Overview

overview

10

Static

static

1

2b9838da7e...ff.exe

windows7-x64

10

2b9838da7e...ff.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    146s
  • max time network
    134s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-03-2023 10:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b9838da7edb0decd32b086e47a31e8f5733b5981ad8247a2f9508e232589bff.exe

  • Size

    1.3MB

  • MD5

    0e55ead3b8fd305d9a54f78c7b56741a

  • SHA1

    f7b084e581a8dcea450c2652f8058d93797413c3

  • SHA256

    2b9838da7edb0decd32b086e47a31e8f5733b5981ad8247a2f9508e232589bff

  • SHA512

    5c3d58d1001dce6f2d23f33861e9c7fef766b7fe0a86972e9f1eeb70bfad970b02561da6b6d193cf24bc3c1aaf2a42a950fa6e5dff36386653b8aa725c9abaaa

  • SSDEEP

    24576:LU5NX2yJOiUXmEICxu2WAP0NIzkQM+KpPRQ9StIUDpl1fpxkHVZgMCS+:L7XP7P9o5QzUtl1fpxkHVZgMC3

Score
10/10
dearcrypersistenceransomwarespywarestealer

Malware Config

Extracted

Path

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\desktop-connector-files\js\nls\ar-ae\readme.txt

Family

dearcry

Ransom Note
Your file has been encrypted! If you want to decrypt, please contact us. [email protected] or [email protected] And please send me the following hash! 638428e5021d4ae247b21acf9c0bf6f6

Signatures

  • DearCry

    DearCry is a ransomware first seen after the 2021 Microsoft Exchange hacks.

    ransomwaredearcry
  • Modifies Installed Components in the registry 2 TTPs 1 IoCs
    persistence
  • Modifies extensions of user files 2 IoCs

    Ransomware generally changes the extension on encrypted files.

    ransomware
  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Drops desktop.ini file(s) 59 IoCs
  • Enumerates connected drives 3 TTPs 1 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Drops file in Program Files directory 64 IoCs
  • Program crash 3 IoCs
  • Checks SCSI registry key(s) 3 TTPs 58 IoCs

    SCSI information is often read in order to detect sandboxing environments.

  • Modifies registry class 41 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 64 IoCs
  • Suspicious use of SendNotifyMessage 30 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Uses Task Scheduler COM API 1 TTPs

    The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.

    persistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\2b9838da7edb0decd32b086e47a31e8f5733b5981ad8247a2f9508e232589bff.exe
    "C:\Users\Admin\AppData\Local\Temp\2b9838da7edb0decd32b086e47a31e8f5733b5981ad8247a2f9508e232589bff.exe"
    1⤵
    • Modifies extensions of user files
    • Drops desktop.ini file(s)
    • Drops file in Program Files directory
    PID:4000
  • C:\Windows\system32\WerFault.exe
    C:\Windows\system32\WerFault.exe -pss -s 416 -p 3248 -ip 3248
    1⤵
      PID:2144
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 3248 -s 2908
      1⤵
      • Program crash
      PID:4388
    • C:\Windows\explorer.exe
      explorer.exe
      1⤵
      • Modifies Installed Components in the registry
      • Drops desktop.ini file(s)
      • Enumerates connected drives
      • Checks SCSI registry key(s)
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SendNotifyMessage
      • Suspicious use of SetWindowsHookEx
      PID:2500
    • C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
      "C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
      1⤵
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2144
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 420 -p 3732 -ip 3732
      1⤵
        PID:4068
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 3732 -s 2364
        1⤵
        • Program crash
        PID:3888
      • C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
        "C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
        1⤵
        • Modifies registry class
        • Suspicious use of SetWindowsHookEx
        PID:4204
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -pss -s 420 -p 4080 -ip 4080
        1⤵
          PID:2832
        • C:\Windows\system32\WerFault.exe
          C:\Windows\system32\WerFault.exe -u -p 4080 -s 644
          1⤵
          • Program crash
          PID:3104

        Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\combinepdf\images\rhp_world_icon_hover.png
          Filesize

          388B

          MD5

          1dc5d31ef9205f1034b64d635d59cb32

          SHA1

          c172576576c5ac5a3c2912bdfd0c8365b5365513

          SHA256

          676d1f912a22a12ad4c80bf552355a7e0995c56e6ef7527aaa9b77e513efc065

          SHA512

          bc334638acb1416787df04cbaebde99cd15d96c5b96b6f950cbdfb54177fcd2f2ecce4dc9212a9a3f2f85269ac901aef147ec6297c31c5ee6cc39ee4cdac17c1

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\combinepdf\images\themes\dark\rhp_world_icon_2x.png
          Filesize

          552B

          MD5

          7d00bc0d46dcb90890a4fe6b76bc5c3a

          SHA1

          7159b1e1c264a6863708a971eaeca32cff864aa1

          SHA256

          2fcd2848cbcab1a3b8154138288cc659cd2c187412cb887eec6554b6165b8c33

          SHA512

          2f113cb27028aa0fa0f028b09ddcddb4a1ede6ae0823909d99763db6e5be57b1b4ae6977537ec17808cd622bc548e1ba3122e35b58de9d856400d33042234a35

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\js\nls\root\ui-strings.js
          Filesize

          1KB

          MD5

          60f1a26612dc049ce3e00fe917b6475d

          SHA1

          05791d089cbcd759088adbbd9483433dc9a10206

          SHA256

          8ced84488e1ea81e8cc3ec1a25f5b849de902601bef557b6ec65f9de2982bece

          SHA512

          06f080a9df9081a2bfd557165f9c21cf2bce3ee161c0896a9f9a6e0f8a3ae545b1cfaaca9ce1d46757dbe0163ddd0421bdb51558ef092dd0a6e5c2052ead4706

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\desktop-connector-files\js\nls\ar-ae\readme.txt
          Filesize

          223B

          MD5

          dbac9649c4bd702f55fbd1afafe87c44

          SHA1

          0d914f4a809cfe400ca111ebfbd0ad552d500785

          SHA256

          b9dfa3b30224bd5eef298531c945d5f2f6bb978b7ef42e5ef09715a535172127

          SHA512

          86d7786b400303b1fb722689aba7e8ef6a01ad7e2776194c5d545a7d7357dd91e7079296790587210683db7f4385f98f281272fd3d1ad6770dabf401709a6415

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\images\example_icons.png
          Filesize

          683B

          MD5

          ea321d33cfeb1d029794bd01c5b78e85

          SHA1

          4e04b2d8f7f23f44f96f4bbf134233e1feb5e28b

          SHA256

          3add439f478220ce8001abf2543810144a0d80f8116bc0ca13947c9745983c55

          SHA512

          f574d12330a668d89402265cf5a859a76325ed548e1730e02f51dfd36e3d5dccf2c8b75a76a8c931597bfc130a42364c73eef0200523d4eefbcf4fa5ccacddea

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\images\example_icons2x.png
          Filesize

          1KB

          MD5

          a660ce180dea34b4944d83569f4789bc

          SHA1

          e3ca7b90c8bd299c49585bd29bc3fb7494c0fa4e

          SHA256

          03ab6f2f396e0531f1b1299b61485408cff93f183942910a7d0d5f0c7a666bd8

          SHA512

          9de185c0e6a8cc49852ebb454a00a7a19f5382b358327d393a6952b32099036147c1eb799cc60078bf24477e9607a1b4c88288a213a8ffcafd8d60caab0f0720

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\images\rhp_world_icon.png
          Filesize

          445B

          MD5

          55c2b47c9aea50661a855fe91eb8ac32

          SHA1

          13ea23a51394ea2c13420ddac1294eae6f82f846

          SHA256

          ba5a59d879c1f6543b46085d02f5c90fdb22e663487d3586b6533cd887c83b72

          SHA512

          947da2e85f5c21e7847f10d727729915973c911a47de233ef1fb97f60ae41db05f4c8c0ee655e3aa264db2067763e4134b76279f1d3ea8ad43640a64176522a3

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\js\nls\root\ui-strings.js
          Filesize

          1KB

          MD5

          cdc58b2bf0a1a34f96af8fdcb62dc30b

          SHA1

          69eb0d674e9830e81cecdd610792225a2a5dc265

          SHA256

          3b5888b652cd86408bdd59e86405d3f171d23132059228544fbe693cfcb2b73c

          SHA512

          d8ef3220b8984f759347a0e83eb75939c914bf865db492d28e226f113b469a97325befa008886743aeae2e0f32c74c0a1e7ce8b60eaf5949b51058a618daa502

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\rhp_world_icon_2x.png
          Filesize

          611B

          MD5

          808e7aedbb1da793b86c92816309035e

          SHA1

          b4a2fca53290a35ae222f2cdf80f68ec7eab51e6

          SHA256

          a90f0edb8324760029a5db9f641b05694f8717c25514b2d6abde7662c827e0cb

          SHA512

          0af4e6a83661378b618c40de02c6cb7244be544dcb02f1f14c83b6abd791fa0330b6d508c86f0ba8e345608639d8505a2f26d3a6d3ae201bb01319c10c212d4a

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\js\nls\en-il\ui-strings.js
          Filesize

          1KB

          MD5

          5c1dc195043bdea8525930a9882c10d7

          SHA1

          17415e551255ab016f7682d7b33451cfcb91e687

          SHA256

          019bad9e72430b758828953e3310007695c55fed1d25fdd707c76fec561f2bc5

          SHA512

          e912b84e9b4856864d302154b68adf6822189aa78859265cf8f529279e77a9d7c086452b4527ebb75d9c910ad9a6a1e95e1f45498fc168628da80739acff742e

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\generic-rhp-app\js\nls\ui-strings.js
          Filesize

          1KB

          MD5

          4e6de5201d795432e75c0628dd306b26

          SHA1

          80ae62145f6bc55c2a25f68ad9d6bc9fcae496db

          SHA256

          1265f683d27701f95b545e6201577fb4eadf5dcfbc1fc8cedb8dd39635515788

          SHA512

          950227253fb845bd9a4519a209d72404760492473bda8101d846ded18aef1a2f6f6ab99b1b1b2186c0eed423c151c089316e124384f214644632e6a0f4dbece3

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\themes\dark\files_icons.png
          Filesize

          389B

          MD5

          df0366da7f984956f36b89bc109f05e2

          SHA1

          aa04873dad1ae47fa597ecd70c42b17dd833fedd

          SHA256

          88c679c7e7aa01bb40210069197d96776ea144db0c859ab3e22ccdc4c567dd35

          SHA512

          ab7e623c1b85b0f4b9c0ca1a00e1dd7d9bf90a2cb9e406dcbef1382e08ceda6b5c509f22c4f116a4facd8ec7c4a6a215b71e21828b61169478dfcbccf57a32e2

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer-select\js\nls\tr-tr\ui-strings.js
          Filesize

          856B

          MD5

          fc4cdc00064f47d2eedf58bd02068fe1

          SHA1

          cbb7157d8c560e9b2cdffac3a2b831202d76d2e6

          SHA256

          0e8fb0e6e1dd239a2a1996059914a5ec5e753782527c1a07c62d808eb77df3e0

          SHA512

          753d312596fdd24d3ad87b7916c5d108d185b42beff7c750099aecb38c7a321ff04260c19492d18cc27cf8f8843c6b3facde0934e67a46e9ce4291c3646abbe8

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer-select\js\nls\ui-strings.js
          Filesize

          1KB

          MD5

          c5596fa17e59cbf92a2ea2e1ad5c6f8b

          SHA1

          4153a71b5750685afba568403ed7522e83a9894f

          SHA256

          5812ebbc6311c0ff9919a27137b22435cbca3cb9fd56959b44ddb82f93609b99

          SHA512

          762580962300f0e0501054450772ed59cdfec76d7aa6b1944f557ccd74ec2fcd171ffd67765f2b367c526d0193eabd184f0d4ac1dadb7a0d25f00f9866f670bc

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer-select\js\nls\zh-cn\ui-strings.js
          Filesize

          850B

          MD5

          26645133c9de7799e35cee0e47b82ee0

          SHA1

          bb6be735f6814d765bbe6b3f3ce034d1767366c5

          SHA256

          1180e5728ff28a49eec43c61f15d49541419e79397ae58479db67b533d292d36

          SHA512

          c466dc886b25fea5a0e16aec28a4e784afe797f3937c7863788d0e5fa41414346bb17546d49178a48815debcca50aec3acabadc1f508fe0a3207008bc722608e

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\css\main-selector.css
          Filesize

          802B

          MD5

          89728f1ec13231dd11d2ea20afe39d67

          SHA1

          b4350cd128350483be389b2c865633bd1ae0f78b

          SHA256

          aff85e66d5b690dc0188f4c2348ca78abdc14605286128407242a4e91a684754

          SHA512

          58203e9c3898367c78c6d10fa629c0bd2356b2ae54e225afbcee83be1d5d297977a5a9633e773ffc2b8079a6e2eb2aa0afc530c27d29f512af40d8c9ae539adb

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\themes\dark\bg_pattern_RHP.png
          Filesize

          179B

          MD5

          a93c09c1a326a8733b4eceb713ca7457

          SHA1

          90ba7a4c24bb0d424abda46b736170ea3b43e541

          SHA256

          d03f54aaa9216f4e32053928ce87a317341232f107140c84f73b2b6490b5a81a

          SHA512

          432c3400257d00391baa255d32fd03e0b8c97231d684ef35534868a38bcbf9cb70b433eacfe154c25fd3376e69592a7000a823535700f353975572c5101a56af

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\bg_patterns_header.png
          Filesize

          703B

          MD5

          cc62ce00dfbe76fd8affad9c89fced8c

          SHA1

          75d64cc57ff45a50c066f882bfd8e3845f8fa323

          SHA256

          e324ff224bfa2baf51d4ab75f686195a76b8c984676c450ed660eb9ca2b36f4e

          SHA512

          028056e42f0eb02646752b351bb04a6b9f87ff27a2e1060b4fe4d4867118fe90f42f555ea8c645361963405583005ec4f3802c7c57729fc8616df1af09cc94dd

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-recent-files\js\nls\en-gb\ui-strings.js
          Filesize

          823B

          MD5

          fa904cdf440c6743078637992d58489f

          SHA1

          6969f407be2a1b52c5a41be256433026cabf9917

          SHA256

          152f6d0325802be61521bff49a8dd07063feaffeb2447d3ae6f47adf214cbffb

          SHA512

          c6237e56225d36d26ed594406a5bc08987bc34fac8d425dac8f909512ff19e6a27e1566651c591a38c0a5476e74dca09beb53ec15d4f08b6de2843fa064cbd3f

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\js\nls\ui-strings.js
          Filesize

          1KB

          MD5

          573dd292166f86741bb965ee068c3793

          SHA1

          169fcf0880c7a2c5993f5bf28ff64cd9ed441dd9

          SHA256

          ab2b7de642b66db6e6b610dab8fb3c94c972465e07b7f681127c40a6629d8c2e

          SHA512

          0217d582d827a7b6faa950bc726d41c4c7644ba11b19689b9e5eb60cf54df4afaefcf4eac3649e8315dc1134988dc71abcb94bd9a640829bf9d68a6ffa17241b

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\reviews\images\themes\dark\dd_arrow_small2x.png
          Filesize

          385B

          MD5

          34300ee4cd847a5329747c2294699c1f

          SHA1

          5e1086c8ebeaf9205517c82d8ae1711931ec48e1

          SHA256

          122650bd6eea6dc3c3cde5c472c78fe200967b33c6e3f3d2f394d8fb66c3acfe

          SHA512

          ecea239cb49cc1b9018e9d5bc34fa0d501cd9dc6bd7a8c01b8a2bfe9cb8d9baf805081d3705f0f986903a93a35a3ddcb852463bc2698606b556999cd0608ad6e

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\nls\root\ui-strings.js
          Filesize

          924B

          MD5

          bf70043c03230a91bb5b402e7ee67e63

          SHA1

          2ec8302c3ebe1e34abb5e0c813abceaadfc5073c

          SHA256

          a8b45a4c0a3adae007e8ef6b3a0e9966d2ad0c552320210a778109e2799f6c75

          SHA512

          ecdf54cc56de9c49dec1e9e65aefa736201904e609474b13d089f188bf35ae46b62d1ba492f4c25ad3fd7ff584a1532be18c0115598c2deaa834b22e6e52a601

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\nls\tr-tr\ui-strings.js
          Filesize

          931B

          MD5

          7adbce4bec815b574ab3fc6d85eb1937

          SHA1

          7d14e52fc6aa5796996988e9feab97c31eab1e0b

          SHA256

          efec14a7f219aff9e96c136933c0316abbabfa082b5755a86b2745c0a8423a79

          SHA512

          4218fc7991ef7ab93b1fab696432fc0130f07c534b2da244ce3370e6092213db657505af8380e7a07576b16b19d7c1b58f6a5498122d73061a362162b31f5b18

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\scan-files\js\nls\root\ui-strings.js
          Filesize

          1KB

          MD5

          eb54913bfe604513b0a1aed3daaf2fab

          SHA1

          7982030803566dcbd2293b51e8f5a5362822847e

          SHA256

          4a14110803931909f66ee50ce3fb75ee54ce70e24c064cb05bfb6b01236731e3

          SHA512

          bb098f7e1fb2b637274c75bd3eaec3c9b94eb87fe63497979d32eae5f4d0829d7a486e11535019a298742f2a52df1643b71b09922d7a3ea5dd574ef9172d0e58

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\eu-es\ui-strings.js
          Filesize

          851B

          MD5

          661fea8b99a08e2422d8b5b9bcfd9921

          SHA1

          54a78f38a3599aed6d27c6fc711d7af7a205c524

          SHA256

          60624904ad10defbfcafa3acd5dac4c7c5040edde23bff489b6b32ea5a1403ad

          SHA512

          69b58c6c99f494ca1b6f2788cd17b63cc9f583b0abca870f666aedb9c504f660b03df699b69828c8ecc43a747297042eeca7e197de96dd43defb7871e2289b9c

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\he-il\ui-strings.js
          Filesize

          855B

          MD5

          3dd77972f6558af4969a57eb4f19f2d0

          SHA1

          d56f6ebeaf408c667bb9491845a33ddc19d18947

          SHA256

          cde2dda4b1709d6591356e21717833ecf9802dc119d719e9dbbc97b090158644

          SHA512

          68f15867e6b29cce5415ce31203cc3f1790869f85d1b1ba8b2912e9b1b570f61485e5e9aac96d9bcc069e81d298b56d8941cd94a1df72d07c7508c7fdcc7ef1b

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\hr-hr\ui-strings.js
          Filesize

          849B

          MD5

          95e6ecbe44dc4ab34323c697c6568b56

          SHA1

          0ca5debc2a7b53245ae6b7d6594ba93b3152bdee

          SHA256

          d3bdbdce059d04ec6e336179e6262bc694def0fcc5fe4b006953dbf178dbb30c

          SHA512

          af6262bf0a2b16fbd1dff7051eb0373336781c105b63631080ed2b6d38f54adbdbd16d794917fb9ad08c9ee238e0d4df732b7ef3e4c6d521a6b347eb8c2e9804

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\ru-ru\ui-strings.js
          Filesize

          852B

          MD5

          4fcc8af63d8fea1581c1e96e9436e913

          SHA1

          5c09be5c84dba1172a2503a3406223baed06f8bc

          SHA256

          bbce03b612d22d42e40207a0ac4b6492ab0ad8c2cf4690377929f4cad738954d

          SHA512

          4bb1df7206f7fee79df361d678cd250399efff9d13d3435448170efd515abb425fcbf3b6ad9d0c6da1b4a7860d33dfd15daaa199e96dcdd701afb3b80234f2d6

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sign-services-auth\js\nls\ko-kr\ui-strings.js
          Filesize

          1KB

          MD5

          21a5d65fbcf76ed1b8e9489d3bb051f7

          SHA1

          dcfde89bb81642e0b1bcb2b4d8c0fe574e912950

          SHA256

          f054ff5e3f41e79c647bd03dc9ad1bad42f8292c7e7b839088faeb8abc182ff4

          SHA512

          566bc1f2c5f4b2b9888c8e414552c25609d2562e10a8abddf6f036a6cbe2bc7644cbe850311224c25db96380c0e11fb07800f965305f41e068968bee530c320a

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sign-services-auth\js\nls\root\ui-strings.js
          Filesize

          1KB

          MD5

          0e038344281f0aa0a74103dd77048888

          SHA1

          163a5a2d3888eb23ecc17b53865742f3eb7aa3c1

          SHA256

          f3a76de64a79cd7afa5438bb0a4f4330a97497246fe00f7b29fb690e2ffe32cd

          SHA512

          5988b04142669c005728510cc0a0c7507a9b8561b9d3178e3ef06b77a725e5e3ab7c13faf2998522c601285e823d3f72edbe7b93ba6b14a9c5afefbacb974560

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sign-services-auth\js\nls\sv-se\ui-strings.js
          Filesize

          1KB

          MD5

          c4b091c93a4910ecfc619efdf3c56111

          SHA1

          4147f571dfd1d77b6a6943c57784820bd0cba24c

          SHA256

          d30e4139d68728b1c0b7c0fdccf649fc98c269f0d57c08e1d2033c13f162c29a

          SHA512

          b276ec16ba3a0737c8958a7373c3b5b53d384432535e65ee5651dce90da0eaf7dad1a02479243efb0b5ea78234c0f423ebc10c82b6e28db557106b8a21db1964

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\themes\dark\dd_arrow_small.png
          Filesize

          289B

          MD5

          65afdbfd57a964a5525ef68ca68cb5f4

          SHA1

          986fd9886e54eaa35b90561c94b00f85eb758711

          SHA256

          322fa7539ee1552758dbb051fe1199a7b4b247ec8335fb35cabf043d8947466d

          SHA512

          88b2d9c205d6fa4fb7823fa118fb95c651977cbaf1b54445ced380d34541e5367a218de4335a341b3994839386b487fcc33718b749ab2e05678ae87e0da1dbd7

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\themes\dark\share_icons.png
          Filesize

          1KB

          MD5

          2870d12e27e8a50bf66493145c06939a

          SHA1

          f4319fc28ae1f99e359b5cfbd4c8c69af67dc03e

          SHA256

          dd6fda1bd17d115065254a8af134a7906d8e15e2725b01223582c3add3240272

          SHA512

          39b2281464998cd9f3d87659cdf7f3f2690a82bb8093ac64d5141d837dd4f951514cf0fcbfc02a0102f3d8ce780805886a361c649d6df2347db60b383442e5d0

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\images\email\themes\dark\adc_logo.png
          Filesize

          1KB

          MD5

          d1dfee6d7b14e63f64c349b2cae8ad27

          SHA1

          fd382215ff99c0993d8924f18ff7912b4835f4ad

          SHA256

          b63bba00ed3b7a86b6ed36ab7d6eede57656454e0a583b875d34ee19466714e4

          SHA512

          220e189bc67b20bef3f92da6dd063b12fd53436c6fa9e728553669e4d42dbe595c52801e68a929797c48dc56fa4ff47919aa3d065363ce881e207abc83f7de77

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\bun.png
          Filesize

          2KB

          MD5

          598b166da1d843121d50f9593073a15e

          SHA1

          e41c87d8fa9aa263dfe783bdd692556fb8e24f43

          SHA256

          c46d21ff4c32097f172b4e99b5794374ed4a1cb025040d157f611f43929e98d5

          SHA512

          107ceb56129c1baade5930cea77fdc9c53264ff06b92936a5823c483235ffce8ab4ca3efef5001c5cc16eb3351b663877e1e4184749ba33d785b4927fe2f2db1

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\cstm_brand_preview.png
          Filesize

          2KB

          MD5

          48a2c150eaa7d9fe84e7e31163e67495

          SHA1

          cfd5375b61328af47b784d2e1229c95c9355ce06

          SHA256

          ff1d90818c6ec24ad8dc4334bed7e72b3ceb9460cdfe3b25ec24d2b31b4c9288

          SHA512

          e6abeeb5ed043270c9148b58fa359d8536e0a9606aaed86446f3cc3ef14a855b711a86869d02fe27f50ef79b91895c77bc970c6ccf962caeb8311984c4778410

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\nub.png
          Filesize

          1003B

          MD5

          d82b1439dcd0ea62ce3edcf6d36eac1e

          SHA1

          f5216b9a0c6b294584b24a5fd50b43e79d46310e

          SHA256

          44f25bfcbff16b8e7c81ac93d6dcbc312035c81ba6d62e61d4177e23ef62dbff

          SHA512

          bc789786f1261ce50116190f56ce7da3063fb944af6e5da17fd0a61e51d3d25b11fc09a83d2fd1805e16f33c2c469bd28d05366b8fff7faa85d3dd498e5e3d1a

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\share_icons2x.png
          Filesize

          2KB

          MD5

          7d1b0ec51595563c9214ddfdec36f303

          SHA1

          bbb988973a8281943b5bfacb8ab03d97c0f0f398

          SHA256

          c915635ac032617e1acf87810abd8e8d9825c7e40a74245bc9efcf31d6da9da9

          SHA512

          709deed649d6062cf8c1ada7207b9c871d51a69a4bc7dc3c1408bd6a38d211ff53ce19a091cc4bb68a62eb00aa512afd07a33d314393812716391f04faea93d3

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\viewer\nls\es-es\ui-strings.js
          Filesize

          840B

          MD5

          ac24e253ff384d8523af43f5a93688f7

          SHA1

          beb4ffa972185300803e9a1f6a16ec062cec1015

          SHA256

          f49327d72a4888fee8721962d13a94571e349ba666a0e1354c4f49331e858cff

          SHA512

          9c559a1bdaae9172fbe9e6a9b907390041fd16d0382a202423e0d9d19bb0f2c06a7228d6bc17df943d4e927c0420f302982e0463755bfd5c0d6e4ecb65504a61

          Download Submit

        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\uss-search\js\nls\he-il\ui-strings.js
          Filesize

          1KB

          MD5

          cb05ff26ffcb30838de16f659f8d93c9

          SHA1

          f9e977e1f60be49be8a17cf75d31f4a7620827ab

          SHA256

          ef97178fce43f78773e1c57cebaadd55904a1e5d810f8f75219b23e92c00687d

          SHA512

          26fc3838e5ef5b638d974be02b6d8f76f7f4778b1b612ea9031c5a5b1cf4a421e48c7a667a1f8db55270c1c86c4e1ec469c8078dd0edaeec2df02fddff27a999

          Download Submit

        • C:\Program Files\7-Zip\7z.exe
          Filesize

          458KB

          MD5

          0f13cef8cf0410eda9eb2414be04920d

          SHA1

          24b92210d72ecebfedc2b68f33605a09e645f672

          SHA256

          e48042dc3d09b478470979829fa0215cd0bee3f4a387fc593ab996199cf3999c

          SHA512

          e6159aa9b4cac4b03753231bdfe508f0313b0ca0d2dd5bb690aa5aca2bc9fd76af7de6d3eabb3dfee2258299042aff1cc01f6a4011b49e01acb63c2f6a17209b

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png
          Filesize

          138B

          MD5

          9a530c475ef73c5896d7c7f3543b1d97

          SHA1

          bc80f3430254af79f06be0d37d71cca604fccae9

          SHA256

          318cebc3c59b5327cfb7a69507f1dcbe92a15fc1abe429bf2359e0f9664d0b2d

          SHA512

          dc2da4492cbb7358ebddfacc246ff4bfc3a8b2fb3e76f47519a7e6ae47fce293607ab6980e64c0a5d4bd2687b2584fe6f4d85bb4888a11760aeb0d94e8246a1b

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-util-enumerations.xml
          Filesize

          431B

          MD5

          0dbdc71d198cd2da4d8c5c38f44e66a2

          SHA1

          dab7e173502d5f80bc3177b0a480561b208eb1d0

          SHA256

          5ad2dac3e0044649be6532c957950483092115cf2992d170a98a123cc0af2818

          SHA512

          28506aced7d9235e3ed73e2afacc54834295818b571a7633ce8a72e8dbdd0debd225dfc307e10d82a082dac0da757a8ab6eaf5cea6b671fde4d03ead14d86b29

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-windows.xml
          Filesize

          411B

          MD5

          794eb220b9c3fc6775b08dd9425c24b0

          SHA1

          99daf8158bd4914c06fc33302eec1d7f5897aa93

          SHA256

          40aa257d744c7d904e8f62392c91389cff523bae86eac46f075f79f6b67534b0

          SHA512

          c8d1f7bb4ddcd2c5c212eea495d776cda2fd1cc1d22e81c885bc45dfaca878b02810a0998c40ff861a8c78d52e7718444e046562c1e792590d881a1bb336ba86

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\config\Modules\org-netbeans-lib-profiler-ui.xml
          Filesize

          429B

          MD5

          241e2f8d1c6df84c7de7debff798313c

          SHA1

          8d2f93801f8b0116fe159123faaf09d607eb1d19

          SHA256

          00fca714016de5a5b3207fb94fc30211cf745fd4b03c120862ffd88b5f024192

          SHA512

          11b376dc95d904b38bc541c26078b13843d632016e3b3bce3ff8d6315bf90d97b993d56fd76802e96bb87a3dbe1de3ebe92836d48aa35b2974785e9f69957e20

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-ui.xml
          Filesize

          400B

          MD5

          484651b39b9f0fc3ed8153db82b39eed

          SHA1

          859b44bdf204a55d21755358180adc62ede0e93f

          SHA256

          87bc15638540621224fcbd0f2fd0a73267465418b9b2897ea2fe5b977b990c35

          SHA512

          aac187baafb492a6930cebd87c41e67434bc40b724a844f3684f28b18846d01efc7f85e5fd0a017f1aceae341b616d2d925ec740039b17f01a9db1223972306a

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml
          Filesize

          437B

          MD5

          b8e825d92d653fcf8f7dfb029406156b

          SHA1

          521f90b3653ee90e5b7b21a4732c7a8e2b2d9a92

          SHA256

          e9466955f535446cc4999e58805089c19bdd2cfc347519c912758cfc09e2564e

          SHA512

          059141bdc1e074bbbf7d43718ed5cb5ed2e4d663315f8433eb204ab083e6f9b43c4e84aec556cc190d59cd2dc1daa38343750cc18e45767de435230ecb1eaf28

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sa.xml
          Filesize

          463B

          MD5

          626282b09a4ad2e3debc34b0f723eab4

          SHA1

          2d6030babe784d001777aab4153415d991534689

          SHA256

          17a950101ceb4026932f7ff1902aabe83d835584d89081db151d72709333aeaa

          SHA512

          779e64f8a33388b0fe4c0627e9dc2b706b9d13ba3d54594bbe062d22f6ed1f04128ae3f0dbb32649052f1dd1e0aabf1c70b4db5a73816706753508a791dec428

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-api-caching.xml
          Filesize

          417B

          MD5

          0dba1f2f67ec1579fb4f64d2a963d5c9

          SHA1

          04f0e577822e70860b325aef975df0ead493d1bc

          SHA256

          9c7104c7a0385ce0b36ea400a6e387fa221dca54c4a34b497782f9166f91abed

          SHA512

          5034414726d86c809ba734ce94a59886136200371e4ebb1b3e5af8f1adad1d8bfa09201a9204e106a35c7efb55cee897114be0228b892164e72c8b47f1c15eae

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvmstat.xml
          Filesize

          405B

          MD5

          854ef01755dd048e524e5706fac83384

          SHA1

          60a376daa19135e2d385866451b0c4b258aa5176

          SHA256

          1a98ff6b59d93502cb02fb38635bac00c1d665bf1a7c6df2e11b407c99f193a3

          SHA512

          bc46ef9b5e6990cbc7ec87a265b1a5ad90e241ad9592d76ad09548dc7e6f636d9fdc86e4feb61fe260f67e351c54b102302754964f6ae3ee40a6439e4b154084

          Download Submit

        • C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml
          Filesize

          407B

          MD5

          a3af36c621ea756f9e6283ab17e3f259

          SHA1

          e4ba6ea09de5ca34268bebfd724739117d8c33d4

          SHA256

          906d0d639d1fae49c1cc65c25d63a1f50919b2ca3ccea5fe50fdf54606e0b7f4

          SHA512

          d2085c1a0cc44955b436bfe9bad1bd4d972a6cfe646f9bc684e3300887fdd160e840bf2461a3f0e148351acce1fa664382dad4eb23e7a0ca7cf44a982408bfdc

          Download Submit

        • C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Slipstream.xml
          Filesize

          744B

          MD5

          c181d62d13f055127f354bb60cdfa03b

          SHA1

          6cbfcbcdb417807d7ce1ffeeaa2eaaf9b548885a

          SHA256

          d8dc1b9aa2aefd658fae2d9b6bf36318bdda72fcecba0538a1f121592b44e3b6

          SHA512

          62dd4c375f5e3299843c78dc86026da551a8a66c2c4cfac4003b8e4774ddd1cc36c130611c15182b61a472169305b75c845f17ec899e53250461867cc82abd36

          Download Submit

        • C:\Program Files\Microsoft Office\root\Office16\1033\ClientSub2019_eula.txt
          Filesize

          42B

          MD5

          c99f7d99c916683fe209635da89be182

          SHA1

          880b405e8e5059e3aa1797f662ff4a0cfcbce20b

          SHA256

          d85ce644bf4e82cee032eaa5c3d9030a090276d9bae3703112bdfc6f8fdde307

          SHA512

          bf1e7c079e5648a2cd45e7360b403d6747c56d948a97f6887617624e9bdf2e4e62a2719dfc893adf6e79c6d994464e4b04cdfa543aa8972c17717522116110e6

          Download Submit

        • C:\ProgramData\Microsoft\Windows\Caches\cversions.2.db
          Filesize

          16KB

          MD5

          4534f12102d235344cf8dda748f0cabf

          SHA1

          7db67baceeecb3a420bf37a7beca4a45185f8f3c

          SHA256

          1bd4db450abc8914c2fac721cace2704ff4c16028e6d07293154dad289835694

          SHA512

          7b4dacdbc6a2fccdd3818eb41b7fa23eeec51f333af0e842d9185c7ae45eba1623369b1caa27b824cba10c4cd6a2cdbf7f127ab2c6f7656eedce5fe25a0b84a2

          Download Submit

        • C:\ProgramData\Microsoft\Windows\Caches\cversions.2.db
          Filesize

          16KB

          MD5

          4534f12102d235344cf8dda748f0cabf

          SHA1

          7db67baceeecb3a420bf37a7beca4a45185f8f3c

          SHA256

          1bd4db450abc8914c2fac721cace2704ff4c16028e6d07293154dad289835694

          SHA512

          7b4dacdbc6a2fccdd3818eb41b7fa23eeec51f333af0e842d9185c7ae45eba1623369b1caa27b824cba10c4cd6a2cdbf7f127ab2c6f7656eedce5fe25a0b84a2

          Download Submit

        • C:\ProgramData\Microsoft\Windows\Caches\{52B9CB96-5D79-422B-AA26-429AB79BAFFF}.2.ver0x0000000000000001.db
          Filesize

          1KB

          MD5

          8b836d8d3ea988668ddae3311f514a57

          SHA1

          af3199496b831b74bde630f871615ce5848f9857

          SHA256

          ac944397bb7351bf439ea8b7e6cf5863fed078383f3da0b7c92b53408fe680d5

          SHA512

          f205183db25237a58c6a33b9c83af86df3210fc7cc411d4638af9c856fb39a2795c99d612601bdf183101402ed6455b7949a9deabfb2b2262afe47dff0c17cc2

          Download Submit

        • C:\ProgramData\Microsoft\Windows\ClipSVC\Archive\Apps\6ffa25dc-c89d-3de9-3601-df09bae65a75.xml
          Filesize

          2KB

          MD5

          31434364acba2fa351fc9715db743df4

          SHA1

          1c2e77b236cfdd14960e90c9a48e59532d1a255b

          SHA256

          a94fc52f4840aa6390d47765d3fce16ab6d1c1978441156ef607a4b6f63fc317

          SHA512

          b069a65226c5aea8d50da2a179a351051a6680cf42a117d5d5b98e97bdcdd12e412f698b89039bd3464550e5794d3b95d97c6ee6931dc72e1bb060daa08e40b4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Application Shortcuts\desktop.ini
          Filesize

          174B

          MD5

          ace3165e852adb8aedbeda2aa3be570b

          SHA1

          4577ff7e92850e2723008f6c269129bd06d017ea

          SHA256

          237f73d46d3501de63eae1f85fdf37e65ddced70f013b7f178d1ee52b08f051f

          SHA512

          cf77563b9295b191ce2f309e03618d1ab4d317f65b87dbecc4904ee2d058db06d23c20c199571b0fafb67ae5ec5166b76af0b7d8bfe3996b0dde9751e28f8c03

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini
          Filesize

          174B

          MD5

          e0fd7e6b4853592ac9ac73df9d83783f

          SHA1

          2834e77dfa1269ddad948b87d88887e84179594a

          SHA256

          feea416e5e5c8aa81416b81fb25132d1c18b010b02663a253338dbdfb066e122

          SHA512

          289de77ffbe328388ad080129b7460712985d42076e78a3a545124881c30f564c5ef8fb4024d98903d88a6a187c60431a600f6ecbbe2888ee69e40a67ce77b55

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Caches\cversions.3.db
          Filesize

          16KB

          MD5

          4534f12102d235344cf8dda748f0cabf

          SHA1

          7db67baceeecb3a420bf37a7beca4a45185f8f3c

          SHA256

          1bd4db450abc8914c2fac721cace2704ff4c16028e6d07293154dad289835694

          SHA512

          7b4dacdbc6a2fccdd3818eb41b7fa23eeec51f333af0e842d9185c7ae45eba1623369b1caa27b824cba10c4cd6a2cdbf7f127ab2c6f7656eedce5fe25a0b84a2

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Caches\{03BA58C4-B905-4D30-88C9-B63C603DA134}.3.ver0x0000000000000001.db.CRYPT
          Filesize

          414KB

          MD5

          800222942c6041f8064bf1d39b6f5824

          SHA1

          55e0bb9d7171583897ebb381ef55105145f8ddb7

          SHA256

          cc5a4177e3ae007c8f73ae6841ae27bc415779af6e7b8f1561dd383785ac295e

          SHA512

          e847ae0996037ed5ac1eb39acba282bbd26c765481652e9182ff7c60756685a9187034022e7bae24b7ed6419b8b42e6f8fc292b52ad8bee184c92fc3e16a1c68

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x0000000000000024.db
          Filesize

          91KB

          MD5

          24b8634ebaae8173e1477c1befa3a202

          SHA1

          a341d187e5fd9fc45bbbbb8bee97ca852a77dfad

          SHA256

          b2645205cbf9588409688979fe39438df180ab86c83fbfbbd674ccb14d62209b

          SHA512

          9db0b869980adc3c25e59d46fe9bd0773a1d4b504983bd2d57f263f5fcd543f0551317e1bc1ce2972c85b930b0e2494789ed0e4ba4bcb8aa6e4858dee7fd257d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x0000000000000024.db.CRYPT
          Filesize

          91KB

          MD5

          f7266651403144319b8de6873362c5a5

          SHA1

          5d84734a5c82fcde880b4f6737e6a7ea53de90a6

          SHA256

          ee6703330ab417aad24a5d86399830591e9cdfd9d227f047136466ff643a71a5

          SHA512

          6813369a39d1b502e96eeff09f9530e9e2872923260e1e1edb91b845ca98361fedbc9eb4ba155e000fcdfe0426edc702cfabb8a4ed455031a2994b814a9947c2

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db
          Filesize

          1024KB

          MD5

          c54cde3ceede65db57e1ef09429038d6

          SHA1

          d40df43ca2538ba8f23eb8d5e6ba48c6cd1a29a7

          SHA256

          80a0bcaaf774d79edb86f7cf3793bb8d584f3b74a67112b7b7b651aa762240eb

          SHA512

          1677ee5d05e7357550bf0b45d5f077557e3835d066ac930692112c69c4719a4f618af33f8531b9b99f202d3e69716e2f53faa7da0c8092ffa22a43b585777f2b

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_96.db
          Filesize

          24B

          MD5

          c7c6abfa9cb508f7fc178d4045313a94

          SHA1

          4f130f23896bd6d0e95f2a42b2cb83d17ac8f1a2

          SHA256

          1bda9f0aed80857d43c9329457f28b1ca29f736a0c539901e1ba16a909eb07b4

          SHA512

          9f1c1e438b8cceda02663a61a64c1c5fc6fb6238aa92d30e6d8d1a7b0cb29a8a6f26b63b9964ad876617f71ee7dc3c05205158c4ed4be327149652b1c6900825

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
          Filesize

          7KB

          MD5

          0150b46ed17d8afad43443d983cd3ea7

          SHA1

          b508398f95127bdf4dc10a647751d6d1b6c4e985

          SHA256

          e6e6f2088fac30d468f6358f2974993f54914c770ced0a7dff8f0083654ab590

          SHA512

          d0fdc4482f7c077d96d49afedce04f74a34dd7841d8ce40d306dceae896a642cc56b65ee1843635cb5d9ca7efae0a2185c820899555133d59d91d991872ef3fe

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\thumbcache_16.db
          Filesize

          1024KB

          MD5

          8c2d0530633d849b9205c596ec004426

          SHA1

          9928068f621f8c00d076bb6ef84213f0bea3af07

          SHA256

          8ecd84a54ad5b5662a7ba66de4e14c466cc240230507df9d181c0bfdf60ab296

          SHA512

          3fa452fa9698cbb24707c50cbe208ed14e2c03a043a7c23072171ae8fe9258030553099a61c4fac82ced14af13896e11042c8f39cd8a487ffedfd0feb7d22f02

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
          Filesize

          24B

          MD5

          ae6fbded57f9f7d048b95468ddee47ca

          SHA1

          c4473ea845be2fb5d28a61efd72f19d74d5fc82e

          SHA256

          d3c9d1ff7b54b653c6a1125cac49f52070338a2dd271817bba8853e99c0f33a9

          SHA512

          f119d5ad9162f0f5d376e03a9ea15e30658780e18dd86e81812dda8ddf59addd1daa0706b2f5486df8f17429c2c60aa05d4f041a2082fd2ec6ea8cc9469fade3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
          Filesize

          7KB

          MD5

          5dbdfa02024f8a39bb40ee2c3b09c9e0

          SHA1

          06b1e5445965b0c9c07fd8a16b9a25bbe05c88c9

          SHA256

          3c4d252bc3620848367a80f6add6da70f33d6e4201134776eb50b29a1e44c583

          SHA512

          32c74f22670b8e4e88991915e1b901a7083a6f5b62e605b86e2d044bd99b9f8f46cca767b1594b429f08706f5e1fbb0fab2941a9873cebbf54bf0b6e69eb3a29

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\Microsoft\Internet Explorer\DOMStore\1XOJ3YRF\microsoft.windows[1].xml
          Filesize

          97B

          MD5

          6f60ff29117823e8e754170d2e23b7c0

          SHA1

          07aa9cc9fff1bb2a1db2b43e8047f3a6d51c355c

          SHA256

          bf84435dfb4f17ed7889136c9da1812278ecddd39900df652299a0058822a016

          SHA512

          d2efb7b685e67578f4dd5ae2e916524ceb0c31cd8a61a904b90ebb571708b5c2322ba17d4a4d3d4088d367e039818f92ae823a1533192413b91484b1deb4a8d1

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{cd8f7dcf-097f-46ac-b5e7-d4a54f555775}\0.1.filtertrie.intermediate.txt
          Filesize

          5B

          MD5

          f6a6263167c92de8644ac998b3c4e4d1

          SHA1

          c1fe3a7b487f66a6ac8c7e4794bc55c31b0ef403

          SHA256

          11770b3ea657fe68cba19675143e4715c8de9d763d3c21a85af6b7513d43997d

          SHA512

          232d43e52834558e9457b0901ee65c86196bf8777c8ff4fc61fdd5e69fd1d24f964fed1bf481b6ef52a69d17372554fecb098fb07f839e64916bdd0d2abf018a

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\AppCache133242167350412405.txt
          Filesize

          2KB

          MD5

          ecaea544af9da1114077b951d8cb520d

          SHA1

          5820b2d71e7b2543cf1804eb91716c4e9f732fde

          SHA256

          9117b26ab2c8fdbb8223fe1f2d1770c50a6cf0d9849a5849d6aebcbe90435be6

          SHA512

          dc7bedbc581818011aa2d313429f234b12e5e9cf320b02b8d7ceeaf9cdc1c921ffc51af7f4080b02740f2d2146fbb006ccbf37cdcba3e3a10009142daffdb919

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\TempState\CortanaUnifiedTileModelCache.dat
          Filesize

          1KB

          MD5

          89f205d51f1a0236afded6bf3f510880

          SHA1

          954c14b01b84a35ba4b4305922b446db45de497c

          SHA256

          87a9899c5fb880885cbf23c3aa60f2ad99b80390e55aa1acbde8d137b1ce86d5

          SHA512

          cbd51f88e43722667f90ee3662c9b469a239382426a2d4842cc42634dc65578922abf961331852ae4ec6d75847018d7e9b88bfd25e1ecb90ec750d368cde8c87

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\TempState\CortanaUnifiedTileModelCache.dat
          Filesize

          1KB

          MD5

          b3520c5976afb5bafe3fa87f5370d896

          SHA1

          2feea69e15e4f4892148837b5eae0899d89215c5

          SHA256

          e5f4223f054d4581f45c730b1e7e483977454100520b19160f52f38d0329830f

          SHA512

          c5ce87dfa0a4ca2c7f578a26773ec1e6fd73e9b73fa45c66d0eb99b0b9363aeb137ffdabfec697e6ea2c491afec4f315e35f70ad311068987d8fee38b12c8de0

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\StartUnifiedTileModelCache.dat
          Filesize

          5KB

          MD5

          20df62955ca768873b4fc144005412a5

          SHA1

          bd0880b05933aebdffc9ab3d6f8b065563ae4e54

          SHA256

          13c5f75b53d0344ca11e03b3ff8d7180fe8fe71e251c244816f2096922654c41

          SHA512

          74c9e0e605d11f86829f3b9ead3bd2554c6de13805b3a78ae51998897a3981d59f64ad350ebb7f423a2ced83ff475c3b1775bfba795aa5cf3ed1f0ef90e650b2

          Download Submit

        • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\StartUnifiedTileModelCache.dat
          Filesize

          6KB

          MD5

          96d84af19a2da3af3759237daeddc77a

          SHA1

          cc4c7994480d61452c310b9fed4dd637dc978196

          SHA256

          8261149f924d030e8bc95db93c812bf829b372aacc342597a6ef423b856efdb8

          SHA512

          b0ac0568aadc8d19d05ef43879bfedd22a1ee103d5a6be0f65591563a98641093dbd5e64376f6bbd4c414b89a1650f6d9b18a4dcac1b850fa97b77fe15e89d41

          Download Submit

        • C:\Users\Admin\Contacts\desktop.ini
          Filesize

          412B

          MD5

          89dc5835bbf2bd70dc4049d1361c431a

          SHA1

          2c44c45113a2a15b790d9797a70917c5841d31ef

          SHA256

          ddaa4c665b3d8e2b88bcc0d7cf5fdd2113f9667603d980770393ec66c03d0bee

          SHA512

          4b714fdbbb275ddad03f37b392349ad9e9864c695b491a35161114cf6a5e43de59ce6e1af20095729fb113bfa90f273498fdb1d6d8a31f79eab362234b1bb0af

          Download Submit

        • C:\Users\Admin\Favorites\desktop.ini
          Filesize

          402B

          MD5

          fe26040b166f9ce8db249b03e1fa00bb

          SHA1

          c4f2602243c90787c47ba5cc6556e68b31ec9056

          SHA256

          65c77d0c50f82b8edc127a3dcab429c2ae4a9f93870e035652986cfea213d7fd

          SHA512

          5c01bfdbf0a1940106a0d8651afe1c4a6c0d38e98f8808c4c393e768e89b34d9c805b2aec38ac41a17fdf7cf70a5a32e6c385da9a683eafe4a808b40075192cb

          Download Submit

        • memory/2500-18390-0x0000000003E80000-0x0000000003E81000-memory.dmp

          Filesize

          4KB

          Download

        • memory/4204-18415-0x000002A9A1710000-0x000002A9A1730000-memory.dmp

          Filesize

          128KB

          Download

        • memory/4204-18413-0x000002A9A1380000-0x000002A9A13A0000-memory.dmp

          Filesize

          128KB

          Download

        • memory/4204-18409-0x000002A9A13C0000-0x000002A9A13E0000-memory.dmp

          Filesize

          128KB

          Download

        • memory/4204-18590-0x000002A19E800000-0x000002A1A012F000-memory.dmp

          Filesize

          25.2MB

          Download

        • memory/4204-18591-0x000002A19E800000-0x000002A1A012F000-memory.dmp

          Filesize

          25.2MB

          Download