popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e1db68bf60032f5f_p2j85.vbs
Submit file
Filepath C:\Users\Public\P2J85.vbs
Size 158.0B
Processes 2904 (cmd.exe) 744 (cmd.exe) 2112 (cmd.exe) 196 (cmd.exe)
Type ASCII text, with CRLF line terminators
MD5 81f8e31f5c50e5c7081fc0f22922a2e0
SHA1 072d11e782388f6ad014ad60bd7ec83f6cd9f008
SHA256 e1db68bf60032f5febe60c5ff38ba9b9708fa5cbef4a159ee94ba1cdb45d1d01
CRC32 288626EE
ssdeep 3:Jc53/kb5XGkXa4ftmHFqYhLlDF8gX5HKfZdJld59JzRBkQRMxKVKCAiL4GRErldB:i38bYevcH6GHKfZdXzRBZRXZAiEPHv
Yara None matched
VirusTotal Search for analysis
Name a6ab776949b1e435_recoverystore.{186c2f6d-4bdc-11ef-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{186C2F6D-4BDC-11EF-948E-94DE278C3274}.dat
Size 4.5KB
Processes 2616 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 fcfb4c77908aa0280b633e6395004760
SHA1 80ce81f8669a4bb61492a67ca88d8c148939510f
SHA256 a6ab776949b1e43500de0ece0c5f7cfeb6e9d97a4141e5c8f0af4ed2ff880a64
CRC32 5F8456BD
ssdeep 12:rlfF24rEg5+IaCrI0F7+F2irEg5+IaCrI0F7ugQNlTqbaxJ95FNlTqbaxJ95:rq45/1i5/3QNlWojNlWo
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 49881b544e4b6f12_{186c2f6e-4bdc-11ef-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{186C2F6E-4BDC-11EF-948E-94DE278C3274}.dat
Size 3.5KB
Processes 2616 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 e4d2961b619d3fada9d2d6959f432389
SHA1 6f5a3a7d85fd1374568414741af87e97b329ce9c
SHA256 49881b544e4b6f12335be628f1f3fb110b2bbceb02237e08b2da3a9c3e19ce47
CRC32 DE799214
ssdeep 12:rl0oXGF5lXDrEgmfq66FCyDDrEgmfkB6qTNl9U9baxShKtHaK+wPkdPF4yWyOw4h:rAlTGjyGgNlGTclh+Jb4yux
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis