5c1d8186072a67dbf2f13eecf74161d46e2f0ab51766c83985f0f003e8b44fa0

Analysis

max time kernel
148s
max time network
197s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
17-04-2023 09:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

coreldraw_graphics_suite_2020v22.0.0.412/CorelDRAW 2020 Portable.exe
Size

1230.3MB
MD5

d20fe6aedcdde559c0bb9ee47434bf2e
SHA1

38c6f84934a4b5aeb658475babdd0d8e2389ff67
SHA256

4eea1a4d3c8a4c846a5010bacdc85cfc1ddac4030b58d4c0190cc91e6537e1c0
SHA512

63f4e82043352c9af3efd8e987ad6b7583f5fb38263a0d0042b98620ad18e7275f01fe97997923e1bc6f4c91f5aec0dfa652230bb2a183f3f5b184d9f59a5f8c
SSDEEP

12582912:8Ltn0JtwBuJYqN49D8O0u7eWOEUGdj1C+EpH41PH:m0J6gJrN49D8QeWOLGdpZdP

Score

7^/10

Malware Config

Signatures

Checks computer location settings 2 TTPs 2 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

Processes:

CorelDRW.exeCorelDRAW 2020 Portable.exe

description	ioc	process
Key value queried	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Control Panel\International\Geo\Nation	CorelDRW.exe
Key value queried	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Control Panel\International\Geo\Nation	CorelDRAW 2020 Portable.exe

Executes dropped EXE 2 IoCs

Processes:

PsiService_2.exeCorelDRW.exe

pid process

3872 PsiService_2.exe
3004 CorelDRW.exe
Loads dropped DLL 2 IoCs

Processes:

PsiService_2.exeCorelDRW.exe

pid process

3872 PsiService_2.exe
3004 CorelDRW.exe
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

pid	process
3872	PsiService_2.exe
3004	CorelDRW.exe

pid	process
3872	PsiService_2.exe
3004	CorelDRW.exe

matchs PE files 58 IoCs

Portable executable.

Processes:

resource	yara_rule
behavioral2/memory/4932-140-0x0000000000650000-0x000000000070B000-memory.dmp	is_a_pe
behavioral2/memory/4932-146-0x0000000000650000-0x000000000070B000-memory.dmp	is_a_pe
behavioral2/memory/4932-151-0x0000000000650000-0x000000000070B000-memory.dmp	is_a_pe
behavioral2/memory/4932-152-0x0000000000650000-0x000000000070B000-memory.dmp	is_a_pe
behavioral2/memory/4932-292-0x0000000000EC0000-0x00000000014E8000-memory.dmp	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x6CA77DC97AB615B7\PsiService_2.exe	is_a_pe
behavioral2/memory/3872-428-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-431-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-429-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-432-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-433-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-434-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-435-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-436-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-437-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-439-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/3872-449-0x0000000000400000-0x0000000000447000-memory.dmp	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILESCOMMONX86@\Protexis\License Service\PsiService_2.exe	is_a_pe
behavioral2/memory/3872-635-0x0000000000400000-0x0000000000447000-memory.dmp	is_a_pe
behavioral2/memory/3872-636-0x0000000000400000-0x0000000000447000-memory.dmp	is_a_pe
behavioral2/memory/3872-637-0x0000000000400000-0x0000000000447000-memory.dmp	is_a_pe
behavioral2/memory/3872-638-0x0000000000400000-0x0000000000447000-memory.dmp	is_a_pe
behavioral2/memory/3872-639-0x0000000010000000-0x0000000010002000-memory.dmp	is_a_pe
behavioral2/memory/3872-642-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-643-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-644-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-645-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-646-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-647-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-648-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-649-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-651-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-650-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-652-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-653-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-654-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-655-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-656-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-658-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-657-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-659-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-660-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-661-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-662-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-663-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-664-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
behavioral2/memory/3872-665-0x00000000752A0000-0x0000000075312000-memory.dmp	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\Programs64\CorelDRW.exe	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x5A6C9B8D9B3ECC55\CorelDRW.exe	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\Programs64\CorelDRW.exe	is_a_pe
behavioral2/memory/4932-754-0x0000000000EC0000-0x00000000014E8000-memory.dmp	is_a_pe
behavioral2/memory/3872-755-0x0000000001D60000-0x0000000002300000-memory.dmp	is_a_pe
behavioral2/memory/4976-785-0x0000000000F50000-0x0000000001578000-memory.dmp	is_a_pe
behavioral2/memory/1824-987-0x0000000000E90000-0x00000000014B8000-memory.dmp	is_a_pe
behavioral2/memory/1824-1080-0x0000000000E90000-0x00000000014B8000-memory.dmp	is_a_pe
behavioral2/memory/4976-1281-0x0000000000F50000-0x0000000001578000-memory.dmp	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\DRPCUNLR.dll	is_a_pe
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\RMPCUNLR.dll	is_a_pe

Enumerates system info in registry 2 TTPs 4 IoCs

Query Registry

T1012

System Information Discovery

T1082

Processes:

CorelDRW.exeInterprocessController.exe

description	ioc	process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	CorelDRW.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	CorelDRW.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	InterprocessController.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	InterprocessController.exe

Modifies Internet Explorer settings 1 TTPs 4 IoCs

adware spyware

Modify Registry

T1112

Processes:

CorelDRW.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	CorelDRW.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	CorelDRW.exe
Key created	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Software\Microsoft\Internet Explorer\IESettingSync	CorelDRW.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\SOFTWARE\Microsoft\Internet Explorer\IESettingSync\SlowSettingTypesChanged = "2"	CorelDRW.exe

Suspicious use of UnmapMainImage 6 IoCs

Processes:

PsiService_2.exeInterprocessController.execmd.exe

pid process

3872 PsiService_2.exe
3872 PsiService_2.exe
3872 PsiService_2.exe
3872 PsiService_2.exe
4976 InterprocessController.exe
1824 cmd.exe

pid	process
3872	PsiService_2.exe
3872	PsiService_2.exe
3872	PsiService_2.exe
3872	PsiService_2.exe
4976	InterprocessController.exe
1824	cmd.exe

Suspicious use of WriteProcessMemory 10 IoCs

Processes:

CorelDRAW 2020 Portable.exe

description	pid	process	target process
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3872	4932	CorelDRAW 2020 Portable.exe	PsiService_2.exe
PID 4932 wrote to memory of 3004	4932	CorelDRAW 2020 Portable.exe	CorelDRW.exe
PID 4932 wrote to memory of 3004	4932	CorelDRAW 2020 Portable.exe	CorelDRW.exe
PID 4932 wrote to memory of 3004	4932	CorelDRAW 2020 Portable.exe	CorelDRW.exe
PID 4932 wrote to memory of 3004	4932	CorelDRAW 2020 Portable.exe	CorelDRW.exe

C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\CorelDRAW 2020 Portable.exe
"C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\CorelDRAW 2020 Portable.exe"
1⤵
- Checks computer location settings
- Suspicious use of WriteProcessMemory
PID:4932
- C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x6CA77DC97AB615B7\PsiService_2.exe
  "C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x6CA77DC97AB615B7\PsiService_2.exe" /864A627C-C6B2-464A-AA13-25D62F282BD8
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious use of UnmapMainImage
  PID:3872
- C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x5A6C9B8D9B3ECC55\CorelDRW.exe
  "C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x5A6C9B8D9B3ECC55\CorelDRW.exe" /864A627C-C6B2-464A-AA13-25D62F282BD8
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates system info in registry
  - Modifies Internet Explorer settings
  PID:3004
- - C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0xED4CCE218CB063F0\InterprocessController.exe
    "C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0xED4CCE218CB063F0\InterprocessController.exe" /864A627C-C6B2-464A-AA13-25D62F282BD8
    3⤵
    - Enumerates system info in registry
    - Suspicious use of UnmapMainImage
    PID:4976
- - C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x191ABF865D571C0C\cmd.exe
    "C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x191ABF865D571C0C\cmd.exe" /864A627C-C6B2-464A-AA13-25D62F282BD8
    3⤵
    - Suspicious use of UnmapMainImage
    PID:1824

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\PCULog1.txt

Filesize
1KB

MD5
24a394d7ba5e757a6bfef991a95a8be8

SHA1
e9ea25234fa5dc5322efc91ff28c11e7a9663655

SHA256
716d1f6fa005395714ff84ba4a321522032753b364023d2459ed8d0dcab70f87

SHA512
f1f4490a669ccfdd07dce67881a79bb90277915810b1c5ac7a444c8e4858ab6cccf6bbc529a88db455efae3387edb82336afcaae1c81cd72ebab01381c9cb1a2

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Bodoni Bd BT Bold Italic.ttf_0x32D4623D621164C154E4E4409E05F321.ttf

Filesize
51KB

MD5
32d4623d621164c154e4e4409e05f321

SHA1
d7cacdcf2336b1562e331fb06b16d955d303e159

SHA256
748dba07b0818205aaadb71cc2b95791dd3576096f3c159559363d991933b27b

SHA512
fad3cbda9013b73770e90d72a1da0b98c3d7c37fbdb506624ba80972ce207a3174f55e15df94f40ba7706870ff9236df96b972f66f31f434db658db0665a86af

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Bodoni Bd BT Bold.ttf_0xA741A8FB946CB090B656E563AC98F377.ttf

Filesize
50KB

MD5
a741a8fb946cb090b656e563ac98f377

SHA1
a421e3332594ce6ddb0339c6687d84f0c630e13c

SHA256
4942523baf84ba43ea1223e24849f44d7f9dbdf18b64a33a819b2b00b5bdfcd1

SHA512
24268c053204d62ba36305682494679ff30d70ea81649db626687f7a6f90472beb9ef781fa106657829eaff08b3f6e7c2268ddc686f8ae3ec2189ad85d8c770c

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Bodoni Bk BT Book Italic.ttf_0x3E558ABEE88760EA97A900237EA3D0C3.ttf

Filesize
51KB

MD5
3e558abee88760ea97a900237ea3d0c3

SHA1
14b81f1c83aca49d9facbba59827c9a846dfc7c8

SHA256
af709ba9def7479127576fa0fa2f5880e75021531956c0919ff86a37730c3742

SHA512
3563dfb918386621c8c6ca811c05c5a164886050966bd537ae37b7f0e101808afa12a4d0e80ad665a15feeba9291c55dd8ab3586f894799e366ab1c3b134556e

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Bodoni Bk BT Book.ttf_0xD0E7F91E40621559944533EA66924349.ttf

Filesize
49KB

MD5
d0e7f91e40621559944533ea66924349

SHA1
ea78fa9147e63dac6f2e735e654d92f8fa49dfda

SHA256
90c389f6be6e9cd611fb24680c98060dc6e787729ac5e63698109f1ab6a0e573

SHA512
b4198efd245366f61fe323b346818cbbcf12de3a27fc9325f5210430f2a6462649444332bb7ca12851c57e54e2fbd73cc9090cb87feaf07b8af24c7e32c1eed8

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\CentSchbkCyrill BT Bold Italic.ttf_0x990157832AE7946B7245CB9141CD241E.ttf

Filesize
63KB

MD5
990157832ae7946b7245cb9141cd241e

SHA1
66023218a319e4c8ac675219cb21d27996a6e6f7

SHA256
209dbbe57f292470d810e36dc1c02a30261c4bf962ddf3c0514600bb459329c9

SHA512
ff7276d78025a9448e970bbf588bd73a33990572d4ad1312f1c76fc2b39a20791faab842d7b2a006a02e79d5fe6a161af80f4b08cbde7dbe29b4616aa4caba84

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\CentSchbkCyrill BT Bold.ttf_0x279B111196B5775E3876409D8DDFE8BE.ttf

Filesize
60KB

MD5
279b111196b5775e3876409d8ddfe8be

SHA1
64b95402d7ec85dae455587288a7c03dd83459ae

SHA256
267575778e05de8cce161b3bc954e01190f1d2a89152507277ae0e9b0684446b

SHA512
29bd46fdeff3ca9d13bedbbff2c106bc18f026251edc3fab3ccfa102dc8be885e1f7449397679ed9973e16296bf0846c005bbd9d1b42d1f49e77d2036cffa24c

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\CentSchbkCyrill BT Italic.ttf_0xEFB5A8EC3C40BAB52239AAE193082DEE.ttf

Filesize
61KB

MD5
efb5a8ec3c40bab52239aae193082dee

SHA1
e1cfbb2611fcb184f64ebeb9cf77c07fbae524ff

SHA256
d432d4c0f6f051f8abfe79c6a2602204fc791dc41e8eb9a21c86fa164c84ebba

SHA512
bc0d34ae63d2bd645e2c668f7cec1a0da506c4f8741e6ca8da1597915d507df0ba0a63c61a6fe38f01ed8af428a6651412ead431c88c6fef4725318f5e6ca8d3

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\CentSchbkCyrill BT Roman.ttf_0xDA1C155ECFA68EED0DC092A417BF10F7.ttf

Filesize
59KB

MD5
da1c155ecfa68eed0dc092a417bf10f7

SHA1
7376b0dd797de50b53d76512c0cd0edf690999ec

SHA256
fb4c52d6be5b6c903f2d709f289ca48a96504865003be0613f492a3aa3153ca5

SHA512
c231f952f9e604fbbf546230675d336c50efb9d9acc74ff70dc380149d5efed1c2b76942150fbe8cc3df0bd2a1437057d9957c268ef0eaf0932d7e463ece59b6

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century725 Cn BT.ttf_0x87EB8616084FC2FD184F7BA8783878E2.ttf

Filesize
50KB

MD5
87eb8616084fc2fd184f7ba8783878e2

SHA1
6fb5fccaf8ebdfb1d5ca3e5cfcd6992f4a239ad6

SHA256
f1318f475495b6b3e775e3b68d34391e5c7ff476e1e7f1546d3c6227e0168de5

SHA512
715e69c5ed200d71d7c5ccc0acd6fb4a0a7a751bb746295879622392e065955226b57cfbab06ebaea29ddfeba6c2deb56e0437abee431357e12a4f4bdf075caf

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 BT Italic.ttf_0x8EDD6FCDF5BA13B4F77E9B51FFDBB873.ttf

Filesize
54KB

MD5
8edd6fcdf5ba13b4f77e9b51ffdbb873

SHA1
52d0d66d884f3cbd19ca97260d62c75c696f3a30

SHA256
fe15897772dfab08e1405cb306eaef8845779d26826ac2eff5263f69b9b5770c

SHA512
59dce63fb0d5c86e235059942ae969adaff857b797c7a3ba965835393e7b67183617d44388133ceb8e8465961285485f09db9d0c425e1e829de252aae363ae03

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 BT Roman.ttf_0xD6A578213B2871E7FB9DD4F441E9D9E1.ttf

Filesize
53KB

MD5
d6a578213b2871e7fb9dd4f441e9d9e1

SHA1
f976a87484550580e9f5683d92d096ed4aa524aa

SHA256
ffc8ee8ff83f7f01a56c433f5e5e03dd3dbb19434c6a74635c882f1149792678

SHA512
56de4d4a5e02bf3e352606da9e7fe45e188324dbae5ae7d99a3cb485eb5b1cc12b31e3ba1c0c01d6eb54190f2ac37d035d8658c1810e588dbffb924e6d656d06

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 No2 BT Bold Italic.ttf_0x55008D3DE7449E1538771C0CA5385613.ttf

Filesize
54KB

MD5
55008d3de7449e1538771c0ca5385613

SHA1
3a6581d6c850c1c12faec3f3b2e9512b0df5f83b

SHA256
e6e22af600be59af9dade450edf0ca5dfdfd07e8f3944265acb5e497ca8c6d16

SHA512
c9e7811bc53b9748ed5584dfaee99957c30e0b91b16c053038bddc615ac8c088a7a7e16f977ec91210cebed9524718b637e4298c6b62eac00866d091ee535c9f

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 No2 BT Bold.ttf_0x2D5CEB904FACBF5B3950CE33A9311166.ttf

Filesize
52KB

MD5
2d5ceb904facbf5b3950ce33a9311166

SHA1
e883c85652e44424b6ca729f59d760eb380bbca7

SHA256
945c8dd1b69821f2e0dbca545620b997a49415452199840657b2ef1cc98bea9e

SHA512
c40ea749ddb2ad314bbad3e5d35f2a07fc8f5b0917441303ef117ff14163bd5a6c6dc31c4a30e9c0f42b7831aca1b6a0dd8b86786c8b91e6fbf3e917ba844383

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 No2 BT Italic.ttf_0x90AD9DCC08CE0FF24365AE8138A1B31A.ttf

Filesize
54KB

MD5
90ad9dcc08ce0ff24365ae8138a1b31a

SHA1
b8460de7107676e6cb700e4d04318d53d47d159d

SHA256
23c3e588daf92f119012f7c4fd9658ed0cc0c59fa69b4db3148c73b6bbf6ee9f

SHA512
7f248365a3c7b5e54912f91d46a1f5261734365666c502df9db1ecba3104df9cfc5f50c100c157707b841029c539edaf65be7b6080db5a00d7592128d52ebcdb

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 No2 BT Roman.ttf_0x3034DFB5FAE53EAD78FD8D429B7DCC6A.ttf

Filesize
53KB

MD5
3034dfb5fae53ead78fd8d429b7dcc6a

SHA1
13e9d992fd6b590078a2ce4210764b69d66c2f32

SHA256
bf14234803415203a018ae332cf4587a963d4fbebeb5df030b4bd096195c844f

SHA512
3bfdb40a2cf40257bb3eff5ba3f192f61eaa7f880e4f679dee8ebead200b46c81f52311593b09aed1fb424628dd81bf02c334568a2080d5ed30b9e5eeac64067

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 SeBd BT Semi Bold Italic.ttf_0xA51A56AC5788AF786A5E0621D7FCD18E.ttf

Filesize
55KB

MD5
a51a56ac5788af786a5e0621d7fcd18e

SHA1
700c6cfdce4ffa8c75f4a0177a12bdedc9921e26

SHA256
37fa0ff9ff318c5a06f8694bf484d9d3eb23cb824628ee466dac8b4ba2d0eacd

SHA512
6fa9d1bb94ed22578ef52160ca737d4fdbed8ce7fde75e9acaea916f4f1bca71069d6617c3aa049729a0efc94fed2d894f94ace2519498a45a411556d37e2730

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Century751 SeBd BT Semi Bold.ttf_0xBC73A2389DBDA5706997A4F92F992EC7.ttf

Filesize
53KB

MD5
bc73a2389dbda5706997a4f92f992ec7

SHA1
6b14316dc9d857fa8e83c56f1cf7804d6ab0e70f

SHA256
503c9e14f4c48adca81a4725e5e3f4fb2b2f86f68cfd97f586c00e6365a3df44

SHA512
df5ce616d4009403c1c020d1236f971ee5e96f9899dea6226835de4b24adeb5f3170ab65a8c55e01028cd88cb11842bb94f2d4ff78e36fa13164b34482ea3cdd

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Clarendon BT Bold.ttf_0x72E16741D1BAF94559003DF05BE59E44.ttf

Filesize
51KB

MD5
72e16741d1baf94559003df05be59e44

SHA1
e9a508e9133fa1884b90c95a757ac95d312c6a86

SHA256
79a79ff4e9cedbb968c95f7ea30f754f7c7dfa69482de0c902489e8f69a26653

SHA512
783b7911b0613aac667fab70b67447fb02beda651a808374a934f4841b04e83ecbbc7cecac57836c0fb56564c2b083a4789e113d071bbe13da9a04972ec66eb7

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Clarendon BT Roman.ttf_0x965A79B5C3B73CD8B9CE73BE4BAC0FEB.ttf

Filesize
51KB

MD5
965a79b5c3b73cd8b9ce73be4bac0feb

SHA1
d7be94633b15a3f8bdf1069114539ab7108189e7

SHA256
f763e5aec5dfbcec901cb896307236792d70e2c538b0c5e7a1ed452e8b146673

SHA512
c7bc7f42c257c39e4de4f6d7a74995a5cb019982ac50078a5262e4dc904c3b725a5ca287a5fa7b40ccbe04cf5ad08b3caa0026fbac409928e0e39ecddd84c3a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Clarendon Blk BT Black.ttf_0xB9C4E08410E925BF3A8F189FE38A97AB.ttf

Filesize
53KB

MD5
b9c4e08410e925bf3a8f189fe38a97ab

SHA1
1bfbba2a535135d08136d7a5c4ce8ba189a1364c

SHA256
9d2c0b909a8a5896a01331fb78474d35d2d94932e806f47bdb7d322eb619e3ec

SHA512
f146b61eb5d43a82119cbab7d96731c901a19d69a0ad573ee20b5844b4cb1c8c4f6f54d3dc13dd9b3b2b31d3f9344ed5a8f230bc818f7c6c09ccb9f129092a5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Clarendon Lt BT Light.ttf_0x6FDC727DB4C453F5FFE4BDF4616E5AB5.ttf

Filesize
51KB

MD5
6fdc727db4c453f5ffe4bdf4616e5ab5

SHA1
b428cefeb82d993dbd4336d44318b8c7797b6711

SHA256
4c1e991e3dd46b79bbcea90f41c39f4e4da2c89a331f914354d37b5585b867ea

SHA512
ade2eb7fa56a18a149903295f7826e25abdc9b27544f4e7a8f05d7f3da283c7d9c1bdb1b555ebb2c27bb7b5a56ffe860747051a0f17eb59403ed77ae221ea4f1

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\DeVinne Txt BT.ttf_0xFB5ECD7339570B94C954D8D34E6AC2F6.ttf

Filesize
51KB

MD5
fb5ecd7339570b94c954d8d34e6ac2f6

SHA1
92c0b10db1d30678e1c8dccdd8e66c5dea972642

SHA256
277721eed034ba0fb95e5070f32b64b381f8399e00a31d1f93e86abb2df9a17a

SHA512
17645900699652b9f4bfe35b0803f66dee181dceb5e27e4fcecb311ece1a514ab6ede73367d15dd3c0a773ea9644c945da10467eb7e4d45dfc817e323618b64c

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Embassy BT.ttf_0xD7CB028F74AE662ABEF10821F98828BD.ttf

Filesize
61KB

MD5
d7cb028f74ae662abef10821f98828bd

SHA1
1702e68b2983b3964a64664db6b42206975d6942

SHA256
fbf5fa9c7ebdee0ceac89f45815fb3f06b65b1ab34bb6d884ed0437c9cd2b445

SHA512
b6bb1af13fd1e1f350b23aeb58522eb96827a35ba8b78690851ebf7a27e15992d1ee8709104c7baa45729bdba43f03dbb7e1d19d398acaeea9859c34b240c00a

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\EngraversGothic BT.ttf_0x2446BE255F0C0DFA9F4DFB1EDFBEE8BD.ttf

Filesize
39KB

MD5
2446be255f0c0dfa9f4dfb1edfbee8bd

SHA1
f857c839d95fd44299021b22e90ace7054af433b

SHA256
a2d5dbd16f308d5cd97e3453f05cd755cebe87012fa90b7e1a5b6ad4f3dd529b

SHA512
b4f62100319ac989b617dc30ac245193f615f8997bb3eb2c0e62c3b8425d34e1c697eb41bb7110097da526588549750678ee04dc167cbce694a7eaaafa6ac75f

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Exotc350 Bd BT Bold.ttf_0x6B35E5684CA6A45975C669F510E82135.ttf

Filesize
38KB

MD5
6b35e5684ca6a45975c669f510e82135

SHA1
5ee0a40ba1ef2f80544b42ee698701c5c1176120

SHA256
41848bbc98c80327b9aade8cf282dcd13bd3213764a41920aaf541fe50088df1

SHA512
62b2daabbfddaefd53a30f18480bf594a38b7247140c5e3d3c74b32c0ca251787312f3e997c7a3c4d895cac691316232448b0ffe8f47d231e7d4a6bfbc1acc58

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Exotc350 DmBd BT Demi-Bold.ttf_0x26F12E93D536B97515A952AF99009B83.ttf

Filesize
39KB

MD5
26f12e93d536b97515a952af99009b83

SHA1
46dfd2c97f324fe4d4d7e96b41ed9400b7d2e605

SHA256
3c0bc413b5272ec94b05cd29936f70f4e8d48f1e8898f32d8c08342abb5eb9cf

SHA512
5807ccaedba352fe2a4b2f676a78537246ef53f94e07d7628eecc5be825d5a6fb3182cc703a5b9dc8e8f838623b7133e4afa1a84877397ce9e79a261f7ae31c2

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Freehand521 BT.ttf_0x01DCB77C9A956339628B370986FD6B56.ttf

Filesize
58KB

MD5
01dcb77c9a956339628b370986fd6b56

SHA1
9e38d112d9b340b3d90dcbdf4dcaa4c3368cde9d

SHA256
5f43865b7727705aac5c86afb88ffea9b22a3811464a5b692b1262c05926e13c

SHA512
f1bc912f56a87e3d44e8edaeccf15ec54fae63a756f90642dff9723c98e9909186d726bceab1e0258cc1597c4ec6bcc1bfd6c270312113266dda2d7a6fc0972d

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Bk BT Book Italic.ttf_0x1222E870FEAC73754BE3E181ACEA90DC.ttf

Filesize
39KB

MD5
1222e870feac73754be3e181acea90dc

SHA1
ddc4af1d87f155355db3a454ae868fce6c872a4a

SHA256
32ea405cb2f22d0149877a5723809718f79cc087407a5ff18c83f30043e812d1

SHA512
27e58e4511cb7b347db33371c4199b0f782ab9fd7995dbdebc09826e0cd0f8f21839f5b266ffcb41ac80f9e46a26312c3d45adbca590a4203b7038c915148129

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Bk BT Book.ttf_0xEAD5C28B0B3C60D481994292F7418A7D.ttf

Filesize
41KB

MD5
ead5c28b0b3c60d481994292f7418a7d

SHA1
fcd2829ed9c892c6e7bc146bd4cb297ca4c1fed9

SHA256
00802b741527fc9bd7c159f849111f11b6dea5e54bc2e7580585d4951ef0d4d9

SHA512
13b21a1998cdf8cabc8eacd79666eb67d5b2dad5bdc587b6eeb8b25b9800b3e40852a8e268624e3a965ae391fa37f0969b36758f1a62424a9f83d29473a7acfb

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Md BT Bold Italic.ttf_0x07E5B07AECD33611B135DCE7B088AABE.ttf

Filesize
43KB

MD5
07e5b07aecd33611b135dce7b088aabe

SHA1
eb4f8dda1f7e7e3934bad9785941402f84326d69

SHA256
d719792f996b3fbfab97d27feecd31104ee3140944baa80489cc6614aa3169d1

SHA512
2154650b0a36890bfb4ff695cc9b6cc1a66f1193eee152b2dbb374f8c9081737e5c1c053baeab3a3033ae0466da321465df2b9b27dfa66d3e509faad522a2426

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Md BT Bold.ttf_0x77C39D7D46BA8C98529571E14B59CB99.ttf

Filesize
42KB

MD5
77c39d7d46ba8c98529571e14b59cb99

SHA1
619c72630770fa954425037ac9510dc794a28839

SHA256
9c892181f8501fcc18334cd2e66ab2c2713e17fb5c810483592eee92156d6534

SHA512
e8f5483dc48f50e307d4095356ef1389b7916ccf162e0237045db4e87237e2228ca519997d64b58f7990a29dca76c1644d58e466cd37452677ebca0081396f26

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Md BT Medium Italic.ttf_0x04892CDFB8D856698293C9472A3DD8A1.ttf

Filesize
42KB

MD5
04892cdfb8d856698293c9472a3dd8a1

SHA1
78b03b95add92e0ce66b54521a39cd6b1f778294

SHA256
1830cb89f5822a7bb4bc888a9a8c2ea82e74f85562d38abef3a0acd9a25928dd

SHA512
527e9ac5e8e1f42486f677321096c3deb77f2b873c310273f078bf048a89b5558a5d081c9824fb07561add8df905b9e22c9436a6676e6a7193d19b14b8c80ef5

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Futura Md BT Medium.ttf_0x6BDAD2171386BB586D2BC0FE719ABF2D.ttf

Filesize
42KB

MD5
6bdad2171386bb586d2bc0fe719abf2d

SHA1
14186abdbd44e88ff857a30051c6fbee45bb8be6

SHA256
0b7756bba814ffd187abbf37d0c9dafa6083cd1d8a05ac94d16ffaf82ab6284a

SHA512
3d236dd93d031019e35361c8f3de1484216bb2d3c13873587d7b17a77cc4b90b23ceb179edfec8c4d43d410303447f02a9d661546eec0be896bbc29516a4286c

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 Md BT Bold Italic.ttf_0xD8D29132E6BB0AB75C249F8FC75E3E1D.ttf

