popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 13bf7b3039c63bf5_4214
Submit file
Filepath C:\ProgramData\4214
Size 3.0B
Processes 2784 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 21438ef4b9ad4fc266b6129a2f60de29
SHA1 5eb8e2242eeb4f5432beeec8b873f1ab0a6b71fd
SHA256 13bf7b3039c63bf5a50491fa3cfd8eb4e699d1ba1436315aef9cbe5711530354
CRC32 8E51ABD1
ssdeep 3:s:s
Yara None matched
VirusTotal Search for analysis
Name 34d5513ac2ef79d0_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2892 (powershell.exe)
Type data
MD5 4e2b53eab6d444a25aefbf56d22b8e87
SHA1 ab9aeffe00993d969547a9ad01063269992db616
SHA256 34d5513ac2ef79d088c9636de152397aa16126e13c5143d2d34b4aee835d6634
CRC32 A98393C8
ssdeep 96:zktuCcBGCPDXBqvsqvJCwowktuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:zktCgXowktCgbHnorLxY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name c02b8f42116a77e5_e.ps1
Submit file
Filepath C:\ProgramData\e.ps1
Size 4.2KB
Processes 2784 (powershell.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 a9ba6b655a20f26792ecf0e5b0b0adce
SHA1 7970ee7bdc3f61a8989830322832300e95480193
SHA256 c02b8f42116a77e5653849fa1e4b9dd8d9bf2351ac54f3abf4b7c8b77121a531
CRC32 1CC7ED3C
ssdeep 96:rr3QXyHrRk6j5+INjMUhMhmHDleaFPc2z010xu/vO8:rz/LRf5bNjVdHxdFPxzr2t
Yara None matched
VirusTotal Search for analysis
Name b7c225ef3cc3e875_d93f411851d7c929.customDestinations-ms~RF134fb9.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RF134fb9.TMP
Size 7.8KB
Processes 2784 (powershell.exe) 2892 (powershell.exe)
Type data
MD5 81ca4510272caf505e8091e9a28cb716
SHA1 71414aeec9f1e4a6f5a461b01700cc9cc992cd9e
SHA256 b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf
CRC32 FC31E90F
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis