Dropped Files | ZeroBOX

Name	e82143029872c041_1986304783.msi Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\1986304783.msi
Size	2.1MB
Processes	2556 (setup.exe)
Type	Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: FleetDeck Agent, Author: FleetDeck Inc, Keywords: Installer, Comments: This installer database contains the logic and data required to install FleetDeck Agent., Template: Intel;1033, Revision Number: {35EF1994-7396-43D2-98D9-F43E60065D5C}, Create Time/Date: Wed Apr 20 17:55:02 2022, Last Saved Time/Date: Wed Apr 20 17:55:02 2022, Number of Pages: 500, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
MD5	`04381cf1f12960ae2d748820670c4337`
SHA1	`69a4cf6ef4871644fc7eeaae4720e0d8275a215c`
SHA256	`e82143029872c041297ec16187e17bb835504d8ee0e7baae9cdb413cd8480421`
CRC32	`BAAEC614`
ssdeep	`49152:YIv98QsI6PnpqMlONbXZbzXtm7nSLcD+1GwDGrk7aEhP7bj6cnUIA2:fvyQInTgNbXZnkwcK50k7Ltj6zO`
Yara	Malicious_Library_Zero - Malicious_Library Microsoft_Office_File_Zero - Microsoft Office File CAB_file_format - CAB archive file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check
VirusTotal	Search for analysis

Name	0cc54517f03d9c47_msi39d6d.log Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\MSI39d6d.LOG
Size	262.0B
Processes	2556 (setup.exe)
Type	Little-endian UTF-16 Unicode text, with CRLF, CR line terminators
MD5	`f79e78c1e94529580dc8d257296dfa82`
SHA1	`a5bf5361fa76a9c728cdea3dabd850f45b8db2de`
SHA256	`0cc54517f03d9c476bf2240e70b0dccbfcb79a340fadf3592cf68bae0f674fb2`
CRC32	`1FF4D99A`
ssdeep	`6:QydQGek5Yrsfcj+SkSBn+SkeaPW2KeElv2K8glJSh8WlH:QyWBkuscC4++2Ke5KVc59`
Yara	None matched
VirusTotal	Search for analysis

Name	c315908e9a30d2cf_fleetdeck agent installer.log Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\FleetDeck\FleetDeck Agent Installer.log
Size	223.0B
Processes	2556 (setup.exe)
Type	ASCII text
MD5	`5b5ef0c0b5350ad1a52ca9be74cd3144`
SHA1	`62b18247d6965cfeaed0ba483f8560ef52bf665d`
SHA256	`c315908e9a30d2cfc632a67a358ee588b1447d6f137bdaf5ec57e8e29c0ef4b6`
CRC32	`E9FC23E1`
ssdeep	`3:tQKVUnVdX5Ck7SsLZlPaBQIFS/g5aBQzDSgAX4LxGT82AGN8bFv+nVdX5CFBFGYM:iOcdIVQ4QQzUX4E8NGN8bgdIFBFetWF2`
Yara	None matched
VirusTotal	Search for analysis