popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 16187ff9b5096b21_D87fZN3R3jFeplaces.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\D87fZN3R3jFeplaces.sqlite
Size 5.0MB
Type SQLite 3.x database, user version 69, last written using SQLite version 3038003
MD5 837705c24eaa032145b6f82119af4eea
SHA1 7d38a13b37105ef0f6c24c585de581949616f32c
SHA256 16187ff9b5096b217d405d1492c115a096f8d63d72befbf5851e19b61581f857
CRC32 8BF87D31
ssdeep 192:StsqHQnwkYjcoBMc+uK6ik4QtjJz3ig48pp0:StsbwVTBMc+uK6ikPpJz3E8
Yara None matched
VirusTotal Search for analysis
Name 351dd9de17a4f5de_information.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempCMSdfywaewnkvST\information.txt
Size 2.8KB
Processes 2584 (home.exe)
Type ASCII text
MD5 f3680045edd7d49860a0a7ae3b4d7414
SHA1 4e8000b603188f7fdea6a4c75ce627836975ae03
SHA256 351dd9de17a4f5defcce30f786eee9346558f7e9843af47f89f696adc30149cd
CRC32 728F2151
ssdeep 48:t0ataFLn1WYIEFRAScxiqh392GoxyqcjRSQUz/pD6L+DeqH+rZvuolQ2oa6L1RaX:t9eQEbwuDEjRwpDfDeqHOxuolQ2oa6Le
Yara None matched
VirusTotal Search for analysis
Name 5ee454eb05fcbbc0_02zdBXl47cvzHistory
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\02zdBXl47cvzHistory
Size 120.0KB
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 64202674f6acaafa94c3390b0cc720b9
SHA1 38c8537feccfaabb095805d290af69272aeb32f1
SHA256 5ee454eb05fcbbc0ac1ff5662ba2be1f22688ddb97d3cc357d4da5cff5b5e5e9
CRC32 3685166F
ssdeep 48:TGjDU66tTKfxNPp+suktLReRK+NaUvdWSZ00LTL0drQHHp7C5fVcS2+VANUXq6uG:BeJQpWSZ00LTL0QCbc0VANPjwQU+
Yara None matched
VirusTotal Search for analysis
Name 512e4e95427a8c66_5lop_S5WM5ERCookies
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\5lop_S5WM5ERCookies
Size 36.0KB
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 f4c540f52d5c08d24a79805eda1d7abf
SHA1 22be46826df7693f58736adb232ab2da790f2571
SHA256 512e4e95427a8c66b2993b27bb23d99cdab2ebd6e9e8937c7f6a39ed8c6a5b94
CRC32 95C9FB3A
ssdeep 24:TLmg/5UcJOyTGVZTPaFpEvg3obNmCFk6Uwcc85fB34444z:T5/ecVTgPOpEveoJZFrU1cQB34444z
Yara None matched
VirusTotal Search for analysis
Name e7d22f6d4c47010a_pbTTZxEwRfP79VO7CPfOpuSgGRP67c1Q.zip
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\pbTTZxEwRfP79VO7CPfOpuSgGRP67c1Q.zip
Size 1.6KB
Processes 2584 (home.exe)
Type Zip archive data, at least v2.0 to extract
MD5 0eedb87656b7df70e5355368ce3a382f
SHA1 af4e7d9dc9af37962ede01fb13945fd55a8ce5b1
SHA256 e7d22f6d4c47010a1672deb9e12646ce275612ad5be0ec070ca6fd416ae7b97f
CRC32 33AE1117
ssdeep 48:9p+ZqEOGK+xgx2+gXBGXf0RoNwXcFWym2hw:LOpOGu9eGXf0R2BF0
Yara
  • zip_file_format - ZIP file format
VirusTotal Search for analysis
Name f4af691cc7a75b20_rise131m9asphalt.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\rise131M9Asphalt.tmp
Size 13.0B
Processes 2584 (home.exe)
Type ASCII text, with no line terminators
MD5 638a13b974029d29c1b1bcb632b6eb9c
SHA1 672b0ccc7ee037ff9a21887529a640ebd56f15d3
SHA256 f4af691cc7a75b20a357fd2256c902945bfdd1ce937d9a567f4ad6cce151a44c
CRC32 4CDAFEA6
ssdeep 3:L/Eb:DC
Yara None matched
VirusTotal Search for analysis
Name 0b8607fdf72f3e65_02zdBXl47cvzcookies.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\02zdBXl47cvzcookies.sqlite
Size 96.0KB
Type SQLite 3.x database, user version 12, last written using SQLite version 3038003
MD5 d367ddfda80fdcf578726bc3b0bc3e3c
SHA1 23fcd5e4e0e5e296bee7e5224a8404ecd92cf671
SHA256 0b8607fdf72f3e651a2a8b0ac7be171b4cb44909d76bb8d6c47393b8ea3d84a0
CRC32 842B3569
ssdeep 12:DQAwfWk73Fmdmc/OPVJXfPNn43etRRfYR5O8atLqxeYaNcDakMG/lO:DQAwff32mNVpP965Ra8KN0MG/lO
Yara None matched
VirusTotal Search for analysis
Name 204a93e1274c57f4_passwords.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempCMSdfywaewnkvST\passwords.txt
Size 4.8KB
Processes 2584 (home.exe)
Type UTF-8 Unicode text, with CRLF line terminators
MD5 974cc190d5703018c01ce08b904e227b
SHA1 b4f0f2a72907fcf9551846411a7221f60a88f97d
SHA256 204a93e1274c57f489adb21e0bf56064624582bb3b79fd59ba779ec8a137d8ff
CRC32 C32C1308
ssdeep 48:tMMMMMMMMMMdMMMM1MMMMMMMM1MMMMMMMM1MMMMMMMM1MMMMMMMMMMdMMMMMMMME:m
Yara None matched
VirusTotal Search for analysis
Name bbc59eb43822e646_Ei8DrAmaYu9KLogin Data
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\Ei8DrAmaYu9KLogin Data
Size 18.0KB
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 53ea322f91d6f0de8448b68583284d22
SHA1 b6c835867fbf7e432b834f7366eb0407f3eebbfa
SHA256 bbc59eb43822e64660cc4ccbca37d6dc016eaa9b85b2c6f5b40826bb03188b34
CRC32 CA013001
ssdeep 24:LLY10KL7G0TMJHUyyJtmCm0XKY6lOKQAE9V8MffD4fOzeCmly6Uwc6ocW:4z+JH3yJUheCVE9V8MX0PFlNU12W
Yara None matched
VirusTotal Search for analysis
Name 202c6c5bd35c233b_fanbooster131.lnk
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FANBooster131.lnk
Size 1.1KB
Processes 2584 (home.exe)
Type MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Archive, ctime=Fri Nov 17 18:38:27 2023, mtime=Fri Nov 17 18:38:27 2023, atime=Mon Sep 26 19:47:59 2022, length=1321984, window=hide
MD5 89eb28c99ffe0eccb974af449e11f3d6
SHA1 85afd531cc26bb95bd6279a811df7d69338dc27f
SHA256 202c6c5bd35c233bdbc898536d31da44496c48793bb80f1fae3f15669ff7813a
CRC32 56D9FF72
ssdeep 12:8im5Kg4cZCrR8EvSWICmXR+/I9yDeIe1Ep/hLYwizCCOLMKNlaV12uawua4t2YLd:8esERdraRx1E7QzNRWYcL6PyoiliK
Yara
  • lnk_file_format - Microsoft Windows Shortcut File Format
  • Lnk_Format_Zero - LNK Format
VirusTotal Search for analysis
Name 9a8ea0e2df7554c5_D87fZN3R3jFeWeb Data
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tempAVSdfywaewnkvST\D87fZN3R3jFeWeb Data
Size 72.0KB
Type SQLite 3.x database, last written using SQLite version 3021000
MD5 0539a773e44d21a84fd97fee0dffd4a3
SHA1 5904058c20aad54c552edc57826babd36ab61149
SHA256 9a8ea0e2df7554c57fb4ee6a8a12782f5a2474a3e4c23dc61e4768631dc4eb9f
CRC32 964BC0B2
ssdeep 96:P0CWo3dOOctAYyY9MsH738Hsa/NTIdE8uKIaPdUDFBlrrVY/qBOnx4yWTJereWbY:PXt769TYndTJMb3j0
Yara None matched
VirusTotal Search for analysis