popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 078df6f5e7399323_chrome_100_percent.pak
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrome_100_percent.pak
Size 787.8KB
Processes 2564 (UXSNUWNZ.exe)
Type data
MD5 1e5198d192e8d850898955745ac90fc2
SHA1 f79ab7b62c8854335f38033322d456be4c5af90e
SHA256 078df6f5e7399323dc24a37279fed6bb834c4868ae71f38cf51a2bfe4d1d3049
CRC32 7383B774
ssdeep 12288:BWI3H1fJKH3IstUQd/zgsz5B0GDJQrnKs8SNP+QSsSilxNft0D+wIvfdDWXuoO0e:T3VBKpaQzEEmPLSUNft0KwWtW+oO0TO5
Yara None matched
VirusTotal Search for analysis
Name 114b6fb306bbc3e5_chrome_elf.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrome_elf.dll
Size 1.2MB
Processes 2564 (UXSNUWNZ.exe)
Type PE32+ executable (DLL) (GUI) x86-64, for MS Windows
MD5 576f4379df97be0689013c7de1ae64b0
SHA1 6751967e285bb8008c5a582dc87f1e3c132bee15
SHA256 114b6fb306bbc3e5f0a903c7bd2c3ccf01a6df1ef12a31f418a478ccc7b5ebdc
CRC32 5A957FA3
ssdeep 24576:v/plc57brbRTY3h/8LZzqrE4WiN++bPqu:v/plGbRTYR/qhUE4bZyu
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsDLL - (no description)
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name dc5aad2eb2bebbb4_vulkan-1.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\vulkan-1.dll
Size 939.8KB
Processes 2564 (UXSNUWNZ.exe)
Type PE32+ executable (DLL) (console) x86-64, for MS Windows
MD5 db26291aeff513db58ca0e1e296d1fab
SHA1 1c95ced6ef45ed0702c39b028367ac82645de5b7
SHA256 dc5aad2eb2bebbb4dc245fa48f14b559c0bad3584a9d59eec7b4db90c846c5e8
CRC32 145B6339
ssdeep 24576:vJBSWJw4Q8Zn65aSNY6Z5W1DYsHq6g3P0zAk7Sh:FOv8Z6oSq6Z5W1DYsHq6g3P0zAk7S
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 524627609ef8bce0_chrome.exe.sig
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrome.exe.sig
Size 1.4KB
Processes 2564 (UXSNUWNZ.exe)
Type data
MD5 debd0f7643b0df445790a3bed6d93d42
SHA1 93da91e63c157e2f495f83a5627d587cabe1dccb
SHA256 524627609ef8bce066a83294d8e157dff69ec6ae30d9747ed51ca3cb5275e37b
CRC32 F1A4CA62
ssdeep 24:38H/VZn47VBRxgCUQuODHBJeriJ8yojUdnkLvXWgl0oHLrUXAoFYQCCOy1bBVCpe:38HdurRxHSOlAiqYoXWVDXDzCCOy1dVl
Yara None matched
VirusTotal Search for analysis
Name 4619c70600dc017c_2918b7ed
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\2918b7ed
Size 1.2MB
Processes 2676 (Gq_Stream.exe)
Type PNG image data, 3168 x 867, 8-bit/color RGB, non-interlaced
MD5 1846b0d3a22db6359ff7b01cf375d0f1
SHA1 598c77af3cbce70ceb376cb6407ea405c34df237
SHA256 4619c70600dc017cbf6f8d8504bcb5c95711d965a13bc835281987fc0b886455
CRC32 4609EE8B
ssdeep 24576:M63ojL97Hiuv1iO5ge6XyGAXIllanJh7RTl8krscWtg/xyL1/ls+B5xS789FpxOd:lM7ZQzlqpRakgcWtn/lHBrjpId
Yara
  • PNG_Format_Zero - PNG Format
VirusTotal Search for analysis
Name af3a7290a35439c3_notification_helper
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\notification_helper
Size 1.3MB
Processes 2564 (UXSNUWNZ.exe)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 34b4fe89081ba39696462848aae68ec5
SHA1 9c1f53ff7b16582947e28548f5c6e22a9a3aaddc
SHA256 af3a7290a35439c329e875d449d8422b52bf1103d024029a131c444275af63a3
CRC32 8F4CA370
ssdeep 24576:1Ct365qgd9B5vRG0+GFPFPozwrTXQG7K/n:1Ct36UsB5vRGHGNuzwng
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 40ac75e6909a02b7_chrome_wer.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrome_wer.dll
Size 125.8KB
Processes 2564 (UXSNUWNZ.exe)
Type PE32+ executable (DLL) (console) x86-64, for MS Windows
MD5 3a97ebae7eebae5d270aa5bd14b35f6a
SHA1 15f92aaf97e721c5b74b37c5a6f5595176b96702
SHA256 40ac75e6909a02b711324c50ab83b72daf78e696cece00a48c29d6e1403ee1a4
CRC32 9A199EED
ssdeep 3072:y+Iu70oosymT5/Lp4oVkLKBmraueoGaMZYBJbr9MabuZUXJf:yymmTRCBkmraueoGhWbuef
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 44844cf3dde6e800_manifest.json
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\manifest.json
Size 238.0B
Processes 2564 (UXSNUWNZ.exe)
Type ASCII text
MD5 442699c95b20a60470421c6a4d29960f
SHA1 c7317f2d2414c991c21205ba3c68a187b997e3c1
SHA256 44844cf3dde6e80087ae0e6bf0d9326d7ef7d23326d24ac83af0850be26923d2
CRC32 C148B652
ssdeep 6:v5975JVSS18iMkh26VlcmutLwyAGI/zj//gQNMC:Bbt18l+LlMLqGU/gQNMC
Yara None matched
VirusTotal Search for analysis
Name b6a65874afbb08aa_gq_stream.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Gq_Stream.exe
Size 14.4MB
Processes 2564 (UXSNUWNZ.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 a0915939dcd9b18fc519a33328b7c04d
SHA1 ca66e5a502a5f7c78ee361c2eb5191715fd86ab6
SHA256 b6a65874afbb08aa13ed502fb5376054ba6a00d543a1b6319e76a42d9d9071d6
CRC32 E66E2377
ssdeep 393216:5ylwgBVLVLGqpiffVgif/wBG5759AyDXvxsYQ:oJVLMqafVgiD57LPCp
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name c6070a157b4e28d1_preloaded_data.pb
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\preloaded_data.pb
Size 8.1KB
Processes 2564 (UXSNUWNZ.exe)
Type data
MD5 d5e4c2634eff8a9b3faf432bf406d6d1
SHA1 a691f5c9877079193c1f7dfb16dbc30bb0372ec9
SHA256 c6070a157b4e28d16fbccbd233e93846ddb070c85e1a1bc64469b7a5f1424fad
CRC32 671B94EE
ssdeep 192:bTOpyeS7AOv6EVp/m3FPKk15jjKVcOmQppXavFbeLfzrLyp:bTOk7AdEugo5jjK+5QppXaBebzrLyp
Yara None matched
VirusTotal Search for analysis
Name 1bfb23895b47127d_elevation_service
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\elevation_service
Size 1.7MB
Processes 2564 (UXSNUWNZ.exe)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 2443c7dd8a97f8d5e11baa95382bdc2b
SHA1 5daf6babd97de71bcdb2711cb418f02d2b65da7d
SHA256 1bfb23895b47127dff1558ae789cf190aac5c32565736ee81f962de4286cac79
CRC32 CACC39E3
ssdeep 24576:VJm1DuxcT9hJyNz5wBHOnWYRiVckwezFnS/uquOznRPWY1U1aHTy:PaDuxcUNYHOnWYRGO+nWuquOLRPp61Yu
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 26389a6ff7caec8c_chrome.dll.sig
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\chrome.dll.sig
Size 1.4KB
Processes 2564 (UXSNUWNZ.exe)
Type data
MD5 700b10d4639bfb0a930f3f11186d2a00
SHA1 155ef9b14415e0747573c3228b2c934166dc3b10
SHA256 26389a6ff7caec8c37a39d24e8cbde56d1b059d9f8c442a9bc3c987e4db28010
CRC32 36465917
ssdeep 24:38H/VZn47VBRxgCUQuODHBJeriJ8yojUdnkLvXWgl0oHLrUXAosI2lkvhJ9Qr48U:38HdurRxHSOlAiqYoXWVDX2IvhJ9Q88U
Yara None matched
VirusTotal Search for analysis