Dropped Files | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
04.20 07:04
.csrss.exe
04.20 07:04
.csrss.exe
04.20 06:04
cookies-alert-script.j...
04.20 06:04
mdb.min.css
04.20 06:04
font-awesome.min.css
04.20 06:04
bootstrap.min.css
04.20 06:04
style.css
04.20 06:04
popper.min.js.pobrane
04.20 06:04
jquery-3.2.1.min.js.po...
04.20 06:04
mdb.min.js.pobrane

Latest News
04.20 12:04
[K-CTI 2025] 케이토네트웍스 "...
04.20 12:04
[K-CTI 2025] 전덕조 씨큐비스타...
04.20 11:04
Frankenflair 58: Manua...
04.20 10:04
IT Sicherheitsnews tae...
04.20 08:04
China’s TMSR-LF1 Molte...
04.20 07:04
Tiktok testet Fußnoten...
04.20 07:04
KI-Bots im Undercover-...
04.20 07:04
Entkomme der Zahlenfal...
04.20 07:04
Bitte, Danke, Pleite? ...
04.20 05:04
They Hacked a Nuclear ...

Dropped Files | ZeroBOX

Name	80b702a8c7e1ffbd_avatar[1] Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\avatar[1]
Size	16.5KB
Processes	2132 (iexplore.exe)
Type	PNG image data, 145 x 145, 8-bit/color RGBA, non-interlaced
MD5	`7d683f57befaf3d20cb422de0481e8be`
SHA1	`b3c8319409dd6a7f481f0e04600fc517549809be`
SHA256	`80b702a8c7e1ffbdee6775074104daa3a04e0dbd1cea7518629e49c7b19eac3f`
CRC32	`9FFD2B5A`
ssdeep	`384:FzUwx0zCmNbYsNOcJ9UrervZ/1+silLNCwuX6HTYWwkz:FzzrmNbYss69HrvZ/gVCPU0Bkz`
Yara	PNG_Format_Zero - PNG Format
VirusTotal	Search for analysis

Name	cb3ccbb76031e5e0_3c428b1a3e5f57d887ec4b864fac5dcc Submit file
Filepath	C:\Users\test22\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
Size	914.0B
Processes	1960 (iexplore.exe)
Type	data
MD5	`e4a68ac854ac5242460afd72481b2a44`
SHA1	`df3c24f9bfd666761b268073fe06d1cc8d4f82a4`
SHA256	`cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f`
CRC32	`5017495B`
ssdeep	`24:c0oGlGm7qGlGd7SK1tcudP5M/C0VQYyL4R3fum:+JnJ17tcudRMq6QsF`
Yara	None matched
VirusTotal	Search for analysis

Name	2f7050a73bb20552_3c428b1a3e5f57d887ec4b864fac5dcc Submit file
Filepath	C:\Users\test22\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
Size	252.0B
Processes	1960 (iexplore.exe)
Type	data
MD5	`ac8680722c36ed38ae9df86b8fdfc961`
SHA1	`a5e5114484d8d21aad54dfbace52d2539e18d717`
SHA256	`2f7050a73bb20552d96024ea242b5ea11b6316b2c420171ad8b5f71734af677d`
CRC32	`A6A84F52`
ssdeep	`6:kKHLDplcbjcalgRAOAUSW0zeEpV1Ew1OXISMlcV/:PLPtWOxSW0zeYrsMlU/`
Yara	None matched
VirusTotal	Search for analysis

Name	4497e7f05df147c6_recoverystore.{975e5411-1bc7-11f0-91c7-080027c2f7b0}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{975E5411-1BC7-11F0-91C7-080027C2F7B0}.dat
Size	4.5KB
Processes	1960 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`e2505275ef412e4137fa883454bd4862`
SHA1	`0e01de3bc5b590cb71165d67628f1b80c87c9c22`
SHA256	`4497e7f05df147c6427fc07b56ad5fd3c38aa10679e0e87d1c45f73383c9e318`
CRC32	`763548C4`
ssdeep	`12:rlfF2oarEg5+IaCrI0F7+F2q/UrEg5+IaCrI0F7ugQNlTqbaxDKAIhbNlTqbaxDY:rqt5/1L5/3QNlWgLiNlWgL`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	fd84f88b497040d4_fluhrq6tzzclqej-vdg-iuiadsna[1].woff Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\flUhRq6tzZclQEJ-Vdg-IuiaDsNa[1].woff
Size	161.0KB
Processes	2132 (iexplore.exe)
Type	Web Open Font Format, TrueType, length 164912, version 1.1
MD5	`3e1afe59fa075c9e04c436606b77f640`
SHA1	`e4bb7c1e40d3febee58df963db276b2bf68c117b`
SHA256	`fd84f88b497040d4f7d5e8c9f8635aef8d3e706c0fa52e2b6facf14eee87e522`
CRC32	`B0BE9D96`
ssdeep	`3072:9jUw8wUxYQjHKuw6dNYHVGeBMoJa0gPC2OHli9HsGrdty9TE4ZmAau/5ePy:JpUGGHKuw63A7E0g62MkmTRm9Jy`
Yara	None matched
VirusTotal	Search for analysis

Name	77de224e738f5a80_{975e5412-1bc7-11f0-91c7-080027c2f7b0}.dat Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{975E5412-1BC7-11F0-91C7-080027C2F7B0}.dat
Size	7.0KB
Processes	1960 (iexplore.exe)
Type	Composite Document File V2 Document, Cannot read section info
MD5	`858c4e6e1a29337d64c39cdf2cfcbbcd`
SHA1	`a48fd9a72047e4943ae61a3585de1d5c4299e308`
SHA256	`77de224e738f5a80a2b4f53c1b92138fda87e6e4824881920a1e75d8a244b436`
CRC32	`EC8A1A83`
ssdeep	`96:UCdiNeR8W3zxYDtYDF1T3zxYDdONeXONepONey5eQwMH:5diN+n2ah1D2QNrN9Nt`
Yara	Microsoft_Office_File_Zero - Microsoft Office File
VirusTotal	Search for analysis

Name	ae1478d95de1abaa_gtm[1].js Submit file
Filepath	C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\gtm[1].js
Size	307.1KB
Processes	2132 (iexplore.exe)
Type	ASCII text, with very long lines
MD5	`6b3b0ee2b17a201a32bd441899bd60a3`
SHA1	`0a0f7ce23a0f494572384157084c8d6b22d2c754`
SHA256	`ae1478d95de1abaa6475b9d7ce2c7804d9ea67d16c2f4e8d3fb28393dfea48da`
CRC32	`796709FE`
ssdeep	`3072:KH1MRZSRKO8clH0UGV1RWsYO/ci8Jk2c4SUW5BOTDuolwhcpTv9FmR/:4EKKbcYci8S1iTiolwhcpLmp`
Yara	None matched
VirusTotal	Search for analysis