb2c2_storage.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\storage.dat
Size 416.8KB
Processes 2700 (basbcu.exe)
Type data
MD5 963d5e2c9c0008dff05518b47c367a7f
SHA1 c183d601fabbc9ac8fbfa0a0937decc677535e74
SHA256 5eacf2974c9bb2c2e24cdc651c4840dd6f4b76a98f0e85e90279f1dbb2e6f3c0
CRC32 D1596006
ssdeep 12288:zKf137EiDsTjevgA4p0V7njXuWSvdVU7V4OC0Rr:+134i2lp67i5d8+OCg
Yara None matched
VirusTotal Search for analysis
Name d67aa115f20eb1d8_qavfoktpxhd.exe
Submit file
Filepath C:\Users\test22\AppData\Roaming\inwgclh\qavfoktpxhd.exe
Size 140.0KB
Processes 2644 (basbcu.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 5c279bbf8d4a302eaa566b6d3ed943b7
SHA1 9cd0806e2d92d46f867fe9c7efa57f54a016cc89
SHA256 d67aa115f20eb1d852a7936f8c21dbd8bb05fefb50febe87dd8af04a525e37ed
CRC32 A97DC6F7
ssdeep 3072:UmJzYfS9Mme73ZMhVF1pv7m9tVQvIE8Zi:UmJcfSQ3ZM/F1pEmi
Yara
  • IsPE32 - (no description)
  • OS_Processor_Check_Zero - OS Processor Check
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • UPX_Zero - UPX packed file
VirusTotal Search for analysis
Name e55056de38e4a499_ulclkqfxp.jcg
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\ulclkqfxp.jcg
Size 8.0KB
Processes 2556 (febono2.3.exe)
Type data
MD5 0b8103e537698d16ff7c1ed5532038e7
SHA1 4a480dce7a424b6a4dd7e22309ed99f07e7e6a53
SHA256 e55056de38e4a4990d05b4939835d97618ed6e3f20423c9d243a311510eae6ba
CRC32 0A148176
ssdeep 192:darcitQvArWiPvJWb9t36lBJAlkW3wWVWn/31tC8MmLh:uCYrNPvJ4oBWlkcLVOCTm9
Yara None matched
VirusTotal Search for analysis
Name 5347661365e7ad2c_catalog.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\catalog.dat
Size 232.0B
Processes 2700 (basbcu.exe)
Type data
MD5 32d0aae13696ff7f8af33b2d22451028
SHA1 ef80c4e0db2ae8ef288027c9d3518e6950b583a4
SHA256 5347661365e7ad2c1acc27ab0d150ffa097d9246bb3626fca06989e976e8dd29
CRC32 36FCB1A3
ssdeep 6:X4LDAnybgCFcpJSQwP4d7ZrqJgTFwoaw+9XU4:X4LEnybgCFCtvd7ZrCgpwoaw+Z9
Yara None matched
VirusTotal Search for analysis
Name 73b0b92179c61c26_settings.bin
Submit file
Filepath C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\settings.bin
Size 40.0B
Processes 2700 (basbcu.exe)
Type data
MD5 ae0f5e6ce7122af264ec533c6b15a27b
SHA1 1265a495c42eed76cc043d50c60c23297e76cce1
SHA256 73b0b92179c61c26589b47e9732ce418b07edee3860ee5a2a5fb06f3b8aa9b26
CRC32 7C56D530
ssdeep 3:9bzY6oRDMjmPl:RzWDMCd
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nsmEF90.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nsmEF90.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis