e132be19bc7ae8a96d3d620710fa26b614e022abecccc161ad733eff732afcd6

Analysis

max time kernel
107s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
01-05-2023 10:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

TLauncher-2.879-Installer-1.1.1.exe
Size

22.6MB
MD5

c4ceda8c435298d23cc40a842f426d61
SHA1

c7337094f09852b00a815950e96f3292295e9e15
SHA256

e132be19bc7ae8a96d3d620710fa26b614e022abecccc161ad733eff732afcd6
SHA512

25e74422d3b7adeb0cc805bbe41298d4e0fcf984b038c63a3a4faeea16e10a18f113c9a7d946e16f377ad9e3a5ca0a6425d7650b62c1e5db9ee2299e9921f52b
SSDEEP

393216:LXfgqusAgbGPfs/dQETVlOBbpFEjdGphRqV56Hpkf+V4scTKAjENq3:LvtDpsHExi73qqHpg+Vvc+Amc

Score

8^/10

discovery upx

Malware Config

Signatures

Downloads MZ/PE file

Checks computer location settings 2 TTPs 3 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Control Panel\International\Geo\Nation	TLauncher-2.879-Installer-1.1.1.exe
Key value queried	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Control Panel\International\Geo\Nation	irsetup.exe
Key value queried	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Control Panel\International\Geo\Nation	BrowserInstaller.exe

Executes dropped EXE 3 IoCs

pid	Process
1360	irsetup.exe
3604	BrowserInstaller.exe
2072	irsetup.exe

Loads dropped DLL 4 IoCs

pid	Process
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
2072	irsetup.exe

UPX packed file 30 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral2/files/0x00090000000215b7-138.dat	upx
behavioral2/files/0x00090000000215b7-143.dat	upx
behavioral2/files/0x00090000000215b7-144.dat	upx
behavioral2/memory/1360-147-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/memory/1360-461-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/memory/1360-469-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/memory/1360-512-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/files/0x00010000000231f8-524.dat	upx
behavioral2/files/0x00010000000231f8-537.dat	upx
behavioral2/files/0x00010000000231f8-538.dat	upx
behavioral2/memory/2072-541-0x00000000001F0000-0x00000000005D8000-memory.dmp	upx
behavioral2/files/0x0001000000023202-577.dat	upx
behavioral2/files/0x0001000000023202-591.dat	upx
behavioral2/files/0x0001000000023202-590.dat	upx
behavioral2/files/0x0001000000023202-604.dat	upx
behavioral2/files/0x0001000000023251-616.dat	upx
behavioral2/files/0x0001000000023251-617.dat	upx
behavioral2/memory/4564-622-0x00000000007E0000-0x0000000000CEE000-memory.dmp	upx
behavioral2/memory/964-629-0x00000000007E0000-0x0000000000CEE000-memory.dmp	upx
behavioral2/files/0x0001000000023202-630.dat	upx
behavioral2/memory/2668-628-0x0000000000E00000-0x000000000130E000-memory.dmp	upx
behavioral2/memory/1360-647-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/files/0x0001000000023202-654.dat	upx
behavioral2/memory/2072-653-0x00000000001F0000-0x00000000005D8000-memory.dmp	upx
behavioral2/memory/1300-661-0x00000000007E0000-0x0000000000CEE000-memory.dmp	upx
behavioral2/memory/760-668-0x00000000007E0000-0x0000000000CEE000-memory.dmp	upx
behavioral2/memory/1360-730-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/memory/1360-1971-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx
behavioral2/memory/2072-1977-0x00000000001F0000-0x00000000005D8000-memory.dmp	upx
behavioral2/memory/1360-1985-0x0000000000FC0000-0x00000000013A8000-memory.dmp	upx

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious use of SetWindowsHookEx 11 IoCs

pid	Process
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
1360	irsetup.exe
3604	BrowserInstaller.exe
2072	irsetup.exe
2072	irsetup.exe
2072	irsetup.exe

Suspicious use of WriteProcessMemory 9 IoCs

description	pid	Process	procid_target
PID 448 wrote to memory of 1360	448	TLauncher-2.879-Installer-1.1.1.exe	84
PID 448 wrote to memory of 1360	448	TLauncher-2.879-Installer-1.1.1.exe	84
PID 448 wrote to memory of 1360	448	TLauncher-2.879-Installer-1.1.1.exe	84
PID 1360 wrote to memory of 3604	1360	irsetup.exe	94
PID 1360 wrote to memory of 3604	1360	irsetup.exe	94
PID 1360 wrote to memory of 3604	1360	irsetup.exe	94
PID 3604 wrote to memory of 2072	3604	BrowserInstaller.exe	95
PID 3604 wrote to memory of 2072	3604	BrowserInstaller.exe	95
PID 3604 wrote to memory of 2072	3604	BrowserInstaller.exe	95

C:\Users\Admin\AppData\Local\Temp\TLauncher-2.879-Installer-1.1.1.exe
"C:\Users\Admin\AppData\Local\Temp\TLauncher-2.879-Installer-1.1.1.exe"
1⤵
- Checks computer location settings
- Suspicious use of WriteProcessMemory
PID:448
- C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe
  "C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe" __IRAOFF:1910546 "__IRAFN:C:\Users\Admin\AppData\Local\Temp\TLauncher-2.879-Installer-1.1.1.exe" "__IRCT:3" "__IRTSS:23652314" "__IRSID:S-1-5-21-144354903-2550862337-1367551827-1000"
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:1360
- - C:\Users\Admin\AppData\Local\Temp\BrowserInstaller.exe
    "C:\Users\Admin\AppData\Local\Temp\BrowserInstaller.exe" /S:C:\Users\Admin\AppData\Local\Temp\setuparguments.ini
    3⤵
    - Checks computer location settings
    - Executes dropped EXE
    - Suspicious use of SetWindowsHookEx
    - Suspicious use of WriteProcessMemory
    PID:3604
  - - C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe
      "C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe" /S:C:\Users\Admin\AppData\Local\Temp\setuparguments.ini __IRAOFF:1816850 "__IRAFN:C:\Users\Admin\AppData\Local\Temp\BrowserInstaller.exe" "__IRCT:3" "__IRTSS:1841947" "__IRSID:S-1-5-21-144354903-2550862337-1367551827-1000"
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      Suspicious use of SetWindowsHookEx
      PID:2072
    - - C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe
        
        "C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe" --silent --allusers=0
        5⤵
        
        PID:4564
      - C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe
        
        C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=98.0.4759.15 --initial-client-data=0x340,0x344,0x348,0x31c,0x34c,0x6ecac398,0x6ecac3a8,0x6ecac3b4
        6⤵
        
        PID:964
      - C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera-installer-bro.exe
        
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera-installer-bro.exe" --version
        6⤵
        
        PID:2668
      - C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe
        
        "C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe" --backend --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --consent-given=0 --general-interests=0 --general-location=0 --personalized-content=0 --personalized-ads=0 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=1 --pintotaskbar=1 --pintostartmenu=1 --run-at-startup=1 --server-tracking-data=server_tracking_data --initial-pid=4564 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_20230501102254" --session-guid=e0360ef0-2a98-43ed-a6a4-f9bc26848670 --server-tracking-blob="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 " --silent --desktopshortcut=1 --wait-for-package --initial-proc-handle=9405000000000000
        6⤵
        
        PID:1300
        
        C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe
        
        C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=98.0.4759.15 --initial-client-data=0x350,0x354,0x358,0x320,0x35c,0x6e1ec398,0x6e1ec3a8,0x6e1ec3b4
        7⤵
        
        PID:760
      - C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\Assistant_98.0.4759.6_Setup.exe_sfx.exe
        
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\Assistant_98.0.4759.6_Setup.exe_sfx.exe"
        6⤵
        
        PID:1364
      - C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe
        
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe" --version
        6⤵
        
        PID:4312
        
        C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe
        
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=98.0.4759.6 --initial-client-data=0x2f0,0x2f4,0x2f8,0x2cc,0x2fc,0x329b08,0x329b18,0x329b24
        7⤵
        
        PID:4884
- - C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe
    "C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe"
    3⤵
    PID:4524
  - - C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe
      "C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe" -jar "C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe"
      4⤵
      PID:2064

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_ADE4E4D3A3BCBCA5C39C54D362D88565

Filesize
471B

MD5
fd11e4623dd01e8c2b7e67d3551d1a43

SHA1
33dabcc685aad6bedd4727fa8a889944d799d4c1

SHA256
1809d60ea6b0f70e64215dcc2d397ce86ee810b611b082340fd1fb056e6abfe5

SHA512
67bfaea66ec40f6c05c807c8c8a8993ae2187070ed071a2077fc321d3fd58dea2b9ed73188c7da7cca3ea7cf5b666a9c232fab1157d7e14e8fa6bcea636c9f60

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_ADE4E4D3A3BCBCA5C39C54D362D88565

Filesize
404B

MD5
cd42f89e3aee8e7b098463fa31085b3e

SHA1
239cfaafe7c48b3457bc5a01a08b1517b912af29

SHA256
1c62fcdc1042f599d0b1e65c7fb723603216c3fab5bc6c82ad35f19dbfc8d8f6

SHA512
1060ad321c75f2e6a6c23c2e7a65f3eac0e0a483664241c831f9823c1a5e594e131eabc6da17bb7c6f836800ac7718a64522149c0cc8c337b131165cc9ed1c77

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\Assistant_98.0.4759.6_Setup.exe_sfx.exe

Filesize
2.4MB

MD5
090de281df0aff70c6bab2e004321dbb

SHA1
25746cf9a368636c35d552b0c08f74b455c7c44b

SHA256
9b829a0ac23000a77a4455c46b49f23e27e99251d56c99edf9a5b3163d0a5be1

SHA512
263945666f7a077368ad20025eb71098b604a3a7af04d08ee5fcad81e12be3fe39d9dd415cf26d194cf645c534d3056e8385824889dceea82657993e6c47d61b

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\Assistant_98.0.4759.6_Setup.exe_sfx.exe

Filesize
2.4MB

MD5
090de281df0aff70c6bab2e004321dbb

SHA1
25746cf9a368636c35d552b0c08f74b455c7c44b

SHA256
9b829a0ac23000a77a4455c46b49f23e27e99251d56c99edf9a5b3163d0a5be1

SHA512
263945666f7a077368ad20025eb71098b604a3a7af04d08ee5fcad81e12be3fe39d9dd415cf26d194cf645c534d3056e8385824889dceea82657993e6c47d61b

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\Assistant_98.0.4759.6_Setup.exe_sfx.exe

Filesize
2.4MB

MD5
090de281df0aff70c6bab2e004321dbb

SHA1
25746cf9a368636c35d552b0c08f74b455c7c44b

SHA256
9b829a0ac23000a77a4455c46b49f23e27e99251d56c99edf9a5b3163d0a5be1

SHA512
263945666f7a077368ad20025eb71098b604a3a7af04d08ee5fcad81e12be3fe39d9dd415cf26d194cf645c534d3056e8385824889dceea82657993e6c47d61b

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe

Filesize
2.0MB

MD5
3c942ff0d46769c4ebebaf8af7cecd09

SHA1
22edc54535ca0d310f078741e5a384032dff4dda

SHA256
6411b8efde988c3c5e24c1555ee0b910985a5e037b3beb887b38754aceb7f533

SHA512
4138e8d6c21510451d47b7ad7f3d4954eccdf8fa04b2a676082c710e79110da8ff21e96337c93bd5903442740d2cf4b249974248571a05bcc0fd5a25018d8da7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe

Filesize
2.0MB

MD5
3c942ff0d46769c4ebebaf8af7cecd09

SHA1
22edc54535ca0d310f078741e5a384032dff4dda

SHA256
6411b8efde988c3c5e24c1555ee0b910985a5e037b3beb887b38754aceb7f533

SHA512
4138e8d6c21510451d47b7ad7f3d4954eccdf8fa04b2a676082c710e79110da8ff21e96337c93bd5903442740d2cf4b249974248571a05bcc0fd5a25018d8da7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\assistant_installer.exe

Filesize
2.0MB

MD5
3c942ff0d46769c4ebebaf8af7cecd09

SHA1
22edc54535ca0d310f078741e5a384032dff4dda

SHA256
6411b8efde988c3c5e24c1555ee0b910985a5e037b3beb887b38754aceb7f533

SHA512
4138e8d6c21510451d47b7ad7f3d4954eccdf8fa04b2a676082c710e79110da8ff21e96337c93bd5903442740d2cf4b249974248571a05bcc0fd5a25018d8da7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbgcore.DLL

Filesize
166KB

MD5
8e7190bf9a51e2951b140642511c00fe

SHA1
8ac4ad95c91cca1f5a048a97f63619b2babd7348

SHA256
775c3e3c76780e8a61db42a4520b81a663eac224e7ec33dc252a1276e47613b5

SHA512
d5dc33882b2a211a997cb178aefdda7013f30efd626722dc56cbbb1b85855a5eb7b77c70bf7fe6b605e93658498ae086f590b1b53346df01891fa0071c5cf4e7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbgcore.dll

Filesize
166KB

MD5
8e7190bf9a51e2951b140642511c00fe

SHA1
8ac4ad95c91cca1f5a048a97f63619b2babd7348

SHA256
775c3e3c76780e8a61db42a4520b81a663eac224e7ec33dc252a1276e47613b5

SHA512
d5dc33882b2a211a997cb178aefdda7013f30efd626722dc56cbbb1b85855a5eb7b77c70bf7fe6b605e93658498ae086f590b1b53346df01891fa0071c5cf4e7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbgcore.dll

Filesize
166KB

MD5
8e7190bf9a51e2951b140642511c00fe

SHA1
8ac4ad95c91cca1f5a048a97f63619b2babd7348

SHA256
775c3e3c76780e8a61db42a4520b81a663eac224e7ec33dc252a1276e47613b5

SHA512
d5dc33882b2a211a997cb178aefdda7013f30efd626722dc56cbbb1b85855a5eb7b77c70bf7fe6b605e93658498ae086f590b1b53346df01891fa0071c5cf4e7

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbghelp.dll

Filesize
1.7MB

MD5
bcc596c2460244066b3c40a6559b88d9

SHA1
6ee955c1efd65eba6eb6020467bc4d26aaa82793

SHA256
e7ba778244de4144318b6946e2f9aa382ee6c8e93849f49ed54bbb9a9625f34f

SHA512
016468a0188239a5e9eb93dd3842eed5bde60b1e5fc69ea822099ebc2a7d2094d307ce4abfe98a222fa684d3538cd3df1b63bbf5dd694d020020543f41f328be

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbghelp.dll

Filesize
1.7MB

MD5
bcc596c2460244066b3c40a6559b88d9

SHA1
6ee955c1efd65eba6eb6020467bc4d26aaa82793

SHA256
e7ba778244de4144318b6946e2f9aa382ee6c8e93849f49ed54bbb9a9625f34f

SHA512
016468a0188239a5e9eb93dd3842eed5bde60b1e5fc69ea822099ebc2a7d2094d307ce4abfe98a222fa684d3538cd3df1b63bbf5dd694d020020543f41f328be

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\assistant\dbghelp.dll

Filesize
1.7MB

MD5
bcc596c2460244066b3c40a6559b88d9

SHA1
6ee955c1efd65eba6eb6020467bc4d26aaa82793

SHA256
e7ba778244de4144318b6946e2f9aa382ee6c8e93849f49ed54bbb9a9625f34f

SHA512
016468a0188239a5e9eb93dd3842eed5bde60b1e5fc69ea822099ebc2a7d2094d307ce4abfe98a222fa684d3538cd3df1b63bbf5dd694d020020543f41f328be

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\opera_package_202305011022541\opera_package

Filesize
90.2MB

MD5
3ce6bb9794ce05f50f253600e2ca63e1

SHA1
5cead37e99d2c1060bd75f9a61ac3e77ad1aedcb

SHA256
85896658a743ecf1f32b0141fdb0be56cd6e44ecea0398ef9f85dc8319262fce

SHA512
8721a13da9fad220429fca32ac96d372d5913c2d5815bb4a583f4d7ba6f8717e17641ef207698c26aef31f875909418ce41f7c69ad820bce30314266bbca2507

Download Submit
C:\Users\Admin\AppData\Local\Temp\BrowserInstaller.exe

Filesize
1.8MB

MD5
8d26aecef0a7bdac2b104454d3ba1a87

SHA1
50c29c58dfece62d94ed01cb5b3d070e593dc9cf

SHA256
e6c069c08e356b05465edb5aa9437e8af82c3cc8367d143d3ba6a8790f99490c

SHA512
0daa8bc75d9a067c3f9c46e4fda2aa4811083a06fc0dac74b45dfcdce60623066dac0189538d48128e55850ba20da12ab5f2f748dfbb9a6ec546802a61065475

Download Submit
C:\Users\Admin\AppData\Local\Temp\BrowserInstaller.exe

Filesize
1.8MB

MD5
8d26aecef0a7bdac2b104454d3ba1a87

SHA1
50c29c58dfece62d94ed01cb5b3d070e593dc9cf

SHA256
e6c069c08e356b05465edb5aa9437e8af82c3cc8367d143d3ba6a8790f99490c

SHA512
0daa8bc75d9a067c3f9c46e4fda2aa4811083a06fc0dac74b45dfcdce60623066dac0189538d48128e55850ba20da12ab5f2f748dfbb9a6ec546802a61065475

