Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

Dropped Files | ZeroBOX

Name	e3b0c44298fc1c14_nsoF2BC.tmp Empty file or file not found
Filepath	C:\Users\test22\AppData\Local\Temp\nsoF2BC.tmp
Size	0.0B
Type	empty
MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
CRC32	`00000000`
ssdeep	`3::`
Yara	None matched
VirusTotal	Search for analysis

Name	2f15834bee10c9fe_telecharger Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\Telecharger
Size	7.8MB
Processes	2644 (kkkk.exe)
Type	DOS executable (COM)
MD5	`f2d636e575dcd6781328d3f4777931a8`
SHA1	`56f3101ec0a25bd28165bd3a899820a4819b663b`
SHA256	`2f15834bee10c9fe5b6e92517ee722227d3086fdc4cd023ea649cb2ae5596ee2`
CRC32	`1856D040`
ssdeep	`196608:szV6M97UkyLQeIwsOzCzmau4KKf2qgnfgCNACa:spTysTZDYJTnrNg`
Yara	None matched
VirusTotal	Search for analysis

Name	14c7bcd37cbcde9b_developed.cmd Submit file
Filepath	c:\users\test22\appdata\local\temp\developed.cmd
Size	23.9KB
Processes	2644 (kkkk.exe) 2776 (cmd.exe)
Type	ASCII text, with very long lines, with CRLF line terminators
MD5	`a242c1f438d1487ce00404e9a4cede1f`
SHA1	`7a838eec6a8e1a71bc8859231cb354295a1edcbb`
SHA256	`14c7bcd37cbcde9b091dfb7a916c6a6bc5293a9547dfda80b68f0c9fdd17a69d`
CRC32	`951A22E9`
ssdeep	`384:cyuXML0lOTZrSKY+FKD+7ThUwaa46BBGdNXwfnWvj91GqaQYfgdqUw0vWa:cBXML0l2tSKhrpUxd+kNgeb9xFBWa`
Yara	None matched
VirusTotal	Search for analysis

Name	69d2f1718ea28482_jc.pif Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\762156\Jc.pif
Size	1.0MB
Processes	2776 (cmd.exe)
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`c63860691927d62432750013b5a20f5f`
SHA1	`03678170aadf6bab2ac2b742f5ea2fd1b11feca3`
SHA256	`69d2f1718ea284829ddf8c1a0b39742ae59f2f21f152a664baa01940ef43e353`
CRC32	`796844EC`
ssdeep	`24576:SAwciuvaj8l4LEWumcKYB5Wek2vY+BYssmNolbmmPmJ4Ve+aaWBS:SALTBaLETmcKYB5WH2AwjsLbmmPmJ4Vt`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis

Name	4d3c26af9009aa84_advancement Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\Advancement
Size	1.0MB
Processes	2644 (kkkk.exe)
Type	data
MD5	`15d989ca39b8238130f9fde38b720c90`
SHA1	`d1f439d81dc97cebca1f4875ead7e40d31830631`
SHA256	`4d3c26af9009aa84e9955f7ee0b4c75923fb539fa5100d9cf055088d1744c81b`
CRC32	`290941AB`
ssdeep	`24576:TAwciuvaj8l4LEWumcKYB5Wek2vY+BYssmNolbmmPmJ4Ve+aaWBS:TALTBaLETmcKYB5WH2AwjsLbmmPmJ4Vt`
Yara	Malicious_Library_Zero - Malicious_Library Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis

Name	1a9bb203555f9ef0_northeast Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\Northeast
Size	629.0B
Processes	2644 (kkkk.exe)
Type	data
MD5	`4f2077d42a737efa83ad307cee4b9e4b`
SHA1	`3886c914fe8beba06ef6dea384c982701effa291`
SHA256	`1a9bb203555f9ef00317fe0b296488f9b25902824c003d53afa8dd10105075ac`
CRC32	`6CB4ED96`
ssdeep	`12:hAEpxSGSGciuwSV3OcvC2Peiz3CH2VxgGskmXXUYn:hAEp4GSHitcnq2Pz3CWV2GPmUYn`
Yara	None matched
VirusTotal	Search for analysis