Dropped Files | ZeroBOX

Name	44ab0ff07eacdeb0_malware.zip Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\Malware.zip
Size	2.3MB
Processes	2744 (curl.exe)
Type	Zip archive data, at least v2.0 to extract
MD5	`cdeda3924eebe0de7892e3cac1ec8dcc`
SHA1	`8e5d487277d478630a3921054f1efa8836809bb6`
SHA256	`44ab0ff07eacdeb0f74bffffd16ba826f6a6d7676df320303e0d960122ce51f5`
CRC32	`C35A27EE`
ssdeep	`49152:vgHRfwRwHJNkA4Z8lbpV4bFVirY44m3FGHJPSQtrf8gw/PjYTh8/:4SibkA4aFpIyrltA5Zrf83/rY8`
Yara	zip_file_format - ZIP file format
VirusTotal	Search for analysis

Name	90eb14090777aa5e_Bypass.bat Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\Bypass.bat
Size	1019.0B
Type	DOS batch file, ASCII text, with CRLF line terminators
MD5	`08c880b1f0b63680b7bdd78408bdceda`
SHA1	`744962d926b1b87e1cc6b39b33c08138ea0e940e`
SHA256	`90eb14090777aa5ec4e72b3850a25fc4d08e64273c85586494b9838df8d493d9`
CRC32	`9E4F7AB9`
ssdeep	`24:OlWrpSFURAuUOZzalHkS76AcZzTW/nZzTWYZzTWHnZzTI8nZzTZ8nZzT08nZzTuW:ODQAza2lBDEfW/ZfWIfW5fImfZmf0mfJ`
Yara	Antivirus - Contains references to security software
VirusTotal	Search for analysis

Name	6c05e11399b7e3c8_X.exe Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\X.exe
Size	442.0KB
Type	PE32 executable (console) Intel 80386, for MS Windows
MD5	`92f44e405db16ac55d97e3bfe3b132fa`
SHA1	`04c5d2b4da9a0f3fa8a45702d4256cee42d8c48d`
SHA256	`6c05e11399b7e3c8ed31bae72014cf249c144a8f4a2c54a758eb2e6fad47aec7`
CRC32	`73932221`
ssdeep	`6144:+FYRyCXBgoDhzoNKXzJ7BapCK5d3klRzULOnWyjLsPhAQzqOm:dRZgQhIKXzJ4pdd3klnnWosPhnzqN`
Yara	UPX_Zero - UPX packed file PE_Header_Zero - PE File Signature IsPE32 - (no description) Antivirus - Contains references to security software Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis