Name | 1ab0216b422a2ba8_regid.1991-05com.microsoftvsenhance.bat |
---|---|
Filepath | C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsEnhance.bat |
Size | 214.0B |
Processes | 2540 (powershell.exe) |
Type | ASCII text, with CRLF line terminators |
MD5 | 7e1b854b9970e9b3c22200496c37397f |
SHA1 | a0bba61020ac13cee4b5d78a6d7f59e0ec1367b8 |
SHA256 | 1ab0216b422a2ba8a3d16a67220506b6ba623cd8c71b2822184a5282de382223 |
CRC32 | 0CDF5F01 |
ssdeep | 6:0+Ds8XI1R3KbQO0cq5IfrG47qnMwKh+dve/R8QJ2nw:zDs8XI1kbQpcqAaxrdG/BQw |
Yara | None matched |
VirusTotal | Search for analysis |
Name | 866fcf6e3eb48412_regid.1991-05com.microsoftvslabs.vbs |
---|---|
Filepath | C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsLabs.vbs |
Size | 267.0B |
Processes | 2540 (powershell.exe) |
Type | ASCII text, with CRLF line terminators |
MD5 | 2ce14732b886620f1fd3f38ee037825c |
SHA1 | d843d0c64b4b03871cbc4e114dea01c5bd8b189c |
SHA256 | 866fcf6e3eb484128ddb4f682394c19d3ffc8ecfac0ad124e27b120080cd4969 |
CRC32 | 4565DE41 |
ssdeep | 6:ZGftGTKFtNZXz7XGomQNqh6W7gL98G47qnMwKh+dve/R8QxayqvQn:ZGftR1nGMohW98GxrdG/BnqK |
Yara | None matched |
VirusTotal | Search for analysis |
Name | e6f797a2921cebca_regid.1991-05com.microsoftvslabsdata.ps1 |
---|---|
Filepath | C:\ProgramData\WindowsHolographicDrivers\regid.1991-07com.microsoft\regid.1991-05com.microsoftVsLabsData.ps1 |
Size | 1.2MB |
Processes | 2540 (powershell.exe) |
Type | ASCII text, with very long lines, with CRLF line terminators |
MD5 | 21630e7ae7458813259f60fe6b23eeb2 |
SHA1 | 59ba6be010fe4e517f5a4bfb3e30e53d043a5767 |
SHA256 | e6f797a2921cebca2faacd04478c7e5793e22463facf46cbaf965a247073ab76 |
CRC32 | C1BB3AC5 |
ssdeep | 12288:y0AVo361AC3ZEohiJFwEab7OFYZDhDnALoWxXruS7BqiY9bzJ5nDEUf03QHUunOL:ye1pxxVH0XQ |
Yara | None matched |
VirusTotal | Search for analysis |
Name | b7c225ef3cc3e875_d93f411851d7c929.customdestinations-ms |
---|---|
Filepath | c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms |
Size | 7.8KB |
Processes | 2540 (powershell.exe) |
Type | data |
MD5 | 81ca4510272caf505e8091e9a28cb716 |
SHA1 | 71414aeec9f1e4a6f5a461b01700cc9cc992cd9e |
SHA256 | b7c225ef3cc3e87506150eb140e7b9cc127a3469c50a808854acac71a53d98bf |
CRC32 | FC31E90F |
ssdeep | 96:EtuCcBGCPDXBqvsqvJCwoRtuCcBGCPDXBqvsEHyqvJCwor/47HwxGlUVul:EtCgXoRtCgbHnorLxY |
Yara |
|
VirusTotal | Search for analysis |