Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.18 02:11
DOCTOR FIRM ORDER FORM...
11.18 09:11
babababa.exe
11.18 09:11
Jagtfalkenes.vbs
11.18 09:11
windows_update.dll
11.18 09:11
nicko.exe
11.18 09:11
GHO%E9%95%9C%E5%83%8F%...
11.18 09:11
stories.exe
11.17 10:11
wwbizsrvs.exe
11.15 01:11
wwbizsrvs.exe
11.15 01:11
op.exe

Latest News
11.18 05:11
Strela: A newcomer in ...
11.18 05:11
A week in security (No...
11.18 05:11
A week in security (No...
11.18 04:11
카페 어니언과 함께하는 2025 코리아브...
11.18 04:11
Singapore Oil Tycoon O...
11.18 04:11
Exploit attempts for u...
11.18 04:11
NSO Group Exploited Wh...
11.18 03:11
대한민국 전통가마 연구소 ‘태고사’ 20...
11.18 03:11
더 청담, '2024 전통문화혁신사업 수...
11.18 03:11
동방이기제작소, '2024 전통문화혁신사...

Dropped Files | ZeroBOX

Name	1b785af91ee0a05d_Visited Links Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Visited Links
Size	128.0KB
Type	data
MD5	`c23dbb817b9e9fb7b942b6d500ac326a`
SHA1	`c983dd1f7561f1cfe6388b4054beed180946f47d`
SHA256	`1b785af91ee0a05d4b3068904cf6e27088bd3bf1db7e5ca8552b168075326aff`
CRC32	`5239DBA0`
ssdeep	`3:ImtVMQt:IiVH`
Yara	None matched
VirusTotal	Search for analysis

Name	5e6510d6f9b52e78_TransportSecurity Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\TransportSecurity
Size	8.0B
Type	ASCII text, with CRLF line terminators
MD5	`b23c1aa4c3df295b96522b37d0e251d7`
SHA1	`89df1bb5005895cc953678ac321d4c64233a3c5f`
SHA256	`5e6510d6f9b52e78be1a51958964211463800e000e3ce278ddec2480e2a405dc`
CRC32	`CA2B588C`
ssdeep	`3:KYovn:Wn`
Yara	None matched
VirusTotal	Search for analysis

Name	325332f1f4128033_00c4aa5a-32b9-47c6-9cf9-1c9878fcc3a1.dmp Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\reports\00c4aa5a-32b9-47c6-9cf9-1c9878fcc3a1.dmp
Size	787.2KB
Processes	2212 (chrome.exe)
Type	Mini DuMP crash report, 10 streams, Mon Apr 24 02:32:27 2023, 0x0 type
MD5	`da279937613ab5eec5f41bfc27a6a60d`
SHA1	`a4ca949e8362a20335aaf49ac2ce10401615e8e9`
SHA256	`325332f1f41280333e5aa964b9a041c3ca6393dd6b22638df92418e61f01a471`
CRC32	`2DB5B399`
ssdeep	`3072:3ovW6wUFf9jjholt9NS+lyRDrzYr9ku7up/ND2tRPJpn/PFhQr2196a6fM6Gs:qXFVjjh6yRDr1aCGs`
Yara	Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	9c9e1ea25d7133a3_settings.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\settings.dat
Size	40.0B
Processes	2212 (chrome.exe) 604 (chrome.exe)
Type	data
MD5	`415d24fe664ed3de2343fb554eb5663d`
SHA1	`315a5d4d7c8e1a2db48a020f56aedc768f56ddbb`
SHA256	`9c9e1ea25d7133a3debe65b0f4fa7e598c009cb4a27d47804da46c70a7e5701b`
CRC32	`238BD2CD`
ssdeep	`3:FkXPY7nk2h3n:+A7kG3n`
Yara	None matched
VirusTotal	Search for analysis

Name	43f82d0de323f722_Google Profile.ico Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Google Profile.ico
Size	172.7KB
Type	MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
MD5	`bb052f9fa80e14c86aa469e480698801`
SHA1	`80ea8be968aab1974083fd309d1f1a7d498cb257`
SHA256	`43f82d0de323f722472e10777c56bd5372958eb461a4bec587a94509fbd1b119`
CRC32	`62FBEB10`
ssdeep	`3072:OfRwKakqK2o3cgDPMSRMi8BaGM9R9KugkE/T:UqKazNmHPMSRMi8BaGM9iBb`
Yara	icon_file_format - icon file format
VirusTotal	Search for analysis

Name	bbc59eb43822e646_Login Data Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Login Data
Size	18.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`53ea322f91d6f0de8448b68583284d22`
SHA1	`b6c835867fbf7e432b834f7366eb0407f3eebbfa`
SHA256	`bbc59eb43822e64660cc4ccbca37d6dc016eaa9b85b2c6f5b40826bb03188b34`
CRC32	`CA013001`
ssdeep	`24:LLY10KL7G0TMJHUyyJtmCm0XKY6lOKQAE9V8MffD4fOzeCmly6Uwc6ocW:4z+JH3yJUheCVE9V8MX0PFlNU12W`
Yara	None matched
VirusTotal	Search for analysis

Name	93ab2478006babcf_Local State Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Local State
Size	270.4KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`981339fd92f4295e8c9d4b2a6bd93705`
SHA1	`e3a49ed0d9bf44fefa0acb1bab6d67f917899426`
SHA256	`93ab2478006babcf249f97d49f9b042290a32b8cf55d960889cf12a6fdfcc7c1`
CRC32	`692DA9BE`
ssdeep	`6144:+rbB79wUgbGC8PreI+5zqjYMG1roemrAB:QB7eZGCKJ+5uUMGlkS`
Yara	NPKI_Zero - File included NPKI
VirusTotal	Search for analysis

Name	a5aa94d7fdf12512_000003.ldb Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\000003.ldb
Size	9.6KB
Type	data
MD5	`049a83aedda05d1691d32b5b93792e0d`
SHA1	`cbc8fc80bb956c04bff8b234bc3b515b4d1110a2`
SHA256	`a5aa94d7fdf125121364691fff502e5bd8893806ebad6e8087ab72e00f28b815`
CRC32	`A76F0E19`
ssdeep	`192:N5fTrtQtsXHKJ9fdP2tMT3qF2EkeH2C27pAO3XNDsxZ3OlKPZP8BW7NCgQru:vxQt8qJvi83q2/rdhqOMBE47wy`
Yara	None matched
VirusTotal	Search for analysis

Name	fab1dc45ffc082be_DevToolsActivePort Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\DevToolsActivePort
Size	60.0B
Processes	604 (chrome.exe) 2824 (321.exe)
Type	ASCII text
MD5	`93886565d5d7c1bd79d09ea5991fd954`
SHA1	`87617be1f2e744bb8b375ec33766809b6a0b4a71`
SHA256	`fab1dc45ffc082be209d5d62fe032c177a4cb2fca2cf69627c186fa58805c4c3`
CRC32	`0F39743A`
ssdeep	`3:WQvK0RKSuybXhfTc5wXHS3dtX:WQS0s5YX5cuXHSL`
Yara	None matched
VirusTotal	Search for analysis

Name	d388c41f4ae7ae2f_Current Session Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Current Session
Size	23.7KB
Type	data
MD5	`47486a9f1673149ce403da55d2ae7c87`
SHA1	`6488171d9434d02a8ab6e193dde415e40ed50d4f`
SHA256	`d388c41f4ae7ae2f9d0b1a3db3b310143c4910a04f76d309761536a09989f4ff`
CRC32	`FD7CCFD1`
ssdeep	`384:creie0W6ox7HvT7H1vTPzJvT/HxvT0vTIvTPHxvTpvTt210r0aYS4K7pBOE4G:ced6kbb7Vb7Jb/Rb0bIbPRbpbt210r0i`
Yara	None matched
VirusTotal	Search for analysis

Name	03a4a12ced130408_debug.log Submit file
Filepath	C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size	272.0B
Processes	2212 (chrome.exe)
Type	ASCII text
MD5	`14f00394b8408a2c1f3f7b29dd66ffd5`
SHA1	`68389d62cfd9cdf00e7545ca44fed1d754037a6e`
SHA256	`03a4a12ced1304085a4cea726359347c687d80f438ae88274c14248380222ce6`
CRC32	`53D3DC98`
ssdeep	`6:qcUmSlNoqYlrERU4LGGmm3V4v8RfERU4LGGmm3V4vF:nyyqYloRU4LGBm3V6AsRU4LGBm3V6F`
Yara	None matched
VirusTotal	Search for analysis

Name	e708be5e34097c8b_History Provider Cache Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\History Provider Cache
Size	6.0B
Type	data
MD5	`a9851aa4c3c8af2d1bd8834201b2ba51`
SHA1	`fa95986f7ebfac4aab3b261d3ed0a21b142e91fc`
SHA256	`e708be5e34097c8b4b6ecb50ead7705843d0dc4b0779b95ef57073d80f36c191`
CRC32	`89582EE3`
ssdeep	`3:lg9l:69l`
Yara	None matched
VirusTotal	Search for analysis

Name	bc3090e2d45bc038_QuotaManager Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\QuotaManager
Size	52.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`5e041be2c22d7261f60ab116f894b611`
SHA1	`44fabacbdddafafebe9f40b3c96953ffacefe74e`
SHA256	`bc3090e2d45bc03863eed36c5bcd70214fd3a75280543e1cf510c22e7a57fbfc`
CRC32	`80D0A370`
ssdeep	`48:TueLbCIG+6bDdsDaKgJgKtHIm50I9a+U1cVB:3CIG+6bDdsDaBJvtHIm50I4sX`
Yara	None matched
VirusTotal	Search for analysis

Name	512e4e95427a8c66_Cookies Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Cookies
Size	36.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`f4c540f52d5c08d24a79805eda1d7abf`
SHA1	`22be46826df7693f58736adb232ab2da790f2571`
SHA256	`512e4e95427a8c66b2993b27bb23d99cdab2ebd6e9e8937c7f6a39ed8c6a5b94`
CRC32	`95C9FB3A`
ssdeep	`24:TLmg/5UcJOyTGVZTPaFpEvg3obNmCFk6Uwcc85fB34444z:T5/ecVTgPOpEveoJZFrU1cQB34444z`
Yara	None matched
VirusTotal	Search for analysis

Name	c52c8e71179a8fbd_CrashpadMetrics-active.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\CrashpadMetrics-active.pma
Size	1.0MB
Type	data
MD5	`6fcf85bb744c90f434f8e77d359dd00c`
SHA1	`26755b437dc4b3ce7dbd26b56cd02c481ade41c6`
SHA256	`c52c8e71179a8fbd88359a8894eb514f9ffd5400ad46a94bd175872662bcd970`
CRC32	`F425FE9B`
ssdeep	`12:bHixXAVMMOKEKSCemJKlkQPdl/JG89Hy3aJ0oMFgigpCbUyqpYJ0X:bYQOMzBS+Mk0/JvWoMeigp1yyYW`
Yara	None matched
VirusTotal	Search for analysis

Name	7552d0e93835f175_321.exe Submit file
Filepath	C:\Windows\Temp\321.exe
Size	2.6MB
Processes	2536 (127.exe)
Type	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
MD5	`47c54f4d2e5d43a3b90830d5c27ade32`
SHA1	`b8f72d440dbeab5eaa108273b3c2c4a10a4bd275`
SHA256	`7552d0e93835f175c6122cfa29c61528d7d2caa5397d57be6da377bf883277b4`
CRC32	`DB6B0661`
ssdeep	`49152:DsdCPmFFCf1kIqGAxaqjqADaakdN5x1qxzBmoMCg9No1BCvfR44YWlDEnpyAOSxA:DsdC+FIZieA+FX1qm6wfR4+gyAZ2p`
Yara	themida_packer - themida packer IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	f43e81bd9d710109_Safe Browsing Cookies Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Safe Browsing Cookies
Size	28.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`d478ce90aca9aa48dca15da2894ca2a7`
SHA1	`585d064e49780cd258b60fc886df6d735783698b`
SHA256	`f43e81bd9d71010955598796a24f9d834fc9884c4f97812a742a415de29202ca`
CRC32	`619B1FFA`
ssdeep	`24:TLag/5UcJOyTGVZTPaFpEvg3obNmCFk6Uwcc85fBM:Td/ecVTgPOpEveoJZFrU1cQB`
Yara	None matched
VirusTotal	Search for analysis

Name	e1b77550222c2451_Network Persistent State Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Network Persistent State
Size	61.0B
Type	ASCII text, with no line terminators
MD5	`4df4574bfbb7e0b0bc56c2c9b12b6c47`
SHA1	`81efcbd3e3da8221444a21f45305af6fa4b71907`
SHA256	`e1b77550222c2451772c958e44026abe518a2c8766862f331765788ddd196377`
CRC32	`BB5F26DA`
ssdeep	`3:YLb9N+eAXRfHDH2LSL:YHpoeSL`
Yara	None matched
VirusTotal	Search for analysis

Name	5ee454eb05fcbbc0_History Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\History
Size	120.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`64202674f6acaafa94c3390b0cc720b9`
SHA1	`38c8537feccfaabb095805d290af69272aeb32f1`
SHA256	`5ee454eb05fcbbc0ac1ff5662ba2be1f22688ddb97d3cc357d4da5cff5b5e5e9`
CRC32	`3685166F`
ssdeep	`48:TGjDU66tTKfxNPp+suktLReRK+NaUvdWSZ00LTL0drQHHp7C5fVcS2+VANUXq6uG:BeJQpWSZ00LTL0QCbc0VANPjwQU+`
Yara	None matched
VirusTotal	Search for analysis

Name	439d8da1af452a7a_Secure Preferences Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Secure Preferences
Size	34.1KB
Type	UTF-8 Unicode text, with very long lines, with no line terminators
MD5	`72f37b3ba9b35ee5ecb1b0ae14309e1e`
SHA1	`6bdeaaee9519f8f2e102ed79f76a94601b6e7515`
SHA256	`439d8da1af452a7a1e54d8b115645ae1628f53b94e36b904eea399ee727f603d`
CRC32	`EDC99A05`
ssdeep	`768:gaYRdUQm7LHLOL7vM1kXqKf/pUZNCgVLH2HfCr6Rj0nu6/opli:gRmprOLjAn4u`
Yara	None matched
VirusTotal	Search for analysis

Name	efff895cec775dfd_chrome_debug.log Submit file
Filepath	C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\chrome_debug.log
Size	87.0B
Processes	604 (chrome.exe)
Type	ASCII text
MD5	`fccb7e2d55158cad53e5da1052f04538`
SHA1	`37de89197d695a3b747d02c479f5f2d3166c5baa`
SHA256	`efff895cec775dfd4f1d246d7bd07d701e0444f2842698de4267fad6cfae6480`
CRC32	`7ECF3FCC`
ssdeep	`3:qRps333XQXX32vr7yagKAF8vqRb:q83Xs3Or+aPAyCb`
Yara	None matched
VirusTotal	Search for analysis

Name	c45acbf7157dec93_MANIFEST-000001 Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\MANIFEST-000001
Size	197.0B
Type	PGP\011Secret Key -
MD5	`03974a6eaaa0ec8298cfdf3ec26e7272`
SHA1	`dcf865e3eef99b8ea300a3472fc2fc56ab56ce20`
SHA256	`c45acbf7157dec933054bcab7b15bcacab8aa5b554356777474a2dcdb9bef2bd`
CRC32	`19AE6B22`
ssdeep	`3:scoBAIxQRDKIVjdtnOYdkUyRuWOKjb9vktaXM/RuWOKjb9+WLxDll/ll:scoBY7jdtnrguK5lM/uK7Blt/`
Yara	None matched
VirusTotal	Search for analysis

Name	a30ac2dd2a4e6176_Safe Browsing Channel IDs Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Safe Browsing Channel IDs
Size	20.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`ae8a8c5a344664fd0a8059e3c74eba15`
SHA1	`ca417d2c4d06cbcff38e3f4a13ba33e409d797c4`
SHA256	`a30ac2dd2a4e61761959d9898e5dbdff7ef251382af94bc59002bdbe605a39b9`
CRC32	`2FD7B10E`
ssdeep	`24:TLy3vkA1Glr6UwccK5fBmCH22ZA2HLEQAeA:Te3M1IU1cCBTH22y24eA`
Yara	None matched
VirusTotal	Search for analysis

Name	643bbadc47b5b919_LOG Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\LOG
Size	182.0B
Type	ASCII text
MD5	`bfd20afad62dca091902c2988722104d`
SHA1	`28e4d97e0b8153301d6b6ce8a0fe8d2ebbc785b8`
SHA256	`643bbadc47b5b91974d4f0c172cbd6d946562068690a950564031836c7c40c70`
CRC32	`C75C3819`
ssdeep	`3:tXmCI13BWMLKqFOMPHIrscWIV//UtXaV7CI139FIFz1Zm3vFHO7CI135FQFWMLxu:UCI1J+qTVIFUtqV7CI19F4ZZmfA7CI11`
Yara	None matched
VirusTotal	Search for analysis

Name	5a3ec8851acd1bb6_CrashpadMetrics.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\CrashpadMetrics.pma
Size	1.0MB
Type	data
MD5	`aea7ffdba870ea9d59d542f890fecc8c`
SHA1	`2efe83750eebdfacc148d376cc4edfdf8e5d2ac9`
SHA256	`5a3ec8851acd1bb62d270e9bdca9625da9f34df69ef39608bc2ce3de68960056`
CRC32	`CB7B9D10`
ssdeep	`12:bHiZXAVMMOKEKSCemJKlkQPdl/JG89Hy3aJ0oMFgigpCbUycIXuYJ05:bwQOMzBS+Mk0/JvWoMeigp1y5eYW`
Yara	None matched
VirusTotal	Search for analysis

Name	d8dd31d0e9143574_Origin Bound Certs Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Origin Bound Certs
Size	20.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`9efa338a15d99d483854e316bc0ead9f`
SHA1	`88633f6faeff30564e1f7828167f27255f761b2d`
SHA256	`d8dd31d0e9143574615f2f2dde71f156fd9da29c5fe5495c1f0c79199b0b5fc4`
CRC32	`27C65DFD`
ssdeep	`12:TLzIJvcg38AbbDJZYlo0FxOUwa5qguS60hZ75fOSu0MM:TL8JvkA1Glr6UwccK5fBlMM`
Yara	None matched
VirusTotal	Search for analysis

Name	697fe1a8880b069b_settings.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Crashpad\settings.dat
Size	40.0B
Processes	1404 (chrome.exe) 604 (chrome.exe) 2824 (321.exe)
Type	data
MD5	`c355f155f14bb016d6c5c38ead0e4f7c`
SHA1	`6c23218296d362f05db88a8b66e0ec9dcf2bf3ec`
SHA256	`697fe1a8880b069b063e2d0cd426e079b3f774e447d675fab231894e418b500a`
CRC32	`E7C3C0C2`
ssdeep	`3:FkXONekm:+ON2`
Yara	None matched
VirusTotal	Search for analysis

Name	4688c3772915de73_11.exe Submit file
Filepath	C:\Windows\Temp\11.exe
Size	3.7MB
Processes	2536 (127.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`477ec246fc7e6d5c3524bcd5180d8df9`
SHA1	`b1aec74d3a24f93790b06fc4ffddbbacb50917ab`
SHA256	`4688c3772915de73d9a7b6a8b60b7f788cb3bd06ac8e34409046453bffcbc6c9`
CRC32	`56286745`
ssdeep	`98304:59fPFmzbhLRabFMCJkp+oy9YQbmiwt00oK:5NPJRMCJaQCn0S`
Yara	Is_DotNET_EXE - (no description) themida_packer - themida packer IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	8e4409c295d5d4c4_Top Sites Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Top Sites
Size	20.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`4edae749380266d92ffe2747e5a6cedf`
SHA1	`6c913a74d5a4ffa8cb7fbbff633df80359187b86`
SHA256	`8e4409c295d5d4c4fd8fe8439b422845467ae39a513a3df8d0b3d9a51b487de5`
CRC32	`6EF75FD8`
ssdeep	`12:TLiNNLO4rOTLSOEfnreNEFxOUwa5qguKoiZ75fOS:TLi7G9MreNE6UwccKom5fB`
Yara	None matched
VirusTotal	Search for analysis

Name	b7c225ef3cc3e875_d93f411851d7c929.customDestinations-ms~RF942ee0.TMP Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RF942ee0.TMP
Size	7.8KB
Processes	2236 (powershell.exe) 1852 (powershell.exe)
Type	data
MD5	`81ca4510272caf505e8091e9a28cb716`
SHA1	`71414aeec9f1e4a6f5a461b01700cc9cc992cd9e`
SHA256	`b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf`
CRC32	`FC31E90F`
ssdeep	`96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY`
Yara	Antivirus - Contains references to security software Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	817f4787ab03c437_chrome_shutdown_ms.txt Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\chrome_shutdown_ms.txt
Size	4.0B
Type	ASCII text, with no line terminators
MD5	`274583a65fe6b9b9874eb891eb0acf17`
SHA1	`19c068ea4adbdf7bfe8729c603dcf8ba9249dac5`
SHA256	`817f4787ab03c4377decd864c064ec156a0b3f5dffdc70795908d37a81a556bb`
CRC32	`BC9CD6FD`
ssdeep	`3:Lin:G`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14___tmp_rar_sfx_access_check_9661250 Empty file or file not found
Filepath	C:\Windows\Temp\__tmp_rar_sfx_access_check_9661250
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	5118ffeade756671_Preferences Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Preferences
Size	128.9KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`485cd0b3a5ed24391a7cd356ed1a523c`
SHA1	`61e6653b31ad4c2c38036288be399718d6d18c4b`
SHA256	`5118ffeade75667125768ef2d02f80e1010d18145cbea3f0648e3654027ff8c3`
CRC32	`E196AF1A`
ssdeep	`3072:HBHso1TDqLEbJ7gKcqwHcwvbBEe0TQpUBvZ8HyeSj/n1TTesW:hHso1vpMKobSnQpUByUven`
Yara	None matched
VirusTotal	Search for analysis

Name	ff1131971b1c5984_Shortcuts Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Shortcuts
Size	20.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`472633dc5c905cc364f7cb9d52327889`
SHA1	`b61c75ba0078d320c502c13859a2d47341af768a`
SHA256	`ff1131971b1c5984380d1b4b9ddcb83f31765a8509d0cef6c52e4ecdf4bd519d`
CRC32	`0EEBC7DE`
ssdeep	`12:TLKgjFUxOUDaaTUMukMVcIWGhTEBzEXx7AA+vsme5qgufTsnv1fO0:TLNUO3MZYPhTgY5+vsme5cov1fl`
Yara	None matched
VirusTotal	Search for analysis

Name	429b14ffeea15786_LOG.old Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\LOG.old
Size	182.0B
Type	ASCII text
MD5	`6cf5af937b577221f3c5920ced5199b8`
SHA1	`73d1a5a39ed2c711f689f95463a25248b8e8c633`
SHA256	`429b14ffeea1578675191fce61a605a87bacc35155c14cf25da546e9da14773f`
CRC32	`CCFFA41E`
ssdeep	`3:tVOI4Sfd/qKKqFOMPHIrscWIV//UtXg64SfgUQNZZm3vFFZ4Sf2A0Kx7JPHOd79r:OwOqTVIFUtwFNZZmf9J2v`
Yara	None matched
VirusTotal	Search for analysis

Name	120e7818400689a5_Favicons Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Favicons
Size	36.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`ae41696bba2464491ace82938a14b81c`
SHA1	`380afe8a8b9bd07ff145012b73deb504392adcbb`
SHA256	`120e7818400689a5a70de5c8186d2dfbb4101697c7daf098628cdc77adec8f82`
CRC32	`1A4F26CA`
ssdeep	`24:LLKThxh0GY/l1rWR1PmCx9fZjsBX+T6UwcEW1fdIoII:6bBmw6fU1ztdIoII`
Yara	None matched
VirusTotal	Search for analysis

Name	9a8ea0e2df7554c5_Web Data Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Web Data
Size	72.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`0539a773e44d21a84fd97fee0dffd4a3`
SHA1	`5904058c20aad54c552edc57826babd36ab61149`
SHA256	`9a8ea0e2df7554c57fb4ee6a8a12782f5a2474a3e4c23dc61e4768631dc4eb9f`
CRC32	`964BC0B2`
ssdeep	`96:P0CWo3dOOctAYyY9MsH738Hsa/NTIdE8uKIaPdUDFBlrrVY/qBOnx4yWTJereWbY:PXt769TYndTJMb3j0`
Yara	None matched
VirusTotal	Search for analysis

Name	bdf8c4f0906e7b9d_Current Tabs Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Current Tabs
Size	3.5KB
Type	data
MD5	`68cae66d1af167d7902bd4e2827ea4b7`
SHA1	`e3bc5935732358c3120c01312927045289da26eb`
SHA256	`bdf8c4f0906e7b9d08601f97019a7c69b846476889bf1ffa8acb1c9d8a19b0c8`
CRC32	`DF4908D1`
ssdeep	`48:3VUFC4CX9IgoChb8mwDOqaSF+o2eNGBQekdr6m:3VmCZ9lPIN1F7qk1`
Yara	None matched
VirusTotal	Search for analysis

Name	f2938c892b596605_000004.log Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\000004.log
Size	42.3KB
Type	data
MD5	`80dc3f97cb3b2d4aa95603d7a177fd13`
SHA1	`aba94a39600ff0a950af7f9c27382030b76e02a7`
SHA256	`f2938c892b5966059da9dd7336b1f197f93d8514b65c5bc076ffce877ff5ad4f`
CRC32	`93B92A1B`
ssdeep	`768:W4egjjHeMhc4eEVKaIW2b5I8S3YfK1IbCE5UXp2RFRK:C69OEVKaIW2b57S3YfK1IbCE5UXgRFRK`
Yara	None matched
VirusTotal	Search for analysis

Name	2daeb1f36095b44b_BrowserMetrics-spare.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\BrowserMetrics-spare.pma
Size	8.0MB
Type	data
MD5	`96995b58d4cbf6aaa9041b4f00c7f6ae`
SHA1	`5fde1cce603e6566d20da811c9c8bcccb044d4ae`
SHA256	`2daeb1f36095b44b318410b3f4e8b5d989dcc7bb023d1426c492dab0a3053e74`
CRC32	`1AD2BC45`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	0f1bad70c7bd1e0a_CURRENT Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Local Storage\leveldb\CURRENT
Size	16.0B
Type	ASCII text
MD5	`46295cac801e5d4857d09837238a6394`
SHA1	`44e0fa1b517dbf802b18faf0785eeea6ac51594b`
SHA256	`0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443`
CRC32	`90EA72BE`
ssdeep	`3:1sjgWIV//Uv:1qIFUv`
Yara	None matched
VirusTotal	Search for analysis

Name	643217552611c621_Translate Ranker Model Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Translate Ranker Model
Size	2.5KB
Type	data
MD5	`dae493c882b80985d98ef1dc1eb12c76`
SHA1	`35f944267b1d38011684be55a0b2da5f25e5d080`
SHA256	`643217552611c621bb185d9ed53b952b622ec9055b350ce8fc22ba5e1386bfcd`
CRC32	`8C1267E4`
ssdeep	`48:WVV0xTnaJWv2DqdFvc2q0+KSKdief5f+QdWWkDYKcoNKA653GT7omK0xEa6hIh4K:WVQTASrpFNRxf1AWkDrdb653GnomK0GO`
Yara	None matched
VirusTotal	Search for analysis

Name	f7c1df5e971f4d32_previews_opt_out.db Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\previews_opt_out.db
Size	16.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`5efbdaa65a57fbb52f7e2edf584c1dcc`
SHA1	`ffdb68f2d477a346a2788926db18ce742c5c9600`
SHA256	`f7c1df5e971f4d32fdbc2be5940058a07e3db77b84f2a4294755d1c7a95f8d4a`
CRC32	`131EB874`
ssdeep	`12:TLCIwaBg9LBgVDBgQjiZBgKuFtuQkMbmgcVAzO5kMCgGUg5O+:TLBdBgtBgJBgQjiZS53uQFE27MCgGZs+`
Yara	None matched
VirusTotal	Search for analysis

Name	855ee21d08c17958_Network Action Predictor Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User DataUYQOJ\Default\Network Action Predictor
Size	80.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`8e58ea2e0a31eb70413a986fcdb84c2d`
SHA1	`a6cea9b8501660c5647e24dd3a595d2316844629`
SHA256	`855ee21d08c17958d9d052fdd2f122f5b710400f0b9af99f74b5c9463e4b0a23`
CRC32	`DD942DA1`
ssdeep	`48:TGrV/wAtihXde9uP/LkeXB4LgqL42WOT/fuF:IwAohXdsI/wYu5nWOK`
Yara	None matched
VirusTotal	Search for analysis

Name	4d9f63bf0983aacd_123.exe Submit file
Filepath	C:\Windows\Temp\123.exe
Size	1.9MB
Processes	2536 (127.exe)
Type	PE32 executable (console) Intel 80386, for MS Windows
MD5	`622fe0de6f1b38be6a94bfb1d14252a8`
SHA1	`c825295d3c74e9adf4a1573d55f918c40d2df15a`
SHA256	`4d9f63bf0983aacdbbd73872bfa1487e9884e178cc6cda59c746bf17b463c393`
CRC32	`BACBBB49`
ssdeep	`24576:t2868Xe5bbWh45ilO5JpF240uDnTZMV3buqF:t2868Xe5bV5iI5J/240u7TZMV3b7`
Yara	UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check IsPE32 - (no description) PE_Header_Zero - PE File Signature Malicious_Library_Zero - Malicious_Library
VirusTotal	Search for analysis

Name	870273b9b71faa10_metadata Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\metadata
Size	114.0B
Processes	2212 (chrome.exe)
Type	data
MD5	`ecfc5de610922823e7236e746176a7c4`
SHA1	`02d26ee5f5733b9e2ed20eb5dbf8024656009e1a`
SHA256	`870273b9b71faa10b9b38379345bca713b42572bafb05807489286d3c7ccefd1`
CRC32	`B545A36D`
ssdeep	`3:mTll+XlhcjFtkllJ/ll/nletRIWXcIs3WMMo:mTlEhktk/ZAtuvIs3WMT`
Yara	None matched
VirusTotal	Search for analysis