Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.19 07:11
4f3200e5324a333579e06e...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 02:11
Potwierdzenie.exe
11.19 02:11
cheet.exe
11.19 02:11
chelentano.exe
11.19 02:11
12.exe
11.19 02:11
caspol.exe
11.19 02:11
gambinho.exe
11.19 02:11
Getdp.exe

Latest News
11.20 02:11
Unraveling Raspberry R...
11.20 02:11
China’s Alibaba Market...
11.20 02:11
Intuit and H&amp;R...
11.20 02:11
Looking at the Interna...
11.20 01:11
The Vecdec Cyberdeck i...
11.20 01:11
Break Up Google? What’...
11.20 01:11
China’s CATL in Early ...
11.20 01:11
Thoma Bravo’s SailPoin...
11.20 01:11
Tiger-Backed Kong Valu...
11.20 01:11
Zscaler launches Zero ...

Dropped Files | ZeroBOX

Name	1b6aac5c86f3a785_jffuhhg.cf Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\jffuhhg.cf
Size	495.6KB
Processes	2576 (vbc.exe)
Type	data
MD5	`cfd62f83c5c64a842377b4a7ed0bf361`
SHA1	`258bb1b2d595a4c4c883ccb42155eac6d2396bdb`
SHA256	`1b6aac5c86f3a785c2e4d9d0e78309b0fb639bee8d38bc256a62ad560a6b3ec5`
CRC32	`E8A65A0C`
ssdeep	`12288:0ag6SkRRBnyWw3y6rcg8dKIpfePkAFhRdidUbR1njcdmpv7O6EeHeUudGyK:M6Z+C6t5MqfE2jG4`
Yara	None matched
VirusTotal	Search for analysis

Name	b56630c15c02abe2_wjjsc.qr Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\wjjsc.qr
Size	5.6KB
Processes	2576 (vbc.exe)
Type	data
MD5	`5a12006fc44dbfb726ad953d81506f86`
SHA1	`93bb5b00b9010cc4844f4693add2877df9147541`
SHA256	`b56630c15c02abe27923f8e30c9ec965a0ab81c1effc98587bbad5fcaa1e8129`
CRC32	`CCFF6425`
ssdeep	`96:Farc6oYi3g/DrYu9HCk2XO5oSwYN1VEmhdD+QvLAMi6a/tA/S4Iw1OlH1l9I:FarcRPQVihX1S9n2IDZvLA/h+/S4Iw1h`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nskEF70.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nskEF70.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	6ff46bde6f6ab139_ilexnnxlng.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\ilexnnxlng.exe
Size	58.5KB
Processes	2576 (vbc.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`f20d1090fc677d43954cc1514f4135ae`
SHA1	`50ba00d3e43e8047fffe271cb215f016aa60fa5b`
SHA256	`6ff46bde6f6ab139c685f220e33230d1c064a6e62f68047f3e97bc8f04727e1e`
CRC32	`912B587C`
ssdeep	`768:vpbnyq696YM4+FJV/dRuDh96ir6VhAkAXuabEoK3r412IGXM5x8dsr:vpbRrYSJV/ToZr6VhhAXj7GnI15is`
Yara	Malicious_Library_Zero - Malicious_Library Malicious_Packer_Zero - Malicious Packer IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	249defebc1d7a61c_logs.dat Submit file
Filepath	C:\ProgramData\remcos\logs.dat
Size	260.0B
Processes	2716 (ilexnnxlng.exe)
Type	data
MD5	`61cdcce8486028da8ac73f2c4db3b2e6`
SHA1	`12ff1e0dac8e908edce511ec98e87094533930c7`
SHA256	`249defebc1d7a61c005565f9be701a0c575464eb7e3115864d106c5ae1f09af3`
CRC32	`3F0337DC`
ssdeep	`6:Kl/lxUlDSQCl55YcIeeDAlOWA4dbJWEogltmgXl1oV:Kl/lS3mhec0WNW+ltZI`
Yara	None matched
VirusTotal	Search for analysis