Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.19 07:11
4f3200e5324a333579e06e...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 02:11
Potwierdzenie.exe
11.19 02:11
cheet.exe
11.19 02:11
chelentano.exe
11.19 02:11
12.exe
11.19 02:11
caspol.exe
11.19 02:11
gambinho.exe
11.19 02:11
Getdp.exe

Latest News
11.19 08:11
Hornetsecurity elevate...
11.19 08:11
German Defense Chief S...
11.19 08:11
Indian News Agency Sue...
11.19 08:11
Ukraine Warns India Th...
11.19 08:11
New 'Helldown' Ransomw...
11.19 07:11
Scammer Black Friday o...
11.19 07:11
How Stealer Logs Targe...
11.19 07:11
ICE Can Already Sidest...
11.19 07:11
US to Fund Chip ‘Digit...
11.19 07:11
[UPDATE] [kritisch] VM...

Dropped Files | ZeroBOX

Name	17eff7fd9881f1a1_qdgwzmfifwf.dms Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\qdgwzmfifwf.dms
Size	5.7KB
Processes	1696 (vbc.exe)
Type	data
MD5	`2829e9ed4729c6c9bfd7f9ad6467586b`
SHA1	`c16059adf9104e01a047e15f5c6b9e6496124095`
SHA256	`17eff7fd9881f1a1d2ff7104ae557d2558ad36ebe2385d1add8f8f06de6ac9f6`
CRC32	`ABE2F413`
ssdeep	`96:Farc6oYAg/DrYuZk2XO5oSwQowFJJ1l7KnvGADqM8dGixXIf/3AVWmPX:FarcRIhhX1S1owFzT7KzmddkvNmPX`
Yara	None matched
VirusTotal	Search for analysis

Name	83a6f901aeccffb8_chcgyjvdydh.vc Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\chcgyjvdydh.vc
Size	124.1KB
Processes	1696 (vbc.exe)
Type	data
MD5	`4d118e9ffd1ea04be7bef51a526b7b74`
SHA1	`bb46a536c3d182202c5758c9615f69962363bb9e`
SHA256	`83a6f901aeccffb8921e01624d919c1b85ab0e720de7f10a221a6ed65c459bf9`
CRC32	`54663C75`
ssdeep	`3072:jsDTZvZB2QSU+vml+xBAinZ1r0V2+4IHMv3dkRG8a:jm9WQxDinZ1r0V2+4IHMv3dGGv`
Yara	None matched
VirusTotal	Search for analysis

Name	6b86b273ff34fce1_6D6F4D.lck Submit file
Filepath	C:\Users\test22\AppData\Roaming\41D896\6D6F4D.lck
Size	1.0B
Processes	2128 (niykwqwb.exe)
Type	very short file (no magic)
MD5	`c4ca4238a0b923820dcc509a6f75849b`
SHA1	`356a192b7913b04c54574d18c28d46e6395428ab`
SHA256	`6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b`
CRC32	`83DCEFB7`
ssdeep	`3:U:U`
Yara	None matched
VirusTotal	Search for analysis

Name	b0b8141941cabda7_6d6f4d.exe Submit file
Filepath	c:\users\test22\appdata\roaming\41d896\6d6f4d.exe
Size	54.0KB
Processes	1696 (vbc.exe) 2128 (niykwqwb.exe)
Type	PE32 executable (console) Intel 80386, for MS Windows
MD5	`573316bf5cd6598af5e0c16b056c3b49`
SHA1	`34367238838df0c19883f96b92bbb01154318cb4`
SHA256	`b0b8141941cabda7f6e22c0f6ff729360fab2d488ec7354448ea5ad42ca14f6b`
CRC32	`3DA6EAB1`
ssdeep	`768:DqoLhCal2TeEzJ0O0fpqHxGMHbYipYEQdlSoxfhVEHWyUNKvW6y3Bfaa:DgeEzJD0p3xUHVby0`
Yara	UPX_Zero - UPX packed file Malicious_Library_Zero - Malicious_Library OS_Processor_Check_Zero - OS Processor Check IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nsuBCF2.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nsuBCF2.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis