Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
05.06 10:05
ffDGGG.exe
05.06 10:05
XZCCWW.exe
05.06 10:05
XZCZFS222.exe
05.06 10:05
33b3c11f-c100-44f9-bb0...
05.06 10:05
BAG.exe
05.06 10:05
1d76a373-3471-4db1-81c...
05.06 09:05
e4318be9-2f87-40fb-8a9...
05.06 09:05
55a528fb-2e94-4bc7-bfc...
05.06 09:05
ra02W4S.exe
05.06 09:05
93dfb2fb-60f8-4ee8-8c7...

Latest News
05.07 01:05
Swedish Podcast Conglo...
05.07 01:05
Recently Disclosed Sur...
05.07 01:05
BTS #49 - The Hidden R...
05.07 01:05
MIWIC25: Stephanie Iti...
05.07 01:05
Hackers Exploit Samsun...
05.07 01:05
Campagna di phishing S...
05.07 01:05
AI agents to transform...
05.07 01:05
AI Brings Play-by-Play...
05.07 01:05
Brian Armstrong’s Huma...
05.07 12:05
삼성 MagicINFO(매직인포)CVE-...

Dropped Files | ZeroBOX

Name	55dc48e9b0471350_ejlibvt.x Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\ejlibvt.x
Size	8.0KB
Processes	1696 (ostaj2.1.exe)
Type	data
MD5	`511637745f2cd794724a275fba9c39a1`
SHA1	`9afa2bcdf746160cf6a8f8dd4a6f941e9da6313d`
SHA256	`55dc48e9b0471350885ab6636c68b2870b3c0a6d05fc88453381d1b20a37f21e`
CRC32	`972BEDDB`
ssdeep	`192:darcitQvArWiPvYQb9pmuh+IOPhtyyxWBcLTLDf0v63LtNI7ypzV:uCYrNPvYCezPhty0WuLDc6JNI7q`
Yara	None matched
VirusTotal	Search for analysis

Name	ed5f71edcd297159_okktdyyhqq.exe Submit file
Filepath	C:\Users\test22\AppData\Roaming\wwgclluqqajjf\okktdyyhqq.exe
Size	153.9KB
Processes	1696 (ostaj2.1.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5	`c544c36f9031c1c13c9444edc245f55f`
SHA1	`b1612c0b6e8ad7fcfd8bf44fdbeb08e88ac52b57`
SHA256	`ed5f71edcd297159229c6f8eb7894d5df258826136a6631f9107381da63f678b`
CRC32	`C28C6D8C`
ssdeep	`3072:XfY/TU9fE9PEtu6Vbhf/zEGFdZAONTd27zqAtzyD7oGY2XAn62twE13dh:PYa6ghBFH16XqAZyoB2ebn13n`
Yara	UPX_Zero - UPX packed file NSIS_Installer - Null Soft Installer IsPE32 - (no description) PE_Header_Zero - PE File Signature Malicious_Library_Zero - Malicious_Library
VirusTotal	Search for analysis

Name	2f723a0d2623062f_graaj.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\nsbBF65.tmp\graaj.dll
Size	12.5KB
Processes	1696 (ostaj2.1.exe)
Type	PE32 executable (DLL) (native) Intel 80386, for MS Windows
MD5	`efcaa4781922783ffdda3336fe6336f9`
SHA1	`20917d68b0cd5cdc11230617c193c423d4bb90ee`
SHA256	`2f723a0d2623062f009f74fe6395caa45345b3bf274ffcdffd766c019deb1bd9`
CRC32	`8EFD93CA`
ssdeep	`192:rQWDl74xLyLyTeWxL2SETZrip4pYgH06tSzGZQKWVAzNT+g:kWyxLyLyB+ZUQ3ZdWAU`
Yara	IsDLL - (no description) IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nswBF44.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nswBF44.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	635523cb176c4b93_hjimyfgtw.igq Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\hjimyfgtw.igq
Size	118.3KB
Processes	1696 (ostaj2.1.exe)
Type	data
MD5	`b0d6317bb5b2a509b218408e0435e84c`
SHA1	`39ddbfb81e26e7b3286c6e557e7226c96cef654e`
SHA256	`635523cb176c4b93d0a3e78987673520282ff8f2121f2503b5485f1d01929a03`
CRC32	`3309B506`
ssdeep	`3072:HOMkX8DeZDxLlvw9jUsBOE8kQMQymtSYy6lZD:48DgD/vw1/BOv/ZFy6PD`
Yara	None matched
VirusTotal	Search for analysis