Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
05.03 02:05
android.pcap.out
05.03 01:05
Kula A . protokół paźd...
05.03 01:05
Kula A.- protokól kwie...
05.03 01:05
vt_setup.msi
05.03 01:05
Chmod Suspicious Direc...
05.03 01:05
奇安信情报沙箱.html
05.03 12:05
Download Microsoft Edg...
05.02 09:05
Portal Orzeczeń Sądu R...
05.02 09:05
Portal Orzeczeń Sądu R...
05.02 05:05
dd.exe

Latest News
05.03 03:05
[RSAC 2025 특별기고] 웨이모와 ...
05.03 02:05
Why Going Nuclear Is t...
05.03 02:05
[RSAC 2025 최종 리포트] RSA...
05.03 02:05
A Neat E-Paper Digit C...
05.03 11:05
A Gentle Introduction ...
05.03 09:05
Google Can Train Searc...
05.03 09:05
절충형 유모차 오이스터4(oyster4)...
05.03 09:05
SMG홀딩스, 어린이날 맞아 ‘디즈니 큐...
05.03 09:05
IT Sicherheitsnews tae...
05.03 09:05
IT Sicherheitsnews tae...

Dropped Files | ZeroBOX

Name	e5f468932fc8256b_index.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012021080920210810\index.dat
Size	32.0KB
Type	Internet Explorer cache file version Ver 5.2
MD5	`2f2f139ef1a4056ee881cf3ef7364375`
SHA1	`2c9d556695905b8fc7e7148c61c085262881629c`
SHA256	`e5f468932fc8256b6f719cb60416c081d0ec560f17866c53c0658704cf270a56`
CRC32	`02A2F02B`
ssdeep	`24:qjEOs9Dot2EP3fXJq8QoaZwt+njEUbIostoS:qZGM7/w8QxM+kF`
Yara	None matched
VirusTotal	Search for analysis

Name	811fb3e525ada266_{4515a9a0-68c9-11ef-91c7-080027c2f7b0}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4515A9A0-68C9-11EF-91C7-080027C2F7B0}.dat
Size	4.5KB
Processes	2864 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`f69107642c59635182a6ce6c32167878`
SHA1	`29c847b1b4cac50af1eef6b69defeb0776bfd222`
SHA256	`811fb3e525ada2663d348abba033dd6d99c1f1323f2db34613aa38cf07b73f33`
CRC32	`057693BB`
ssdeep	`12:rl0ZGFdrEgmfAB76FNlQrEgmfN7qgONl08hbaxsv/Q1WwBDNl/9baxdzKtHaK+wW:rRGxlQGLONl0AfwcwdNlFKmlh+2Nw`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	27e11a38372bb8fe_phishing_test.html Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\phishing_test.html
Size	232.0B
Processes	1516 (%E6%94%BE%E5%81%87%E5%80%BC%E7%8F%AD%E5%AE%89%E6%8E%92.exe)
Type	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
MD5	`ae8fecee43e09ccd0213510be34a7597`
SHA1	`0d88e97e9624716c75bcbc208efcba1d9323ff9c`
SHA256	`27e11a38372bb8fed467310f65ae848f5833154ee8668bfcf532d0c1df0fb07b`
CRC32	`7011652E`
ssdeep	`6:rzQoKNsGS6Ykx0QT/GdRUqqWqF/0AEHMfMzOnLEKon+XfGb:r8oOKZhqWu5Esf+sPon+PGb`
Yara	None matched
VirusTotal	Search for analysis

Name	45d34c9c4dd72367_recoverystore.{4515a99f-68c9-11ef-91c7-080027c2f7b0}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4515A99F-68C9-11EF-91C7-080027C2F7B0}.dat
Size	4.5KB
Processes	2864 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`0593993a40739786010c40796c44e70d`
SHA1	`4069f5e30875d65a0b2cc3e52e8f637ab4413490`
SHA256	`45d34c9c4dd7236754864be3a8a1f6905b6cd63c393c450d59e39d3385a11116`
CRC32	`47BC93D4`
ssdeep	`12:rlfF2clQrEg5+IaCrI0F7+F2HrEg5+IaCrI0F7ugQNlTqbaxWNKNRsKyNlTqbaxl:rqclQ5/1H5/3QNlWVsRsKyNlWVsRxAK`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	1788511c0eb2dafc_phishing_test.png Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\phishing_test.png
Size	411.6KB
Processes	1516 (%E6%94%BE%E5%81%87%E5%80%BC%E7%8F%AD%E5%AE%89%E6%8E%92.exe)
Type	PNG image data, 5464 x 2608, 8-bit/color RGBA, non-interlaced
MD5	`e366fcdbffb158acf5b906edb307777e`
SHA1	`24315a488f5a20ef3aa7a79d451a17a9c3f339d0`
SHA256	`1788511c0eb2dafcab35fabe74245f9c741087d2701f3c769a39ebb4c1fb206f`
CRC32	`648CA3DB`
ssdeep	`6144:Vi59n/X719OSSOKUN7Kv7kiPA+6ffvIC+sH7fuc1n1PZ8F:wBry+zK7VPGnw3sH7Wc58F`
Yara	PNG_Format_Zero - PNG Format
VirusTotal	Search for analysis

Name	f09cbfa3f5086d6f_ph_test.css Submit file
Filepath	C:\Users\test22\AppData\Local\Temp\ph_test.css
Size	65.0B
Processes	1516 (%E6%94%BE%E5%81%87%E5%80%BC%E7%8F%AD%E5%AE%89%E6%8E%92.exe)
Type	ASCII text, with CRLF line terminators
MD5	`6c984538c4811cd52d21e38e117afa04`
SHA1	`52e53c239261103808018c8f42efd444b9b4e54c`
SHA256	`f09cbfa3f5086d6fa2609a48d6de61c152374958a951f06b9c653471bce0bb0f`
CRC32	`EB9CFD68`
ssdeep	`3:JqsZcpffdLVMXBLgLD6vYn:AsZ03JVON0GvY`
Yara	None matched
VirusTotal	Search for analysis

Name	6de598428c334097_IE9CompatViewList[1].xml Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\IE9CompatViewList[1].xml
Size	141.7KB
Type	XML 1.0 document, ASCII text, with CRLF line terminators
MD5	`c236e316e1b9ac60ce15dac7bcb8b2de`
SHA1	`1e240ed5f7cbc3dc8cd2397c7151a0d7e5f173c2`
SHA256	`6de598428c334097a21eb2dd5963c190fc5f80a6289bce205ded0466393745a4`
CRC32	`8B345ADA`
ssdeep	`3072:toSMrEDL1FwhdFFaz6l8vHG+TbFPAzepobjyG7I1K1IB2+Tir8v1IG9aIedyPcFC:mSMrEDL1FwhdFFaz6l8vHG+TbFPAzepR`
Yara	None matched
VirusTotal	Search for analysis