Dropped Files | ZeroBOX

Name	b1e513faa48343f7_recoverystore.{bd11a005-ba49-11ed-948e-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BD11A005-BA49-11ED-948E-94DE278C3274}.dat
Size	5.0KB
Processes	2632 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`6a66d1054de65f470952feaf6ea03f6e`
SHA1	`bda79ed2c7c5adf30dc76b956da3eaf0a69f1db9`
SHA256	`b1e513faa48343f71ea70d69b0ed30ce01c8256f6ecef7146a9ad8e6e6957edb`
CRC32	`1C0192FF`
ssdeep	`12:rlfF20rEg5+IaCrI0CI7eF2CzcTrEgmZ+IaCrI0CIc8GmRVOeMiqI771NlTqbaxF:rq05/fhTG5/k85jBM+NlWXNlWh`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	f830c9186556ac92_{bd11a006-ba49-11ed-948e-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BD11A006-BA49-11ED-948E-94DE278C3274}.dat
Size	4.5KB
Processes	2632 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`829c2a84012843f36c3eb9552d9502b8`
SHA1	`ae0589214392618b03196ee705afd2f58d46fa0b`
SHA256	`f830c9186556ac92226b31874e67ed63cf8a0acc3c07fb09c1147ceb0a52ab53`
CRC32	`F269341D`
ssdeep	`12:rlxAFvjrEgm8GL7KFYADrEgm8Gr7qsLNl26abax1NlgfRbaxXb:rkG8bG8WLNlIoNlsub`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	54893039410f20e2_rust[1].dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\rust[1].dat
Size	3.6MB
Processes	2712 (iexplore.exe)
Type	PE32+ executable (DLL) (GUI) x86-64, for MS Windows
MD5	`e8ee21f5fde8922468a84b4754ec6aec`
SHA1	`e817f5ceac5cc75563edc1c875aaa85ed834461c`
SHA256	`54893039410f20e2e3f0d4ddfba5be48c135cead6259d69eeb6223c0c3bfd171`
CRC32	`B86E6217`
ssdeep	`49152:PC8ktg4iB+NbzdfUmZOB/Ne1Le/daLcoVq6:PCX8E/xUmW4heM46`
Yara	IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE64 - (no description)
VirusTotal	Search for analysis