popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 3b17d4d901f88543_{d12dedee-b2ec-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D12DEDEE-B2EC-11EB-BDE1-94DE278C3274}.dat
Size 4.5KB
Processes 2680 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 ae7aa89cb6a20671f252552a0a87a1d0
SHA1 034a519853574d8ee42c452d2e86fd31d2b6d7f8
SHA256 3b17d4d901f88543f7ac67ef3229a92cec97809aaf1a3410ebc8163fc67e8e0d
CRC32 419A4A2A
ssdeep 12:rlxAFoOZrEgm8GL7KFXDrEgm8G37qsLNl26abax1Nl8fRbaxcPLoZla:raG8DG8aLNlIoNloPTml
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 1d685f076d57a177_suited[1].exe
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\suited[1].exe
Size 330.7KB
Processes 1304 (iexplore.exe)
Type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
MD5 a7a26d57df53b79b97f904d5b5133f66
SHA1 fea58a1854d5011f3424d0401750aadb4565c586
SHA256 1d685f076d57a177ad5b642cb0657de08e8607bd2b892c4b39146c6f2ada6473
CRC32 0B74C3AB
ssdeep 6144:L9X0GgKN7R2XEYRI4GSx5kYjG3ELyHbWEdozcA6bSxFDY04yf2wPivPPV1I8nIqF:l0VKN4XEYRI/ZY4YEm6mxFpP6PHI8hRB
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
VirusTotal Search for analysis
Name 646ea2de1b5c89e1_recoverystore.{d12deded-b2ec-11eb-bde1-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{D12DEDED-B2EC-11EB-BDE1-94DE278C3274}.dat
Size 5.0KB
Processes 2680 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 790a02439c08dd10c2bb2abcec1dd892
SHA1 d9ba8bb8bfc7f7a259ac964a33ffe55f0f0f18a6
SHA256 646ea2de1b5c89e1976e2a7530678993679e8105b08e3dd0760056c7ba83827d
CRC32 5E4CA5F6
ssdeep 24:rq45/f/kyTG5/k85jBM+NlWEBVL3mNlWEBVXjS:rd5fkGG5cojBSEBVL3XEBVX+
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis