Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.20 01:09
setup.exe
09.20 11:09
3uTools.exe
09.20 11:09
66ecb4573225b_vsbhfdg1...
09.20 10:09
66ecb452ba19c_sfbdsgfd...
09.20 10:09
66ecb44c35444_vfdhsgdf...
09.20 10:09
66ec0e61998bf_setup30.exe
09.20 10:09
66ebf725efe38_lyla.exe
09.20 10:09
Desktop_Explorer.exe
09.20 10:09
66ec3528901bb_winupdat...
09.20 10:09
Inquiry-Dubai.js

Latest News
09.21 01:09
Hackaday Podcast Episo...
09.21 01:09
The Russian Bot Army T...
09.21 01:09
Australia’s Labor Part...
09.21 12:09
Inviting the Public to...
09.21 12:09
How Ransomhub Ransomwa...
09.21 12:09
Middle East backdoored...
09.21 12:09
Updated CISA exploited...
09.21 12:09
Several orgs purported...
09.21 12:09
New CISA guidance seek...
09.21 12:09
Lumma Stealer deployed...

Dropped Files | ZeroBOX

Name	0b8607fdf72f3e65_5RY11rHjuL4awcGF Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\5RY11rHjuL4awcGF
Size	96.0KB
Type	SQLite 3.x database, user version 12, last written using SQLite version 3038003
MD5	`d367ddfda80fdcf578726bc3b0bc3e3c`
SHA1	`23fcd5e4e0e5e296bee7e5224a8404ecd92cf671`
SHA256	`0b8607fdf72f3e651a2a8b0ac7be171b4cb44909d76bb8d6c47393b8ea3d84a0`
CRC32	`842B3569`
ssdeep	`12:DQAwfWk73Fmdmc/OPVJXfPNn43etRRfYR5O8atLqxeYaNcDakMG/lO:DQAwff32mNVpP965Ra8KN0MG/lO`
Yara	None matched
VirusTotal	Search for analysis

Name	54cfed4f859d0ec3_VhCHrrCXzJd2j5UL Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\VhCHrrCXzJd2j5UL
Size	116.0KB
Type	SQLite 3.x database, last written using SQLite version 3033000
MD5	`6f490da5428093674c9e609077dcdef2`
SHA1	`d77592944313656a90f359fea62921c20078ff19`
SHA256	`54cfed4f859d0ec37535b9f16acfe42cae6206fad4b1652c2a3d33d5acf636c7`
CRC32	`A046246D`
ssdeep	`48:T4ItVG+3C7nNfVcS2+VANULn36uw5NPM5ETQTpUPxK2PIs6kJL5R2+zaSZ00LTLU:ce/C7n/c0VANUjwQU+KraSZ00LTL0J`
Yara	None matched
VirusTotal	Search for analysis

Name	b3dfa692f7da19ee_5RY11rHjuL4awcGF Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\5RY11rHjuL4awcGF
Size	5.0MB
Type	SQLite 3.x database, user version 69, last written using SQLite version 3038003
MD5	`c395620f9a8337341636a78a98f5b3d9`
SHA1	`97700ec4db7362e02a56df5e70dd828ad9823d24`
SHA256	`b3dfa692f7da19eede9aa2fe2ac76052cfaa32a7d30cc53b88ea5ef23ec32624`
CRC32	`476CDB88`
ssdeep	`192:StsqHQnwkYjcoBMc+uySBQies13A29D+oBpp0:StsbwVTBMc+uySOiJ3Z`
Yara	None matched
VirusTotal	Search for analysis

Name	383f6a8aac6ecde2_VhCHrrCXzJd2j5UL.dll Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\VhCHrrCXzJd2j5UL.dll
Size	778.8KB
Processes	296 (Project7.exe)
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`ca426ad13949eb03954cf6af14ed9ccb`
SHA1	`f5f46048711a3b10fdd243d450f38c70b2bda65d`
SHA256	`383f6a8aac6ecde29d4cbde8e31be84a528892cc7295985f1c877fdfbe9e2a2f`
CRC32	`AA24F516`
ssdeep	`24576:btK/pV2q+CpVclMEAjFoS4ADKnq8UCOmxIHGQ3L3:Y/pkKTclB2Fo51UCOKImYz`
Yara	UPX_Zero - UPX packed file Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsDLL - (no description) IsPE32 - (no description) ASPack_Zero - ASPack packed file OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis

Name	c119a54b6bef3a48_VhCHrrCXzJd2j5UL Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\VhCHrrCXzJd2j5UL
Size	80.0KB
Type	SQLite 3.x database, last written using SQLite version 3033000
MD5	`255929949dea51a2f43a1f40e63764ec`
SHA1	`8f32ab419264fdad05f4f3828db3c1cd38d919fd`
SHA256	`c119a54b6bef3a48234950dc07fe70f73b69d1390ef0235e66481faa1048ead6`
CRC32	`F7A79605`
ssdeep	`96:5Bc7fYLKYZCIdE8XwUWaPdUDg738Hsa/NhuK0l0q8oc5PyWTJereWb3lxzasq9u4:5BPOUNlCTJMb3rEDFAa6E/`
Yara	None matched
VirusTotal	Search for analysis

Name	6ea670e888424dc5_4375vtb45tv8225nv4285n2.txt Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\4375vtb45tv8225nv4285n2.txt
Size	6.2KB
Processes	296 (Project7.exe)
Type	ASCII text
MD5	`8f315d5470a26c3d110d5a43886001d2`
SHA1	`9dee2bd1183c85c93c283d5c9f38f9b3c5d9712e`
SHA256	`6ea670e888424dc54b78d0b8d4957dcdb8b35f1b6160cca813bc9d4d93a17dab`
CRC32	`7824BBCD`
ssdeep	`96:wgAHpgjxNA3kq7kpHkkdksHk5Ynkk7ykoPphkTskk1qkF4kkEk/IRk+fkEEkJIkQ:4qjFexJ6`
Yara	infoStealer_browser_b_Zero - browser info stealer
VirusTotal	Search for analysis

Name	edb006e05cfa8501_VhCHrrCXzJd2j5UL Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\VhCHrrCXzJd2j5UL
Size	36.0KB
Type	SQLite 3.x database, last written using SQLite version 3033000
MD5	`3f5ca3e29b1b60e298aeca0a32164c03`
SHA1	`f9b5ee59c31a3b06a6b8e476b22d2d7cf1fa8b66`
SHA256	`edb006e05cfa85015aa76c758d6298c279fd318cff0dbb286927c7ad45105488`
CRC32	`E1ACA097`
ssdeep	`24:TL2C0RlPbXaFpEO5bNmISHdL6UwcOxvo5:TYLOpEO5J/KdGU1Eo5`
Yara	None matched
VirusTotal	Search for analysis

Name	824fae3331b95e2f_VhCHrrCXzJd2j5UL Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\VhCHrrCXzJd2j5UL
Size	40.0KB
Type	SQLite 3.x database, last written using SQLite version 3033000
MD5	`41c19a9e8541fcb934c13c075bf47721`
SHA1	`648a7622d533d79b9a0bb31dc370134ec3a75ed7`
SHA256	`824fae3331b95e2f88ca60c87a6c9569086906ec76fc1db8d6dee9adddc4e80c`
CRC32	`560F7642`
ssdeep	`48:+35TqYzDGF/8LKBwUf9KfWfkMUEilGc7xBM6vu3f+fmyJqhU:Ulce7mlcwilGc7Ha3f+u`
Yara	None matched
VirusTotal	Search for analysis