Dropped Files | ZeroBOX

Name	fe2323e62cd27afe_yqhbdcj.xpz Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\yqhbdcj.xpz
Size	250.9KB
Processes	1928 (yam.exe)
Type	data
MD5	`d2bb33f13b1e53d6a48fc075e08f9dc7`
SHA1	`efd084cb2d646e4df7afe292bfb3f7415eab6d86`
SHA256	`fe2323e62cd27afe54623e628227249dbc2a169811614a5732245ae4e29c86b2`
CRC32	`F77BC2B3`
ssdeep	`6144:r3CIbJRoDJB9ZErma6kX1VN91fZJa0+YxA+1xS:ryIfoDL9ZWd6S1v/RJ5D1xS`
Yara	None matched
VirusTotal	Search for analysis

Name	f0559545ce329374_xoxytqkz.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\xoxytqkz.exe
Size	53.0KB
Processes	1928 (yam.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`8e74e68cc5af04291381ed0925534e9b`
SHA1	`733c8f3985426e5dde4718f812a26b0a676b76f7`
SHA256	`f0559545ce3293745945fce9b20ece5bc0707b8e7428a420aa702a07e1ed74ac`
CRC32	`62B6AD26`
ssdeep	`768:EA3qcHahTRiq0nDiJDWZEhhFedltgcD1aH/ISMy3T2JwPQ3EDVAnB/C/6q0j:Elqahl0nDiJDl/EdltgH3RjxPkBe0`
Yara	UPX_Zero - UPX packed file Malicious_Library_Zero - Malicious_Library OS_Processor_Check_Zero - OS Processor Check IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	ced7f172e5782fe6_jykio.rz Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\jykio.rz
Size	5.4KB
Processes	1928 (yam.exe)
Type	data
MD5	`a990c62f108c3ba3df634b58dea8f7c4`
SHA1	`5a52975da4095e53e1317795a75fd86034ebfa6f`
SHA256	`ced7f172e5782fe6b5ce02fc845eb7736e8e6fe3cefb07e909700c79576dbb9a`
CRC32	`F229BF3A`
ssdeep	`96:Farc6oYXg/DrYuTk2XO5oSwYf6L99oSL8KHJYWVVscNvpO4LUtnhIgAAj2:FarcRfLhX1S9gDLjpJDrNvpOqUv/j2`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nswC176.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nswC176.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis