9917cb0831ea750f691421ec62dd17c99d44b71e4a3a7290c438ed59e6a7c8ae

Analysis

max time kernel
139s
max time network
49s
platform
windows7_x64
resource
win7-20220812-es
resource tags

arch:x64arch:x86image:win7-20220812-eslocale:es-esos:windows7-x64systemwindows
submitted
27/12/2022, 17:04

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

Ultimaker-Cura-5.2.1-win64.exe
Size

271.0MB
MD5

cf49173ab0099b09b17cbfb9f70b21dc
SHA1

a08ac765658450ff4c14036e8c04650deb221a91
SHA256

9917cb0831ea750f691421ec62dd17c99d44b71e4a3a7290c438ed59e6a7c8ae
SHA512

48f0155913d0a5df3cd067b2053337f77e6806c050abafcd02f5a85fe92ea1d3438af00a25b62169d81481d9f048442d89bc44b65c4798369ac18468a832324e
SSDEEP

6291456:pCZBRBShO+c2Z5QMw1hLNu/si7Pb1pAN58xFSsij1Epumf4u7:pOBSIEqZw/si7PJq7NK17

Score

8^/10

discovery pyinstaller

Malware Config

Signatures

Executes dropped EXE 2 IoCs

pid	Process
844	Ultimaker-Cura.exe
1396	Process not Found

Loads dropped DLL 8 IoCs

pid	Process
1904	Ultimaker-Cura-5.2.1-win64.exe
1904	Ultimaker-Cura-5.2.1-win64.exe
1904	Ultimaker-Cura-5.2.1-win64.exe
1904	Ultimaker-Cura-5.2.1-win64.exe
1420	explorer.exe
844	Ultimaker-Cura.exe
1396	Process not Found
1396	Process not Found

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\definitions\atomstack_cambrianmaxe285.def.json	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\definitions\dagoma_delta.def.json	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\strateo3d\HT0.4\s3d_ht0.4_ABS_A.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\voron2\voron2_v6_0.50_PETG_normal.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\tizyx_k25_0.5.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\tcl\tzdata\America\Bahia	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\Qt6Designer.dll	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\uic\pyuic.py	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\tcl\tzdata\America\Hermosillo	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick3D\Particles3D\designer\images\model-shape-24px.png	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\definitions\renkforce_pro7dual.def.json	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\intent\deltacomb\ABS\deltacomb_FBE0.40_ABS_accurate_D.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\fabtotum\fabtotum_nylon_fast.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\voron2\voron2_v6_0.80_PLA_sprint.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\renkforce_pro7dual_1.0.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\bindings\QtCore\qmargins.sip	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick3D\Particles3D\designer\Wander3DSection.qml	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\plugins\PerObjectSettingsTool\PerObjectSettingsPanel.qml	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\twotrees\petg\two_trees_0.5_PETG_low.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\two_trees_sapphirepro_0.4.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\UM\Qt\Bindings\ActiveToolProxy.py	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\UM\Qt\Bindings\VisibleMessagesModel.py	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\bindings\QtWidgets\qplaintextedit.sip	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\translations\qtmultimedia_it.qm	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick\tooling\Component.qml	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\deltacomb\PVA\deltacomb_FBE0.40_PVA_E.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\twotrees\pla\two_trees_0.8_PLA_draft.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\ultimaker_s3\um_s3_aa0.8_PLA_Superdraft_Print.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\importlib_metadata-4.10.0.dist-info\LICENSE	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\importlib_metadata-4.10.0.dist-info\top_level.txt	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick\Controls\designer\images\pane-icon16.png	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\definitions\beamup_s.def.json	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\zav_base\abs\nozzle_0.40\zav_abs_nozzle_0.40_layer_0.10.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\voron2_250_v6_0.50.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\bindings\QtQml\qqmlincubator.sip	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\bindings\QtWidgets\qcompleter.sip	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\flyingbear\tpu\flyingbear_0.40_tpu_adaptive.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\ultimaker_s3_cc06.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\tk\demos\ctext.tcl	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\translations\qtbase_gd.qm	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\qml\Menus\OpenFilesMenu.qml	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\flashforge\abs\flashforge_0.60_abs_draft.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\longer\PETG\longer_0.4_PETG_super.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\ultimaker_s3\um_s3_aa0.8_CPEP_Fast_Print.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\ultimaker_s3\um_s3_cc0.6_GFFPA_Draft_Print.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\arjunpro300_mm_0.4.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\tronxy_xy3_0.3.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick\Controls\Fusion\SplitView.qml	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\PyQt6\Qt6\qml\QtQuick3D\Helpers\meshes\axisGrid.mesh	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\goofoo\pla\goofoo_small_emarble_0.40_pla_fine.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\variants\biqu_b1_abl_0.2.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\tcl\tzdata\UCT	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\Charon-1.0.dist-info\LICENSE	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\scipy\sparse\linalg\_propack\_spropack.cp310-win_amd64.pyd	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\voron2\voron2_v6_0.30_Nylon_normal.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\weedo_x40\weedo_x40_0.8_generic_CPE_Extra_Coarse.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\UM\Operations\AddSceneNodeOperation.py	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\extruders\leapfrog_creatr_hs_xl_extruder_right.def.json	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\intent\deltacomb\ABS\deltacomb_FBE0.40_ABS_accurate_B.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\i18n\ru_RU\LC_MESSAGES\fdmprinter.def.json.mo	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\materials\dsm_arnitel2045_175.xml.fdm_material	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\liquid\liquid_vo0.4_PETG_Fast_Print.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\ultimaker3\um3_aa0.4_TPLA_Fast_Print.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe
File created	C:\Program Files\Ultimaker Cura 5.2.1\share\cura\resources\quality\zav_base\petg\nozzle_0.50\zav_petg_nozzle_0.50_layer_0.35.inst.cfg	Ultimaker-Cura-5.2.1-win64.exe

Detects Pyinstaller 6 IoCs

pyinstaller

resource	yara_rule
behavioral1/files/0x000400000001cbe8-62.dat	pyinstaller
behavioral1/files/0x000400000001cbe8-63.dat	pyinstaller
behavioral1/files/0x000400000001cbe8-65.dat	pyinstaller
behavioral1/files/0x000400000001cbe8-71.dat	pyinstaller
behavioral1/files/0x000400000001cbe8-70.dat	pyinstaller
behavioral1/files/0x000400000001cbe8-69.dat	pyinstaller

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Modifies registry class 26 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.3mf\Cura.project_backup	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.project\shell\open\ = "Open with Ultimaker Cura 5.2.1"	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.project\shell\open\command\ = "C:\\Program Files\\Ultimaker Cura 5.2.1\\Ultimaker-Cura.exe \"%1\""	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\.stl	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.stl\Cura.model_backup = "STLFile"	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.model\shell\ = "open"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.model\shell\open\command	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\.3mf	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.project\shell\open\command	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.stl\ = "Cura.model"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.model\shell	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.model\shell\open\command\ = "C:\\Program Files\\Ultimaker Cura 5.2.1\\Ultimaker-Cura.exe \"%1\""	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.3mf\ = "Cura.project"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.project\shell	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.project\shell\open	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.model\DefaultIcon	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.model\DefaultIcon\ = "C:\\Program Files\\Ultimaker Cura 5.2.1\\Ultimaker-Cura.exe,0"	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.project\ = "3D Manufacturing Format (3MF) files"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.project\DefaultIcon	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.project\DefaultIcon\ = "C:\\Program Files\\Ultimaker Cura 5.2.1\\Ultimaker-Cura.exe,0"	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.project\shell\ = "open"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.model	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.model\ = "Standard Tessellation Language (STL) files"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.model\shell\open	Ultimaker-Cura-5.2.1-win64.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Cura.model\shell\open\ = "Open with Ultimaker Cura 5.2.1"	Ultimaker-Cura-5.2.1-win64.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Cura.project	Ultimaker-Cura-5.2.1-win64.exe

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 1904 wrote to memory of 832	1904	Ultimaker-Cura-5.2.1-win64.exe	30
PID 1904 wrote to memory of 832	1904	Ultimaker-Cura-5.2.1-win64.exe	30
PID 1904 wrote to memory of 832	1904	Ultimaker-Cura-5.2.1-win64.exe	30
PID 1904 wrote to memory of 832	1904	Ultimaker-Cura-5.2.1-win64.exe	30
PID 1420 wrote to memory of 844	1420	explorer.exe	32
PID 1420 wrote to memory of 844	1420	explorer.exe	32
PID 1420 wrote to memory of 844	1420	explorer.exe	32

C:\Users\Admin\AppData\Local\Temp\Ultimaker-Cura-5.2.1-win64.exe
"C:\Users\Admin\AppData\Local\Temp\Ultimaker-Cura-5.2.1-win64.exe"
1⤵
- Loads dropped DLL
- Drops file in Program Files directory
- Modifies registry class
- Suspicious use of WriteProcessMemory
PID:1904
- C:\Windows\explorer.exe
  "C:\Windows\explorer.exe" C:\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe
  2⤵
  PID:832

C:\Windows\explorer.exe
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:1420
- C:\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe
  "C:\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  PID:844

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
C:\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
C:\Program Files\Ultimaker Cura 5.2.1\python310.dll

Filesize
4.7MB

MD5
172ce15302dce4fc5351931498e60c56

SHA1
1fd6b1fddefaf74033849f3af951aaf58a7a4966

SHA256
e0e0c0b5921f759fe393bfca21695fbf61566d404e8a393e3b2c7903f4adf86c

SHA512
8379bb14dd9e7841e5095fddea99b3a89bfbf0a241d7acc801cc8eb558eb2b4c0d5699f53a960d05fa71467d3c43ceaa7b9a27a78b303f412bcd31d11b104c1b

Download Submit
\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
\Program Files\Ultimaker Cura 5.2.1\Ultimaker-Cura.exe

Filesize
11.1MB

MD5
04068c019fa58544e9c8838016ac84cf

SHA1
4aac42c81137d1de0c8154b9755ad11159f3af72

SHA256
6468734ba3ebb9793eae04f726f8e8f6805c6f119b928dcf32991a791a5e07f9

SHA512
ddb53e1b633f1210d49928e80fd4c1966ac4655230fcc5dd75cd1bdfbf341d84a6c42b3ce7ad960b2f9749f69aa609032548c8cd63b1dce53566a6d05d0f7836

Download Submit
\Program Files\Ultimaker Cura 5.2.1\python310.dll

Filesize
4.7MB

MD5
172ce15302dce4fc5351931498e60c56

SHA1
1fd6b1fddefaf74033849f3af951aaf58a7a4966

SHA256
e0e0c0b5921f759fe393bfca21695fbf61566d404e8a393e3b2c7903f4adf86c

SHA512
8379bb14dd9e7841e5095fddea99b3a89bfbf0a241d7acc801cc8eb558eb2b4c0d5699f53a960d05fa71467d3c43ceaa7b9a27a78b303f412bcd31d11b104c1b

Download Submit
\Program Files\Ultimaker Cura 5.2.1\uninstall.exe

Filesize
217KB

MD5
aec339d546da4c9302a9d06133f11605

SHA1
44f01e09a2bc9f75be182915a2d74f8642da01d3

SHA256
43d15d8acebf00d7376d0e38b928d3be6da8c8ed0eacdba7ea0a0fae97dec560

SHA512
d62e72d72c9b4bad80fe28ec2024b687eb26790b962c17d1e46bded1e31c12c7dabcab81cf08799d691d3636c37ab69de11e1677af5ddd4dcfaa88353db569e8

Download Submit
\Users\Admin\AppData\Local\Temp\nsd59F4.tmp\StartMenu.dll

Filesize
7KB

MD5
d070f3275df715bf3708beff2c6c307d

SHA1
93d3725801e07303e9727c4369e19fd139e69023

SHA256
42dd4dda3249a94e32e20f76eaffae784a5475ed00c60ef0197c8a2c1ccd2fb7

SHA512
fcaf625dac4684dad33d12e3a942b38489ecc90649eee885d823a932e70db63c1edb8614b9fa8904d1710e9b820e82c5a37aeb8403cf21cf1e3692f76438664d

Download Submit
\Users\Admin\AppData\Local\Temp\nsd59F4.tmp\System.dll

Filesize
12KB

MD5
cff85c549d536f651d4fb8387f1976f2

SHA1
d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e

SHA256
8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8

SHA512
531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88

Download Submit
\Users\Admin\AppData\Local\Temp\nsd59F4.tmp\nsDialogs.dll

Filesize
9KB

MD5
6c3f8c94d0727894d706940a8a980543

SHA1
0d1bcad901be377f38d579aafc0c41c0ef8dcefd

SHA256
56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2

SHA512
2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355

Download Submit
memory/832-60-0x000007FEFBC21000-0x000007FEFBC23000-memory.dmp

Filesize
8KB

Download
memory/1904-54-0x0000000075E71000-0x0000000075E73000-memory.dmp

Filesize
8KB

Download