Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
05.02 06:05
anchor.html
05.02 06:05
anchor.html
05.02 04:05
Synaptics.exe
05.02 03:05
icon-mobile-150x150.pn...
05.02 03:05
gateway-150x150.png.webp
05.02 03:05
icon-3d-150x150.png.webp
05.02 03:05
85c1110b8226b3dc010b62...
05.02 03:05
df38df7d0dbc713217a863...
05.02 03:05
recaptcha__pl.js.pobrane
05.02 03:05
logo-ostrzalka.png.webp

Latest News
05.02 07:05
AI Agents Are Here. So...
05.02 07:05
RSAC 2025 executive in...
05.02 07:05
ePA-Sicherheit: BSI ha...
05.02 06:05
CIA Boosts Social Medi...
05.02 06:05
Apple to Source 19 Bil...
05.02 06:05
Apple Says Tariffs Wil...
05.02 06:05
Quantum computer threa...
05.02 06:05
Widespread Fortune 500...
05.02 06:05
Updated DarkWatchman m...
05.02 06:05
Third-party breach com...

Dropped Files | ZeroBOX

Name	c862254208bd95db_~$elfreethingstogetmebackwithentirethingswhichunderstandverygoodpatternwhichalwaysgivinggreatoutputtosee_______wecanwintheworldsd.doc Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\~$elfreethingstogetmebackwithentirethingswhichunderstandverygoodpatternwhichalwaysgivinggreatoutputtosee_______wecanwintheworldsd.doc
Size	162.0B
Processes	884 (WINWORD.EXE)
Type	data
MD5	`319b90055a3ea5aebcd83591a291f9a8`
SHA1	`8474d2e410610a05ffc7fa71a7d3f8f1b17cd92b`
SHA256	`c862254208bd95db98f9cb7ddf974d41eae78736772a267270fa7ef10ce7f8bb`
CRC32	`F1CF3FC9`
ssdeep	`3:yW2lWRdafl3GoW6L7hNlvXK7h8NlpuItBf2Dlll:y1lWmfooWmNNlvK7+3rB+Dlll`
Yara	None matched
VirusTotal	Search for analysis

Name	ff1c5615521d98cf_~wrs{b749052e-1cf0-4a23-a29b-7f9c66ee0fc9}.tmp Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{B749052E-1CF0-4A23-A29B-7F9C66EE0FC9}.tmp
Size	1.5KB
Processes	884 (WINWORD.EXE)
Type	data
MD5	`7482931939b4c5f633ce64ef0b2a566d`
SHA1	`8956f2231bb39d3fcaede731d5c820dc746922ed`
SHA256	`ff1c5615521d98cf8042cd0f4b96c31affbe8ef03fec85ce52ed13d503f0cde5`
CRC32	`2D278DDA`
ssdeep	`6:IiiiiiiiiiI4/9+Qc8++lPkalT4Mu8lPloBl/V:W49+QG+3/c`
Yara	None matched
VirusTotal	Search for analysis

Name	4826c0d860af884d_~wrs{be4cde46-8279-41d0-b946-07cb50716005}.tmp Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{BE4CDE46-8279-41D0-B946-07CB50716005}.tmp
Size	1.0KB
Processes	884 (WINWORD.EXE)
Type	data
MD5	`5d4d94ee7e06bbb0af9584119797b23a`
SHA1	`dbb111419c704f116efa8e72471dd83e86e49677`
SHA256	`4826c0d860af884d3343ca6460b0006a7a2ce7dbccc4d743208585d997cc5fd1`
CRC32	`23C03491`
ssdeep	`3:ol3lYdn:4Wn`
Yara	None matched
VirusTotal	Search for analysis

Name	2e3f2c533e335297_~wrs{c4e2f51f-dac9-49fc-b9d5-108c335c54a4}.tmp Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{C4E2F51F-DAC9-49FC-B9D5-108C335C54A4}.tmp
Size	14.0KB
Processes	884 (WINWORD.EXE)
Type	data
MD5	`c853f6957f6190a63c398229d4efc2b1`
SHA1	`44f3b2721c479e3f8694a1c020ab2925e3b1689d`
SHA256	`2e3f2c533e3352975b7d67d6790a3bebf2a8de31fe1ad0f536435d315e7f7bc2`
CRC32	`21ADF53C`
ssdeep	`192:N0esano/5mZjbU5X0pyoXW9RnKYgHZOeg1OvageWjyH8XEnYGNAUMm8df2XKuZ:NHvosZjA2pyGHseg1Oi629nVx8df01Z`
Yara	None matched
VirusTotal	Search for analysis

Name	f6d2e340333a488a_~$normal.dotm Submit file
Filepath	C:\Users\test22\AppData\Roaming\Microsoft\Templates\~$Normal.dotm
Size	162.0B
Processes	884 (WINWORD.EXE)
Type	data
MD5	`538857fb568e2d3a13ffeec7a7e21936`
SHA1	`5d96878c875b9ba738ae8593867ac82ed1eb0059`
SHA256	`f6d2e340333a488abfa67b2c9cec8ee6c66993231963414b56095cc6062cf521`
CRC32	`ECF89B43`
ssdeep	`3:yW2lWRdafl3GoW6L7hNlvXK7h8NlpuItBf24tl:y1lWmfooWmNNlvK7+3rB+Ol`
Yara	None matched
VirusTotal	Search for analysis