popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name d5d974471251dd18_analyses
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Analyses
Size 870.3KB
Processes 2060 (RedeemShore.exe)
Type data
MD5 88b9d404b8ce6769bdb42f055702288b
SHA1 d28ca8b70e36eda2dac9df1ffdc5c74f2f3bd2f5
SHA256 d5d974471251dd18f21de604563b8d0648efc503700d95a314922497847c7616
CRC32 FCD00E6D
ssdeep 12288:OpV0etV7qtINsegA/rMyyzlcqakvAfcN9b2MyZa31tqoPTdFbgawV2501:OTxz1JMyyzlohMf1tN70aw8501
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 91826892a20c4fb2_actively
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Actively
Size 2.4KB
Processes 2060 (RedeemShore.exe)
Type data
MD5 06a4f03a0d80deb5edfaee069afb1f8f
SHA1 bbc6f4084eadf3b5f851534453d07c134e5d6fce
SHA256 91826892a20c4fb2589d0d4e7b58979bcaf5fcabe6c2885c112b44c924cbffcc
CRC32 D63214ED
ssdeep 48:wn4xqtUzrCrt+ikNv9mJHWxPrhBlA1FygzqyIsJj/G09CAi6n:1xgUzr4tgOwVAfBzDICS09CAi6n
Yara None matched
VirusTotal Search for analysis
Name 7a69b3ccb8501d91_min.bat
Submit file
Filepath c:\users\test22\appdata\local\temp\min.bat
Size 9.6KB
Processes 2060 (RedeemShore.exe) 2188 (cmd.exe)
Type ASCII text, with very long lines, with CRLF line terminators
MD5 c2a3a2ffd0e419f6754b82ae78b9e37b
SHA1 0d7e37f0326f962c2eb2d78d9980a7846d77546c
SHA256 7a69b3ccb8501d914f127e44f94f7545b18dd77175e0e5778cdb054a82dd107c
CRC32 3A0B1282
ssdeep 96:OKSFNXc2jCeXlsHtFFbjRRzGbUbGiyCdJK7gkLpvvzMbZ4NSKKAmaSxlyUn+5a1o:iTc2mPtDOK0AJK71g6NDw7TZS41peku
Yara None matched
VirusTotal Search for analysis
Name d8b7c7178fbadbf1_soldiers.pif
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\353685\Soldiers.pif
Size 872.7KB
Processes 2188 (cmd.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 18ce19b57f43ce0a5af149c96aecc685
SHA1 1bd5ca29fc35fc8ac346f23b155337c5b28bbc36
SHA256 d8b7c7178fbadbf169294e4f29dce582f89a5cf372e9da9215aa082330dc12fd
CRC32 388D364B
ssdeep 12288:WpV0etV7qtINsegA/rMyyzlcqakvAfcN9b2MyZa31tqoPTdFbgawV2501:WTxz1JMyyzlohMf1tN70aw8501
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 9bd49f96fc0b3a71_skirts
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\Skirts
Size 6.8MB
Processes 2060 (RedeemShore.exe)
Type data
MD5 f4c2f38a3eec031af4618c5d74dd4aad
SHA1 de6379793a7315784321c7af504a52090b153967
SHA256 9bd49f96fc0b3a7143fd550b2d550ddf151e438bdf15514a065e7f287d076dbd
CRC32 7785BC66
ssdeep 98304:qIF9RLNMbnpAeNKOneq/uwGVip1R/ZORy+LbmYLoC31haQj4PN+iXdHsKewkvP8x:q+9RLuKOeRVkZOvKYL3Fhl8+zAx
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_nspC493.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\Temp\nspC493.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis