popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name d6431d5645fffd05_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 1880 (powershell.exe)
Type data
MD5 260d23ce04a8f8555a73b7d2dc15e911
SHA1 ebad746fb7de847c50f7502a44f6e35534733efd
SHA256 d6431d5645fffd05a23166d630253bc7ce8c099cf6e9c956f8ae5e1249ee8588
CRC32 11D6B213
ssdeep 96:ctuCeGCPDXBqvsqvJCwo5tuCeGCPDXBqvsEHyqvJCworSP7Hwxf2lUVul:ctvXo5tvbHnorrxQ
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name a9220271c0eb79e5_d93f411851d7c929.customDestinations-ms~RF38b0d1.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RF38b0d1.TMP
Size 7.8KB
Type data
MD5 b0c9ff441742f3847ea27da9dee7f2cd
SHA1 c42a1eb32ba953a0ce5d8635caabf71b5b281495
SHA256 a9220271c0eb79e5750e0d0e62058ecac560e09cdf9e82ef61aeeabada5d48a4
CRC32 0BBCAB1A
ssdeep 96:RutuCOGCPDXBqvsqvJCwo+utuCOGCPDXBqvsEHyqvJCworSP7Hwxf2lUVul:UtvXoxtvbHnorrxQ
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 5f16d3a21854459b_kursorresourcesv2.zip
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\KursorResourcesV2.zip
Size 10.4MB
Processes 1880 (powershell.exe)
Type Zip archive data, at least v1.0 to extract
MD5 5ff08328f98eb4b014ceb453261042e0
SHA1 aba11659c5f24b4a382652d1b0dc1bc013f029e6
SHA256 5f16d3a21854459b6fe5e9f8836cb44e1747e5e57abe6a57b8c39c3df5417107
CRC32 B728DF28
ssdeep 196608:v983mgzrhH+A0q4cBEZb/jHnXiP3UY6No7or95ZpknYUswf0JuXV69XNnqvml1N2:vW3mgzVMZjHyvUVN6U95LYPsw0lNZz5y
Yara
  • zip_file_format - ZIP file format
VirusTotal Search for analysis