popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 3f415a402d49c158_{279a8aa2-25f5-11ee-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279A8AA2-25F5-11EE-948E-94DE278C3274}.dat
Size 7.0KB
Processes 2612 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 c8ca36cbee5856926eee23aafd341a49
SHA1 26dd4be6955995fc133e3cb46bb24eb15f52e876
SHA256 3f415a402d49c15890c038a388cc2f89b494d6b95237498b3f2c4a9e701b9f90
CRC32 9C7364B6
ssdeep 48:r3GTEbCUubz+75lR7B9vync5lRjTpz+Pz+xz+fEKKyZm4pU7bz+0vyne:YDfs7zu49OY8vY4pU7fLue
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 44e8aa0601fffe82_590aee7bdd69b59b.customDestinations-ms~RF81d899.TMP
Submit file
Filepath C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms~RF81d899.TMP
Size 7.8KB
Processes 2932 (powershell.exe) 148 (powershell.exe)
Type data
MD5 ee6cfd78f72f03663db2a7df0c696dd7
SHA1 56126e81a5f6577f8e24a890185d0c9eb600fa02
SHA256 44e8aa0601fffe82c494bbc7d7280aa3bc5e90effe2aee2d716d5716e1d6b568
CRC32 F27137C4
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCworu4tDHXyGlUVul:EtCgXoRtCgbHnorBTyY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis
Name d975fcc0133cec8e_recoverystore.{279a8aa1-25f5-11ee-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{279A8AA1-25F5-11EE-948E-94DE278C3274}.dat
Size 4.5KB
Processes 2612 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 5938219ceb43e39bfd8df1d1cfa4c716
SHA1 c9100c03d5627a41e87617f50beadde3440ab0c6
SHA256 d975fcc0133cec8e05ea4273753e24003464321a881f775a2014c0495ecd89d5
CRC32 184B3F32
ssdeep 12:rlfF2LHrEg5+IaCrI0F7+F2gkoQrEg5+IaCrI0F7ugQNlTqbaxAgA8NlTqbaxAg/:rqLH5/1gkv5/3QNlWDgA8NlWDgg0
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis