popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name e53c379d95e95706_putty[1].exe
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\putty[1].exe
Size 1.6MB
Processes 2692 (iexplore.exe)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 7a9a33206f80078ba80f7a839cd92451
SHA1 55447378c48561c35bad1317b58a34ee50c5072f
SHA256 e53c379d95e95706c5a2c4d6cd609857368a3bf14f28d7e67f6e3f8dfce6d486
CRC32 CBDF11B0
ssdeep 49152:RRTjW2tHSGC1v0wpEHfCbi/sqYPfGsqtOkNfPkaR:Rpjh6esqt7fzR
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name c9271facdcf3cb49_recoverystore.{afe8b3b9-8b62-11ef-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{AFE8B3B9-8B62-11EF-948E-94DE278C3274}.dat
Size 5.0KB
Processes 2612 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 d988da9f41274bf6aa5e1316a57a1fbe
SHA1 718845495531e97112c2ddf33d24bb07d96381af
SHA256 c9271facdcf3cb49fb8155ed2a526bff6aaab7b243f5b836f57f802d45883741
CRC32 38E0BED7
ssdeep 12:rlfF2WrEg5+IaCrI0CI7eF2VTrEgmZ+IaCrI0CIc8GmRVOeMiqI771NlTqbaxLbi:rqW5/fVTG5/k85jBM+NlWfNlW
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis
Name 52868e92dbd39d30_{afe8b3ba-8b62-11ef-948e-94de278c3274}.dat
Submit file
Filepath C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{AFE8B3BA-8B62-11EF-948E-94DE278C3274}.dat
Size 4.5KB
Processes 2612 (iexplore.exe)
Type Composite Document File V2 Document, Cannot read section info
MD5 214d0344db41fe4c50a19e831f801196
SHA1 7655faaa211092aebc47ba371833780e0139f52c
SHA256 52868e92dbd39d30555545b9efb1a2744ad79eb2619ec5861d67449f72ab3f5b
CRC32 D9FC9B18
ssdeep 12:rlxAFGrEgm8GL7KF+DrEgm8G37qsLNl26abax1Nl8fRbaxdPtH2W:rFG8aG8aLNlIoNlo6PtW
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal Search for analysis