popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 8b9f4f24880286ff_Sexology.~!!!!!!!!!!!!!!!!~
Submit file
Filepath C:\ProgramData\TUKHAMTASSER\Sexology.~!!!!!!!!!!!!!!!!~
Size 6.6MB
Processes 2676 (powershell.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 c162dd2ada4684026d0a0a18acc7a334
SHA1 56fc9432fdb05d5a05290e3ca3b5b006e988e971
SHA256 8b9f4f24880286ffaaf60c4d1bd3bfc8d6348aba5a91ea91d2d5ecb4fe35c93a
CRC32 06DE74F0
ssdeep 384:FWnPZ/WxrZtbKH8iUumsWn/3sIy/UvIa7pUO820QkeXFfcRK63CPjTOkKJ3wjWvp:KV+pU7n/
Yara None matched
VirusTotal Search for analysis
Name b7c225ef3cc3e875_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2676 (powershell.exe)
Type data
MD5 81ca4510272caf505e8091e9a28cb716
SHA1 71414aeec9f1e4a6f5a461b01700cc9cc992cd9e
SHA256 b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf
CRC32 FC31E90F
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 0b9f41f810ef6352_d9e1c3_337d702a7383407ea927e15f24052b8b.txt.ps1
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\d9e1c3_337d702a7383407ea927e15f24052b8b.txt.ps1
Size 6.6MB
Type ASCII text, with very long lines, with CRLF line terminators
MD5 10c83f5b34882b38cfcde8064af6c34b
SHA1 762ffbf0b8b2de360f856533bab05d1ed7c5c5e8
SHA256 0b9f41f810ef6352e7ecb6441af26f60a43d98a49aeee939a5935fda03380296
CRC32 00195223
ssdeep 384:0WnPZ/WxrZtbKH8iUumsWn/3sIy/UvIa7pUO820QkeXFfcRK63CPjTOkKJ3wjWv0:tV+pU7nS
Yara None matched
VirusTotal Search for analysis
Name 8e5d7826bff2c2c2_kilng.vbs
Submit file
Filepath C:\ProgramData\TUKHAMTASSER\kilng.vbs
Size 255.0B
Processes 2676 (powershell.exe)
Type ASCII text
MD5 8f81b3effafd9936e04c0cae33244524
SHA1 48f32711a8b3f076c038cac161b46c3b96bb56c3
SHA256 8e5d7826bff2c2c294da10043436e223dfb4553ea489966fd20a78fb309ddbfe
CRC32 7D6445F4
ssdeep 6:DQ+FNXoFkn7dKRR9KtSICTYSICrCMGLSLHX0lP3Mk:LFFomnhKRR9iSICT/ICr+LSolP8k
Yara None matched
VirusTotal Search for analysis