popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 72981ad3614823e2_{07722eba-ae3d-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{07722EBA-AE3D-11EB-BDE1-94DE278C3274}.dat
Size 4.5KB
Processes 1224 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 acbc2c7d22d6cd946f4d19ff7e649671
SHA1 01d2e1f3163627f470e5975833ffec75756a57ee
SHA256 72981ad3614823e2f26d35c64fde69aeb14345554ef71eb8733adb7f27d66080
CRC32 8A1FA524
ssdeep 12:rlxAFOfrEgm8GL7KFRDrEgm8Gf7qsLNl26abax1Nl0fRbax4ExDgO:rjfG8FG8SLNlIoNlwIb
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 30febfb441ee2627_winlog[1].exe
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\winlog[1].exe
Size 149.5KB
Processes 3016 (iexplore.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5 64d2a84ee308baeb97c39ca92c679b65
SHA1 ab5c32982366a307ba2edf7ca7c4fb00cc6748c5
SHA256 30febfb441ee26277f7f12b775fe699e7a8135665c72d6a663b055b9dcf352c2
CRC32 1366E293
ssdeep 3072:lEre7GjyCaFvcGbW02eBkpBMHapieQsE7sUc5AtpOm/198cIQgQPyjb:lPXZuFieQsELUAf/IcIIyv
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 64a621ee8fad3e51_recoverystore.{07722eb9-ae3d-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{07722EB9-AE3D-11EB-BDE1-94DE278C3274}.dat
Size 5.0KB
Processes 1224 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 8da6d8156483de1b630ea31baf6bbaff
SHA1 334fd6e4c00431c898cdb9a8450aee095206474b
SHA256 64a621ee8fad3e51d94126edbdfce561caa00c146ee53d4e5de846da469272a5
CRC32 CE6FBE6E
ssdeep 12:rlfF2ArEg5+IaCrI0CI7eF2WTrEgmZ+IaCrI0CIc8GmRVOeMiqI771NlTqbaxDM4:rqA5/fWTG5/k85jBM+NlW7rNlW7b
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis