| Name | faf19d7d3cd60345_d93f411851d7c929.customdestinations-ms |
|---|---|
| Filepath | c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms |
| Size | 7.8KB |
| Processes | 2908 (powershell.exe) |
| Type | data |
| MD5 | 4ca896104870b7563798afc486291ce4 |
| SHA1 | b359be3f3ae06b7ae4fd9786e44f3f8c3b91ccae |
| SHA256 | faf19d7d3cd60345f2f1357352bd945bf03e843aa3b1e025df153799d3449207 |
| CRC32 | BC7BD4F0 |
| ssdeep | 96:QtuCcBGCPDXBqvsqvJCwoFtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:QtCgXoFtCgbHnorLxY |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 011983f9bd6b4f0a_diversityCourtby.js |
|---|---|
| Filepath | C:\ProgramData\diversityCourtby.js |
| Size | 200.3KB |
| Type | ASCII text, with very long lines, with CRLF line terminators |
| MD5 | 4d48de20c83249d87d86996c607415fd |
| SHA1 | 4d3fe0aca6aab14a873c04cd327cc4c6068360fe |
| SHA256 | 011983f9bd6b4f0aae15bf995a8fe0c45bb964f8085189a5246e87bac4cd6e7f |
| CRC32 | DC39DC91 |
| ssdeep | 3072:kLRxr4l1qDvatIVFcWwblWrj6/ns5JoDXn0Pns:lDqDvatIVifQJorKs |
| Yara | None matched |
| VirusTotal | Search for analysis |