popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e70f501e004d9711_harrowment
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\harrowment
Size 483.0KB
Processes 2552 (wininit.exe) 2756 (b.exe) 2828 (b.exe) 2884 (b.exe) 2932 (b.exe) 3000 (b.exe) 3044 (b.exe) 2116 (b.exe) 152 (b.exe) 2212 (b.exe) 2460 (b.exe) 2540 (b.exe) 2372 (b.exe) 776 (b.exe) 2288 (b.exe) 2000 (b.exe) 2784 (b.exe) 2912 (b.exe) 3020 (b.exe) 1484 (b.exe) 2188 (b.exe) 2320 (b.exe) 2584 (b.exe) 2384 (b.exe) 1596 (b.exe) 2316 (b.exe) 2280 (b.exe) 2772 (b.exe) 1868 (b.exe) 2916 (b.exe) 2860 (b.exe) 2268 (b.exe) 2636 (b.exe) 944 (b.exe)
Type data
MD5 b6abb946c8fafd3c39c65d0018f08292
SHA1 66252a9190a46ec0f39a19c7eb9eff714ebc1f02
SHA256 e70f501e004d971117243365f226ffe8fb691bcc1383be3dd2271df7a8301045
CRC32 667712CC
ssdeep 12288:YZLIMgYwrwcDC30umburwyu4SLUO2HRefJml0K:Y1IQtublyuPLUgJmlN
Yara None matched
VirusTotal Search for analysis
Name 709d2fcf79f4d1f8_selectee
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\selectee
Size 29.0KB
Processes 2552 (wininit.exe) 2756 (b.exe) 2828 (b.exe) 2884 (b.exe) 2932 (b.exe) 3000 (b.exe) 3044 (b.exe) 2116 (b.exe) 152 (b.exe) 2212 (b.exe) 2460 (b.exe) 2540 (b.exe) 2372 (b.exe) 776 (b.exe) 2288 (b.exe) 2000 (b.exe) 2784 (b.exe) 2912 (b.exe) 3020 (b.exe) 1484 (b.exe) 2188 (b.exe) 2320 (b.exe) 2584 (b.exe) 2384 (b.exe) 1596 (b.exe) 2316 (b.exe) 2280 (b.exe) 2772 (b.exe) 1868 (b.exe) 2916 (b.exe) 2860 (b.exe) 2268 (b.exe) 2636 (b.exe) 944 (b.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 90a853c50ee02062c0ba5e4df26e55f4
SHA1 e0625192e1c47f4cc6ad0eec8a093705444f968d
SHA256 709d2fcf79f4d1f8646d42916fda954a52ba88bc4b930b0642afb7b991027b21
CRC32 FEDF2134
ssdeep 768:FRsbBszjv90++qzhqT6qTFc8DxLPeGO9IVQyWdE:7/90++qzIA0
Yara None matched
VirusTotal Search for analysis
Name ff2024f415912519_b.exe
Submit file
Filepath C:\Users\test22\AppData\Local\directory\b.exe
Size 108.3MB
Processes 2552 (wininit.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 5719e08c7651f61fd00640ad924fdba3
SHA1 9f2becdb21ea6bf8bacdb9707469521f0806abc4
SHA256 ff2024f415912519c080835a1f2f5ea46be36395b6fb63c16802fee0e7416b0a
CRC32 1764D37C
ssdeep 49152:vh+ZkldoPK8YaYrHIqONVrZqm/2m9hq/ka3S9j08b:42cPK8UOzX
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Process_Snapshot_Kill_Zero - Process Kill Zero
  • PE_Header_Zero - PE File Signature
  • FindFirstVolume_Zero - FindFirstVolume Zero
  • CryptGenKey_Zero - CryptGenKey Zero
  • Device_Check_Zero - Device Check Zero
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name f88989925e77ab4d_b.vbs
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\b.vbs
Size 264.0B
Processes 2756 (b.exe)
Type data
MD5 be95b4dee5289a2d665ec7fe417c9c64
SHA1 15aeb4d9ff1768ad6e4ab0e7ede64012aabad8ea
SHA256 f88989925e77ab4d9ab022780960e75fc882a0dfd186287d586065c20976855c
CRC32 BE915DBA
ssdeep 6:DMM8lfm3OOQdUfcls/UEZ+lX1Al1ALAnriIM8lfQVn:DsO+vNls/Q1A1iGmA2n
Yara None matched
VirusTotal Search for analysis
Name 408e6a5eca386ec4_autF0A9.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\autF0A9.tmp
Size 388.9KB
Processes 2552 (wininit.exe)
Type data
MD5 3693bf7b439ce662ad87eff62d63d8bd
SHA1 1a097472889d7e04f22b94b290785281b21d6748
SHA256 408e6a5eca386ec47859acacd9e1f009075f4d640c847f5ec58b126322cfd645
CRC32 42F9EBC2
ssdeep 6144:z1uhZLMieVz8gm+nAdWPepqKNwI5HmAnH4vSjk3bul8FmU+uWr7DyCTmJNa:u/IU+nIRqigAH4Zal8r+ugDwa
Yara None matched
VirusTotal Search for analysis
Name 31f4c7fe44b3dd27_autF0E8.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\autF0E8.tmp
Size 9.8KB
Processes 2552 (wininit.exe)
Type data
MD5 8b8caa1bc13e1fa4add88483fd5b23ef
SHA1 da2e21643cf2eec771f06700c633818944f51722
SHA256 31f4c7fe44b3dd27b08a6e50d9fed38bc1d3abeb690a94d0cb51c25b9a7ad11b
CRC32 538062ED
ssdeep 192:wskkQya8KdUGCSVeP2zkLAND/rMU2JqsrnBCRfg7hl+pL+ns:TkkBa8KdUGCSVxs+XWBCBglJns
Yara None matched
VirusTotal Search for analysis