popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 4993311fc913771a_passwords.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\trixy2Rt__O6u1op_\passwords.txt
Size 4.8KB
Processes 296 (kano.exe)
Type UTF-8 Unicode text, with CRLF, LF line terminators
MD5 b3e9d0e1b8207aa74cb8812baaf52eae
SHA1 a2dce0fb6b0bbc955a1e72ef3d87cadcc6e3cc6b
SHA256 4993311fc913771acb526bb5ef73682eda69cd31ac14d25502e7bda578ffa37c
CRC32 FDAE46B8
ssdeep 48:4MMMMMMMMMMdMMMM1MMMMMMMM1MMMMMMMM1MMMMMMMM1MMMMMMMMMMdMMMMMMMM3:q
Yara None matched
VirusTotal Search for analysis
Name 8916fb1d76be83e4_IWPfiAXUTJTSformhistory.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\IWPfiAXUTJTSformhistory.sqlite
Size 192.0KB
Type SQLite 3.x database, user version 4, last written using SQLite version 3031001
MD5 6b9c2ac2b5025e180231d8d38ece698c
SHA1 36f5cfe6ac59aaa7d7173555edeef5caa9bf61c6
SHA256 8916fb1d76be83e42cd2f7b41ee06706fe0adb936259ed7a7daa4dbcb4c51fcb
CRC32 95ACFD74
ssdeep 12:DBl/lkf12Of5LZWfY0xpMujuHWMu6N2OHjWOzMbdym/eRgBoQFmgW2FOmO6Mz6LX:DLlI1x7WxHaiSlMxosJF/Ezo
Yara None matched
VirusTotal Search for analysis
Name c119a54b6bef3a48_S2dzGdjpylekWeb Data
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\S2dzGdjpylekWeb Data
Size 80.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 255929949dea51a2f43a1f40e63764ec
SHA1 8f32ab419264fdad05f4f3828db3c1cd38d919fd
SHA256 c119a54b6bef3a48234950dc07fe70f73b69d1390ef0235e66481faa1048ead6
CRC32 F7A79605
ssdeep 96:5Bc7fYLKYZCIdE8XwUWaPdUDg738Hsa/NhuK0l0q8oc5PyWTJereWb3lxzasq9u4:5BPOUNlCTJMb3rEDFAa6E/
Yara None matched
VirusTotal Search for analysis
Name 4dc988ceed9d0320_rage131mp.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\rage131MP.tmp
Size 13.0B
Processes 296 (kano.exe)
Type ASCII text, with no line terminators
MD5 d33a4a2703b7b381984823330fd27556
SHA1 5bfa60e6ce13d48acf4b77ea15e263ca8b5498bb
SHA256 4dc988ceed9d0320cd6920d5032cd5d5400b712c3f1fd51928feac0e5d27850d
CRC32 00980B92
ssdeep 3:L/XO2:j3
Yara None matched
VirusTotal Search for analysis
Name edb006e05cfa8501_FsG9mEnxwsMeCookies
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\FsG9mEnxwsMeCookies
Size 36.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 3f5ca3e29b1b60e298aeca0a32164c03
SHA1 f9b5ee59c31a3b06a6b8e476b22d2d7cf1fa8b66
SHA256 edb006e05cfa85015aa76c758d6298c279fd318cff0dbb286927c7ad45105488
CRC32 E1ACA097
ssdeep 24:TL2C0RlPbXaFpEO5bNmISHdL6UwcOxvo5:TYLOpEO5J/KdGU1Eo5
Yara None matched
VirusTotal Search for analysis
Name 5f622a2bfeb83b59_thunderbird_g8t0pe67.default-release.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\trixy2Rt__O6u1op_\Cookies\Thunderbird_g8t0pe67.default-release.txt
Size 361.0B
Processes 296 (kano.exe)
Type ASCII text, with CRLF line terminators
MD5 95dff27b67a96f98827e72f9330eb164
SHA1 2d86a3aca1d9a7c16127a333fe642cae08cea0c8
SHA256 5f622a2bfeb83b597d9556ffc8bc107e219eb6ab2ef3cff2d4428e5048ebddad
CRC32 4C9B7FD3
ssdeep 6:JiKjaphXX7aQ2vSI95Bj9GfBHthf+CthfMl0kq/H+LkiKjaphXXrSdrNBPPi1H:J/EhXraQ2v795BxGfBHff+CffMOkqP0J
Yara None matched
VirusTotal Search for analysis
Name e7bcd6a44beafaa7_information.txt
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\trixy2Rt__O6u1op_\information.txt
Size 3.4KB
Processes 296 (kano.exe)
Type UTF-8 Unicode text, with CRLF, LF line terminators
MD5 b5af86fa9955b99a5f25347c2734005d
SHA1 bece108fb999e3fe458c466dba0dbc7e40e1fbb5
SHA256 e7bcd6a44beafaa727a517d993c9f7223951a43ac367847983b2793ad08fbd95
CRC32 BE13DDE3
ssdeep 96:xMorXFLwBmtfNPsozar0iAxv+mLqVnZJVuYU8rf2dIv2Ovhiax3:xDTNUmtfNPJaro2MS3
Yara None matched
VirusTotal Search for analysis
Name a3aaa832594b3321_f59e91f8
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\F59E91F8
Size 14.0B
Processes 296 (kano.exe)
Type data
MD5 e514821bfc8caca0cf0a63065233bbee
SHA1 067d7203f2380577ffe26aa66433e4eec7741d42
SHA256 a3aaa832594b332169dfdac1e631ae6dcc8993109274ef0f835ee9aca623f643
CRC32 CB700417
ssdeep 3:XzqsMi:Xzz
Yara None matched
VirusTotal Search for analysis
Name b3dfa692f7da19ee_D87fZN3R3jFeplaces.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\D87fZN3R3jFeplaces.sqlite
Size 5.0MB
Type SQLite 3.x database, user version 69, last written using SQLite version 3038003
MD5 c395620f9a8337341636a78a98f5b3d9
SHA1 97700ec4db7362e02a56df5e70dd828ad9823d24
SHA256 b3dfa692f7da19eede9aa2fe2ac76052cfaa32a7d30cc53b88ea5ef23ec32624
CRC32 476CDB88
ssdeep 192:StsqHQnwkYjcoBMc+uySBQies13A29D+oBpp0:StsbwVTBMc+uySOiJ3Z
Yara None matched
VirusTotal Search for analysis
Name 824fae3331b95e2f_g07JcZriLE8_Login Data
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\g07JcZriLE8_Login Data
Size 40.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 41c19a9e8541fcb934c13c075bf47721
SHA1 648a7622d533d79b9a0bb31dc370134ec3a75ed7
SHA256 824fae3331b95e2f88ca60c87a6c9569086906ec76fc1db8d6dee9adddc4e80c
CRC32 560F7642
ssdeep 48:+35TqYzDGF/8LKBwUf9KfWfkMUEilGc7xBM6vu3f+fmyJqhU:Ulce7mlcwilGc7Ha3f+u
Yara None matched
VirusTotal Search for analysis
Name 54cfed4f859d0ec3_VuKWoLgRhhRsHistory
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\VuKWoLgRhhRsHistory
Size 116.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 6f490da5428093674c9e609077dcdef2
SHA1 d77592944313656a90f359fea62921c20078ff19
SHA256 54cfed4f859d0ec37535b9f16acfe42cae6206fad4b1652c2a3d33d5acf636c7
CRC32 A046246D
ssdeep 48:T4ItVG+3C7nNfVcS2+VANULn36uw5NPM5ETQTpUPxK2PIs6kJL5R2+zaSZ00LTLU:ce/C7n/c0VANUjwQU+KraSZ00LTL0J
Yara None matched
VirusTotal Search for analysis
Name 3f737381b2b1d02a_gziReAzcylYfD3ja3bcZLBi.zip
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\gziReAzcylYfD3ja3bcZLBi.zip
Size 2.4KB
Processes 296 (kano.exe)
Type Zip archive data, at least v2.0 to extract
MD5 6ed1d65ebeab8ee576cd8ea9432bfa6c
SHA1 b940531143d3b5bb3cd0ec0aefe0756d94b62e2a
SHA256 3f737381b2b1d02a6b6fc8af9f31b3d71e6e33821394efd1567f89b3095b92e6
CRC32 B38041A4
ssdeep 48:9VaeIn1phVxbTIPt2eowsW38Pn6FDd473r2vFgJtK4zn3KJ6Vkehn1qJpW3w:w1pF7OkEDdG3r+Fqjz3KJS1i
Yara
  • zip_file_format - ZIP file format
VirusTotal Search for analysis
Name 0b8607fdf72f3e65_02zdBXl47cvzcookies.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\02zdBXl47cvzcookies.sqlite
Size 96.0KB
Type SQLite 3.x database, user version 12, last written using SQLite version 3038003
MD5 d367ddfda80fdcf578726bc3b0bc3e3c
SHA1 23fcd5e4e0e5e296bee7e5224a8404ecd92cf671
SHA256 0b8607fdf72f3e651a2a8b0ac7be171b4cb44909d76bb8d6c47393b8ea3d84a0
CRC32 842B3569
ssdeep 12:DQAwfWk73Fmdmc/OPVJXfPNn43etRRfYR5O8atLqxeYaNcDakMG/lO:DQAwff32mNVpP965Ra8KN0MG/lO
Yara None matched
VirusTotal Search for analysis
Name 88f9dc0b9a633e43_KvHrxJ77cmUgcookies.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\KvHrxJ77cmUgcookies.sqlite
Size 512.0KB
Type SQLite 3.x database, user version 11, last written using SQLite version 3031001
MD5 dd47ebe6866ad2ab59d0caa1de28d09e
SHA1 afdf6eb7a01bb7ef4c9d768b65abbbeae5ba2663
SHA256 88f9dc0b9a633e43c6d2c6fae136e782c15aa38c1601dcff948987f1c2a391c3
CRC32 8DEE9EEA
ssdeep 24:DQHtJl32mNVpP965hKN0MG/lZpNjCKRIaU5BnCMOkC0JCpL3FYay:DQfrbWTTTqtStLm
Yara None matched
VirusTotal Search for analysis
Name 169c04331f72fe4a_QdX9ITDLyCRBplaces.sqlite
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\span2Rt__O6u1op_\QdX9ITDLyCRBplaces.sqlite
Size 5.0MB
Type SQLite 3.x database, user version 53, last written using SQLite version 3031001
MD5 f77930486de1b1bb4b397d5d8f3cd124
SHA1 e3f5727a0774c7cba17f0b10569012dcea24cb55
SHA256 169c04331f72fe4ae9958da09e1b28ec5910f7ea523d6105b7e4ad521b2baaee
CRC32 D85072F9
ssdeep 96:Dm8j5PnH6xY2Wi+67tH2iB4q2xfX7ZbiZzdFzb4PPwI3A7:l5/IYOTAlQzdFzaDm
Yara None matched
VirusTotal Search for analysis