Dropped Files | ZeroBOX

Name	6374c1f0da932512_recoverystore.{8390ea57-3816-11ee-ac50-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8390EA57-3816-11EE-AC50-94DE278C3274}.dat
Size	4.5KB
Processes	1636 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`6fbbd6be5bf2e0380ca4a0f7c686646f`
SHA1	`b4777a43de6cfc6116d24324dda0a759c298005f`
SHA256	`6374c1f0da932512f228117355ecfcd9404fa6d08d168aa2f7c4fba0db07a633`
CRC32	`85F79B9C`
ssdeep	`12:rlfF2arEg5+IaCrI0F7+F2PrEg5+IaCrI0F7ugQNlTqbaxshNyNlTqbaxshN:rqa5/1P5/3QNlW3yNlW3`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	0ed5b0823e71e0e3_6H1C9VZ95YTFT4V14RGK.temp Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6H1C9VZ95YTFT4V14RGK.temp
Size	7.8KB
Processes	1884 (powershell.exe)
Type	data
MD5	`f4a8a3e56bca0190031a365f104571cf`
SHA1	`7a4eac7016b8feca961f757cfe05bfeb4b76c10f`
SHA256	`0ed5b0823e71e0e3262a8a73ff269499135b20c9c5aa71e34b57a9f43218ed41`
CRC32	`E95A2C69`
ssdeep	`96:QtuC6GCPDXBqvsqvJCwoFtuC6GCPDXBqvsEHyqvJCworQStDHXyWlUVul:QtbXoFtbbHnorFTyo`
Yara	Antivirus - Contains references to security software Generic_Malware_Zero - Generic Malware
VirusTotal	Search for analysis

Name	09a8c78c364318c8_{8390ea58-3816-11ee-ac50-94de278c3274}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8390EA58-3816-11EE-AC50-94DE278C3274}.dat
Size	7.5KB
Processes	1636 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`3c84fe16cab67d7e731c2360d6a9872e`
SHA1	`f2bf07dd5cbf054553b5352148a80adabb7aeadd`
SHA256	`09a8c78c364318c838d6a14889930761fe985d24c13ccb172aa970b9d9239f08`
CRC32	`0AD4CA7C`
ssdeep	`48:rGGTLez+7/UVfhPRE7f1TvykhPRE72z+bz+tz+KE+g/p9cgPMvRNez+6vyk:xqQ8XET1TvEuy8Z1g/p9cxpNqRh`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis