Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.20 01:09
setup.exe
09.20 11:09
3uTools.exe
09.20 11:09
66ecb4573225b_vsbhfdg1...
09.20 10:09
66ecb452ba19c_sfbdsgfd...
09.20 10:09
66ecb44c35444_vfdhsgdf...
09.20 10:09
66ec0e61998bf_setup30.exe
09.20 10:09
66ebf725efe38_lyla.exe
09.20 10:09
Desktop_Explorer.exe
09.20 10:09
66ec3528901bb_winupdat...
09.20 10:09
Inquiry-Dubai.js

Latest News
09.20 09:09
Critical Vulnerability...
09.20 09:09
Amazon Fire TV Stick S...
09.20 09:09
[NEU] [mittel] Red Hat...
09.20 09:09
Passwordless AND Keyle...
09.20 09:09
[UPDATE] [mittel] IBM ...
09.20 08:09
Farmers Look to AI-Pow...
09.20 08:09
Microsoft’s AI Power N...
09.20 08:09
Simplify NIS2 complian...
09.20 08:09
COBB Tuning Hit With $...
09.20 08:09
Iranian APT UNC1860 Li...

Dropped Files | ZeroBOX

Name	039830e09e09caca_debug.log Submit file
Filepath	C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size	272.0B
Processes	2108 (chrome.exe)
Type	ASCII text
MD5	`dca1fb02494e6ae0a9a77e0d168e996e`
SHA1	`ba91eaeb4251236eed11bed191ef655fd02fd0b8`
SHA256	`039830e09e09caca69e8375514abdeb175313d3f55c0895451be7879630f887c`
CRC32	`6B5DAD13`
ssdeep	`6:qcUmSlNoqYl2ei2cRU4LGGmm3V4v8ceJ3sRU4LGGmm3V4vF:nyyqYlN5cRU4LGBm3V641sRU4LGBm3VO`
Yara	None matched
VirusTotal	Search for analysis

Name	66982ebd5ebb7563_dplay.lib Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\DPLAY.LIB
Size	35.3KB
Processes	2868 (cscript.exe)
Type	DOS executable (COM)
MD5	`f4b1528911b6cce7abba58d87c3c2c10`
SHA1	`4b99b8d7de07fcf96cc667575bc83dae2449418a`
SHA256	`66982ebd5ebb75633723c7057a1e948ac3aafe3ff808397eb0c55c853c82f9e6`
CRC32	`D07FF485`
ssdeep	`768:yzcIta/9Yq+92DIb6aZ5/VEfdqDhm1n+yTEIDNFxF7Xjjr5i:yw8+Ib6aZ5vm1nNTxvxF7HrQ`
Yara	None matched
VirusTotal	Search for analysis

Name	606e724eb5cbd9a8_89764e1f-463b-4e96-846c-9ed5d71183c2.dmp Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\reports\89764e1f-463b-4e96-846c-9ed5d71183c2.dmp
Size	1.0MB
Processes	2108 (chrome.exe)
Type	Mini DuMP crash report, 10 streams, Fri Sep 8 08:15:59 2023, 0x0 type
MD5	`5744ce5c530ae44d0252bb610b789faf`
SHA1	`99c3fccdb8d4b23bb7fd0259321a4b49f6bf51e1`
SHA256	`606e724eb5cbd9a882c69fe2d84bd5792424b882783f74e549d9ef6ece66407f`
CRC32	`E88760A0`
ssdeep	`6144:0WyL0ut5RW45949KawKCW5SIMF9fELnrL1JMOkaD53:XyS09fEzNJMOke`
Yara	infoStealer_browser_b_Zero - browser info stealer Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	7cacdc84a0d69056_ctfmon.bat Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\ctfmon.bat
Size	76.0B
Processes	2868 (cscript.exe)
Type	ASCII text, with CRLF line terminators
MD5	`eac72dff542f3465320f1ef235754832`
SHA1	`7d6e8ff68fbb442c10d7606da1fe8020a1f733a9`
SHA256	`7cacdc84a0d690564c8471a4f58ab192ef7d9091ab0809933f616010bbf6846a`
CRC32	`EF8C1355`
ssdeep	`3:NNj2cL4ASGDhIM3nfY+y:NNlktGD/3g+y`
Yara	None matched
VirusTotal	Search for analysis

