Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
a2e-enterprise.26.3.3677.2903.exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
initial sample
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Add2Exchange Enterprise Guide.pdf
|
PDF document, version 1.7
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Add2ExchangeSetup.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 5.2, MSI Installer, Create Time/Date: Mon Jun 21
08:00:00 1999, Name of Creating Application: Windows Installer, Security: 1, Code page: 1252, Template: Intel;1033, Number
of Pages: 200, Revision Number: {6CC5F0A5-DD20-463B-A745-23226EA64FC9}, Title: Add2Exchange Setup, Subject: Add2Exchange,
Author: Advantage International, Comments: A Microsoft Exchange Server synchronization program., Number of Words: 2, Last
Saved Time/Date: Mon Mar 11 15:43:44 2024, Last Printed: Mon Mar 11 15:43:44 2024
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\EULA\Add2Exchange EULA.pdf
|
PDF document, version 1.7, 6 pages
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\EULA\Add2Exchange EULA.rtf
|
Rich Text Format data, version 1, ANSI, code page 1252, default language ID 1033
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\First_Time_Installer.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Links\Request Support for DidItBetter.url
|
Generic INItialization configuration [InternetShortcut]
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Outlook_Installer.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Setup Files\Office365_Pro_Retailx64_Configuration.xml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Setup Files\Office365_Pro_Retailx86_Configuration.xml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Setup Files\Pro_Retailx64.cmd
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Setup Files\Pro_Retailx86.cmd
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\O365Outlook32\Setup Files\setup.exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup.zip
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_Auto_Migration.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_Directory.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_MMC.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_Permissions_Commands.rtf
|
Rich Text Format data, version 1, ANSI, code page 1252, default language ID 1033
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_SQL_Backup.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\A2E_Setup_Details.ps1
|
Non-ISO extended-ASCII text, with very long lines (485), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Add2Outlook_Set_Granular_permissions.ps1
|
Non-ISO extended-ASCII text, with very long lines (355), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Permissions_Task_Creation.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\2010-2019_All_Permissions.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\2010-2019_Dist_List_Permissions.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\2010-2019_Dynamic_Distribution.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Office365_All_Permissions.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Office365_Dist_List_Permissions.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Office365_Dynamic_Distribution.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Shell_Permissions.ps1
|
Non-ISO extended-ASCII text, with very long lines (355), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Stand_Alone_DyanmicDistList_Task.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Permissions_Portable\Scripts\Stand_Alone_Dynamic_Distribution_List.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Upgrade_Add2Exchange.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Upgrade_Add2Outlook.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Upgrade_RMM.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Auto_Upgrade_ToolKit.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Autologon.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Bypass_AutoDiscover.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\DiditBetter_Support_Menu.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Dir_Sync.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Disable_Modern_Authentication.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Disable_Outlook_Updates.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Disable_UAC.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\EXModule_dotNET_Update.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Export_ADPhoto.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Export_License_and_Profile1.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\First_Time_Installer.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\GP_Results.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Get_Diags.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Legacy_PowerShell.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\MSExchangeDelegation.ps1
|
ISO-8859 text, with very long lines (321), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\OSC_Disable.bat
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Office_Updater.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Outlook_Installer.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Outlook_Profile_Set.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Outlook_Tools_Menu.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\PermissionsOnPremOrO365Combined.ps1
|
Non-ISO extended-ASCII text, with very long lines (355), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Permissions_Task_Creation.ps1
|
Non-ISO extended-ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Post_A2E_Migration.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Public _Folder_to_Address_Book.vbs
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\REARM_Office.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Registry_Favorites.ps1
|
ISO-8859 text, with very long lines (342), with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Reset_A2E_Password.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Firewall_Rules.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL12x_to_SQL12xSP4.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL12x_to_SQL22x.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL17x_to_SQL22x.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL8x_to_SQL12x.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL8x_to_SQL8xSP4.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQLExpress_Main_2022_Upgrade.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\SQL_Upgrade_Files\SQL_Management_Studio_Quiet_Install.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Scheduled_Update_Add2Exchange.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Desktop\a2e-enterprise.26.3.3677.2903\Setup\Setup Files\Office365_Pro_Retailx64_Configuration.xml
|
ASCII text, with CRLF line terminators
|
dropped
|