popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 44e8aa0601fffe82_590aee7bdd69b59b.customDestinations-ms~RFa6559a.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms~RFa6559a.TMP
Size 7.8KB
Processes 2908 (powershell.exe) 744 (powershell.exe)
Type data
MD5 ee6cfd78f72f03663db2a7df0c696dd7
SHA1 56126e81a5f6577f8e24a890185d0c9eb600fa02
SHA256 44e8aa0601fffe82c494bbc7d7280aa3bc5e90effe2aee2d716d5716e1d6b568
CRC32 F27137C4
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCworu4tDHXyGlUVul:EtCgXoRtCgbHnorBTyY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 30d42a266ca03c48_lom.bat
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\IXP000.TMP\lom.bat
Size 16.0KB
Processes 2564 (MCxU5Fj.exe)
Type DOS batch file, UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5 a2817306cefa2036cfd1dc033b0a5734
SHA1 0c18b8602ae25ef0ca0be1d425df2b916686cc19
SHA256 30d42a266ca03c4857c539bc265dc77a00813c062c898a10a571646ccdb2b7fd
CRC32 ED9C1F1E
ssdeep 192:YiBR9W6MD7HL3uwjyMVR4RvG+KFNtOhnsNr7TvEZKIdHE:nR9WNfFR4nKFNysNr7TcoKk
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis