popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name a04ac6d98ad98931_caff1l5h.i
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\CAFF1L5H.i
Size 78.4KB
Processes 2700 (iexplore.exe)
Type ELF 32-bit LSB executable, ARM, EABI5 version 1 (GNU/Linux), statically linked, stripped
MD5 9b6c3518a91d23ed77504b5416bfb5b3
SHA1 0a2d170abbf5031566377b01431e3b82d342630a
SHA256 a04ac6d98ad989312783d4fe3456c53730b212c79a426fb215708b6c6daa3de3
CRC32 44977344
ssdeep 1536:87vbq1lGAXSEYQjbChaAU2yU23M51DjZgSQAvcYkFtZTjzBht5:8D+CAXFYQChaAUk5ljnQssL
Yara
  • Hajime_botnet_IoT_malware - Hajime botnet IoT malware
  • IsELF - Executable and Linking Format executable file (Linux/Unix)
VirusTotal Search for analysis
Name 3ab3f80ca15dfdc4_{bdb15d94-ba49-11ed-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BDB15D94-BA49-11ED-948E-94DE278C3274}.dat
Size 4.5KB
Processes 2620 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 7a031b40cc6f1431ecfb8c1b7ddc7527
SHA1 73d55351204de447401bae2c966481d928f61701
SHA256 3ab3f80ca15dfdc40872d4f4c3b004344827d77de611e68d7ff2162c599c0ead
CRC32 718963F0
ssdeep 12:rlxAFIceljrEgm8GL7KF3xrEgm8GT7qsANl26abax1NlYfRbaxNJK8a:rFcehG8HxG8OANlIoNl0sa
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 4362e6cd0bdf7ac3_recoverystore.{bdb15d93-ba49-11ed-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BDB15D93-BA49-11ED-948E-94DE278C3274}.dat
Size 5.0KB
Processes 2620 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 a48e93416316cfe0cec5e711fafc74a7
SHA1 440a506b4b2dbeaa4ce00e13fc53f4fa39dbb76d
SHA256 4362e6cd0bdf7ac349a1a7350c752758d256abf53c2b9d7eda2d89a902e65e82
CRC32 B4098DD5
ssdeep 12:rlfF2LrEg5+IaCrI0CI7eF2ciTrEgmZ+IaCrI0CIc8GmRVOeMiqI771NlTqbaxXI:rqL5/fciTG5/k85jBM+NlWjNlWI
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis