popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 03601415885fd5d8_content.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\content.js
Size 3.8KB
Processes 1516 (handdiy_6.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 c31f14d9b1b840e4b9c851cbe843fc8f
SHA1 205e3a99dc6c0af0e2f4450ebaa49ebde8e76bb4
SHA256 03601415885fd5d8967c407f7320d53f4c9ca2ec33bbe767d73a1589c5e36c54
CRC32 4766228E
ssdeep 96:D4nKOglavznz/ZWfJovNBOl2Vp2NFRWnBVp2NFRWKhU:knMl+zZWxqNBCXKY3U
Yara None matched
VirusTotal Search for analysis
Name 3bf87c0db1e93993_secure preferences
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Size 35.1KB
Processes 1516 (handdiy_6.exe)
Type UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5 3da6c44447221d654f555772a7e79f94
SHA1 3e7f8e8217e156e502cdddff046b08c2addd406f
SHA256 3bf87c0db1e93993391a8a6c67e6d789f271b80d36e3edf7ecf930039f4249c2
CRC32 21F210EB
ssdeep 768:laJRugQcIL4ALZLlfV1kXqKf/pUZNCgVLH2HfLrUdRp8XnC2q/ogl3:iR1abZL5nSnPo
Yara None matched
VirusTotal Search for analysis
Name 0b8607fdf72f3e65_cookies.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\cookies.sqlite
Size 96.0KB
Type SQLite 3.x database, user version 12, last written using SQLite version 3038003
MD5 d367ddfda80fdcf578726bc3b0bc3e3c
SHA1 23fcd5e4e0e5e296bee7e5224a8404ecd92cf671
SHA256 0b8607fdf72f3e651a2a8b0ac7be171b4cb44909d76bb8d6c47393b8ea3d84a0
CRC32 842B3569
ssdeep 12:DQAwfWk73Fmdmc/OPVJXfPNn43etRRfYR5O8atLqxeYaNcDakMG/lO:DQAwff32mNVpP965Ra8KN0MG/lO
Yara None matched
VirusTotal Search for analysis
Name 160a426ff2894252_jquery-3.3.1.min.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\jquery-3.3.1.min.js
Size 84.9KB
Processes 1516 (handdiy_6.exe)
Type ASCII text, with very long lines
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
CRC32 609A5B84
ssdeep 1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69
Yara None matched
VirusTotal Search for analysis
Name edc0b3791fec9024_debug.log
Submit file
Filepath C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size 290.0B
Processes 2732 (chrome.exe)
Type ASCII text
MD5 747a14463c636d948e9d745fe9884f7b
SHA1 1d61dbcf69d77004b1369870a37d4cc588d01233
SHA256 edc0b3791fec90243af5b34d7bec229df1ff53903888eb8b6b0b6b277a129e7c
CRC32 BDAB6A7D
ssdeep 6:qS448TCGGDLeX/WcaHJWf8RU4LGGFw3V4v8JHJERU4LGGFw3V4vF:OJOOWcwWf8RU4LG6w3V6gERU4LG6w3VO
Yara None matched
VirusTotal Search for analysis
Name 824fae3331b95e2f_18137703.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\18137703.dat
Size 40.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 41c19a9e8541fcb934c13c075bf47721
SHA1 648a7622d533d79b9a0bb31dc370134ec3a75ed7
SHA256 824fae3331b95e2f88ca60c87a6c9569086906ec76fc1db8d6dee9adddc4e80c
CRC32 560F7642
ssdeep 48:+35TqYzDGF/8LKBwUf9KfWfkMUEilGc7xBM6vu3f+fmyJqhU:Ulce7mlcwilGc7Ha3f+u
Yara None matched
VirusTotal Search for analysis
Name 90e7bfdb1fb71147_metadata
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\metadata
Size 114.0B
Processes 2732 (chrome.exe)
Type data
MD5 c8b8faf6bf5c29da506b92995f2a799a
SHA1 8a024382c0b99a8bf62b7c26a766121c3b33edb4
SHA256 90e7bfdb1fb71147d23a163d0bc7994ced669f263b8eb27578846135cf8c192a
CRC32 BF32F00A
ssdeep 3:mTll+XlqwF5l8+/l0llnl6LEngthBuln:mTlEqiln0ELEgXYn
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_cookies.sqlite-wal
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\cookies.sqlite-wal
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name fc7e184beeda61bf_aes.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\aes.js
Size 13.0KB
Processes 1516 (handdiy_6.exe)
Type ASCII text, with very long lines
MD5 4ff108e4584780dce15d610c142c3e62
SHA1 77e4519962e2f6a9fc93342137dbb31c33b76b04
SHA256 fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a
CRC32 7FCBF36E
ssdeep 192:9pQGDuD690MPdz8Ui015ll1I57I2Tru6h0hNmHV+m9eIfyAqYfinNVYEUUFJZmUY:9OiT0wz8Uiw/1S7DegkcHpeIuScZbAX
Yara None matched
VirusTotal Search for analysis
Name fd4c9fda9cd3f9ae_cookies.sqlite-shm
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\cookies.sqlite-shm
Size 32.0KB
Type data
MD5 b7c14ec6110fa820ca6b65f5aec85911
SHA1 608eeb7488042453c9ca40f7e1398fc1a270f3f4
SHA256 fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
CRC32 DDC506B6
ssdeep 3:G8lQs2TSlElQs2TtPRp//:G0QjSaQjrpX
Yara None matched
VirusTotal Search for analysis
Name 282308ebc3702c44_pad-nopadding.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\pad-nopadding.js
Size 268.0B
Processes 1516 (handdiy_6.exe)
Type ASCII text
MD5 0f26002ee3b4b4440e5949a969ea7503
SHA1 31fc518828fe4894e8077ec5686dce7b1ed281d7
SHA256 282308ebc3702c44129438f8299839ca4d392a0a09fdf0737f08ef1e4aff937d
CRC32 17D655FD
ssdeep 6:UonrLqmcxXDFXBkamjSPuNhsrIe2tKGXfGZwn:UoqmcZD5mamSw9tKGXfGqn
Yara None matched
VirusTotal Search for analysis
Name 40cfea52dbc50a8a_icon.png
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\icon.png
Size 6.8KB
Processes 1516 (handdiy_6.exe)
Type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
MD5 362695f3dd9c02c83039898198484188
SHA1 85dcacc66a106feca7a94a42fc43e08c806a0322
SHA256 40cfea52dbc50a8a5c250c63d825dcaad3f76e9588f474b3e035b587c912f4ca
CRC32 B48A019A
ssdeep 192:+Ux65UF6vFM2Wx8DJCyt5hDeW98wcE587tBq28g7:Mq0tVWx8IyzhDeW98rE587X5
Yara
  • PNG_Format_Zero - PNG Format
VirusTotal Search for analysis
Name 0e3dc4ccd259716b_settings.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
Size 40.0B
Processes 2680 (chrome.exe)
Type data
MD5 62325aa04f35880232330f344df8018c
SHA1 58fe9532ee8d96e8d12448408cf3ccf9d0542543
SHA256 0e3dc4ccd259716b24376fddb4ee07a6c227f8bcb2532a7dd75bb36a4290e7cc
CRC32 6F0BEA7C
ssdeep 3:FkXJRYcTUM:+wcTb
Yara None matched
VirusTotal Search for analysis
Name a1064146f622fe68_background.html
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\background.html
Size 786.0B
Processes 1516 (handdiy_6.exe)
Type HTML document, ASCII text
MD5 9ffe618d587a0685d80e9f8bb7d89d39
SHA1 8e9cae42c911027aafae56f9b1a16eb8dd7a739c
SHA256 a1064146f622fe68b94cd65a0e8f273b583449fbacfd6fd75fec1eaaf2ec8d6e
CRC32 DCC24689
ssdeep 24:OCXspY0w5LYKJ8oRpOFQxaVxtNVxHVxiaPNVxi1gV4T:tcpo9YoRpOE4tZTNhgT
Yara None matched
VirusTotal Search for analysis
Name 591491b41bf832ff_background.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\background.js
Size 20.1KB
Processes 1516 (handdiy_6.exe)
Type UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5 bba6dd45076f33e8a7b2f94f6a06022d
SHA1 1022b71552c932a91d7ab3ad287b3c3c2ca39c28
SHA256 591491b41bf832ffc49894dc9dd4ee50b89f24f9cd96d067decdca5265d9cb7d
CRC32 B1CCD5CD
ssdeep 384:oGSDvxqMJk+IlhJBYuISRPWqS+xyu1VTEIVe52g3rOZG:oGyvc6k+IlhJBYuISRPWqS+xyu1VWOG
Yara
  • anti_vm_detect - Possibly employs anti-virtualization techniques
VirusTotal Search for analysis
Name 03164b1ac43853fe_mode-ecb.js
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\js\mode-ecb.js
Size 604.0B
Processes 1516 (handdiy_6.exe)
Type ASCII text
MD5 23231681d1c6f85fa32e725d6d63b19b
SHA1 f69315530b49ac743b0e012652a3a5efaed94f17
SHA256 03164b1ac43853fecdbf988ce900016fb174cf65b03e41c0a9a7bf3a95e8c26a
CRC32 6744B21E
ssdeep 6:UonrLqmcxXDFXBkamjSPuND5Z9sE/A6M8IvHosCkV/hqN3+8R+WkV/hqNhAYa83V:UoqmcZD5mamSS5ZpXM8RjNhRfNDlv3V
Yara None matched
VirusTotal Search for analysis
Name b2c7e5cd140b028b_1ff2a31e-0fd2-4401-b65c-73cbeedea8ff.dmp
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\reports\1ff2a31e-0fd2-4401-b65c-73cbeedea8ff.dmp
Size 545.8KB
Processes 2732 (chrome.exe)
Type Mini DuMP crash report, 11 streams, Wed Mar 22 13:27:17 2023, 0x0 type
MD5 e339759e185201514e1993df5a5c2001
SHA1 0321145ee12c76cf4646cef991b2605fe8a2bb66
SHA256 b2c7e5cd140b028b7ffea072ac192378aecfff1fe4247d7d72e63a9935194cdf
CRC32 E6B731F9
ssdeep 3072:GB7FzvzAxoGCwOkEAnO6N9PNsseXvotyexP69e++qpMApsSnam8NdEjkTTY8qGZf:k7h7AAw9Pw/w3TY6ZH
Yara
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name edb006e05cfa8501_18137687.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\18137687.dat
Size 36.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 3f5ca3e29b1b60e298aeca0a32164c03
SHA1 f9b5ee59c31a3b06a6b8e476b22d2d7cf1fa8b66
SHA256 edb006e05cfa85015aa76c758d6298c279fd318cff0dbb286927c7ad45105488
CRC32 E1ACA097
ssdeep 24:TL2C0RlPbXaFpEO5bNmISHdL6UwcOxvo5:TYLOpEO5J/KdGU1Eo5
Yara None matched
VirusTotal Search for analysis
Name 04392a223cc358bc_manifest.json
Submit file
Filepath C:\Program Files\nndannfdnoaiphfcbbpgkhodebpoiocf\manifest.json
Size 1.2KB
Processes 1516 (handdiy_6.exe)
Type ASCII text, with very long lines, with CRLF line terminators
MD5 05bfb082915ee2b59a7f32fa3cc79432
SHA1 c1acd799ae271bcdde50f30082d25af31c1208c3
SHA256 04392a223cc358bc79fcd306504e8e834d6febbff0f3496f2eb8451797d28aa1
CRC32 1518EE18
ssdeep 24:1HgUpRWT0ATbggRDBT4uZWHjKRsccg0b94EUbcUlmxKw/xKFF838z6X1H:RWT20TZWOj0B4EIm5In838z6lH
Yara None matched
VirusTotal Search for analysis