popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 6d8abf32db588e3b_diversityCourtby.js
Submit file
Filepath C:\ProgramData\diversityCourtby.js
Size 200.0KB
Type ASCII text, with very long lines, with CRLF line terminators
MD5 f1ff2b591247ec783db79f060c7df292
SHA1 65f244bd5aefa0255c47f7627f672282fdf1d12d
SHA256 6d8abf32db588e3b6fcefe4f2b6628fcd16b074eb7c04f3fb0b03618a9672c25
CRC32 B299BC84
ssdeep 3072:Kf7n1Er4l1qDvatIVFcWwblWrj6/ns5JoDXn0Pns:Kf7nDDqDvatIVifQJorKs
Yara None matched
VirusTotal Search for analysis
Name a9220271c0eb79e5_d93f411851d7c929.customDestinations-ms~RFa6f19c.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RFa6f19c.TMP
Size 7.8KB
Type data
MD5 b0c9ff441742f3847ea27da9dee7f2cd
SHA1 c42a1eb32ba953a0ce5d8635caabf71b5b281495
SHA256 a9220271c0eb79e5750e0d0e62058ecac560e09cdf9e82ef61aeeabada5d48a4
CRC32 0BBCAB1A
ssdeep 96:RutuCOGCPDXBqvsqvJCwo+utuCOGCPDXBqvsEHyqvJCworSP7Hwxf2lUVul:UtvXoxtvbHnorrxQ
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name b6a409de91396f7a_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2740 (powershell.exe)
Type data
MD5 a101d5b5bc30119c75e67c09a3282c35
SHA1 634682b04977c891aa486c9d17ff151a4edf826a
SHA256 b6a409de91396f7a2d42615e38a6d7d7dc5251875ee63ec7ac8c1e65645d31cb
CRC32 5268B8BF
ssdeep 96:8tuCeGCPDXBqvsqvJCwoZtuCeGCPDXBqvsEHyqvJCworSP7Hwxf2lUVul:8tvXoZtvbHnorrxQ
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis