popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 0b8607fdf72f3e65_firefoxCookie
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\firefoxCookie
Size 96.0KB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, user version 12, last written using SQLite version 3038003
MD5 d367ddfda80fdcf578726bc3b0bc3e3c
SHA1 23fcd5e4e0e5e296bee7e5224a8404ecd92cf671
SHA256 0b8607fdf72f3e651a2a8b0ac7be171b4cb44909d76bb8d6c47393b8ea3d84a0
CRC32 842B3569
ssdeep 12:DQAwfWk73Fmdmc/OPVJXfPNn43etRRfYR5O8atLqxeYaNcDakMG/lO:DQAwff32mNVpP965Ra8KN0MG/lO
Yara None matched
VirusTotal Search for analysis
Name 5ee454eb05fcbbc0_history
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\history
Size 120.0KB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 64202674f6acaafa94c3390b0cc720b9
SHA1 38c8537feccfaabb095805d290af69272aeb32f1
SHA256 5ee454eb05fcbbc0ac1ff5662ba2be1f22688ddb97d3cc357d4da5cff5b5e5e9
CRC32 3685166F
ssdeep 48:TGjDU66tTKfxNPp+suktLReRK+NaUvdWSZ00LTL0drQHHp7C5fVcS2+VANUXq6uG:BeJQpWSZ00LTL0QCbc0VANPjwQU+
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_firefoxBookmark-wal
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\firefoxBookmark-wal
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 512e4e95427a8c66_cookie
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\cookie
Size 36.0KB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 f4c540f52d5c08d24a79805eda1d7abf
SHA1 22be46826df7693f58736adb232ab2da790f2571
SHA256 512e4e95427a8c66b2993b27bb23d99cdab2ebd6e9e8937c7f6a39ed8c6a5b94
CRC32 95C9FB3A
ssdeep 24:TLmg/5UcJOyTGVZTPaFpEvg3obNmCFk6Uwcc85fB34444z:T5/ecVTgPOpEveoJZFrU1cQB34444z
Yara None matched
VirusTotal Search for analysis
Name 48333e19d57154ba_firefox_qxo5wa6x_default_release_history.csv
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\results\firefox_qxo5wa6x_default_release_history.csv
Size 148.0B
Processes 2776 (dsync.exe)
Type UTF-8 Unicode (with BOM) text
MD5 15587fe61cb744f8d443cccaac6be49b
SHA1 58586c0c9780096f233f4f507fe86efe662c6554
SHA256 48333e19d57154bac048a4ccfdc384f9eeffec09c71242c371819166b59c171d
CRC32 445EE2AB
ssdeep 3:yJyglyLxNcRM7MXnGPHA9lfMJJEJ4rSLvIJiMhKVX3L2WdSCIVJSxUYMfVVvn:yJSLxNce7MXG/CF0EJ4GLciA8dSCIVJ7
Yara None matched
VirusTotal Search for analysis
Name bbc59eb43822e646_password
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\password
Size 18.0KB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 53ea322f91d6f0de8448b68583284d22
SHA1 b6c835867fbf7e432b834f7366eb0407f3eebbfa
SHA256 bbc59eb43822e64660cc4ccbca37d6dc016eaa9b85b2c6f5b40826bb03188b34
CRC32 CA013001
ssdeep 24:LLY10KL7G0TMJHUyyJtmCm0XKY6lOKQAE9V8MffD4fOzeCmly6Uwc6ocW:4z+JH3yJUheCVE9V8MX0PFlNU12W
Yara None matched
VirusTotal Search for analysis
Name 46624f073e86a7ea_firefoxBookmark
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\firefoxBookmark
Size 5.0MB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, user version 69, last written using SQLite version 3036000
MD5 00dded2074fb4596b94fb3ff99d7e360
SHA1 775434944493824fbdca0ba67d2001f86b4ee0cb
SHA256 46624f073e86a7ea5a99aa0847023303a37375e4614f01779afe4b60ac3f7f9b
CRC32 EF4A9BF1
ssdeep 192:ttsqHQnwkYjcoBMc+uK6ik4QtjJz3ig48pp0:ttsbwVTBMc+uK6ikPpJz3E8
Yara None matched
VirusTotal Search for analysis
Name 93ab2478006babcf_chrky
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrky
Size 270.4KB
Processes 2776 (dsync.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 981339fd92f4295e8c9d4b2a6bd93705
SHA1 e3a49ed0d9bf44fefa0acb1bab6d67f917899426
SHA256 93ab2478006babcf249f97d49f9b042290a32b8cf55d960889cf12a6fdfcc7c1
CRC32 692DA9BE
ssdeep 6144:+rbB79wUgbGC8PreI+5zqjYMG1roemrAB:QB7eZGCKJ+5uUMGlkS
Yara
  • NPKI_Zero - File included NPKI
VirusTotal Search for analysis
Name 61862c34d562b184_firefoxkey4
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\firefoxKey4
Size 288.0KB
Processes 2776 (dsync.exe)
Type SQLite 3.x database, last written using SQLite version 3038003
MD5 39c107106df5aec4995782fd43af668c
SHA1 05e4d7c9e42bf61b0f0556ebc30789d92988e9ab
SHA256 61862c34d562b184326fa3e7e52ff323d8f260a856ef453b6a92ea0935eb9a6f
CRC32 E54AA09B
ssdeep 192:dva0zkVmvQhyn+Zoz679fqlQbGhMHPaVAL23vj:d1zkVmvQhyn+Zoz67i
Yara None matched
VirusTotal Search for analysis
Name fd4c9fda9cd3f9ae_firefoxBookmark-shm
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\firefoxBookmark-shm
Size 32.0KB
Type data
MD5 b7c14ec6110fa820ca6b65f5aec85911
SHA1 608eeb7488042453c9ca40f7e1398fc1a270f3f4
SHA256 fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
CRC32 DDC506B6
ssdeep 3:G8lQs2TSlElQs2TtPRp//:G0QjSaQjrpX
Yara None matched
VirusTotal Search for analysis
Name 5bb5a70575a91337_firefox_qxo5wa6x_default_release_bookmark.csv
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\results\firefox_qxo5wa6x_default_release_bookmark.csv
Size 569.0B
Processes 2776 (dsync.exe)
Type UTF-8 Unicode (with BOM) text
MD5 990493ef7adfff48f00b361b756e54ea
SHA1 a539a2e07a235d069aca292f8c2610248790b9ce
SHA256 5bb5a70575a91337b4ed8bce0fbd86b842fb35c64d635a68c30ec3dffe266d61
CRC32 8FB55ABE
ssdeep 12:tygm493sMw14cCb4493szwvaacAhZmKOWcna7VIcz7acKRE2l7Beck:tyqxsMLj1xsakW5Wsa/EkBez
Yara None matched
VirusTotal Search for analysis