Dropped Files | ZeroBOX

Name	18b8f4e34efc4cf8_MSI2D45.tmp Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\MSI2D45.tmp
Size	1.0MB
Processes	612 (msiexec.exe)
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, InstallShield self-extracting archive
MD5	`36f31e281ff0e1e26506e87b758cbedc`
SHA1	`29de677547685a577c07352ecd559106f50c1f95`
SHA256	`18b8f4e34efc4cf8371b54e2f5c982328fe32e7fe273a528a6393b4f35144910`
CRC32	`4FAA964D`
ssdeep	`24576:QUUGGtx7Y7nI+9BjL3Baxy4GZrxSVuFN3jGOuj:jGtd439BnkExNTzGnj`
Yara	UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check Malicious_Library_Zero - Malicious_Library IsDLL - (no description) CAB_file_format - CAB archive file IsPE32 - (no description) PE_Header_Zero - PE File Signature
VirusTotal	Search for analysis

Name	a36bfbfde07daf64_setup.msi Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\setup.msi
Size	2.8MB
Processes	3000 (Adobe.ClientSetup.exe)
Type	Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Default, Author: ScreenConnect Software, Keywords: Default, Comments: Default, Template: Intel;1033, Revision Number: {D68FD41A-84EA-48F8-9A9B-5F99B62A825E}, Create Time/Date: Tue Jun 20 19:28:56 2023, Last Saved Time/Date: Tue Jun 20 19:28:56 2023, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.0.1701), Security: 2
MD5	`d3bdb4ca844eaa0002d581bc7763ac31`
SHA1	`5c90a7ff08607ad4716f09801efd3f105f5cc090`
SHA256	`a36bfbfde07daf640ae1ca50a45def240198145798f782181be03ef0d29b4e56`
CRC32	`8A06B751`
ssdeep	`49152:ZwpPNfOk94dDpt/BgmINJTaz3vb7EqD4dYdJSOGtd439BnkExNTzGns1g:KcXtjBgm2JOrvnSdYdsOGWBnxdGs`
Yara	OS_Processor_Check_Zero - OS Processor Check Malicious_Library_Zero - Malicious_Library CAB_file_format - CAB archive file Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis