popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 39a11c035e6a1f32_main.bat
Submit file
Filepath C:\Users\test22\AppData\Roaming\main.bat
Size 154.0B
Processes 2932 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 5508b50b110acf7a152316d5352da364
SHA1 2247bbb5df34280e3546b74497dd3df81d39bf44
SHA256 39a11c035e6a1f32241f5df20f55c035f6f61d19f946e5600019bbf9774ba37b
CRC32 5957E97C
ssdeep 3:oXeqNjMJJLNy1IMwNQqPJH0cVERAIrFnl1d99a:oXe2jIny1xQQO0cbA199a
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis
Name 44e8aa0601fffe82_590aee7bdd69b59b.customDestinations-ms~RF1ddebd6.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms~RF1ddebd6.TMP
Size 7.8KB
Processes 2932 (powershell.exe) 2488 (powershell.exe)
Type data
MD5 ee6cfd78f72f03663db2a7df0c696dd7
SHA1 56126e81a5f6577f8e24a890185d0c9eb600fa02
SHA256 44e8aa0601fffe82c494bbc7d7280aa3bc5e90effe2aee2d716d5716e1d6b568
CRC32 F27137C4
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCworu4tDHXyGlUVul:EtCgXoRtCgbHnorBTyY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis