Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.18 02:11
DOCTOR FIRM ORDER FORM...
11.18 09:11
babababa.exe
11.18 09:11
Jagtfalkenes.vbs
11.18 09:11
windows_update.dll
11.18 09:11
nicko.exe
11.18 09:11
GHO%E9%95%9C%E5%83%8F%...
11.18 09:11
stories.exe
11.17 10:11
wwbizsrvs.exe
11.15 01:11
wwbizsrvs.exe
11.15 01:11
op.exe

Latest News
11.18 05:11
Strela: A newcomer in ...
11.18 05:11
A week in security (No...
11.18 05:11
A week in security (No...
11.18 04:11
카페 어니언과 함께하는 2025 코리아브...
11.18 04:11
Singapore Oil Tycoon O...
11.18 04:11
Exploit attempts for u...
11.18 04:11
NSO Group Exploited Wh...
11.18 03:11
대한민국 전통가마 연구소 ‘태고사’ 20...
11.18 03:11
더 청담, '2024 전통문화혁신사업 수...
11.18 03:11
동방이기제작소, '2024 전통문화혁신사...

Dropped Files | ZeroBOX

Name	0ddcb2989d08cd8b_1667664774-css_bundle_v2[1].css Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\1667664774-css_bundle_v2[1].css
Size	35.3KB
Processes	1616 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`aa5c1b425cec7a0f2b5028c26136edd2`
SHA1	`08381db3f43bad8dec74662655e3ea17726cf394`
SHA256	`0ddcb2989d08cd8b086dad54dcef131ac0b36fa5bcc8a69a41c0313ef514858f`
CRC32	`59F3DAB9`
ssdeep	`384:B0OhFvg3AwN6VysImDyPWquJMpx/SCYW0h8+Rl9yaZwuJ86YKSQCNL/J69nKg939:B0Oh+/N6nIm6IvW0trVJwxgngRdFr2`
Yara	None matched
VirusTotal	Search for analysis

Name	4522adeeee8cf452_recoverystore.{8a9ba6ed-3075-11ec-9d79-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8A9BA6ED-3075-11EC-9D79-94DE278C3274}.dat
Size	4.5KB
Processes	2080 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`9339d22a0e98f81aa9a859ae840798e6`
SHA1	`cc4add13bd706f20414b30b14399244eb4a5b9b2`
SHA256	`4522adeeee8cf452daaf18d4536b3ce02a44f8e194b46fdac165062f06c182ab`
CRC32	`AB013A83`
ssdeep	`12:rlfF2aXrEg5+IaCrI0F7+F29XrEg5+IaCrI0F7ugQNlTqbax+I8+8m8XNlTqbaxa:rq05/1V5/3QNlWvrNlWv`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	ecb30886406e3f77_gradients_light[1].png Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\gradients_light[1].png
Size	403.0B
Processes	1616 (iexplore.exe)
Type	PNG image data, 20 x 1100, 8-bit/color RGBA, non-interlaced
MD5	`4f7de2e6afefb125b1f14fa5cda610ee`
SHA1	`57a145f234b504a73f9d55cf39f2231a04719456`
SHA256	`ecb30886406e3f776ff7bc3834de849944471e626ff148bed2fa389d02866044`
CRC32	`DC34595E`
ssdeep	`12:6v/74Qlk8WIyzs740Oc5maj4m3YULe3dk:Hgk8uw740OcWAY13dk`
Yara	PNG_Format_Zero - PNG Format
VirusTotal	Search for analysis

Name	f576ef6557f541cd_807375071-widgets[1].js Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\807375071-widgets[1].js
Size	153.7KB
Processes	1616 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`aa4ac0441644e6c813ee0e1b5d1e41ce`
SHA1	`043383e1d30755ba856b763e05c2f2c43f5c2978`
SHA256	`f576ef6557f541cd194bf77f188b7ddd398fe022b1459edc9a6f47bd39aab821`
CRC32	`1F43C147`
ssdeep	`1536:0tz5WQ0nGpFEF5WO9MpqMyt6+EZ5EpaktKG9TPlrrMOgdDS2sc0kfVsPjwBUenet:jGkS+8i1PhgYOrUAsR88F3`
Yara	None matched
VirusTotal	Search for analysis

Name	0fdcb4746995f0d5_body_gradient_tile_light[1].png Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\body_gradient_tile_light[1].png
Size	95.0B
Processes	1616 (iexplore.exe)
Type	PNG image data, 10 x 10, 1-bit colormap, non-interlaced
MD5	`3b2a20d5b0ba4ca0c5dd90865ad6b9c4`
SHA1	`a90928a16d11d21e112b45b60990a9d7d19cc1d5`
SHA256	`0fdcb4746995f0d5240e5ec11370cb950722a894f3cff4118aa68ccc92010edd`
CRC32	`B96E65DC`
ssdeep	`3:yionv//thPlH1kmlS1jmTQ9IyehXhbp:6v/lhPcS5TeIFdhbp`
Yara	PNG_Format_Zero - PNG Format
VirusTotal	Search for analysis

Name	380672f7418f917d_403901366-ieretrofit[1].js Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\403901366-ieretrofit[1].js
Size	26.0KB
Processes	1616 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`d9c2977027243c55d7c30a91a772a1f5`
SHA1	`04e6c365f6f30ecf2a3c806584289e5dcaae7136`
SHA256	`380672f7418f917d947a24fa2b9cf586ed35030e35696af2f913d1e37ed9cac9`
CRC32	`BA1785E0`
ssdeep	`384:12aOYTYDWsss8m/LFB9qxCXhHotj3TfL5VMyXufjWFNPvy7e601DeP+eF4MegkQO:12M1H7kqZvy7etojF4Vgj4Dlagz`
Yara	None matched
VirusTotal	Search for analysis

Name	c35dec03cf3e3cb7_{8a9ba6ee-3075-11ec-9d79-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8A9BA6EE-3075-11EC-9D79-94DE278C3274}.dat
Size	4.5KB
Processes	2080 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`4eaf5f9576f4c6d185d85454bcd5ecce`
SHA1	`895f377d8825c57156c3ac0f3b41ad72416fffdd`
SHA256	`c35dec03cf3e3cb746f0b77e3333e36b5cc727418c5c9a2d7c232fc789297b71`
CRC32	`3E4F3AD7`
ssdeep	`12:rl0ZGFGorEgmfS76FKBrEgmfcB7qgONlLNbaxY/Q1g8A3jNlb9bax3KtHaK+wf84:r6oG6BGKONlZWTqNlZDlh+b`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis