popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a1dad75ae966830f_R5T3HKE5.txt
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Cookies\R5T3HKE5.txt
Size 309.0B
Type ASCII text
MD5 f804cf5bc46bdc9aa8023878219312b5
SHA1 433819a76e7cb5cef1e8fb34288750d1fdb4de1d
SHA256 a1dad75ae966830fcd31e694d476aa11e69cc2ea60aa7bb2cd838cf8545040c8
CRC32 037015B4
ssdeep 6:zCPrX7xBXiGFrLKH2lMHXIgUVRJw5CPrX+RfKh4QLKH2lMHXIgUVRJwt:zU9x/KRXIzJwU+khdKRXIzJQ
Yara None matched
VirusTotal Search for analysis
Name ffb18189c8e04084_Cookies
Submit file
Filepath C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Cookies
Size 36.0KB
Type SQLite 3.x database, last written using SQLite version 3033000
MD5 c19826403c4c8e5086a8d49e37c94838
SHA1 4d19768231a3373fb0fa91d5513e21ad772b137b
SHA256 ffb18189c8e040846bba547b243fda347516329d58a44b26fd8616549249e077
CRC32 36EBD488
ssdeep 48:ToLOpEO5J/KdGU1/X2ydikE6HDHCp0mSzW34KXEw:ENwudLE6jOSzLw
Yara None matched
VirusTotal Search for analysis
Name e3b0c44298fc1c14_1gcntfm3.tmp
Empty file or file not found
Filepath C:\Users\test22\AppData\Local\TwvZSERNwjfFclMxqcdPQMCuz\IMG_0564_65_13.pdf_Url_u0h5asmc0ccwbs0ac3lmb4yoodymgigi\1.841.353.95\1gcntfm3.tmp
Size 0.0B
Type empty
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
CRC32 00000000
ssdeep 3::
Yara None matched
VirusTotal Search for analysis
Name 98ee502b680d2dce_user.config
Submit file
Filepath c:\users\test22\appdata\local\twvzsernwjffclmxqcdpqmcuz\img_0564_65_13.pdf_url_u0h5asmc0ccwbs0ac3lmb4yoodymgigi\1.841.353.95\user.config
Size 2.7MB
Processes 5032 (IMG_0564_65_13.pdf)
Type XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
MD5 b7d30b9b4c6048cc4f0ffa90b633b7dc
SHA1 ba5f8dc3968969e1d88ab7784dfda73d7f7bdb76
SHA256 98ee502b680d2dceff6580b534a5db21af2a2e2e7cb3ae075133dc5c51dfa4f3
CRC32 B7962D43
ssdeep 12288:1BPZ+Khb39aGyXJZSf3vUEYx99NVvz7T1XHZFla4hx5FLD3ptX7a5PiB3xcaerIN:/bcuMzQPF2/H
Yara None matched
VirusTotal Search for analysis
Name 19a8f34660080bd7_index.dat
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
Size 32.0KB
Type Internet Explorer cache file version Ver 5.2
MD5 9354a5a02533ed4cf90b8c547cfcb95b
SHA1 dfc84a2b78ee174f3ee4558c3a6ae9b4042c3b9d
SHA256 19a8f34660080bd707e8d377a76304fb3e90e125c69cf18d96318d49fda47653
CRC32 97BD9782
ssdeep 48:qAEEVULD0BfyEV2tWSlphRRwkPAMyaz4I0GNVVN:qAEEVIDI2H5KqBv4I00
Yara None matched
VirusTotal Search for analysis
Name f825dd89181e7435_d93f411851d7c929.customDestinations-ms~RF2913b86.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms~RF2913b86.TMP
Size 7.8KB
Processes 7204 (powershell.exe) 4888 (powershell.exe)
Type data
MD5 61d3b003e73f968491bb9de05318fcbd
SHA1 abb40732bf72a072c5b176449fdb8f1c56383e03
SHA256 f825dd89181e743525684aff8d99cc6d78046e461147c33b6f7a182b98c58ea9
CRC32 76116DE9
ssdeep 96:wtuCiGCPDXBqvsqvJCwoNtuCiGCPDXBqvsEHyqvJCworc7HwxGlUVul:wt7XoNt7bHnorXxY
Yara
  • Antivirus - Contains references to security software
VirusTotal Search for analysis