Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
04.29 05:04
tomcaterror.bmpqoq
04.29 04:04
qoq.ps1
04.29 04:04
Important_Document.pdf...
04.29 04:04
dllbase64reverse.txt.exe
04.29 10:04
RuntimeBroker.exe
04.29 10:04
2555d50c-0b7e-4aa3-8d8...
04.29 10:04
csr.bin
04.29 10:04
test.exe
04.29 10:04
FreePhotoShop%20Meme%2...
04.29 10:04
discord.exe

Latest News
04.30 07:04
RSAC 2025 executive in...
04.30 07:04
RSAC 2025 executive in...
04.30 07:04
Steuergeld finanziert ...
04.30 07:04
DOJ Google Antitrust C...
04.30 06:04
Securing AI at the Cor...
04.30 06:04
RSAC 2025 executive in...
04.30 06:04
Role of Cyber Threat I...
04.30 06:04
RSAC 2025 executive in...
04.30 06:04
RASC 2025 executive in...
04.30 06:04
How AI Is Evolving Sec...

Dropped Files | ZeroBOX

Name	3b046d30dc2e6021_18077437.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\18077437.dat
Size	36.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`e185515780e9dcb21c3262899c206308`
SHA1	`230714474693919d93949ab5a291f7ec02fd286f`
SHA256	`3b046d30dc2e6021be55d1bd47c2a92970856526c021df5de6e4ea3c4144659b`
CRC32	`25EF2A64`
ssdeep	`24:TLNg/5UcJOyTGVZTPaFpEvg3obNmCFk6Uwcc85fBvlllYu:TC/ecVTgPOpEveoJZFrU1cQBvlllY`
Yara	None matched
VirusTotal	Search for analysis

Name	160a426ff2894252_jquery-3.3.1.min.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\jquery-3.3.1.min.js
Size	84.9KB
Processes	2828 (askinstall42.exe)
Type	ASCII text, with very long lines
MD5	`a09e13ee94d51c524b7e2a728c7d4039`
SHA1	`0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae`
SHA256	`160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef`
CRC32	`609A5B84`
ssdeep	`1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69`
Yara	None matched
VirusTotal	Search for analysis

Name	0a65dd8cf9bff0c8_manifest.json Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\manifest.json
Size	1.2KB
Processes	2828 (askinstall42.exe)
Type	ASCII text, with very long lines, with CRLF line terminators
MD5	`05c771fb730456d1ccbd92d92c56066e`
SHA1	`1a024c8e1232e10c483a9eb6e0d9fd5ca3d193e0`
SHA256	`0a65dd8cf9bff0c84677f6f63db8fcc9a76c828eb9caaea0808166e873a53f6f`
CRC32	`25B10CD2`
ssdeep	`24:1HgUpRWT0ATbggRDBT4uZWHjKRsU1jM3vYs54CErufX71UaHlmxKw/xKFF838z6F:RWT20TZWGquNuffFm5In838z6lv`
Yara	TESTYARA - (no description)
VirusTotal	Search for analysis

Name	9434dd7008059a60_icon.png Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\icon.png
Size	6.9KB
Processes	2828 (askinstall42.exe)
Type	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
MD5	`c8d8c174df68910527edabe6b5278f06`
SHA1	`8ac53b3605fea693b59027b9b471202d150f266f`
SHA256	`9434dd7008059a60d6d5ced8c8a63ab5cae407e7152da98ca4dda408510f08f5`
CRC32	`34316141`
ssdeep	`192:arFa6ynwcj6POoDbxN9EUQYZRia+ce/lkygkkl0:apa6mhjshD9QYZR3qkr/S`
Yara	PNG_Format_Zero - PNG Format
VirusTotal	Search for analysis

Name	fc7e184beeda61bf_aes.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\aes.js
Size	13.0KB
Processes	2828 (askinstall42.exe)
Type	ASCII text, with very long lines
MD5	`4ff108e4584780dce15d610c142c3e62`
SHA1	`77e4519962e2f6a9fc93342137dbb31c33b76b04`
SHA256	`fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a`
CRC32	`7FCBF36E`
ssdeep	`192:9pQGDuD690MPdz8Ui015ll1I57I2Tru6h0hNmHV+m9eIfyAqYfinNVYEUUFJZmUY:9OiT0wz8Uiw/1S7DegkcHpeIuScZbAX`
Yara	TESTYARA - (no description)
VirusTotal	Search for analysis

Name	cb15370d74da948e_debug.log Submit file
Filepath	C:\Program Files (x86)\Google\Chrome\Application\debug.log
Size	198.0B
Processes	2176 (chrome.exe)
Type	ASCII text
MD5	`0ebbf2d7387bfcade9492c9910d9e70f`
SHA1	`7780552216e347469910aa93a07a18247b352e5c`
SHA256	`cb15370d74da948e1799f99c6d1ca349797c7f382d487cf83c1841f354955a50`
CRC32	`35CA7FB0`
ssdeep	`3:qUXVkkRyksnRAsH84LGGNUTSWErX4SRV4Q1Kd6s+lVU6kRyksnRAsH84LGGNUTSG:qU6FRU4LGGmm3V4v8dFRU4LGGmm3V4vF`
Yara	None matched
VirusTotal	Search for analysis

Name	a7e239168cdc039b_aedd589c-4b41-4c26-b2e5-dd491732fc8d.dmp Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\reports\aedd589c-4b41-4c26-b2e5-dd491732fc8d.dmp
Size	893.8KB
Processes	2176 (chrome.exe)
Type	Mini DuMP crash report, 10 streams, Thu Jan 20 06:16:44 2022, 0x0 type
MD5	`13bcddffe0b401de18a30fa983f36fb7`
SHA1	`9df0ce3d64e1d4926cf7305a1b441905619bf9c0`
SHA256	`a7e239168cdc039baeb4dd7e22759db5726204cc5f8a2b25ba1f8234a94083a5`
CRC32	`96E2847B`
ssdeep	`12288:b6CWlzFp6tN3uwwz2ksMmmj5T4lrG/9/k575jT45bBxYIY0GlE7l052f3Dbf8YVD:26/e`
Yara	Malicious_Packer_Zero - Malicious Packer Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	5a3ec8851acd1bb6_CrashpadMetrics.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
Size	1.0MB
Type	data
MD5	`aea7ffdba870ea9d59d542f890fecc8c`
SHA1	`2efe83750eebdfacc148d376cc4edfdf8e5d2ac9`
SHA256	`5a3ec8851acd1bb62d270e9bdca9625da9f34df69ef39608bc2ce3de68960056`
CRC32	`CB7B9D10`
ssdeep	`12:bHiZXAVMMOKEKSCemJKlkQPdl/JG89Hy3aJ0oMFgigpCbUycIXuYJ05:bwQOMzBS+Mk0/JvWoMeigp1y5eYW`
Yara	None matched
VirusTotal	Search for analysis

Name	4d89b6ef609496bd_secure preferences Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Size	35.5KB
Processes	2828 (askinstall42.exe)
Type	UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5	`7c6e9755a795dd39621ff7725a1f0fe0`
SHA1	`7f2bce138a3d560c83242ad5ed6ebf14f31700d7`
SHA256	`4d89b6ef609496bd4df775f5bef5d9d9b8019987069fd5bdbf27d5ea092a0ec9`
CRC32	`82F15529`
ssdeep	`768:maYR70QApKYzL75V1kXqKf/pUZNCgVLH2HfCrZRR2nuVdS/oplK:GRoLzL9Qnwdxe`
Yara	TESTYARA - (no description) Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	6ba7cc47931205ae_BrowserMetrics-5F2CDF32-998.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-5F2CDF32-998.pma
Size	8.0MB
Type	data
MD5	`da46384c648ccc3bc125719b6c764a63`
SHA1	`e0ef3f8cb86cad846aa5f26d1551b6030b2a3c63`
SHA256	`6ba7cc47931205ae59a1f3b1fb1368c3987cdf98c0ba37eb6ccc4c37a3c917fc`
CRC32	`9A372833`
ssdeep	`6144:31TDVXkmiRsOXckF2KK4nj0Pm3FNN2MgkxaHI9UouDb8:pZAzuo9`
Yara	TESTYARA - (no description)
VirusTotal	Search for analysis

Name	282308ebc3702c44_pad-nopadding.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\pad-nopadding.js
Size	268.0B
Processes	2828 (askinstall42.exe)
Type	ASCII text
MD5	`0f26002ee3b4b4440e5949a969ea7503`
SHA1	`31fc518828fe4894e8077ec5686dce7b1ed281d7`
SHA256	`282308ebc3702c44129438f8299839ca4d392a0a09fdf0737f08ef1e4aff937d`
CRC32	`17D655FD`
ssdeep	`6:UonrLqmcxXDFXBkamjSPuNhsrIe2tKGXfGZwn:UoqmcZD5mamSw9tKGXfGqn`
Yara	TESTYARA - (no description)
VirusTotal	Search for analysis

Name	0e3dc4ccd259716b_settings.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
Size	40.0B
Processes	1664 (chrome.exe)
Type	data
MD5	`62325aa04f35880232330f344df8018c`
SHA1	`58fe9532ee8d96e8d12448408cf3ccf9d0542543`
SHA256	`0e3dc4ccd259716b24376fddb4ee07a6c227f8bcb2532a7dd75bb36a4290e7cc`
CRC32	`6F0BEA7C`
ssdeep	`3:FkXJRYcTUM:+wcTb`
Yara	None matched
VirusTotal	Search for analysis

Name	a1064146f622fe68_background.html Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\background.html
Size	786.0B
Processes	2828 (askinstall42.exe)
Type	HTML document, ASCII text
MD5	`9ffe618d587a0685d80e9f8bb7d89d39`
SHA1	`8e9cae42c911027aafae56f9b1a16eb8dd7a739c`
SHA256	`a1064146f622fe68b94cd65a0e8f273b583449fbacfd6fd75fec1eaaf2ec8d6e`
CRC32	`DCC24689`
ssdeep	`24:OCXspY0w5LYKJ8oRpOFQxaVxtNVxHVxiaPNVxi1gV4T:tcpo9YoRpOE4tZTNhgT`
Yara	None matched
VirusTotal	Search for analysis

Name	03164b1ac43853fe_mode-ecb.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\mode-ecb.js
Size	604.0B
Processes	2828 (askinstall42.exe)
Type	ASCII text
MD5	`23231681d1c6f85fa32e725d6d63b19b`
SHA1	`f69315530b49ac743b0e012652a3a5efaed94f17`
SHA256	`03164b1ac43853fecdbf988ce900016fb174cf65b03e41c0a9a7bf3a95e8c26a`
CRC32	`6744B21E`
ssdeep	`6:UonrLqmcxXDFXBkamjSPuND5Z9sE/A6M8IvHosCkV/hqN3+8R+WkV/hqNhAYa83V:UoqmcZD5mamSS5ZpXM8RjNhRfNDlv3V`
Yara	TESTYARA - (no description)
VirusTotal	Search for analysis

Name	da8e3ac7a1e0571a_metadata Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad\metadata
Size	114.0B
Processes	2176 (chrome.exe)
Type	data
MD5	`6473e8fb779479d092c4b41166842cbb`
SHA1	`ac5876e3584f6eed41d7c89cac0ecbb662b97c64`
SHA256	`da8e3ac7a1e0571afb09062043f8d06ff32a5cbfced312adef8b759bc9f5f2ca`
CRC32	`C0D5483A`
ssdeep	`3:mTll+XlaulW/lOMtvlJg2RHyT6Idn:mTlEaulyxRHORn`
Yara	None matched
VirusTotal	Search for analysis

Name	77547e61aa6bcc48_BrowserMetrics-61E8FE40-680.pma Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-61E8FE40-680.pma
Size	8.0MB
Type	data
MD5	`e8666529761a9832dcc49c22785fab82`
SHA1	`864a2db5f2b07de0d1b5dffd3807ff219a54cd3c`
SHA256	`77547e61aa6bcc485b5c3e68d4756545ea73825b38deb0c7b17ac0cc9caa5b1b`
CRC32	`B9CD7CD9`
ssdeep	`192:PWh5KH1LepNlzT8ZkdTkLjt9ZC7P6lQ6A3h:PWhqLydg4kLj9ESlv`
Yara	None matched
VirusTotal	Search for analysis

Name	6ec867dc1caa77ec_18077453.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\18077453.dat
Size	18.0KB
Type	SQLite 3.x database, last written using SQLite version 3021000
MD5	`f3a100cba30b2a07a7af8886e439024e`
SHA1	`a454cca0db028b4d0fb29fa932c9056519efe2cf`
SHA256	`6ec867dc1caa77ecfd8e457d464b6bebc3be8694b4c88734fa83d197c0b214cc`
CRC32	`72CF6AF8`
ssdeep	`24:LLI10KL7G0TMJHUyyJtmCm0XKY6lOKQAE9V8MffD4fOzeCmly6Uwc6KaW:oz+JH3yJUheCVE9V8MX0PFlNU1faW`
Yara	None matched
VirusTotal	Search for analysis

Name	c430875f6c942137_background.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\background.js
Size	18.7KB
Processes	2828 (askinstall42.exe)
Type	UTF-8 Unicode text, with very long lines, with CRLF line terminators
MD5	`6e85879ae77d411d4b62196867e2cf0d`
SHA1	`186ff7159fa7bf9305526def396dc8b7f665e01f`
SHA256	`c430875f6c942137c782a3a6bdfb660bc60a795c4433b6e8dfd04ff2ae99b91b`
CRC32	`9D74B385`
ssdeep	`384:pS3x3MW65buWKvk0foAivMSk5AzzyzirNmXI9K+iyzkDeTU2X5L3mFr3SZJhwmJx:pQt/65buWKvk0foAivMSk5Az2+rN2I9L`
Yara	None matched
VirusTotal	Search for analysis

Name	57cb677b339ace75_content.js Submit file
Filepath	C:\Users\test22\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn\10.59.13_0\js\content.js
Size	3.8KB
Processes	2828 (askinstall42.exe)
Type	ASCII text, with very long lines, with no line terminators
MD5	`c449819b95f4753dc7bf03cbb3577bf3`
SHA1	`5e721b3d4dc28351009c8584a8362c9d3668e026`
SHA256	`57cb677b339ace75ffadb35d0631cf2c677e780f6616fdf7320ee2b8cd34bb37`
CRC32	`B55ADCE3`
ssdeep	`96:L4nKOglavznz/92P4ZzjgMTNMXt/eF5LlRStgt/eF5LlRS3iYK:8nMl+zAPizjgMTNMXtS5ZRStgtS5ZRSQ`
Yara	None matched
VirusTotal	Search for analysis