popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name cb113b67997206f3_recoverystore.{c798d22b-95a9-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C798D22B-95A9-11EB-BDE1-94DE278C3274}.dat
Size 4.5KB
Processes 8708 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 1e8586e9780648d4c2cb5bd083f02cac
SHA1 d2c5c88fde525eb96ccb57e06713d40ecc0e8d09
SHA256 cb113b67997206f35bcf71b8eb290a03f44a033613b15546b02e3ee90dfdee3a
CRC32 8A42BA33
ssdeep 12:rlfF2marEg5+IaCrI0F7+F2TzUrEg5+IaCrI0F7ugQNlTqbaxxOxz7ZNlTqbaxxA:rqL5/1k5/3QNlWWuNlWW
Yara
  • Microsoft_Office_Document_Zero - Microsoft Office Document Signature Zero
VirusTotal Search for analysis
Name aee1726b639f411d_3[1].jpg
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\3[1].jpg
Size 15.7KB
Processes 9076 (iexplore.exe)
Type data
MD5 bf898e7e1a5913c8aa0655301d638f02
SHA1 d254fe8214b98acc3cf2030b57fcc7baec1963b3
SHA256 aee1726b639f411d3898631728f77fb1ede10d8e3fc2f2efc6bcdbed4036b4e6
CRC32 7991A5B9
ssdeep 384:yREM7ohWxlMS8f8t5OfOBzfJd2/SogvnWKP9xSOvqTmq:qLxlM4WuP2a7vWi7kCq
Yara None matched
VirusTotal Search for analysis
Name 2a659ad7d6b70fd5_ad[1].htm
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\ad[1].htm
Size 35.9KB
Processes 9076 (iexplore.exe)
Type data
MD5 c11272ab28f4aeba8df734898e24df32
SHA1 6027dad15fd24dd27f29c241af9f7ba4fc9625e3
SHA256 2a659ad7d6b70fd5e8742d0a6039f7be1550024e87eccb71fc0ba62b1b0d1bf8
CRC32 B6F61E57
ssdeep 384:/nPA62kZvvmwh/8p0nqK6KCSPcWvxRk3/H2zWeKxpm1ADpVPth4BLJ:32kZV8paqK6KCSPcWvxRBWeKxpmmpWhJ
Yara None matched
VirusTotal Search for analysis
Name 3b75c11d3a04cc9c_snow[1].swf
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\snow[1].swf
Size 7.3KB
Processes 9076 (iexplore.exe)
Type Macromedia Flash data (compressed), version 43
MD5 3d7a88ca973e6543775b90b736d21a46
SHA1 363348698f89d32b194094342e61a3b272ad6d42
SHA256 3b75c11d3a04cc9c592583013635d6a6f3343f4f5b2b47b55bef8b1793aacf30
CRC32 BC86B5AC
ssdeep 192:u/BS9zfeWe3OOt3v6iF5FKyhy6Y522Au7+L/eN/3DL33ey7L:u/BO2PnV55F/y42F+L/e1v+yn
Yara None matched
VirusTotal Search for analysis
Name c1540f7f81a9d32c_tvtrwqgb.txt
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Cookies\TVTRWQGB.txt
Size 119.0B
Processes 9076 (iexplore.exe)
Type ASCII text
MD5 2d64dfa0754f249b300435f9efcc26c0
SHA1 da377e79d4014cc1420457682215e23579077846
SHA256 c1540f7f81a9d32cd846c8ea3c3c3186eb62a380c0899e735df131711cbed1c8
CRC32 616FE8F1
ssdeep 3:GmM/d6QsA9mOOGtLAHnZRXcndjldV4Qvn:XM/d6QssOtZRX+jHV46n
Yara None matched
VirusTotal Search for analysis
Name 0685322c6df94624_qkaa07h9.txt
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Cookies\QKAA07H9.txt
Size 119.0B
Processes 9076 (iexplore.exe)
Type ASCII text
MD5 246fd980fce357032bac4b8f3044814a
SHA1 aaa20f96c292b5e57df1e7bd6c65027287b19a05
SHA256 0685322c6df946249a15cf8f3d6d6358236ad5277bc0663e99a981cac8366309
CRC32 1E040435
ssdeep 3:GmM/+07ncfYgdifqnFcTXidjnWT6dSvn:XM/VmdMqFcb+jU2gn
Yara None matched
VirusTotal Search for analysis
Name 7afdc5b5f865dcbe_{c798d22c-95a9-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C798D22C-95A9-11EB-BDE1-94DE278C3274}.dat
Size 5.0KB
Processes 8708 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 88ff0bb101733ee05c260d104e41fbc3
SHA1 9118dbcc97e7d338af3322b4e3839e218b49e96a
SHA256 7afdc5b5f865dcbefbe9ec1936929e05906a64d82c444b35d86e53384b773305
CRC32 2FFB5971
ssdeep 24:rAGmGKOCXNlAjWNlZjxNlyk+alP4TP0mw5aYEQae:rAGmGKOHjQjckU0mwAZe
Yara
  • Microsoft_Office_Document_Zero - Microsoft Office Document Signature Zero
VirusTotal Search for analysis