popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 1ec868aae3af8b4b_update.vbs
Submit file
Filepath C:\Users\test22\AppData\Roaming\update.vbs
Size 707.0B
Processes 3016 (개인정보유출내역.hwp .exe)
Type ASCII text, with very long lines, with no line terminators
MD5 92de717394d746b8aa97764201a1eff6
SHA1 73aa8f18ec546c8558692ae9cc0fcfcab6cd4fdb
SHA256 1ec868aae3af8b4b9899dedcac504b864e920baa6c075dac5ef102e47cb952f1
CRC32 BAEBD708
ssdeep 12:eJFsF9NuZrATa8YnmwCq0jQNQ0TwK8lx5O4wcQy8I6aYdRjSAkMGyp01oQG5z:OeFGZrAcCqNNQ0TwbnOxvy8If8I5aezs
Yara None matched
VirusTotal Search for analysis
Name 0ed5b0823e71e0e3_590aee7bdd69b59b.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\590aee7bdd69b59b.customdestinations-ms
Size 7.8KB
Processes 2224 (powershell.exe)
Type data
MD5 f4a8a3e56bca0190031a365f104571cf
SHA1 7a4eac7016b8feca961f757cfe05bfeb4b76c10f
SHA256 0ed5b0823e71e0e3262a8a73ff269499135b20c9c5aa71e34b57a9f43218ed41
CRC32 E95A2C69
ssdeep 96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworQStDHXyWlUVul:QtbXoFtbbHnorFTyo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis