popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 44e8aa0601fffe82_590aee7bdd69b59b.customDestinations-ms~RF93fd60.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms~RF93fd60.TMP
Size 7.8KB
Processes 2860 (powershell.exe) 3064 (powershell.exe)
Type data
MD5 ee6cfd78f72f03663db2a7df0c696dd7
SHA1 56126e81a5f6577f8e24a890185d0c9eb600fa02
SHA256 44e8aa0601fffe82c494bbc7d7280aa3bc5e90effe2aee2d716d5716e1d6b568
CRC32 F27137C4
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCworu4tDHXyGlUVul:EtCgXoRtCgbHnorBTyY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 52bfc9097e39e4c2_windowsupdate.bat
Submit file
Filepath c:\users\test22\desktop\windowsupdate.bat
Size 524.0B
Processes 2544 (panel1.exe)
Type DOS batch file, ASCII text, with CRLF line terminators
MD5 dd4f1247ad6c16dd9970f765d03817d5
SHA1 3848a11f17481a8c61bbdf8861092ca4e6d8e2c1
SHA256 52bfc9097e39e4c21f933f2977fd673f10e4bfb124731a820ad4ee0006aebfb1
CRC32 8D265E3D
ssdeep 12:0G81k5u+mJSyYVJ69xzldUjzc981kkG3why5aC981kUM4aya:0G5u+iS769xJazIR3ww5aSDca
Yara None matched
VirusTotal Search for analysis