Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Files | ZeroBOX

Name	85e0215615480bb4_affdende.smk Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Forlbent\Folkloristisk\Dagtemperaturerne\Refrnsangernes\affdende.smk
Size	1.9KB
Processes	1156 (winBx.exe)
Type	data
MD5	`010204627a7c812e15efe8ab5f010508`
SHA1	`a1d00692fd2c5df71e43879a6f6f4059d0cfe977`
SHA256	`85e0215615480bb4f1dfdb4369be4d06bcddcf264c41f4d7e229ec92909aeec3`
CRC32	`2E2ABAD1`
ssdeep	`48:0C1FZUbqn0HI+hoak0ZwOdKIyDYlkFUTBumd2/6tCq72:0C3wqoooZLy32e6tr2`
Yara	None matched
VirusTotal	Search for analysis

Name	6fcea34c8666b063_system.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\nseC2D0.tmp\System.dll
Size	11.5KB
Processes	1156 (winBx.exe)
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`fccff8cb7a1067e23fd2e2b63971a8e1`
SHA1	`30e2a9e137c1223a78a0f7b0bf96a1c361976d91`
SHA256	`6fcea34c8666b06368379c6c402b5321202c11b00889401c743fb96c516c679e`
CRC32	`7D939E74`
ssdeep	`192:xPtkiQJr7V9r3HcU17S8g1w5xzWxy6j2V7i77blbTc4v:g7VpNo8gmOyRsVc4`
Yara	IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis

Name	f79b7c5ca47cb311_wha.rea Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Wha.Rea
Size	240.7KB
Processes	1156 (winBx.exe)
Type	data
MD5	`627eef7fc9b3ba94b21230c402220c79`
SHA1	`74cb586f3027437e6e931b3c59d09aebf2f12487`
SHA256	`f79b7c5ca47cb3117a9e8469bb8523a83c96fb3a7d2fb42260e2a0b0e57b358f`
CRC32	`2AA33054`
ssdeep	`6144:OYbjB1Rm4wQZOhqO55smPnbXxXCsKEhR/X2gZvLIL:OYbj9dyhxSsKi/XxZTIL`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nsdC1E3.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nsdC1E3.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	e893bd00790aebc8_morgenfruernes.teg Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Forlbent\Folkloristisk\Dagtemperaturerne\Refrnsangernes\morgenfruernes.teg
Size	1.5KB
Processes	1156 (winBx.exe)
Type	SysEx File -
MD5	`320af237c2a9edd914dd130d4a50b52e`
SHA1	`49b94e85dfe9c248f7486fc973f7cd6e650ee79d`
SHA256	`e893bd00790aebc8d1d10d0850ed4298e21326458c9a07f7409af9fcecb498c0`
CRC32	`C95B12B7`
ssdeep	`24:rqEdqGHC2MnI92MeINQkMe3lrcud0GIJ/y3ODu6jECYo+Jq2a7jiXdhUUC:r/dHirlMeICkBl+J/y3aVtH+o20jiwUC`
Yara	None matched
VirusTotal	Search for analysis