popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 24d57bb257eab42a_temp.folder.lnk
Submit file
Filepath C:\Users\test22\AppData\Roaming\HNC\Office\Recent\Temp.folder.lnk
Size 823.0B
Processes 2860 (Hwp.exe)
Type MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Directory, ctime=Wed Jan 31 20:32:29 2018, mtime=Tue Aug 20 20:24:00 2024, atime=Tue Aug 20 20:24:00 2024, length=65536, window=hide
MD5 2dabc0a56a99204f194722c799a686f3
SHA1 3e0c2a5ae84cf92ad559de8ed93350604515f231
SHA256 24d57bb257eab42a78a309dc7d25209751de1f18b6d05e64a41da8b347f2945e
CRC32 C55CB912
ssdeep 12:8p54kOkEsh64cZCrR8EvSWMlR+/wq8izCCOLMa1Swua4t2YLEPKzlX8yZ:8pCkOkFsERdglRLYzNRak6Pyd
Yara
  • lnk_file_format - Microsoft Windows Shortcut File Format
  • Lnk_Format_Zero - LNK Format
VirusTotal Search for analysis
Name 6c318d5a206aa9c6_202404_주중한국대사관 한중 북중·안보현안 1.5트랙 비공개 정책간담회 대면회의 계획(안).hwp.lnk
Submit file
Size 1.3KB
Type MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Tue Aug 20 20:23:57 2024, mtime=Tue Aug 20 20:23:57 2024, atime=Tue Aug 20 20:23:57 2024, length=53248, window=hide
MD5 b8546addc7d734ea429c858fd5883cdf
SHA1 74ddb3d2f68f06029adaf58b8f13827c36af9c9c
SHA256 6c318d5a206aa9c6c09ac9409297876acce4b84098670f63944ea68706de1731
CRC32 296C2132
ssdeep 24:8G8sERdglRLj4rQZLRunHCHrQZBHrQZY6Pyx:8G8sHlRACLRMHCHCBHCryx
Yara
  • lnk_file_format - Microsoft Windows Shortcut File Format
  • Lnk_Format_Zero - LNK Format
VirusTotal Search for analysis
Name fe156159a26f8b7c_202404_주중한국대사관 한중 북중·안보현안 1.5트랙 비공개 정책간담회 대면회의 계획(안).hwp.lnk
Submit file
Size 1.1MB
Type MS Windows shortcut, Has Description string, Has command line arguments, Icon number=0, ctime=Sun Dec 31 15:32:08 1600, mtime=Sun Dec 31 15:32:08 1600, atime=Sun Dec 31 15:32:08 1600, length=0, window=hidenormalshowminimized
MD5 a4bd6d00abbd79ab00161ff538cfe703
SHA1 075d7249d09f14cbf0a4ffcb077c77512d3ab9a0
SHA256 fe156159a26f8b7c140db61dd8b136e1c8103a800748fe9b70a3a3fdf179d3c3
CRC32 13D93C04
ssdeep 1536:LCNrr8wc73ExbcrIoHXnTKZva0CfkTYcIJex+155sB:LCNrr8wc73ExbcrIUnTKUfkiH54
Yara
  • HWP_file_format - HWP Document File
  • Microsoft_Office_File_Zero - Microsoft Office File
  • lnk_file_format - Microsoft Windows Shortcut File Format
  • Lnk_Format_Zero - LNK Format
VirusTotal Search for analysis
Name 32e739ea04e2afc0_202404_주중한국대사관 한중 북중·안보현안 1.5트랙 비공개 정책간담회 대면회의 계획(안).hwp
Submit file
Size 52.0KB
Type Hangul (Korean) Word Processor File 5.x
MD5 724bf81c0a9adb3ffe6b03a21f7cab09
SHA1 bfcb7e6e5048c19020e26be236d70714e56c4048
SHA256 32e739ea04e2afc0f73d54f78f08cc3368867c036b00be21b6e58a0d1d466151
CRC32 DE93047F
ssdeep 768:7THX1IWmS9CwKlnvaBqCuu/K4ZgTgzcIrP9exvmX1/LxffBI4XF95s62l4wqIRxa:PHXnTKZva0CfkTYcIJex+155sI
Yara
  • HWP_file_format - HWP Document File
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 76296ca80ceb9d2d_sharefont.ini
Submit file
Filepath C:\Users\test22\AppData\Roaming\HNC\User\Common\80\Fonts\ShareFont.ini
Size 183.0B
Processes 2860 (Hwp.exe)
Type ASCII text, with CRLF line terminators
MD5 34766d17d04c24aaa62124eae6b5bac4
SHA1 984e092e32fe8f7bd340a7799541c2600d96a4fb
SHA256 76296ca80ceb9d2db0b4ed08ba1b060c92a75805d71978c30dd33b87bd698b6e
CRC32 E0E924A3
ssdeep 3:5xxovKdVo6LR5nE9Aj4I5tLGoW+QRX7AMWRUrNmWxpcL4EaKC5YoH1KLDTjEcKl0:5RVogR5nEk55GoW+QWMWRKNmQpcLJaZg
Yara None matched
VirusTotal Search for analysis
Name b7c225ef3cc3e875_d93f411851d7c929.customdestinations-ms
Submit file
Filepath c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms
Size 7.8KB
Processes 2764 (powershell.exe)
Type data
MD5 81ca4510272caf505e8091e9a28cb716
SHA1 71414aeec9f1e4a6f5a461b01700cc9cc992cd9e
SHA256 b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf
CRC32 FC31E90F
ssdeep 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY
Yara
  • Antivirus - Contains references to security software
  • Generic_Malware_Zero - Generic Malware
VirusTotal Search for analysis