popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name b34be3a023aad603_h.ps1
Submit file
Filepath C:\ProgramData\h.ps1
Size 4.1KB
Processes 2356 (powershell.exe)
Type ASCII text, with very long lines, with no line terminators
MD5 572cd80a96960b052bccc8b81778f6e9
SHA1 73f631112e7ba3a1ac9b67d2ad04513336c0d0c2
SHA256 b34be3a023aad6036e89157a293035adba7e56e9ae3f7cc5241052329646db0b
CRC32 3A1EE922
ssdeep 96:j31ezyCzDMo/8NlSdT3Cta3PVYrqpOC6jc054TTmgxM:rMmOMiMOeWVYGONcC4v0
Yara None matched
VirusTotal Search for analysis
Name 9aed78d5a5a42ded_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 1608 (powershell.exe)
Type data
MD5 d56b94b6e77d80f62e9d206587dd54f8
SHA1 2f418e0db7d7306a336840905fa19bb8abd02bd2
SHA256 9aed78d5a5a42ded2c6818d91353fb8b5df860969e1c3ea155815b39e165697a
CRC32 E68A73A9
ssdeep 96:UtuC6GCPDXBqvsqvJCwoBtuC6GCPDXBqvsEHyqvJCworFS7HwxWlUVul:UtbXoBtbbHnor/xo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name 13bf7b3039c63bf5_41026
Submit file
Filepath C:\ProgramData\41026
Size 3.0B
Processes 2356 (powershell.exe)
Type ASCII text, with CRLF line terminators
MD5 21438ef4b9ad4fc266b6129a2f60de29
SHA1 5eb8e2242eeb4f5432beeec8b873f1ab0a6b71fd
SHA256 13bf7b3039c63bf5a50491fa3cfd8eb4e699d1ba1436315aef9cbe5711530354
CRC32 8E51ABD1
ssdeep 3:s:s
Yara None matched
VirusTotal Search for analysis
Name a9b1dc8eaa5fcd00_d93f411851d7c929.customDestinations-ms~RFcaa1d7.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RFcaa1d7.TMP
Size 7.8KB
Processes 2356 (powershell.exe) 1608 (powershell.exe)
Type data
MD5 c1d8708bab1e838a2deda26d58bb8d42
SHA1 95d39e75a804752961c139bb6c0b67f84f685035
SHA256 a9b1dc8eaa5fcd0034694cf9742ae915a5932142a1477c3ab6fada45d98750b2
CRC32 E71AF2A2
ssdeep 96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworFS7HwxWlUVul:QtbXoFtbbHnor/xo
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis