Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
04.28 04:04
Purchase Order.pdf.msc
04.28 02:04
setup.exe
04.28 02:04
2025416-方案1-方案細節.pdf.lnk
04.28 10:04
Distribution Document....
04.28 10:04
pik.ps1
04.28 10:04
123.hta
04.28 10:04
verify-sec
04.28 10:04
nums.vbs
04.28 10:04
op.exe
04.28 10:04
cred.dll

Latest News
04.28 11:04
Life on K2-18b? Don’t ...
04.28 11:04
Thiel-Backed Fintech N...
04.28 11:04
[UPDATE] [niedrig] GNU...
04.28 11:04
[UPDATE] [mittel] popp...
04.28 11:04
[UPDATE] [mittel] popp...
04.28 11:04
[UPDATE] [mittel] Red ...
04.28 11:04
[UPDATE] [hoch] popple...
04.28 11:04
Sicherheitslücken: Att...
04.28 11:04
⚡ Weekly Recap: Critic...
04.28 10:04
Cybersecurity CEO Char...

Dropped Files | ZeroBOX

Name	d6ce5996ff4f816b_{00e2b56e-c57c-11eb-bde1-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{00E2B56E-C57C-11EB-BDE1-94DE278C3274}.dat
Size	5.0KB
Processes	1160 (iexplore.exe) 2876 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`49b297db5a7faec78442f32809dfbce3`
SHA1	`9f4c7d0cbf4faf22002aa210fe99be908454df82`
SHA256	`d6ce5996ff4f816b47288391b2f984a6b516c632df2d5547e36668f11e661bcc`
CRC32	`32D67079`
ssdeep	`24:rtGyl4y7ZNlZAG2h2wk2SpClsXNlZABldZksl:rtGs4yf6DSy2s`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	34c36b1371fda232_recoverystore.{00e2b56d-c57c-11eb-bde1-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{00E2B56D-C57C-11EB-BDE1-94DE278C3274}.dat
Size	4.5KB
Processes	1160 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`5744f1ddd44d88a40c86cc26cb64c37c`
SHA1	`0e93689105d9e22cbecb0153c44eb7e3d399b6af`
SHA256	`34c36b1371fda232773c74fa2d5c95161fdb9a3199a2f904b21f3ccec1ad4939`
CRC32	`3DBC8391`
ssdeep	`12:rlfF2XrEg5+IaCrI0F7+F28rEg5+IaCrI0F7ugQNlTqbaxZxqu5ZNlTqbaxZxqym:rqX5/185/3QNlWQLPNlWQQ`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	70bfded904dd6799_1_01[1].jpg Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\1_01[1].jpg
Size	158.2KB
Processes	2876 (iexplore.exe)
Type	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1799, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], baseline, precision 8, 1080x1475, frames 3
MD5	`818199b76a6428c073de6207fa9c4cae`
SHA1	`b99f6fa0606e639389291448c06c8f815444fd25`
SHA256	`70bfded904dd6799c50409c7cea5c02fe6fad9bd9508c352c32f842901c6c3d8`
CRC32	`895AE661`
ssdeep	`1536:0KaXtWm8VHWFx6VcMwWFFEiqr2GzH6/XE8vOMD9ozskBIgboGYuhAwALF4zDVAnG:mY3SV6f1ZD2HYhxvnWS6`
Yara	JPEG_Format_Zero - JPEG Format
VirusTotal	Search for analysis

Name	f2294dbfe7a3dbe6_style[1].css Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTDTA402\style[1].css
Size	984.0B
Processes	2876 (iexplore.exe)
Type	ASCII text, with CRLF line terminators
MD5	`c5ad325b546ed70b265d2bffd2026d9d`
SHA1	`236c589d15b7464e57efe4966e3e28dde5047489`
SHA256	`f2294dbfe7a3dbe669faa2b916659ac6a8c5214ff54b523d638ea7cb00059583`
CRC32	`9081214F`
ssdeep	`24:YsBT80pmBNSapQ12BsPP2snkPPv6nxcg9LoYN:1NjpENSapQ12E+vscg9L5N`
Yara	None matched
VirusTotal	Search for analysis

Name	b299f34ca0b7704e_114_47_80_66[1].htm Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\114_47_80_66[1].htm
Size	2.1KB
Processes	2876 (iexplore.exe)
Type	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
MD5	`5d366dadccfd1a925723ce2afbcffbf6`
SHA1	`b53917bcae13ed46556d4baef7078fdd94469540`
SHA256	`b299f34ca0b7704e307a646824d33c883ca6099b07b1ea857aa109e6a2c870b1`
CRC32	`E5CD0184`
ssdeep	`48:SmMq1UprpgqnCNi5P+hI6GW3IzWhxLLbYP6:YIfZmP+lzhxfb5`
Yara	None matched
VirusTotal	Search for analysis

Name	61c6caebd2392174_jquery.min[3].js Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\jquery.min[3].js
Size	91.4KB
Processes	2876 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`3576a6e73c9dccdbbc4a2cf8ff544ad7`
SHA1	`06e872300088b9ba8a08427d28ed0efcdf9c6ff5`
SHA256	`61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf`
CRC32	`0F70F489`
ssdeep	`1536:s6IzxETpavYSGaW4snuHEk/yosnSFngC/VEEG0vd0KO4emAp2LSEMBoviR+I1z5T:O+vIklosn/BLXjxzMhsSQ`
Yara	None matched
VirusTotal	Search for analysis

Name	936a9da8e4590129_bootstrap.min[1].css Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTDTA402\bootstrap.min[1].css
Size	103.5KB
Processes	2876 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`dcd771a7bcbba3c878e7922b8774d7f4`
SHA1	`05430e38926cbca4836e0fc03433e8b7701ccee6`
SHA256	`936a9da8e459012971905dca2dd19f62370a8bcb86a0d48df8a06d853f4104a7`
CRC32	`45E38DF7`
ssdeep	`768:O71A8XpW5b26LVcUFPaDGObYDUXyyRsrfGaPV4LolQdUONA4QFOfUcnvGcJwjuGe:F8AHR7aD4DJ7zPB2UONAxtjuGe`
Yara	None matched
VirusTotal	Search for analysis

Name	e7c86c62737c2398_1_02[1].jpg Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\1_02[1].jpg
Size	41.3KB
Processes	2876 (iexplore.exe)
Type	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1799, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], baseline, precision 8, 1080x324, frames 3
MD5	`27f48bec6836057705cd7f9a18857c03`
SHA1	`117bfa5928cb7586020d379ac7b0dddcd7bb215e`
SHA256	`e7c86c62737c2398e7244256f9b8bbfd60dc5d54dd0f4a188932f361bf3a888b`
CRC32	`48156B60`
ssdeep	`384:CKYKIjWLW0Pi3KYKIjWLWcNnrLaWYNg7KPKN67H7/0Sux+EEBy4GowO1dddddddM:nW0PBWcNdYyWHz6xTE69OG9EbPHA+PrU`
Yara	JPEG_Format_Zero - JPEG Format
VirusTotal	Search for analysis