Dropped Files | ZeroBOX
Name 1ab0216b422a2ba8_regid.1991-05com.microsoftvsenhance.bat
Submit file
Filepath C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsEnhance.bat
Size 214.0B
Processes 2540 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 7e1b854b9970e9b3c22200496c37397f
SHA1 a0bba61020ac13cee4b5d78a6d7f59e0ec1367b8
SHA256 1ab0216b422a2ba8a3d16a67220506b6ba623cd8c71b2822184a5282de382223
CRC32 0CDF5F01
ssdeep 6:0+Ds8XI1R3KbQO0cq5IfrG47qnMwKh+dve/R8QJ2nw:zDs8XI1kbQpcqAaxrdG/BQw
Yara None matched
VirusTotal Search for analysis
Name 866fcf6e3eb48412_regid.1991-05com.microsoftvslabs.vbs
Submit file
Filepath C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsLabs.vbs
Size 267.0B
Processes 2540 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 2ce14732b886620f1fd3f38ee037825c
SHA1 d843d0c64b4b03871cbc4e114dea01c5bd8b189c
SHA256 866fcf6e3eb484128ddb4f682394c19d3ffc8ecfac0ad124e27b120080cd4969
CRC32 4565DE41
ssdeep 6:ZGftGTKFtNZXz7XGomQNqh6W7gL98G47qnMwKh+dve/R8QxayqvQn:ZGftR1nGMohW98GxrdG/BnqK
Yara None matched
VirusTotal Search for analysis
Name e6f797a2921cebca_regid.1991-05com.microsoftvslabsdata.ps1
Submit file
Filepath C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsLabsData.ps1
Size 1.2MB
Processes 2540 (powershell.exe)
Type ASCII text, with very long lines, with CRLF line terminators
MD5 21630e7ae7458813259f60fe6b23eeb2
SHA1 59ba6be010fe4e517f5a4bfb3e30e53d043a5767
SHA256 e6f797a2921cebca2faacd04478c7e5793e22463facf46cbaf965a247073ab76
CRC32 C1BB3AC5
ssdeep 12288:y0AVo361AC3ZEohiJFwEab7OFYZDhDnALoWxXruS7BqiY9bzJ5nDEUf03QHUunOL:ye1pxxVH0XQ
Yara None matched
VirusTotal Search for analysis
Name b7c225ef3cc3e875_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2540 (powershell.exe)
Type data
MD5 81ca4510272caf505e8091e9a28cb716
SHA1 71414aeec9f1e4a6f5a461b01700cc9cc992cd9e
SHA256 b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf
CRC32 FC31E90F
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis