Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Files | ZeroBOX

Name	b0f0ad62ef69cce3_disdiplomatize.ove Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Templates\Strygende\ridered\Aftest\Nonaphasiac\Hornsman\Disdiplomatize.ove
Size	5.8KB
Processes	1696 (Regasm.exe)
Type	data
MD5	`5e6e924b68b51e9dcad6239b52a3d854`
SHA1	`49491150c566b36dd79085db48139b2f9ba8e1a2`
SHA256	`b0f0ad62ef69cce3385cb8e5349bbd477b951a94ad8f985fd1ba4ee87e5958f1`
CRC32	`39B94274`
ssdeep	`96:56WMSLa/cKQP/PD8e3J8KB1mk9EK33BTflHmXbWGwf5/XEHeXEGyjw9xaL0xxyJ0:56WMqaCP/PDVb1mkuMRTsXuXIGXaYxxV`
Yara	None matched
VirusTotal	Search for analysis

Name	bfebdc3198a49f0b_pampas.sni Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Templates\Strygende\ridered\Aftest\Pampas.sni
Size	4.7KB
Processes	1696 (Regasm.exe)
Type	data
MD5	`6059d4ba84ad4ad4b807161001ee3e23`
SHA1	`80d9f4925981d2d9775088605ff15b71dc277a42`
SHA256	`bfebdc3198a49f0b527ac02e7391afa04bb60797e77797e05dc6b5884b0043e0`
CRC32	`AFA4FEBC`
ssdeep	`96:ijE/HwnhRIlvhUITP7jXHcMt6r9m2OeUacg5dWO90LZve/ndcAHe60ILEsJy:igvwvITPXXSmeUaD9qe/5HoLF`
Yara	None matched
VirusTotal	Search for analysis

Name	e3b0c44298fc1c14_nszCC05.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nszCC05.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	dc5a8f19a35e3eb2_cifferflgen.tes Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Templates\Strygende\ridered\Aftest\Koimesis\Unnumberably\Cifferflgen.Tes
Size	297.3KB
Processes	1696 (Regasm.exe)
Type	data
MD5	`d8b89a453eefc24c885d6d6444c47420`
SHA1	`01a77d39f2121034069119e61a24bfd5fa8f4ee2`
SHA256	`dc5a8f19a35e3eb24069873fd96f2e7024d5e4e3b4b49e1cfdbda4e113213643`
CRC32	`41FD9302`
ssdeep	`6144:o0PnzET0DWKM8ocK/gRmzMfzuf2ycxXdU26rfQD+h5aLns098BwBXxqEpGnJp:oaETjD8hm3odTgbqh98cXxq1p`
Yara	None matched
VirusTotal	Search for analysis

Name	fa4ab1d6f79fd677_system.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\nslCF52.tmp\System.dll
Size	11.0KB
Processes	1696 (Regasm.exe)
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`3f176d1ee13b0d7d6bd92e1c7a0b9bae`
SHA1	`fe582246792774c2c9dd15639ffa0aca90d6fd0b`
SHA256	`fa4ab1d6f79fd677433a31ada7806373a789d34328da46ccb0449bbf347bd73e`
CRC32	`2DB384E1`
ssdeep	`192:OPtkumJX7zB22kGwfy0mtVgkCPOsX1un:/702k5qpdsXQn`
Yara	IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE32 - (no description)
VirusTotal	Search for analysis