popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 5d9c1a74316a29ad_f86f45f1a6f7f4d5.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\f86f45f1a6f7f4d5.customdestinations-ms
Size 6.8KB
Processes 1184 (powershell.exe)
Type data
MD5 80213fd6ccbb8be2f7a38ddc55e49da5
SHA1 5837c7f0869957cf2c0c8994b751a06d0748b1ce
SHA256 5d9c1a74316a29ad31a53ac80f03ce7c6fee3f2d06b0342f941d655d1fa3c6d8
CRC32 A3833784
ssdeep 48:2sJRuiTpWrpRQdCZZ0p7CZZFsJRuiTpWrpRiEHsdCZZ0p7CZZbbqKSb3+SogZolG:d/ugpbp9/ugpzEHAp0VS7HwxWlUVul
Yara None matched
VirusTotal Search for analysis
Name ca77d5b37aa7265f_test[1].sp
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\test[1].sp
Size 70.0KB
Processes 2368 (mshta.exe)
Type data
MD5 39b041ee6bd1105c5fd011dabe1bff25
SHA1 0fb50d9755914a15498fd6b3c7b8833bd65de0c0
SHA256 ca77d5b37aa7265f7a599479b5a9e89ab1f3906b15ac3bfc282f0eb19ce3c6c0
CRC32 5191488A
ssdeep 768:549w7eO7sQk72w9tpMTTM+oviqtuwZxWcI6C5EaFZ8VvEUlgLdqjCV7/s1G:549zTQk6Ee3oxbLmFEaH8VsTsjCi1G
Yara None matched
VirusTotal Search for analysis
Name a9b1dc8eaa5fcd00_d93f411851d7c929.customDestinations-ms~RF25e078.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RF25e078.TMP
Size 7.8KB
Processes 1192 (powershell.exe) 1844 (powershell.exe)
Type data
MD5 c1d8708bab1e838a2deda26d58bb8d42
SHA1 95d39e75a804752961c139bb6c0b67f84f685035
SHA256 a9b1dc8eaa5fcd0034694cf9742ae915a5932142a1477c3ab6fada45d98750b2
CRC32 E71AF2A2
ssdeep 96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworFS7HwxWlUVul:QtbXoFtbbHnor/xo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis