popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 42f616907ea3f713_micros.bat
Submit file
Filepath C:\Users\Public\micros.bat
Size 201.0B
Processes 2192 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 3a7740fee6713b3879faca49d6649892
SHA1 fd3a855aaa462d15fa1172197334278eafa7d740
SHA256 42f616907ea3f7132767782115982e3118797660d5f9e4d76d6b498b0b514636
CRC32 40A9351C
ssdeep 6:EU3KlvR9bGnIvWWqII1R3KbQO0cvfp1aHVA4mQ24Nivy:v2v7SnIOWXI1kbQpcvfirmQ/ia
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis
Name 6a89c930b0fbfb0e_micros.vbs
Submit file
Filepath C:\Users\Public\micros.vbs
Size 688.0B
Processes 2192 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 ae374fc6b2c3c069c4dbc882139bec40
SHA1 c410d6377ed31d763c8eff9e69e7d9c7908f6324
SHA256 6a89c930b0fbfb0e1fcb441a76cdc7df77edcf06bee3e2e3aa82684b3ecefc8a
CRC32 E6A28F2F
ssdeep 12:VtAFNUupNO4gLM9Zdt4c0hI1O9ZgT3MBdx9Z+/SpR9TzFdWNc5RNey/Spn:/AYupw42cDT3MP4/QvMmRNZ/6
Yara None matched
VirusTotal Search for analysis
Name a9b1dc8eaa5fcd00_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2192 (powershell.exe)
Type data
MD5 c1d8708bab1e838a2deda26d58bb8d42
SHA1 95d39e75a804752961c139bb6c0b67f84f685035
SHA256 a9b1dc8eaa5fcd0034694cf9742ae915a5932142a1477c3ab6fada45d98750b2
CRC32 E71AF2A2
ssdeep 96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworFS7HwxWlUVul:QtbXoFtbbHnor/xo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis