popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b6af6b03c72c58f9_mlzmfgjd.jpg
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\mLzmfGjd.jpg
Size 57.2KB
Processes 2168 (Synaptics.exe)
Type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x768, frames 3
MD5 1cc74ff265b18db031d1eb8c37172d36
SHA1 523c5bf59d590f3a34134502a3a92e17e64226d2
SHA256 b6af6b03c72c58f994d37a17c54d46d2aa482e71d68c1fe499b87538f5a5ddff
CRC32 38394164
ssdeep 1536:esdWsAcx/etvrAT+Jd1yGJiuo7xyFZJFG:ZdWmxGRrULvAFXA
Yara
  • JPEG_Format_Zero - JPEG Format
VirusTotal Search for analysis
Name 4de423e08d7f43a2_ssllibrary.ddl
Submit file
Filepath C:\ProgramData\Synaptics\SSLLibrary.ddl
Size 9.3MB
Processes 2168 (Synaptics.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 320895917b44899d1c7c0a5a051c8b06
SHA1 c75aa811222babc1259c53121d3ebd7a1d054d39
SHA256 f98712778a8428ac8ca2018414b3d6ca145579d0f9b9c8b0ce6f5d1e24b4a78b
CRC32 982B0C8C
ssdeep 24:GZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZG:F
Yara None matched
VirusTotal Search for analysis
Name 05b222d350573106_synaptics.exe
Submit file
Filepath c:\programdata\synaptics\synaptics.exe
Size 753.5KB
Processes 1072 (win11.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 64c0a5b375f1ab0c44808320d5af9e84
SHA1 f24c7694e6cf1763c1a98bd1a27152bed1ebff82
SHA256 05b222d35057310611697b4d0ee99656f9956bd421785aedfa3b928000f07801
CRC32 042074EE
ssdeep 12288:aMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9I5r:ansJ39LyjbJkQFMhmC+6GD9G
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • mzp_file_format - MZP(Delphi) file format
VirusTotal Search for analysis
Name b9eae90f8e942cc4_synaptics.dll
Submit file
Filepath C:\ProgramData\Synaptics\Synaptics.dll
Size 15.0KB
Processes 2168 (Synaptics.exe)
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 c0ef4d6237d106bf51c8884d57953f92
SHA1 f1da7ecbbee32878c19e53c7528c8a7a775418eb
SHA256 b9eae90f8e942cc4586d31dc484f29079651ad64c49f90d99f86932630c66af2
CRC32 9466E8B5
ssdeep 192:n+s61A/0LiwxqfKD6Vk/gqWhiQ7ST92s2APu4Tk8QjcW5tPx:lx0iwxqsRQmT92sPuR8Azr5
Yara
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • IsPE32 - (no description)
  • mzp_file_format - MZP(Delphi) file format
VirusTotal Search for analysis
Name a5d020faf8a41bb3_o87ytus.ini
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\o87yTus.ini
Size 1.6KB
Processes 2168 (Synaptics.exe)
Type HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
MD5 c483f76065b42086b8a8db5d00043f25
SHA1 0342ee88d974d09821a11d394545b44294647522
SHA256 a5d020faf8a41bb367a2fd0af0e37100bd190d0f6548f9e93159f33a5cafae49
CRC32 4898D4C3
ssdeep 24:GgsF+05XSU6pepPQfkZbc6cn1BZdAe1nCr1LTHm6D9viLRIxv+5A:GgK+W+pAZewRDK4mW
Yara None matched
VirusTotal Search for analysis