popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e58ab2b3ca38b05f_user.config
Submit file
Filepath c:\users\test22\appdata\local\timerstate\ugopoundx.exe_url_hraub2tyhnev0ij52d2ymjgugl0oype2\3.239.792.626\user.config
Size 1.9MB
Processes 1896 (ugopoundx.exe)
Type XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
MD5 d94eb9306b3c7dec457d1deb85a13528
SHA1 0a228aed330e7b2af9bcad60050dc4f20fe972d3
SHA256 e58ab2b3ca38b05f66ad53f2958a9c2746181a719159ea18c4f1712622676b46
CRC32 41B86BB1
ssdeep 12288:ntuovdUp8F3GM8Yw3We7/oz0jFYfXd5YddmevLZ/R6lnsPF/G9r3DAeYzG0/:cVje3seo
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_32sgeww2.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\TimerState\ugopoundx.exe_Url_hraub2tyhnev0ij52d2ymjgugl0oype2\3.239.792.626\32sgeww2.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name cf11d6b3c18d4c02_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2624 (powershell.exe)
Type data
MD5 f2f5505600e2895c007b3ff3cfe3d4aa
SHA1 f0235a3c8056872d55eeef803d1bc33bac37a753
SHA256 cf11d6b3c18d4c02466b670bcb0394ac49382e6a87ad58d2561f2660922b586c
CRC32 9AF5ED3C
ssdeep 96:EtuCojGCPDXBqvsqvJCwoJtuCojGCPDXBqvsEHyqvJCworc7HwxGlUVul:Etu6XoJtu6bHnorXxY
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis