Overview

overview

10

Static

static

10

Crack UZ1/...oc.exe

windows7-x64

1

Crack UZ1/...oc.exe

windows10-2004-x64

1

Setup_Driv...22.exe

windows7-x64

9

Setup_Driv...22.exe

windows10-2004-x64

9

Resubmissions

05-11-2022 19:59

221105-yqefyabgdl 10

05-11-2022 19:56

221105-yn7dyabgcp 10

05-11-2022 19:39

221105-ydcftabfgr 10

05-11-2022 19:22

221105-x3ef2ahce6 10

Analysis

  • max time kernel
    190s
  • max time network
    210s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    05-11-2022 19:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Setup_DriverDoc_2022.exe

  • Size

    6.0MB

  • MD5

    c65a354ac28f2f45c7ca8a38e4f778d6

  • SHA1

    42d84f6be5cfa1503dc7bd8275073872d71a4fc0

  • SHA256

    396cb9e17c57f09c4afab97f91e72011e3f115b15e764c39d26473d92fe2c45e

  • SHA512

    7acba2651fb1378a97c47ce6723808235ddd74d2cb736f5fb6f28a241f3b33188e9a511c6be2eb3ca8e7cad68c05a76a0c853edc5a417a16aacd5c0388950017

  • SSDEEP

    98304:KSi1jH0UJukUYMwioEgGU9KM+ZFNIO05p0oO2gz8+fyTx:MUvkUMiij9KM+7Npc0R4+KTx

Score
9/10
discovery

Malware Config

Signatures

  • Affect hook table 15 IoCs
  • Anti-Sandbox checks for ThreatExpert 2 IoCs
  • Bypass DEP 12 IoCs
  • Check_OutputDebugStringA_iat 6 IoCs
  • Checks if being debugged 21 IoCs
  • DebuggerCheck__QueryInfo 7 IoCs
  • DebuggerException__SetConsoleCtrl 6 IoCs
  • SEH_Init 17 IoCs
  • SEH_Save 15 IoCs
  • Executes dropped EXE 6 IoCs
  • Loads dropped DLL 12 IoCs
  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Enumerates connected drives 3 TTPs 25 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Drops file in Windows directory 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

  • Kills process with taskkill 4 IoCs
    evasion
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Modifies system certificate store 2 TTPs 2 IoCs
    evasionspywaretrojan
  • Suspicious behavior: EnumeratesProcesses 5 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 27 IoCs
  • Suspicious use of FindShellTrayWindow 7 IoCs
  • Suspicious use of SendNotifyMessage 5 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe
    C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe /VERYSILENT /NORESTART /ALLUSERS /DIR="C:/DriverDoc/" /LANG="german"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:1724
    • C:\Users\Admin\AppData\Local\Temp\is-8BS73.tmp\Setup_DriverDoc_2022.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-8BS73.tmp\Setup_DriverDoc_2022.tmp" /SL5="$70124,5347251,879104,C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe" /VERYSILENT /NORESTART /ALLUSERS /DIR="C:/DriverDoc/" /LANG="german"
      2⤵
      • Executes dropped EXE
      • Suspicious use of WriteProcessMemory
      PID:820
      • C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe
        "C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe"
        3⤵
        • Loads dropped DLL
        • Suspicious use of WriteProcessMemory
        PID:1100
        • C:\Users\Admin\AppData\Local\Temp\is-T3LBP.tmp\Setup_DriverDoc_2022.tmp
          "C:\Users\Admin\AppData\Local\Temp\is-T3LBP.tmp\Setup_DriverDoc_2022.tmp" /SL5="$80124,5347251,879104,C:\Users\Admin\AppData\Local\Temp\Setup_DriverDoc_2022.exe"
          4⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Enumerates connected drives
          • Suspicious behavior: EnumeratesProcesses
          • Suspicious behavior: GetForegroundWindowSpam
          • Suspicious use of FindShellTrayWindow
          • Suspicious use of WriteProcessMemory
          PID:516
          • C:\Windows\SysWOW64\taskkill.exe
            "C:\Windows\System32\taskkill.exe" /f /im "DriverDoc.exe"
            5⤵
            • Kills process with taskkill
            • Suspicious use of AdjustPrivilegeToken
            PID:1128
          • C:\Windows\SysWOW64\taskkill.exe
            "C:\Windows\System32\taskkill.exe" /f /im "DriverPro.exe"
            5⤵
            • Kills process with taskkill
            • Suspicious use of AdjustPrivilegeToken
            PID:604
          • C:\Windows\SysWOW64\taskkill.exe
            "C:\Windows\System32\taskkill.exe" /f /im "DOCSchedule.exe"
            5⤵
            • Kills process with taskkill
            • Suspicious use of AdjustPrivilegeToken
            PID:1444
          • C:\Windows\SysWOW64\taskkill.exe
            "C:\Windows\System32\taskkill.exe" /f /im "DOCTray.exe"
            5⤵
            • Kills process with taskkill
            • Suspicious use of AdjustPrivilegeToken
            PID:1956
          • C:\DriverDoc\DriverDoc.exe
            "C:\DriverDoc\DriverDoc.exe" /INSTALL
            5⤵
            • Executes dropped EXE
            • Loads dropped DLL
            • Suspicious behavior: EnumeratesProcesses
            • Suspicious use of AdjustPrivilegeToken
            PID:1048
          • C:\DriverDoc\DriverDoc.exe
            "C:\DriverDoc\DriverDoc.exe" /START /INSTALLED
            5⤵
            • Executes dropped EXE
            • Loads dropped DLL
            • Drops file in Windows directory
            • Modifies system certificate store
            • Suspicious use of AdjustPrivilegeToken
            • Suspicious use of WriteProcessMemory
            PID:1764
            • C:\Windows\SysWOW64\schtasks.exe
              "C:\Windows\System32\schtasks.exe" /Delete /TN "DriverDoc Schedule" /F
              6⤵
                PID:1932
              • C:\Windows\SysWOW64\schtasks.exe
                "C:\Windows\System32\schtasks.exe" /Delete /TN "DriverDoc Monitoring" /F
                6⤵
                  PID:1060
                • C:\Program Files\Internet Explorer\iexplore.exe
                  "C:\Program Files\Internet Explorer\iexplore.exe" https://www.solvusoft.com/en/driverdoc/install/
                  6⤵
                  • Modifies Internet Explorer settings
                  • Suspicious use of FindShellTrayWindow
                  • Suspicious use of SetWindowsHookEx
                  • Suspicious use of WriteProcessMemory
                  PID:828
                  • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
                    "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:828 CREDAT:275457 /prefetch:2
                    7⤵
                    • Modifies Internet Explorer settings
                    • Suspicious use of SetWindowsHookEx
                    PID:1728
                • C:\Windows\SysWOW64\schtasks.exe
                  "C:\Windows\System32\schtasks.exe" /Delete /TN "DriverDoc Schedule" /F
                  6⤵
                    PID:1936
                  • C:\Windows\SysWOW64\schtasks.exe
                    "C:\Windows\System32\schtasks.exe" /Delete /TN "DriverDoc Monitoring" /F
                    6⤵
                      PID:2032
                    • C:\DriverDoc\DriverDoc.exe
                      "C:\DriverDoc\DriverDoc.exe" /TRAY /SHOWMIN
                      6⤵
                      • Executes dropped EXE
                      • Loads dropped DLL
                      • Suspicious use of AdjustPrivilegeToken
                      • Suspicious use of FindShellTrayWindow
                      • Suspicious use of SendNotifyMessage
                      PID:940
                  • C:\DriverDoc\Extra\DriverPro.exe
                    "C:\DriverDoc\Extra\DriverPro.exe"
                    5⤵
                    • Executes dropped EXE
                    • Loads dropped DLL
                    • Suspicious behavior: EnumeratesProcesses
                    PID:956
          • C:\Windows\explorer.exe
            "C:\Windows\explorer.exe"
            1⤵
              PID:1148
            • C:\Windows\system32\AUDIODG.EXE
              C:\Windows\system32\AUDIODG.EXE 0x2f8
              1⤵
              • Suspicious use of AdjustPrivilegeToken
              PID:1160

            Network

            MITRE ATT&CK Enterprise v6

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • C:\DriverDoc\7z.dll
              Filesize

              991KB

              MD5

              eeb340cd0317612256596870fdad903f

              SHA1

              c4cd2abe134b3d5e043593dd88c7d61d6d53e417

              SHA256

              aecadb80ac6e9bfdf585933d5bf3741a130206df61324cccbf613a31101a3d54

              SHA512

              a4c03aeada2f9f0b333db50bdf42612eef742b6f26eb39749aebe9d504f47aef4d3e098f49b04cfd10a2c2fb73a7bbb1b53bfd098e4e6ccdd9ce8a9e56554c9e

              Download Submit

            • C:\DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • C:\DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • C:\DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • C:\DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • C:\DriverDoc\English.ini
              Filesize

              49KB

              MD5

              648ecf1406143431e9e7441a0e360e69

              SHA1

              97c6738339ac673d2aa8a4bb9d024f6d82f35dd4

              SHA256

              8389687dfb442db46dd861e2e9f9753c5aa206b177e3f139d854d9366a37fef3

              SHA512

              ebd86c1e5f6a671397705ab2f23449e73ef151fa02d34dbf8c8c6a6aeb9c9e7873c4dbdede18b0bd1e65ab26806c60c9d17337f9a16e23f571f86ca98be1cdd5

              Download Submit

            • C:\DriverDoc\Extra\Brazilian.ini
              Filesize

              12KB

              MD5

              b24c70f0951a902d62e97321ee12be9d

              SHA1

              759555b579c811eaa2bc123edbf49fa6fdc0ab72

              SHA256

              226b01c08d3cd2f0099c6138d97e4ec3096207e220d0203400c9dbeabdf1a446

              SHA512

              b521e94e80d4d97ce6bbc76e954ed3cacfe06fbe9408e8228a442e71c1672218033ba10191083a8dec90e8f5eed475b59c8ad9112c4648099bd1c51778260ee0

              Download Submit

            • C:\DriverDoc\Extra\Danish.ini
              Filesize

              12KB

              MD5

              c4e19798b19173eca54cc2f615a0b99e

              SHA1

              6638701c7b4991227e1f883414bcd1315b7b0864

              SHA256

              01539234b53ddc8ac82665ea18daeadd1edd2b4b918b21fa72f3848b6639a301

              SHA512

              4c976fc3282531d5ad32f5ec1f436378cf73f068c650c578e54b25cbe2911a4709bd14c46ebc74ef395afb771e8f8d9f28798b204d5f2a89589f8119ea7c8d20

              Download Submit

            • C:\DriverDoc\Extra\DriverPro.exe
              Filesize

              4.9MB

              MD5

              5a1d85fb3c9062304547475d6bd383ed

              SHA1

              dc8722d155277e841ea9404beabb1c012c7eefc0

              SHA256

              de9a6adbda9378230f1a4caff8c23d208a0d19114dcec00391869a83e129787f

              SHA512

              681b4341548c34e2b7dce6731ef7cd35a2271ef482984e4f706b44c07962ee4673d5b2596020c2d2dd1f92867e7001ea84549ac517032f25b3e899313c758e3f

              Download Submit

            • C:\DriverDoc\Extra\Dutch.ini
              Filesize

              12KB

              MD5

              cba424ebfd76fbab92e4c611ebbc6bdf

              SHA1

              9678ae22d9585dd12d692522c30aebc5b92a2249

              SHA256

              6951d18ba89c4875983cce91305f802f0f690675d76fd14fa0cb0f792b0aaea3

              SHA512

              22967f3bdd097fa5ffa06945a69d5d39c26b9bd21892a19e9efa234b24349fed7d7e62187506c8d18475055041af15e9b3a877f56ac7eae29478253bc31cc8dc

              Download Submit

            • C:\DriverDoc\Extra\English.ini
              Filesize

              11KB

              MD5

              2e509dd5f4217be553fbe379a0a90c23

              SHA1

              9dd8f007d11ad0f4cf30cbc555bb3cf36d4c2a02

              SHA256

              a1e376b66a11846fd448708b81a894d279032d0247bd5c0f79f606c945397162

              SHA512

              6c11872669e593d77dbcefc4a5bd5257c49329bfa8a5260fcb743855d5e7dcfeaf48a69bbe16b81057b049957fca263c7efca630a257fc5813edb687467063cf

              Download Submit

            • C:\DriverDoc\Extra\Finnish.ini
              Filesize

              12KB

              MD5

              d140f9ae6ca875d2f8bcec576bb2c203

              SHA1

              871cc1e85dde0d2b4bdab5566defbe8483348fcf

              SHA256

              39fca6cb75735a2bc2abe2b35ca94cde8da856955de641c165c7e1e1f8b5b516

              SHA512

              5815e0d2e5f9242f587d6d79679232c32a9279b25fde308763f210a4cf365430e76d259b714de0aed9904277b586380fbb04a057dd66ae143cca0eef1329362c

              Download Submit

            • C:\DriverDoc\Extra\French.ini
              Filesize

              13KB

              MD5

              637686253a68504cc01fe055a25346f7

              SHA1

              59e36e5a2e71887acb4eac090e1cdb8d240379b1

              SHA256

              f008522a75e279cdb23489e24b4835ce6516cf2a669df705c072b23f311b7a3a

              SHA512

              16377b987a8ede42a379a39b641cf3a6c2dc11c454e9cc460808ab3dc8dab5c5782de26923ce524eaeaa5d389bfce5ba46561791424a65b08de2a69b71652fda

              Download Submit

            • C:\DriverDoc\Extra\German.ini
              Filesize

              13KB

              MD5

              cae7b08264859d094eccbcd1686e4b58

              SHA1

              31e000b5f93a4af158e3211e9ef6ee24a43df6ed

              SHA256

              1cdef54fcbaf02d46fb31cee5738e2e1f9d5bcd89b58f49ef98c011329266e69

              SHA512

              31646eba2f4e4d312fafe191608c5fa963c4ed1753cc55340314c9c6142424b36d819f67bd9218ad41c2627c8289c5764a752ebc449d3e8e43aa5ab833631771

              Download Submit

            • C:\DriverDoc\Extra\Italian.ini
              Filesize

              12KB

              MD5

              49c62ebd53b8d40b961ab63d16d1b18c

              SHA1

              b002185abcc6f84fb272445a3579cfe96972e19a

              SHA256

              9f47adfacf4d1855d0de2b806149084cf6051de2b6de09692fbf17a93b149343

              SHA512

              7895f99d82f95cb3f6c0f91a0c283472205f052c81e8321cd01ebae20d94813a9139262815a0d4258bd719e4cba63e5a2ae9457902f10244affaebed33e72d24

              Download Submit

            • C:\DriverDoc\Extra\Japanese.ini
              Filesize

              15KB

              MD5

              4cc34523cefbe42b62cf1839c0f54663

              SHA1

              fdaa0ad16c693906978f7e1364b1c850869354bf

              SHA256

              94c1b8fc0bda3ba585e92b4ed812421bc6dea4da29b2321b1286d27615571b79

              SHA512

              c0ffb819229709cc3bc340c859330da8c5c91763fb5ccccbaed073ed282150dbcefd329fbab440e88dafe30c39e8055be0009113a1400d9170a6701ba63b2824

              Download Submit

            • C:\DriverDoc\Extra\Norwegian.ini
              Filesize

              11KB

              MD5

              3285372c3ad0355bd7eec8488f40629d

              SHA1

              48288694c5a5724e8c56339d675666d8476741aa

              SHA256

              2c402fd6e6aab9d8ffc93ca29f07fc55420a598ed1368ec2ad381cb4808195f2

              SHA512

              ea6bd5c5274deb99c4c70f29f17e324649139b5b47cc054a52a2e3b3c4f0e4b1fd80cd105fd32d0b3ab29af115cc09ced4c7f8529bd651f7a6d265dd3d00acab

              Download Submit

            • C:\DriverDoc\Extra\Polish.ini
              Filesize

              13KB

              MD5

              92bfc521b92d8ac30cb6fdb31ee37fb2

              SHA1

              14f04856f4a3661007fabb846b83499ebc34cdf7

              SHA256

              357ac44df2a8fa996a78061bc67531b8dd5d2770a3a4aa7ed1aad3c5c52e4050

              SHA512

              4dfc21cdaa3c00e93008ad55061bbb02d31504cec26271cb040356a1e04408fa766b12425aea0e91adb230fe0d231466de4392f0b48c1477b9f083e795ab9b66

              Download Submit

            • C:\DriverDoc\Extra\Portuguese.ini
              Filesize

              12KB

              MD5

              d8bd59eb5dcd48a976d2ae97c2edb6a3

              SHA1

              a03eea088611d0acb75aa0d02f14b7c1e5a24e32

              SHA256

              2cb3920f6b44c3c0915c4b7e8f5f24b9c4e3ea0932e14c8c0742fafd07a992e2

              SHA512

              74fca4cd378009775c0eef179ee1e0961591e5ab0b3551dbb91e858edca9437bb1d99f581ced11752adee2c2d8b9c6dfc4329d9a0fdeb0385c09ba1012ba8109

              Download Submit

            • C:\DriverDoc\Extra\Russian.ini
              Filesize

              21KB

              MD5

              b4b289047fd327d99e5809234174736b

              SHA1

              c9f2e45efa8ce22720f2dc49bc85764dee49025d

              SHA256

              eb0f8c2bfd6f0d3744e16ddd7db56590e5c9a4f1960b4ea9c2240f691b2504e4

              SHA512

              dccac50a017bb1482e7657f5b166f0316336d049ef446ecc26b1a3cd38ca7e90cbb713bdac3b59414f8e2800fd0b25d25d3ccd4641993213052329e272b96f9a

              Download Submit

            • C:\DriverDoc\Extra\Settings.ini
              Filesize

              73B

              MD5

              4dfd24933bec370032a0fde1452d9b14

              SHA1

              f3c3bc92eabe67c9072a0a29968322adad9489c2

              SHA256

              035c7dd8eef04f652d7d7b6b28c27ddb0b867502d088c1cba12319b5718fb1b6

              SHA512

              85ccd0c6cf38ee620b0a4a2289c4161fcb01fcd3546e1cf3ebfe83a087133972661e8b3854db5643caaadded1fcb3d621141a8f39490866d21b53b947f42d97f

              Download Submit

            • C:\DriverDoc\Extra\Spanish.ini
              Filesize

              12KB

              MD5

              3eb3ce7cb9d27f10c18ba319882cc7ed

              SHA1

              7e09a5a88f46570f0d95d19602f38379ae01742e

              SHA256

              419ef75a40cc8d0ae3ae7767bc87f9c967b0068afa8bb03cd67b697c00f40cea

              SHA512

              5ec29890eaf47e4ea91dc948811bd1f9dc7dac27b8b116a620b634baf8e33ee605a6e815da04df45478c1460f4cca371ae469f7e4093e12184e24a3a934ef059

              Download Submit

            • C:\DriverDoc\Extra\Swedish.ini
              Filesize

              12KB

              MD5

              45b6b39f4009ef7a14dde07ceb42647a

              SHA1

              5372f2432e6a110ee2fff3b37e30a1443132f38f

              SHA256

              1388b135d43d916af79f2630308b7a28e010fb5e32205c70e796130c0828c7fb

              SHA512

              48936b2885b73c0c7841d237a78ad38b0c60f63cac5746e4da87342fbc3b234e7feb437e7456dcb5824c06d022e5351c237819231b3f0d013762c34a2c0844ec

              Download Submit

            • C:\DriverDoc\Extra\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • C:\DriverDoc\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
              Filesize

              61KB

              MD5

              3dcf580a93972319e82cafbc047d34d5

              SHA1

              8528d2a1363e5de77dc3b1142850e51ead0f4b6b

              SHA256

              40810e31f1b69075c727e6d557f9614d5880112895ff6f4df1767e87ae5640d1

              SHA512

              98384be7218340f95dae88d1cb865f23a0b4e12855beb6e74a3752274c9b4c601e493864db777bca677a370d0a9dbffd68d94898a82014537f3a801cce839c42

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
              Filesize

              61KB

              MD5

              3dcf580a93972319e82cafbc047d34d5

              SHA1

              8528d2a1363e5de77dc3b1142850e51ead0f4b6b

              SHA256

              40810e31f1b69075c727e6d557f9614d5880112895ff6f4df1767e87ae5640d1

              SHA512

              98384be7218340f95dae88d1cb865f23a0b4e12855beb6e74a3752274c9b4c601e493864db777bca677a370d0a9dbffd68d94898a82014537f3a801cce839c42

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
              Filesize

              61KB

              MD5

              3dcf580a93972319e82cafbc047d34d5

              SHA1

              8528d2a1363e5de77dc3b1142850e51ead0f4b6b

              SHA256

              40810e31f1b69075c727e6d557f9614d5880112895ff6f4df1767e87ae5640d1

              SHA512

              98384be7218340f95dae88d1cb865f23a0b4e12855beb6e74a3752274c9b4c601e493864db777bca677a370d0a9dbffd68d94898a82014537f3a801cce839c42

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
              Filesize

              342B

              MD5

              2276f624b6b32054e986ca53acdd838a

              SHA1

              10670364c037819180a8eaa0bf01f2e15c6547d7

              SHA256

              4bca3c607cdf2498f1a3f2e529664e217de6ede223a1e04bbbb317f937124be2

              SHA512

              a6ba22e6562699b049bb0fbe585fcbe123c750c893fbfc2a1756a9491f9e52c4326ad9be701b1f240a40c5dbc02728bf812607fda9db4676f457d6d930383ae9

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
              Filesize

              342B

              MD5

              e53065488e24fb5632c3ed004360a831

              SHA1

              0d6db776eb87b3f6264fa21db8bc81739b724af4

              SHA256

              02256122a1ec4a44525427e5382fdbd98fdedbeeedbbf0ee504461036f4c1ea6

              SHA512

              7442101331f33773c11f45977dd5823de3e7869addd58279afae16692e5d085cbeca5d6403ff300ddf8d550164b9291fc219585c48579f5de2cbc36474f0f8b9

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
              Filesize

              342B

              MD5

              e53065488e24fb5632c3ed004360a831

              SHA1

              0d6db776eb87b3f6264fa21db8bc81739b724af4

              SHA256

              02256122a1ec4a44525427e5382fdbd98fdedbeeedbbf0ee504461036f4c1ea6

              SHA512

              7442101331f33773c11f45977dd5823de3e7869addd58279afae16692e5d085cbeca5d6403ff300ddf8d550164b9291fc219585c48579f5de2cbc36474f0f8b9

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
              Filesize

              342B

              MD5

              13bfd27c9c5d929026a7e94304b14860

              SHA1

              f624e195b4f90add2a9f81abfa413961365df2ee

              SHA256

              c66513ca2333530a98e513dec3f2b5c9ddb211f0cec5ef00701aa59c4adfe6a2

              SHA512

              88b0a8b420cdd354cbf0ff7f625fbb89ee4c6901234afec1e6d52cdf3adcba8b5b6b352c273104318ce8901a2be2692a914b61af3f7e644fa1390b6e95d79daf

              Download Submit

            • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
              Filesize

              342B

              MD5

              a76b7f7ead5662d9094c9a75b3f18f71

              SHA1

              013920fdc7a5759735a115e7c6053f04693b8a17

              SHA256

              76b6a7e2d15c6b7c3acfca2685ec023a442c3d23a77061678fd5ca70dda61cd6

              SHA512

              82a5271077c103faff319499a89ed83e4683e0feae29f0924bcd50195abe551774827116668e673d98dc56f5d0574a89a4a8a4205db7fef20ca9f45cf3da6ebf

              Download Submit

            • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\309axvf\imagestore.dat
              Filesize

              5KB

              MD5

              6164d7f725278097b3011520e76bc57b

              SHA1

              bde3f84efd70ee05595c2bd0dafdf14eef879a27

              SHA256

              367258bd19ca6d658a7c579028cfc319254226e6c1817cdbb5e48c9cdc6f6d83

              SHA512

              8a672406590555f7f4066f5e7880c44437d492a605045c833dabb9510b67e9a86840b3991f53bc625a3e06bd4ed02ae3db527b3551f54c6eb33ae63b11b9994b

              Download Submit

            • C:\Users\Admin\AppData\Local\Temp\is-8BS73.tmp\Setup_DriverDoc_2022.tmp
              Filesize

              3.1MB

              MD5

              d70a98daf7a810ee18ce451ec673e399

              SHA1

              274dff37313f3fbdf82dfc4afd94582359b79fee

              SHA256

              9621346beee2a257b1966b6dc3f1f850d54ae0746bf1718d35c966649ac9b340

              SHA512

              a246aa8979a7bc1a8ae6d1c5ac637939e7ab3380484cb78a3fc98fe9ceccb51cb5d6dfe787ece6bb1420450741c0734a049849dac7242679b8660e71acf00e60

              Download Submit

            • C:\Users\Admin\AppData\Local\Temp\is-T3LBP.tmp\Setup_DriverDoc_2022.tmp
              Filesize

              3.1MB

              MD5

              d70a98daf7a810ee18ce451ec673e399

              SHA1

              274dff37313f3fbdf82dfc4afd94582359b79fee

              SHA256

              9621346beee2a257b1966b6dc3f1f850d54ae0746bf1718d35c966649ac9b340

              SHA512

              a246aa8979a7bc1a8ae6d1c5ac637939e7ab3380484cb78a3fc98fe9ceccb51cb5d6dfe787ece6bb1420450741c0734a049849dac7242679b8660e71acf00e60

              Download Submit

            • C:\Users\Admin\AppData\Local\Temp\is-T3LBP.tmp\Setup_DriverDoc_2022.tmp
              Filesize

              3.1MB

              MD5

              d70a98daf7a810ee18ce451ec673e399

              SHA1

              274dff37313f3fbdf82dfc4afd94582359b79fee

              SHA256

              9621346beee2a257b1966b6dc3f1f850d54ae0746bf1718d35c966649ac9b340

              SHA512

              a246aa8979a7bc1a8ae6d1c5ac637939e7ab3380484cb78a3fc98fe9ceccb51cb5d6dfe787ece6bb1420450741c0734a049849dac7242679b8660e71acf00e60

              Download Submit

            • C:\Users\Admin\AppData\Roaming\DriverDoc\program.log
              Filesize

              2KB

              MD5

              3991ebf3533ab36ae8a9a28ea3490c97

              SHA1

              84abdfedc22ebd00a8edf6215884a30dcf1a88ae

              SHA256

              d652c6ae4642e132f2dae3b760a9dc863df566b5c46c014f3d90779de8ef0033

              SHA512

              41bb204fb47009386fc3f600878f907e02e527d478ac68eac5ffc71f900ce431bb42e5517f7f986d70d2609b66c8ea3c553f817278e5be36ab935c7ff1b5de00

              Download Submit

            • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\528BABRC.txt
              Filesize

              598B

              MD5

              12083e08a6ea0fe5c9dc3b5103f0cfa3

              SHA1

              bee770e51d05fb4e94d9eb0c077742d23e81ee9e

              SHA256

              4a438dd4e6b371960e13ca7bea2f53e0930378d1dc6c59bbf06ed29957aaa5c2

              SHA512

              02872ebdc82f1cc3caaa4721276078d75efb76c9a4e1ca8f6593c276dc4ea8a0b5c956635820a7e5cb22a86d72e54d1d436cba3f5ebb377472cdd9299e1bd689

              Download Submit

            • \DriverDoc\7z.dll
              Filesize

              991KB

              MD5

              eeb340cd0317612256596870fdad903f

              SHA1

              c4cd2abe134b3d5e043593dd88c7d61d6d53e417

              SHA256

              aecadb80ac6e9bfdf585933d5bf3741a130206df61324cccbf613a31101a3d54

              SHA512

              a4c03aeada2f9f0b333db50bdf42612eef742b6f26eb39749aebe9d504f47aef4d3e098f49b04cfd10a2c2fb73a7bbb1b53bfd098e4e6ccdd9ce8a9e56554c9e

              Download Submit

            • \DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • \DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • \DriverDoc\DriverDoc.exe
              Filesize

              6.9MB

              MD5

              593731ec5ad57f5556ba30fbfab0d715

              SHA1

              f1134e4ee01c4a38888193130ea5255f6a782685

              SHA256

              5a5c40820ef02808d9d3759d915d8f8ff52dc6a3fc2590584f4c36a9ad3c1de4

              SHA512

              8d28fcbe6f9b044648c730a189dc860e6fd6330fed4c60feb973b8f296358b83a1977ebe57fcfb22837cffd7a649d0f2d963b77982436e38b344d613c2b3df1f

              Download Submit

            • \DriverDoc\Extra\DriverPro.exe
              Filesize

              4.9MB

              MD5

              5a1d85fb3c9062304547475d6bd383ed

              SHA1

              dc8722d155277e841ea9404beabb1c012c7eefc0

              SHA256

              de9a6adbda9378230f1a4caff8c23d208a0d19114dcec00391869a83e129787f

              SHA512

              681b4341548c34e2b7dce6731ef7cd35a2271ef482984e4f706b44c07962ee4673d5b2596020c2d2dd1f92867e7001ea84549ac517032f25b3e899313c758e3f

              Download Submit

            • \DriverDoc\Extra\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • \DriverDoc\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • \DriverDoc\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • \DriverDoc\sqlite3.dll
              Filesize

              633KB

              MD5

              094c675f4e0bfb27c2e77457cbcd9cc7

              SHA1

              9026248bd7802de39282653b0f56d68edfef30a1

              SHA256

              d3dd110c4d330332a37f06268013e4595705981bc74e577f946485416651b83b

              SHA512

              f1730b831df2805e10d78dc984e6e877e437de57cd20488ebfe48f92db8ced1889c369e70d17aee5eb366aa2c7baa14d426cf6c30324b527fa303b1bfccfe0a7

              Download Submit

            • \DriverDoc\unins000.exe
              Filesize

              3.1MB

              MD5

              a6562a204b32cd7e974aeab499a49369

              SHA1

              e3f67815f49f49316bc114774c219cb62b0acae8

              SHA256

              9827360e1e72a66f60bec68402142e3f3c493abcc474d29b34d1630adf8e1ac4

              SHA512

              959b7030628f7ce0296f9a4bfd0d26a2ca850638aeead1bfecae8deafb93a1ee12d30088c14b2a92851e88b972ad1bfed946e53911dc3b5da888c69dd8404174

              Download Submit

            • \Users\Admin\AppData\Local\Temp\is-8BS73.tmp\Setup_DriverDoc_2022.tmp
              Filesize

              3.1MB

              MD5

              d70a98daf7a810ee18ce451ec673e399

              SHA1

              274dff37313f3fbdf82dfc4afd94582359b79fee

              SHA256

              9621346beee2a257b1966b6dc3f1f850d54ae0746bf1718d35c966649ac9b340

              SHA512

              a246aa8979a7bc1a8ae6d1c5ac637939e7ab3380484cb78a3fc98fe9ceccb51cb5d6dfe787ece6bb1420450741c0734a049849dac7242679b8660e71acf00e60

              Download Submit

            • \Users\Admin\AppData\Local\Temp\is-T3LBP.tmp\Setup_DriverDoc_2022.tmp
              Filesize

              3.1MB

              MD5

              d70a98daf7a810ee18ce451ec673e399

              SHA1

              274dff37313f3fbdf82dfc4afd94582359b79fee

              SHA256

              9621346beee2a257b1966b6dc3f1f850d54ae0746bf1718d35c966649ac9b340

              SHA512

              a246aa8979a7bc1a8ae6d1c5ac637939e7ab3380484cb78a3fc98fe9ceccb51cb5d6dfe787ece6bb1420450741c0734a049849dac7242679b8660e71acf00e60

              Download Submit

            • memory/516-76-0x00000000727A1000-0x00000000727A3000-memory.dmp

              Filesize

              8KB

              Download

            • memory/1100-64-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1100-71-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1100-117-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1148-135-0x000007FEFB771000-0x000007FEFB773000-memory.dmp

              Filesize

              8KB

              Download

            • memory/1724-61-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1724-55-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1724-66-0x0000000000400000-0x00000000004E4000-memory.dmp

              Filesize

              912KB

              Download

            • memory/1724-54-0x0000000074B51000-0x0000000074B53000-memory.dmp

              Filesize

              8KB

              Download