popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 29c10629fc1b7822_my_resume.pdf
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\My_Resume.pdf
Size 169.6KB
Processes 2760 (certutil.exe)
Type PDF document, version 1.7
MD5 e705bfb4b0523647b259263bf1d6750e
SHA1 15285ea528b81c369737d286a7627b46a0942c0d
SHA256 29c10629fc1b7822a8a08033bbb64d8514d99534b0bf5aa0ed4c011d6c2b8650
CRC32 64E0BFB0
ssdeep 3072:datIrk8S1kePGAg5IZd5FRybDLduWdwW4g+c1lVK4HU9jfJ1xQ3PF4K+EVG:dIRPGNIZdVyb4Wf4gLlVKiGjRr51
Yara
  • PDF_Format_Z - PDF Format
VirusTotal Search for analysis
Name 0edbe9eaa87364cf_temp1.log
Submit file
Filepath C:\Users\test22\AppData\Local\temp1.log
Size 102.0KB
Type ASCII text, with very long lines, with CRLF line terminators
MD5 709302a774721a8234737e4effa35e68
SHA1 b99b38e192887ed05d1eabd11fa021338ac5f0d1
SHA256 0edbe9eaa87364cf61666b0abc17c3388065d19ff789b384d9c4585f7fd6fe60
CRC32 FEB939D9
ssdeep 1536:M+8WijcpiqAGdTKBNm5o94+1nudFIi2+jcor3Bd4HtUXSWlAHJkCcS5TdNV9OBh:RijcpixGdAq+1UIibchHtDTXS
Yara
  • hide_executable_file - Hide executable file
VirusTotal Search for analysis
Name 7ee927529f7108d8_BrowserMetrics-63327DF3-A54.pma
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-63327DF3-A54.pma
Size 8.0MB
Type data
MD5 2f83a72f095bc42146a77940353d776c
SHA1 7b525857dbae3b79cce3f836475604f46d60008a
SHA256 7ee927529f7108d85841c07e1d05bafa82cb7d5a9a0db3ad9cf804c5a7b1632e
CRC32 1A7C42BC
ssdeep 6144:H9LG+zeL7c/lhRgdTTEDtsHVdUXaHmVGKPFIrgHkjdr:t6bcF
Yara None matched
VirusTotal Search for analysis
Name 19b22f5ed2630d2f_debug.log
Submit file
Filepath C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size 272.0B
Processes 2904 (chrome.exe)
Type ASCII text
MD5 b141c34ae6ee75e983dfe3672a2feef5
SHA1 8863bd3d216e2fade3088c18a1eaccf9054c9c1d
SHA256 19b22f5ed2630d2f3621a928fd3085339a854079f8cef4424053b9133c76d010
CRC32 BA0FFBE6
ssdeep 6:qcUmSlNoqYlVpLdbgRU4LGGmm3V4v8dlpL4hRU4LGGmm3V4vF:nyyqYlVppbgRU4LGBm3V6MlpuRU4LGBt
Yara None matched
VirusTotal Search for analysis
Name 5a3ec8851acd1bb6_CrashpadMetrics.pma
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
Size 1.0MB
Type data
MD5 aea7ffdba870ea9d59d542f890fecc8c
SHA1 2efe83750eebdfacc148d376cc4edfdf8e5d2ac9
SHA256 5a3ec8851acd1bb62d270e9bdca9625da9f34df69ef39608bc2ce3de68960056
CRC32 CB7B9D10
ssdeep 12:bHiZXAVMMOKEKSCemJKlkQPdl/JG89Hy3aJ0oMFgigpCbUycIXuYJ05:bwQOMzBS+Mk0/JvWoMeigp1y5eYW
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_cerF358.tmp
Empty file or file not found
Filepath C:\Windows\cerF358.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 0604d7025a5ade0b_metadata
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\metadata
Size 114.0B
Processes 2904 (chrome.exe)
Type data
MD5 6904ac985db59553e3d2867f6814d601
SHA1 b42de1a270612df6f13b7addf30c21d6187c7e60
SHA256 0604d7025a5ade0be516195b53f7b3a720630c1c921de88bbc5990f8cbc56ef0
CRC32 5AB94FD7
ssdeep 3:mTll+XlPBl/W/lHD1lnl9VWzC82XRUjIWll:mTlEmHDTV4uRUjnl
Yara None matched
VirusTotal Search for analysis
Name 0c836a9041ada709_temp2.log
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\temp2.log
Size 226.1KB
Type ASCII text, with very long lines, with no line terminators
MD5 31182a2d344bce22b81c644bf170d740
SHA1 452f64c530f9ec62af35ac4dfe04b07a506807f5
SHA256 0c836a9041ada7099de134385f4b15d101f18d721daf27ca24cfae9b7efd282e
CRC32 69304C74
ssdeep 3072:hhmCUKC4EbDurGlskeX0/DLlZWNUxuNn1LunQCqVHjkvP64N0HX4O1BBQXupWFCC:nmCUgESG3nlZWNQ04qVHiPNq371Yj5FL
Yara
  • Suspicious_Obfuscation_Script_2 - Suspicious obfuscation script (e.g. executable files)
VirusTotal Search for analysis
Name 5b319043de7ec491_ca403090-bfd0-4425-9162-d452436bfe93.dmp
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\reports\ca403090-bfd0-4425-9162-d452436bfe93.dmp
Size 867.2KB
Processes 2904 (chrome.exe)
Type Mini DuMP crash report, 10 streams, Tue Aug 20 09:44:19 2024, 0x0 type
MD5 6d2329e10130a2377749eef0d89ccf5c
SHA1 51b00381ac7d541754b05298b942a470f1fc49c1
SHA256 5b319043de7ec49128552ef71caf610da222761c3ce3f5ff1619685f2e8b5ce8
CRC32 F5523C72
ssdeep 6144:qlD/jYOuZQIZz6wvSglAuIfk6LG33I+85l:2jKZv53yH
Yara
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 4b87b775cdb265ec_netutil.dll
Submit file
Filepath C:\Users\test22\AppData\Local\netutil.dll
Size 76.5KB
Processes 1632 (certutil.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 a2e7b040728000791dfa5ee3204778f5
SHA1 bff7eb5913c74ba9f86d42e3840927e49f918336
SHA256 4b87b775cdb265ecd872a71be810d7816d0d8b54663b3c536862db098874f288
CRC32 28F7D9B0
ssdeep 1536:Sv5tSmRD/e+7dqDtdhPmvB+ujHrYwEUN08ZvL3pLk:S+GDqJYB+is8pZvL3p
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Network_Downloader - File Downloader
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name d37fcb160d37cfdd_settings.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
Size 40.0B
Processes 2836 (chrome.exe)
Type data
MD5 a3122d4670c51912628b97bdd6fffb80
SHA1 45d2e3060e09f46071125d6125983c81ae4970a1
SHA256 d37fcb160d37cfddefea794094044b7e588d44c4883c72ba0ef1503e5f9c7d59
CRC32 77809701
ssdeep 3:FkXD3WyqUm:+ix
Yara None matched
VirusTotal Search for analysis