Dropped Files | ZeroBOX
Name 85e0215615480bb4_affdende.smk
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Perforeringens\Jelinas\affdende.smk
Size 1.9KB
Processes 1280 (winBx.exe)
Type data
MD5 010204627a7c812e15efe8ab5f010508
SHA1 a1d00692fd2c5df71e43879a6f6f4059d0cfe977
SHA256 85e0215615480bb4f1dfdb4369be4d06bcddcf264c41f4d7e229ec92909aeec3
CRC32 2E2ABAD1
ssdeep 48:0C1FZUbqn0HI+hoak0ZwOdKIyDYlkFUTBumd2/6tCq72:0C3wqoooZLy32e6tr2
Yara None matched
VirusTotal Search for analysis
Name 6fcea34c8666b063_system.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\nshC2B1.tmp\System.dll
Size 11.5KB
Processes 1280 (winBx.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 fccff8cb7a1067e23fd2e2b63971a8e1
SHA1 30e2a9e137c1223a78a0f7b0bf96a1c361976d91
SHA256 6fcea34c8666b06368379c6c402b5321202c11b00889401c743fb96c516c679e
CRC32 7D939E74
ssdeep 192:xPtkiQJr7V9r3HcU17S8g1w5xzWxy6j2V7i77blbTc4v:g7VpNo8gmOyRsVc4
Yara
  • IsDLL - (no description)
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nslC1E3.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nslC1E3.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 05cbda083a47308c_skatteberegnings.eff
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Lighterens\Skatteberegnings.Eff
Size 258.6KB
Processes 1280 (winBx.exe)
Type data
MD5 7525adef16bfcab445165d06d63e739f
SHA1 bfc36b4fea776320c3b291e50470df7debcefa85
SHA256 05cbda083a47308ce9d5c59167d3546d43645fa388d50472d6e1ee6226ec31aa
CRC32 95B7D89E
ssdeep 6144:E86MvZOVrbak6YwApOjwwqlTrIrO08g1GMjhXi+Eoxm:EjMvZDk6YDpOjwLGrAg1GMjPEo8
Yara
  • Malicious_Library_Zero - Malicious_Library
VirusTotal Search for analysis
Name e893bd00790aebc8_morgenfruernes.teg
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\encolors\forbedringens\Perforeringens\Jelinas\morgenfruernes.teg
Size 1.5KB
Processes 1280 (winBx.exe)
Type SysEx File -
MD5 320af237c2a9edd914dd130d4a50b52e
SHA1 49b94e85dfe9c248f7486fc973f7cd6e650ee79d
SHA256 e893bd00790aebc8d1d10d0850ed4298e21326458c9a07f7409af9fcecb498c0
CRC32 C95B12B7
ssdeep 24:rqEdqGHC2MnI92MeINQkMe3lrcud0GIJ/y3ODu6jECYo+Jq2a7jiXdhUUC:r/dHirlMeICkBl+J/y3aVtH+o20jiwUC
Yara None matched
VirusTotal Search for analysis