Name	9170a2c1c2fdc2ed_metadata Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\metadata
Size	114.0B
Processes	2108 (chrome.exe)
Type	data
MD5	`e173f4727d9e42e85e0a4722e76b7019`
SHA1	`4edcd607e47e289a4708a293324ff1bd30c7b4c9`
SHA256	`9170a2c1c2fdc2eda0a154bc35d17c785b554ef716a47289db0f920016df1b2b`
CRC32	`54E52EEC`
ssdeep	`3:mTll+XljBl6fL/lnlhRADRfAcTfnEBXW/:mTlEvoR1ifEs`
Yara	None matched
VirusTotal	Search for analysis

Name	9d9a0af09fc9065b_~254134656.js Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\~254134656.js
Size	263.3KB
Type	ASCII text, with very long lines, with no line terminators
MD5	`ecf6bffdc0358525bc2ab7dd7eed6b9e`
SHA1	`4fb249a7fbffeb32a730e2b491b1c5c42a131d73`
SHA256	`9d9a0af09fc9065bacabf1a193cad4386b5e8e5101639e07efa82992b723f3b0`
CRC32	`244375D5`
ssdeep	`6144:et4XBZPUnEDOTLAfO/2XXnJZyRYMIgHyWzfYxg:et4XoOOTuO/2nn6TSkQxg`
Yara	hide_executable_file - Hide executable file
VirusTotal	Search for analysis

Name	a655499c165b3056_account.pdf Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\account.pdf
Size	44.9KB
Processes	2868 (cscript.exe)
Type	PDF document, version 1.4
MD5	`f86f4204b915222382b7f528982e3808`
SHA1	`96471f04d69464b42162d70324a3f08cd9003ac0`
SHA256	`a655499c165b3056370c05e0861a5f6a09db2e581e1461f27ade9c9ca18d2850`
CRC32	`6FEEE90F`
ssdeep	`768:/XstME+OhF3H3LOCdUCzwHKJM0557QjF4MJSP4FOLbexUXaNAjGkBuro4gP5NqZo:UokXFO8Sw5YxFDccuWU0Dp6ga3`
Yara	PDF_Format_Z - PDF Format
VirusTotal	Search for analysis

Name	d37fcb160d37cfdd_settings.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
Size	40.0B
Processes	1152 (chrome.exe)
Type	data
MD5	`a3122d4670c51912628b97bdd6fffb80`
SHA1	`45d2e3060e09f46071125d6125983c81ae4970a1`
SHA256	`d37fcb160d37cfddefea794094044b7e588d44c4883c72ba0ef1503e5f9c7d59`
CRC32	`77809701`
ssdeep	`3:FkXD3WyqUm:+ix`
Yara	None matched
VirusTotal	Search for analysis

Name	38c815729f34aef6_msadocg.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\MSADOCG.DLL
Size	102.0KB
Processes	2868 (cscript.exe)
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`77afbb6a6b85eecaad65d15e066476ec`
SHA1	`d087874940617cab3254f09389806d03a1336e31`
SHA256	`38c815729f34aef6af531edf3f0c3f09635686dbe7e5db5cb97eca5b2b5b7712`
CRC32	`3F2A83DF`
ssdeep	`1536:eMXTJjxBNMlahO9mjyHwRmAJNzvmS0LFvlVTS313tU0r:/rNMlXmjm6mAxr`
Yara	Malicious_Library_Zero - Malicious_Library IsDLL - (no description) PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsPE32 - (no description) DllRegisterServer_Zero - execute regsvr32.exe
VirusTotal	Search for analysis