Filesize
44KB

MD5
d8d29132e6bb0ab75c249f8fc75e3e1d

SHA1
54ade5463bc92d60e5ac56f21845d3afb5c50121

SHA256
bd1c6e67628f8ba92954fbf2a7d81a56c3c17f18fcc6e573f153d091ad21cb1c

SHA512
70c2e09b43a3b1a122f45eb047159d97b189aa3c54c93dedd43ead79104102a90b392052750f4deea3f209dc00261679c8acc230d2aba7bbbbcf4a8bf939f1a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 Md BT Bold.ttf_0x011EE00868A583BAD879E116B9ECCEBC.ttf

Filesize
43KB

MD5
011ee00868a583bad879e116b9eccebc

SHA1
3722066a45be40ac4a0ac69ff4e297ca3eb3730f

SHA256
79c308a2a7287b3da50246290de934460a1a5f29932c98352ac770ef122f65d5

SHA512
7c9b9379661bf4045fab50f6f7f10a6eef633cbdb43b02fc585c2d1e09f86fd43c4cb7edb3f49191faadb6b4388e691142681d949aa51fc6ed43f99d2ca8d07d

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 Md BT Medium Italic.ttf_0xA852CD806BD4DD7F222549B4B271AFAE.ttf

Filesize
44KB

MD5
a852cd806bd4dd7f222549b4b271afae

SHA1
a53ecec5dd9dabc7a890d968247a284cdf2d5c8b

SHA256
fea517bd2be06bf5ae31b09378d80e9bdb30001dac85820f4c5cb61c61db67f2

SHA512
7c7887417e10ebd40b060bdbf833487f8e4b5eef3f516ada3825108bac118c2e8cf98e3ade4cd94ea92a2bfea2342055e803f06c46b7f7f63952877dee862c82

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 Md BT Medium.ttf_0xBE8259C9F34B0FF74C105EA6FA64118D.ttf

Filesize
43KB

MD5
be8259c9f34b0ff74c105ea6fa64118d

SHA1
aa97a36d62fb728278907d0e8b1dec8374276aef

SHA256
65f03e7beff7ec018a107f8929c50cfee8b7ee005bc453d49583a0f543729067

SHA512
b6094564abf3bdb5fe3010889e68156f6f6a883fdd1cb61757617475566f49356841ef6e7d197a8040eb06bee68c75b8d8256c7dfb05eb9ae7d072e6222f348e

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 MdCn BT Bold.ttf_0x6FF777C6A1C4C664F54EC8D965936D5E.ttf

Filesize
43KB

MD5
6ff777c6a1c4c664f54ec8d965936d5e

SHA1
3e83abc1ec3f0f7cdd0d64d0566684724e3e17df

SHA256
3382a9f27d740f2e768aaf5a7f3de97bea80a925383dd6cfe6fc3e1933dc2769

SHA512
de474f0963bdbf6d96c11e01e7a7e599651f18feeb4d3a369c29f137a9b1291adcfd9e39eec36adc314841f8c67615be15f7c874a61843084ac67e255e26cddb

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\GeoSlab703 MdCn BT Medium.ttf_0xBF97006436BBD6C7F317312A24B8BDBC.ttf

Filesize
43KB

MD5
bf97006436bbd6c7f317312a24b8bdbc

SHA1
c6d9e91568135ade674b497bc25aa9c417c239fb

SHA256
f8caf5d00549f098e48a2b743f22bc870617033117917f9cfbee7392b27e26a2

SHA512
cfbcde99f776388109d734392f20e3f159552fc9d1f66da84a5d42490302e789af3fb3fdb382b95439f42933c6aa328c05697b79a02a99a78c3c4f392dc5e866

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Geometr212 BkCn BT Book.ttf_0x36CF8CC4F2EF9AF26EF6EAC76B9256FA.ttf

Filesize
40KB

MD5
36cf8cc4f2ef9af26ef6eac76b9256fa

SHA1
c538efcef2dfb856802d758bbb793cb7c025768d

SHA256
6000050191c8476333a0a611e8edec55c16174566dac66ac134de35841a2ebbd

SHA512
b89fbf740742eae9c0a428907557451baaab940faf86b5e417b7c6c64bf73436c8795e7cc34a8b5ababdb6e9f030012bc36925e82b4c78cc4e44e305aef08b06

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Geometr212 BkCn BT Heavy.ttf_0xD8FFF6E69E0BEC600A401AA4F09D31E9.ttf

Filesize
40KB

MD5
d8fff6e69e0bec600a401aa4f09d31e9

SHA1
4f8d80703fc798cebe54c2bd62214a48d9eedbbb

SHA256
17ff7784da6055793ea008fcb1a4342085ec062d0542734a737b8cafa5a87d7f

SHA512
e4283a36a808b5afbd47091c7e06fdf1e47ce322ff6eb4226409994083f17a28cc86fa9f9dc1bc702b7d4fb4aba8abca48e7719f97e878036d2387c0a2411d03

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Geometr415 Blk BT Black.ttf_0xDA6374675BAACA1510223A6441371DA3.ttf

Filesize
41KB

MD5
da6374675baaca1510223a6441371da3

SHA1
9df4785ad7e9da6d80e5828cc0559c90b54c8aa8

SHA256
2a35645bf8c3b32bf930b4118a33ad614ea838d47a5b7c8f80f3f54783e79f82

SHA512
d42a63828dd25400a5fb35faece7d0e42053aaf3ae2df73f6b645282c05c414dc84eb0767bdff6af11223c47b6889183837bb57a03b46da008580fe971f5fdb1

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Geometr706 BlkCn BT Black.ttf_0xEA2E3E894869A0E4CF07093693364B8D.ttf

Filesize
41KB

MD5
ea2e3e894869a0e4cf07093693364b8d

SHA1
e7becef263056557c8d94527b2885dca657b5f8a

SHA256
1ae36644ead5f2ff5855548d8768f75afb6b43b90b497efac87a64e7a7bd3fd9

SHA512
3ef736b3b2b2ca5d3b20ec4eca899f32172cdf4b0a4dd686118cd6c11f46ef9546d439e7124ff056e8b9aef5ee134a99d5d604394184307b94a3659c4a328111

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 BT Bold Italic.ttf_0x3E05D833AB894EC78A15F9A12C6F32D6.ttf

Filesize
41KB

MD5
3e05d833ab894ec78a15f9a12c6f32d6

SHA1
7b9f58539418d785922af2926f78f113b453500c

SHA256
57f3f21b67de4b3b09f6f657b75925f2892b590c1333937aa5daab53798a7225

SHA512
151d653615eac708df4e125ead5ce417346eef450ea2f01fa8063adc583ec46be099bb4bc215d2b52bb322bfc1c18951e1be5404942e3249c43d02e72bbe7663

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 BT Bold.ttf_0x27033C7B585D59C1576CDB7D74998264.ttf

Filesize
41KB

MD5
27033c7b585d59c1576cdb7d74998264

SHA1
8dfd23ebc20c8405b8e678350b40ccb3467caa7d

SHA256
704910ba72b728fb1e24813af8d4ad56b0f32fab542115a08052eb7db81ca64a

SHA512
c7e2dea97662458ae19cc9aa97d6dfcc5e72b1eb5c33e598945e2f3990c19f998bbada505184ed356c998f5d00bc65fed16fc08fea1dea95a9a18b632735289f

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 BT Italic.ttf_0x71999E38EE06146E0DF0062DBCEDB6DF.ttf

Filesize
41KB

MD5
71999e38ee06146e0df0062dbcedb6df

SHA1
2895a8d2d5516f8513604394ec8d1b970e798468

SHA256
fbbbc2c0d6d2db3d8bb247530f6c9b56c3c0722d7fcc895561e7580684f1985d

SHA512
8b025e02469643ee44a2828c52c0fc5348ebd3b98efcd9e6a1e79847cb123fdb72de09177a23c0521e67f05c7f2592106282ba6f68199c7cff179d7b82498cb7

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 BT Roman.ttf_0x9E29B469931C2CC6FFFCA0FFDDF70A71.ttf

Filesize
41KB

MD5
9e29b469931c2cc6fffca0ffddf70a71

SHA1
898f0235c23fbf5e4a7de857ae1b08a56a5925d9

SHA256
30d99be220437bac10ba7dd81fd369afc48ac8e3e595563de1d3e0d5fa8fa3ae

SHA512
9f88a4343e080ced6df813d9ef29c156dcd6a5e122c6912703bfbfe9d374a248429542499ed96a5701693978bdbf0bf446aedd8402eaf171b49fa7cbebd8d924

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 Lt BT Light Italic.ttf_0xFE313D94F630C282791B6F9DEBFACFEF.ttf

Filesize
40KB

MD5
fe313d94f630c282791b6f9debfacfef

SHA1
f69ee44e03d937644a9fb4fd64e210bcf60cb691

SHA256
4ebf8ba4050303e03ce199688a849fdd12b92f849938f6210a904a3584c3ac9a

SHA512
9e65b35613708dde8be95255b4973c2ec602ae38316c39df0aa0c9aeadd2872817ba5263d746662bc9c8301ae70dc6415e9de1f2fc3ffa9328277643e9cab2d2

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humanst521 Lt BT Light.ttf_0x81F762A8005AC811EA364B63A185492B.ttf

Filesize
40KB

MD5
81f762a8005ac811ea364b63a185492b

SHA1
107853f09e51c5870ac7f9e3e34dc341822c81b9

SHA256
17a69765c1829bccec65c2201eba3a9ae2d5f4b8356eedf380178bb491593fac

SHA512
8c9ec1a7b36120716963f27b39cb9386f331831a7155adb558941292d895e824d4c273fd12c34a77b9d924a4f09c9a93cc1645ae1bd644ca202c3e92c74bd754

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humnst777 BT Roman.ttf_0x12E6EEDDE036A1313966FEFBDEDAADC2.ttf

Filesize
38KB

MD5
12e6eedde036a1313966fefbdedaadc2

SHA1
5ef974274d4a0bd11fae01dc276314c2afc96dc2

SHA256
03c52780ea4c173f7239865fe67f7cfd78787035d9bc5a9f760286f0d1638dc3

SHA512
e9ef9c76dd3a0bb1359927bb0f8a6b139d972dd1c2fafae8c18434ea686f863fe12991c2d32fba7f675fd7814ae372e6fa76a98f1e4d29f103ba944a910245f0

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humnst777 Blk BT Black Italic.ttf_0x1DB3789EAF6CCFC9F202EAB0A7EFCA82.ttf

Filesize
41KB

MD5
1db3789eaf6ccfc9f202eab0a7efca82

SHA1
0f75a9998c684c1ecf52b7a72b7c00d3d4d23b7c

SHA256
a8381c6f44a589226e4d65cf594c0d4ff0fd73104e3feaf173a10e39fdbdd22f

SHA512
ea07d98301a6c04e0cce2ca340f3dc7a3c3435120463f2fedd1d424c15a42c9750e7e260055dc05ed223caa729d73bd3dea9eaeee8f01532ae92fd568e841b48

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humnst777 BlkCn BT Black.ttf_0xA74F5171028BD6A06237D6E3CA57B4EC.ttf

Filesize
40KB

MD5
a74f5171028bd6a06237d6e3ca57b4ec

SHA1
f5c3f24cbc04e0c510457b8a67e5da8fd7a68f98

SHA256
05a4bb162598f7e2150753ea94102cc9a4e7e842f21b549a68ec180e5683dcb9

SHA512
41b710515a0ed5d6554491249baa48b98194558bb1acdf0e96c6817a7027a868a187141842c0ffd6a9a43b0b6873ad7f0eedf166c73893dd3b8e132f3a5afe84

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humnst777 Cn BT Bold.ttf_0xABCF1C3A5878122BBAC09F2C5D0FF10D.ttf

Filesize
39KB

MD5
abcf1c3a5878122bbac09f2c5d0ff10d

SHA1
3ba55f78f6a0232c0d3eb264243998491c5433c3

SHA256
fb0b39c4c34e850d87f8520090df2460eec083f3814e5b1ae2e57aea987c4d68

SHA512
873212885d338b6eaac49569d0709c3a43a8e46753293f60ed38f26a8c326498d73b755909c21a3f611b644679e20a3da4356e93e3ac776147199e8825a47f3d

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\shallow\Humnst777 Cn BT.ttf_0xB8271085566DADA3FBF9579D1880B431.ttf

Filesize
39KB

MD5
b8271085566dada3fbf9579d1880b431

SHA1
524d42a83bf9696c4b1421accc1550510bdc7796

SHA256
a78b00b71e74755a9c88a140131d157783de446e259d987294a1665beb14bd30

SHA512
cd775885e66e8e7e04349bce54426cc3613afd4606c342b62273054d3aee773809f59db294d2a75ba51d81a098a82dfcc421123b4cbe7a14f6d4c0ccb528b1df

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\Capture.exe\Capture.exe.manifest.__tmp__

Filesize
1KB

MD5
a42890c199533dfb776efb9c8b29490d

SHA1
d1b4f9e34c4fbacb9e84b615c98dd566d683dc3a

SHA256
95a84ffbc4cc8dad3800143c275226d219afe323f5dc4a674368fdd3a7f25087

SHA512
0c96d03ef04e890488a4f9c7882d750d0d59fd4b1fb3b8aa85112b40606ff0a36a0e6a545135859463291a0197eb279788c6f4e1fdace98dbe15e06195b55049

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\Manifests\PSIKey-33001.dll_0xff533839c7a1f79c3c4922d911b75bb5.2.manifest.__tmp__

Filesize
396B

MD5
f93e0fb6283b5abbbb7335a0559b37e4

SHA1
ead4c3eea9397488519c11743cb80fc252324d20

SHA256
0d3c45d19e5e23832b3a633ccf8628dffe8a5dd9a7cd80bc9fbf4d8993f45374

SHA512
fa235dcfdfe3968b7c1a15e3fab6d164ad10f232e6e628881a02ba4f580c7f94e0465ee271e72ec00212b13ccabfe7888ae10b4cc1e061f33aa8fa5fccb372c5

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\PropSchemaReg.exe\PropSchemaReg.exe.manifest.__tmp__

Filesize
407B

MD5
cd31072c8dcaac72719f9f6ab6e3a113

SHA1
e8e792a7350fef3135f3da4c4caddf9a0f972dc6

SHA256
9d55f3e57c4f1d1343ef0120fc7a083de97313dd54e59431189d93dbbd58962b

SHA512
233af3fe5cd05e3c14576b905e82a6a8f8e148c63e8a58c383936d0a9bd8de4bb03b79339109b55d393fff810fea5898d132e0bbdbb7b59c67946b26ebbc4415

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\icuio59.dll\icuio59.dll.manifest.__tmp__

Filesize
379B

MD5
73102579f0cc3777bdd0ba96bab8d6f4

SHA1
08512e731aed9cdfeebf2e8fdc24a35ea23e3477

SHA256
03c937a5aba7fd7eab8ae959606ea4598e474da06b7ec63701255e7325a9e435

SHA512
e3928e509d852ae8f62b6378f984013345ddff9f5073e77323703acf20ca44bebff1753f09e7343cd948559bcafe766edce38e767efc5e7e7a5fd42c37be2e13

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\manifests\InterprocessController.exe_0x5A693F56A99F95D9BBA8F7CD3C522107.1.manifest

Filesize
1KB

MD5
a42890c199533dfb776efb9c8b29490d

SHA1
d1b4f9e34c4fbacb9e84b615c98dd566d683dc3a

SHA256
95a84ffbc4cc8dad3800143c275226d219afe323f5dc4a674368fdd3a7f25087

SHA512
0c96d03ef04e890488a4f9c7882d750d0d59fd4b1fb3b8aa85112b40606ff0a36a0e6a545135859463291a0197eb279788c6f4e1fdace98dbe15e06195b55049

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\manifests\PsiService_2.exe_0x16783D49B6931414BAD1B2368ADD9656.1.manifest

Filesize
396B

MD5
f93e0fb6283b5abbbb7335a0559b37e4

SHA1
ead4c3eea9397488519c11743cb80fc252324d20

SHA256
0d3c45d19e5e23832b3a633ccf8628dffe8a5dd9a7cd80bc9fbf4d8993f45374

SHA512
fa235dcfdfe3968b7c1a15e3fab6d164ad10f232e6e628881a02ba4f580c7f94e0465ee271e72ec00212b13ccabfe7888ae10b4cc1e061f33aa8fa5fccb372c5

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\manifests\icuin59.dll_0x27DA9F9A5D85B81A2BD186ACCB170675.2.manifest

Filesize
379B

MD5
73102579f0cc3777bdd0ba96bab8d6f4

SHA1
08512e731aed9cdfeebf2e8fdc24a35ea23e3477

SHA256
03c937a5aba7fd7eab8ae959606ea4598e474da06b7ec63701255e7325a9e435

SHA512
e3928e509d852ae8f62b6378f984013345ddff9f5073e77323703acf20ca44bebff1753f09e7343cd948559bcafe766edce38e767efc5e7e7a5fd42c37be2e13

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\manifests\icuio59.dll_0x2D80B9DC2301886483E236EF3CAE2D64.2.manifest

Filesize
379B

MD5
73102579f0cc3777bdd0ba96bab8d6f4

SHA1
08512e731aed9cdfeebf2e8fdc24a35ea23e3477

SHA256
03c937a5aba7fd7eab8ae959606ea4598e474da06b7ec63701255e7325a9e435

SHA512
e3928e509d852ae8f62b6378f984013345ddff9f5073e77323703acf20ca44bebff1753f09e7343cd948559bcafe766edce38e767efc5e7e7a5fd42c37be2e13

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\manifests\icuuc59.dll_0x4C6E8602230C49A9BB2B6AA0DB866942.2.manifest

Filesize
379B

MD5
73102579f0cc3777bdd0ba96bab8d6f4

SHA1
08512e731aed9cdfeebf2e8fdc24a35ea23e3477

SHA256
03c937a5aba7fd7eab8ae959606ea4598e474da06b7ec63701255e7325a9e435

SHA512
e3928e509d852ae8f62b6378f984013345ddff9f5073e77323703acf20ca44bebff1753f09e7343cd948559bcafe766edce38e767efc5e7e7a5fd42c37be2e13

Download Submit
C:\Users\Admin\AppData\Local\Temp\SPOON\CACHE\0xD87EE3D2F833C7C1\sxs\omnitracking.dll\omnitracking.dll.manifest.__tmp__

Filesize
631B

MD5
441c070b9ff2044c15dc36cc07200b9a

SHA1
b7d85dff06380d788f2c6027b9278a2bd0707267

SHA256
ce419f9c607ce24f86f531ea057d08439588b5b5a130837635665c2bcc71f941

SHA512
333d05a640b5dcb3c138448dbbaef9d8015e4afc57493d0f27b77659262a85a9a444eadce9e24cc6b5ec7b72476644f03e1ef7173f7fe1a1a0c727f82a16aa3e

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\meta\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\DRPCUNLR.dll.__meta__

Filesize
32B

MD5
820df606d08659b9f466895675d6cb18

SHA1
b9daa2bba19e87bc86b554da90171da4394e8aca

SHA256
d9ed1d4bbb3b29aa88f4b72c580fd08e754e6c779bfe72c72af4e38332775c98

SHA512
6472967133efc2d44a8efd5877a0e6e3c95448ad5e26aa947fb7495b7dd2cd2328f8303535e2e184b6d48a3bbc72d5a44fd8109c38e996c386d3479e0755ad81

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\meta\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\RMPCUNLR.dll.__meta__

Filesize
32B

MD5
a508c3e6c7c7bfb91674924caf7c353c

SHA1
746fdc2cc4024c60751e1de5499666d9b57e94f0

SHA256
5676934dc14512e235ff122d36cef37c8e9cf8e42d8023129445f2f72266f344

SHA512
fbbe588cde1a07a4529c9a39f53927973ff6d1a4c50ef133ab14037e00158ba36a311e115ed09086ed0c10c99d08efae3720958909501b3403ba0a63eb5504c8

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\meta\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\Programs64\CorelDRW.exe.__meta__

Filesize
32B

MD5
34a99d74f657903352d6a24ce5a333ce

SHA1
d408b96d3d01681b99358e68f813af3933f86a61

SHA256
20605fde54c075c48997e7188c3d8ca4b4de32e11d87c763b02b2092f8675471

SHA512
17ac82c9ea6ca73b310a918594e46560cee230dfbf710aa8a4132a85f6306980264298f2518c10cd3008350873fa46dde6e0645e33682963bcc0005fbfba3d1a

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\DRPCUNLR.dll

Filesize
24KB

MD5
5d19e144f40cd4d80505501d8e708479

SHA1
4f5ec56a52f427e230d0857171b0762f0f9adc95

SHA256
aebc883b2d5dcac87a303b355cb57cc4bd57f162609c4c5146a63b43bc92582d

SHA512
51fd2445d46da9c3e926142c9c4756ba7bae6952b0f1c05070693eda309bea6b25d93310963536307817fd38c1233b0101a98d7f4932728ce01ee084cde67080

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\FontManager\RMPCUNLR.dll

Filesize
12KB

MD5
a2c64a6e81b09077a1d6e3e523952516

SHA1
8e314feb2b274bade9f3318cd2b91baea8aaee1a

SHA256
a09acd915bcaca9c7bf443ba057629faee75d485579429f5001f896e564ac96e

SHA512
3514dc7f64e683842bf30f96ed39fcb01d6e619058495364f93c5c9ae42cf60b45d7beb8bf74eeff039e4641f8196613b1e3724ce6e949c66866baba1d201e52

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\Programs64\CorelDRW.exe

Filesize
360KB

MD5
f06b2813736f567b3b925b4cb3318ad0

SHA1
283f921935ebc6e17161b2b2fe4add6e3214bc1b

SHA256
43e414415f3e13dc866c48f8db66f0a4fd296eded59de4a66d4d4959490f6406

SHA512
5e174d2059da5d179aafbba159c08e4bf62fd6cab5fd3812b9cd6c495334ce3ad683b3dadc5dc8e0080b0b753eb17d3a13ba2d1f80c6f0fd8e2d2c75e5619860

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILES@\Corel\CorelDRAW Graphics Suite 2020\Programs64\CorelDRW.exe

Filesize
360KB

MD5
f06b2813736f567b3b925b4cb3318ad0

SHA1
283f921935ebc6e17161b2b2fe4add6e3214bc1b

SHA256
43e414415f3e13dc866c48f8db66f0a4fd296eded59de4a66d4d4959490f6406

SHA512
5e174d2059da5d179aafbba159c08e4bf62fd6cab5fd3812b9cd6c495334ce3ad683b3dadc5dc8e0080b0b753eb17d3a13ba2d1f80c6f0fd8e2d2c75e5619860

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\modified\@PROGRAMFILESCOMMONX86@\Protexis\License Service\PsiService_2.exe

Filesize
270KB

MD5
16783d49b6931414bad1b2368add9656

SHA1
8f52ca93479a1c38ee0539393890548baeb2bbf2

SHA256
596f28b0f1dbc8ac3a43fe00a890af088ca837da3bb227411fd76c4d27bf27e9

SHA512
3dd8820623a5449c66639134f12ee63f46c94cda9ff655dcdb0354db4ab59c5bfbfc4c86cc6e6d28229deae31410458ea232efbc3697dd4b6b531d0dfd79909d

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x5A6C9B8D9B3ECC55\CorelDRW.exe

Filesize
31KB

MD5
998ca8e37d51fb437dfe845ab3e80c8b

SHA1
846fbc2367a4a446dc9978c9b92fd3c242e7bae6

SHA256
3e4359ce1fefc1087992bca05e49e5ecd04296841b5bf6e6c242d087b4078baa

SHA512
25cf76860b5cbc4edc51f87ee1727528a72ed7890cf006b82299caeccbc955ae0183d4e7b1e941bb4e9c54b2335e3ac0e97d5fde719c0eed2115e81f3e47f2ac

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\local\stubexe\0x6CA77DC97AB615B7\PsiService_2.exe

Filesize
28KB

MD5
8262714f213af221e99362c47439ff26

SHA1
3b80c450b27b7f52c7f0f10ba98b250285ce20a1

SHA256
37c6320694610f194b5c7f16d8806ecfa7c50d724eab0ca304cea3358affe9e7

SHA512
45fc4cb36797e95fc4d2bf79525d33a2d68241dc7b62b6fc78670e2f5cdada3b51b67acc792128c715f10290a6dba436fd3dc6ac326f74ce9a02188050a08506

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\roaming\modified\@APPDATA@\Corel\Databases\V4.0\Interprocess.sqlitedb

Filesize
20KB

MD5
f43bbe069fc14146b1857d979a9ee58d

SHA1
3c1f60563697ac0560650d35b512a4d90e49f13b

SHA256
4608b3d1d131a651c9478d2f49b436992e66adcc862031d38dc8d099868ae3e2

SHA512
88693cd5ef57f25761110e42109b56092f1e3d238dbf15df7c8f696077add3a9b2e1125c6f4373002d5bfd212ae777e10c3b41d7a8f7638e26dcf5baddd2025b

Download Submit
C:\Users\Admin\AppData\Local\Temp\coreldraw_graphics_suite_2020v22.0.0.412\Sandbox\CorelDRAW 2020\xsandbox.bin

Filesize
16B

MD5
ec3d19e8e9b05d025cb56c2a98ead8e7

SHA1
748532edeb86496c8efe5e2327501d89ec1f13df

SHA256
edb7be3ef6098a1e24d0c72bbc6f968dea773951a0dd07b63bad6d9009ae3bf4

SHA512
175fb8432472b6795bb5db0eba61bc7b57331720825df5b048f3086815ba844df4f7e83e42ff9e8fe5ab01700675a774cb916677953d6e0088ffbf1fa2775349

Download Submit
memory/1824-987-0x0000000000E90000-0x00000000014B8000-memory.dmp

Filesize
6.2MB

Download
memory/1824-1080-0x0000000000E90000-0x00000000014B8000-memory.dmp

Filesize
6.2MB

Download
memory/3872-635-0x0000000000400000-0x0000000000447000-memory.dmp

Filesize
284KB

Download
memory/3872-637-0x0000000000400000-0x0000000000447000-memory.dmp

Filesize
284KB

Download
memory/3872-755-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-665-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-664-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-663-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-662-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-661-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-660-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-659-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-657-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-658-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-656-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-655-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-654-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-653-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-652-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-650-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-651-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-649-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-648-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-647-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-646-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-645-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-644-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-643-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-642-0x00000000752A0000-0x0000000075312000-memory.dmp

Filesize
456KB

Download
memory/3872-639-0x0000000010000000-0x0000000010002000-memory.dmp

Filesize
8KB

Download
memory/3872-638-0x0000000000400000-0x0000000000447000-memory.dmp

Filesize
284KB

Download
memory/3872-756-0x00000000001E0000-0x00000000001E1000-memory.dmp

Filesize
4KB

Download
memory/3872-636-0x0000000000400000-0x0000000000447000-memory.dmp

Filesize
284KB

Download
memory/3872-449-0x0000000000400000-0x0000000000447000-memory.dmp

Filesize
284KB

Download
memory/3872-443-0x0000000055A80000-0x0000000055A81000-memory.dmp

Filesize
4KB

Download
memory/3872-442-0x0000000055A80000-0x0000000055A81000-memory.dmp

Filesize
4KB

Download
memory/3872-441-0x0000000055AB0000-0x0000000055AB1000-memory.dmp

Filesize
4KB

Download
memory/3872-440-0x0000000055AB0000-0x0000000055AB1000-memory.dmp

Filesize
4KB

Download
memory/3872-439-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-437-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-436-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-435-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-434-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-433-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-432-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-429-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-430-0x00000000001E0000-0x00000000001E1000-memory.dmp

Filesize
4KB

Download
memory/3872-431-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/3872-428-0x0000000001D60000-0x0000000002300000-memory.dmp

Filesize
5.6MB

Download
memory/4932-754-0x0000000000EC0000-0x00000000014E8000-memory.dmp

Filesize
6.2MB

Download
memory/4932-136-0x00007FFC4AFC0000-0x00007FFC4AFC1000-memory.dmp

Filesize
4KB

Download
memory/4932-292-0x0000000000EC0000-0x00000000014E8000-memory.dmp

Filesize
6.2MB

Download
memory/4932-152-0x0000000000650000-0x000000000070B000-memory.dmp

Filesize
748KB

Download
memory/4932-151-0x0000000000650000-0x000000000070B000-memory.dmp

Filesize
748KB

Download
memory/4932-146-0x0000000000650000-0x000000000070B000-memory.dmp

Filesize
748KB

Download
memory/4932-140-0x0000000000650000-0x000000000070B000-memory.dmp

Filesize
748KB

Download
memory/4932-139-0x00007FFC4AF90000-0x00007FFC4AF91000-memory.dmp

Filesize
4KB

Download
memory/4932-138-0x00007FFC4AF90000-0x00007FFC4AF91000-memory.dmp

Filesize
4KB

Download
memory/4932-137-0x00007FFC4AFC0000-0x00007FFC4AFC1000-memory.dmp

Filesize
4KB

Download
memory/4976-785-0x0000000000F50000-0x0000000001578000-memory.dmp

Filesize
6.2MB

Download
memory/4976-1281-0x0000000000F50000-0x0000000001578000-memory.dmp

Filesize
6.2MB

Download