popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name bb8ab5d49c2c6273_convert-pdf-539.js
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\convert-pdf-539.js
Size 43.1KB
Type ASCII text
MD5 0d5009570d1773ecfccf17e6fd65edba
SHA1 d819c32d2e9b13d0436540b0f7e804e825ba0787
SHA256 bb8ab5d49c2c627362f637dff74ef05446768c84cecc8e37f50fdf70f05e8474
CRC32 1020B648
ssdeep 768:u7wf0Sj3be+hrOrA2hPMye6jEtcfvf8R21nR/LumFaEoPnLxW9:u7wf0e3Z4PXwY
Yara None matched
VirusTotal Search for analysis
Name 72c98287b2e8f85e_et.o
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\et.o
Size 571.0KB
Processes 664 (curl.exe) 2420 (cmd.exe)
Type PE32 executable (console) Intel 80386, for MS Windows
MD5 58fc6de6c4e5d2fda63565d54feb9e75
SHA1 0586248c327d21efb8787e8ea9f553ddc03493ec
SHA256 72c98287b2e8f85ea7bb87834b6ce1ce7ce7f41a8c97a81b307d4d4bf900922b
CRC32 0F3865DE
ssdeep 12288:FSjMK6lrdOCdlki5Zc0EyR35ksye/X16PJz5tghj+:FSjieCd+i5s+Jks1foxz5Whj+
Yara
  • UPX_Zero - UPX packed file
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name e8bdf4f34bac1abd_voluptatem.l.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\voluptatem.l.bat
Size 142.0B
Type ASCII text, with CRLF line terminators
MD5 368decf3657b5ef7d5154aff131bbcea
SHA1 41008e92e6cf9e9f23b7c9a0dd949b86f5334934
SHA256 e8bdf4f34bac1abdcb417115b8f8609a9032e6fe30ab46f0569862569e775092
CRC32 B4391C52
ssdeep 3:3J3eSUUyK3d/KbWWK5IPQRFomWxpcL4E2J5xAI1lc+X3x6QQFIzUv:3J3eSUUT/rjomQpcLJ23fXV6DFW2
Yara None matched
VirusTotal Search for analysis
Name 8f034aff669de077_cumque.h
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\cumque.h
Size 115.5KB
Processes 1684 (curl.exe) 1116 (cmd.exe)
Type 7-zip archive data, version 0.4
MD5 26bf4408791b1a60731b9166665f2518
SHA1 51bf4d8842b13e42125d838adb81e8aa21988ede
SHA256 8f034aff669de077015520ee62423d0f1ab616ae8d7c0d3e0dc129df2a48e343
CRC32 457B5818
ssdeep 3072:lBzjXGYrgTVG+KzF4cukpFwNrh8CzaXTU12S0OQ0nACL:lRDTEVGDucukCrJMTlh07
Yara None matched
VirusTotal Search for analysis