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2305011022533544564.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_230501102253697964.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_230501102253697964.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2305011022541202668.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2305011022546821300.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_230501102307104760.dll

Filesize
4.4MB

MD5
8037ea118e22eb387adf20c36375e367

SHA1
ae646806a29ec7745840da4c699a6d9f7ceba1f4

SHA256
d3a1505843d55048bf01686e74aa16ef76e78bdacc62fda20a4266ff0abd7ed8

SHA512
f7adf71035ff3a1208d3dfa1a8828ce5acf5883f45d8722d07be2ec8f78f269a5e607bbcf5199d4ba3e7ee6d976709dd993b7035559abd0dfcbb0e00eb993b50

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\200.ico

Filesize
116KB

MD5
e043a9cb014d641a56f50f9d9ac9a1b9

SHA1
61dc6aed3d0d1f3b8afe3d161410848c565247ed

SHA256
9dd7020d04753294c8fb694ac49f406de9adad45d8cdd43fefd99fec3659e946

SHA512
4ae5df94fd590703b7a92f19703d733559d600a3885c65f146db04e8bbf6ead9ab5a1748d99c892e6bde63dd4e1592d6f06e02e4baf5e854c8ce6ea0cce1984f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\BrowserInstaller.exe

Filesize
1.8MB

MD5
8d26aecef0a7bdac2b104454d3ba1a87

SHA1
50c29c58dfece62d94ed01cb5b3d070e593dc9cf

SHA256
e6c069c08e356b05465edb5aa9437e8af82c3cc8367d143d3ba6a8790f99490c

SHA512
0daa8bc75d9a067c3f9c46e4fda2aa4811083a06fc0dac74b45dfcdce60623066dac0189538d48128e55850ba20da12ab5f2f748dfbb9a6ec546802a61065475

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG1.PNG

Filesize
339B

MD5
6beb106fcdb10fdd1af8f408dbfad7c0

SHA1
47e5cc259f9b7f0aacaf61f51a2b8835135925e4

SHA256
adb0b0e1c35dc71b2796d71009d610a086a1b2a46cd78495ca6c1e414e424d52

SHA512
b5ecf7fc5f4d2378c8d069a2e40dad3dab6b1b954257abab41b35f3e460df959d02d9f2bb04d5f66a0c8067021eab4d85507613f641ca7eb7af86c3a9a6d7e63

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG104.PNG

Filesize
644B

MD5
9756710c8ffbd55efcc8cceb7ae36978

SHA1
1cfa830268061cd6988cd04c69dbd260eff20906

SHA256
0ef03e7257d6d31a1d37adfdbc733ed9fb41259bb0d44c0b3424d1dddfe91646

SHA512
67a8317c199349e9142821bbc204ebc31a5091560f257d8ae8f498bba1c35b3e1f666faae1fc70803e8781903bb3386dfb7b09d796c0a61211ae7df6cfe1eeb3

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG105.PNG

Filesize
40KB

MD5
ed056469c2f0a7adce3e80404bff316a

SHA1
48e8a5e0dbe66bb8ad044b39f2161583a10cf24e

SHA256
ee5e42eee432320ac80b75b45d4d254d2880c31092579680bd6a585beabddf0e

SHA512
34322e5654902227bb67e43e5a6ffcca5895bb634a2c3f795ea68fd57125b693d656eab4fa412f1d4f64c79aa02e0de8b36b9b04eae5bae7134062a9a5adeed5

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG106.PNG

Filesize
1KB

MD5
9652f5f05bdb53b417e7071ce15aebbc

SHA1
ad2e987f95cfb7ff5690b395dac47b066e919fa7

SHA256
708a0ea0632e0c82429425778557a6fedecaf63c591316423c71f3c5db210416

SHA512
60a71ef4ee4d85ad9284eddbd4443bc11e67fd2a9d5d3a4bd41364fd3c7e64be1d522437124f77fb2fa9ccd8c559e34123bd9eb5037ebee5f85c68ab069dbee3

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG108.PNG

Filesize
2KB

MD5
177a9e913e7039e698bea8b073ed46a0

SHA1
6aa8cb4efce1443a604dae67653cbc29727353dc

SHA256
10ece4579c86f299612f85a4dc21a6906cd522bba801d9b357abfbd2b5a21ebb

SHA512
5380f57569a5e44ecd66e6a996cb8949e01f7e2f15337a21133bb9bebd3893fb6a887b69b2bd56edbfc4872aca6f59e37b305ace774ee175955fa911b2a39a00

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG2.PNG

Filesize
280B

MD5
ac819dc416a9c3d7cd218247a505f4e4

SHA1
65184cf901d16f1f18dd82bd0673250d5422799c

SHA256
a1639ff730514d3ef9d8e5363e6848069462845a9c9c0bc4ca355b60cb9dfca3

SHA512
4ab1351fd036b4187660bf42b19a5f1b5a2ad51369c5e056bbbc765051905e3f1b5716557f113cf2e14678481101897698c3fc746814189da75693d3fec8fab3

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG3.PNG

Filesize
281B

MD5
179d7efdf2a2909c5cce33a2fa7b29cf

SHA1
e6ee30a67170e74491069edba50c950909bea4dc

SHA256
cc4db69be2bcdf373a7615df5a274a7e08c1dc7c3106fd835272dea973b9e049

SHA512
1ffba7773a15d7b53a4fa7f1b2099b565baf1d550c801a065bd03a613b5a408429c038b51a05293868525ac9cf3976615030b5cb72931a54e1a1045a1c3bdc74

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG85.PNG

Filesize
43KB

MD5
97a2aaca50914badb17e343b6f592171

SHA1
991b22e59ad4482395b288ae5074268ee93a55b3

SHA256
c121b4caefaea329d596596773c39f8a35beb5fcc4bc1a09bdd47d41382364df

SHA512
c8cc5b507a97a6c3ef62a27c7cf1b3f67b81cccf99fdf158948827911d477507d3c4a3326c3bbee4296c1001dc1d745ba1779fd91886dd50d6a89c51879efe8a

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG86.PNG

Filesize
1KB

MD5
382fa04ae6fdcc6b1713b9ef02e9675a

SHA1
310b638c0bb8ec49b208a1f8982a63f6c34fd6f3

SHA256
8775ed30c651649b1e693cc9bfd8ed3093c91011691fa50bc64dc8058113614f

SHA512
11a91ee803c99a71ae956ede7d8778157456ed53ca0af8d3c72621650cc84ef1df5e3c0fc8c225e22903f0c7a57d867723777655c1f8606242b8369943ff9d74

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRZip.lmd

Filesize
1.7MB

MD5
1bbf5dd0b6ca80e4c7c77495c3f33083

SHA1
e0520037e60eb641ec04d1e814394c9da0a6a862

SHA256
bc6bd19ab0977ac794e18e2c82ace3116bf0537711a352638efd2d8d847c140b

SHA512
97bc810871868217f944bc5e60ab642f161c1f082bc9e4122094f10b4e309a6d96e3dd695553a20907cb8fea5aef4802f5a2f0a852328c1a1cd85944022abaab

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRZip.lmd

Filesize
1.7MB

MD5
1bbf5dd0b6ca80e4c7c77495c3f33083

SHA1
e0520037e60eb641ec04d1e814394c9da0a6a862

SHA256
bc6bd19ab0977ac794e18e2c82ace3116bf0537711a352638efd2d8d847c140b

SHA512
97bc810871868217f944bc5e60ab642f161c1f082bc9e4122094f10b4e309a6d96e3dd695553a20907cb8fea5aef4802f5a2f0a852328c1a1cd85944022abaab

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\Wow64.lmd

Filesize
97KB

MD5
da1d0cd400e0b6ad6415fd4d90f69666

SHA1
de9083d2902906cacf57259cf581b1466400b799

SHA256
7a79b049bdc3b6e4d101691888360f4f993098f3e3a8beefff4ac367430b1575

SHA512
f12f64670f158c2e846e78b7b5d191158268b45ecf3c288f02bbee15ae10c4a62e67fb3481da304ba99da2c68ac44d713a44a458ef359db329b6fef3d323382a

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\Wow64.lmd

Filesize
97KB

MD5
da1d0cd400e0b6ad6415fd4d90f69666

SHA1
de9083d2902906cacf57259cf581b1466400b799

SHA256
7a79b049bdc3b6e4d101691888360f4f993098f3e3a8beefff4ac367430b1575

SHA512
f12f64670f158c2e846e78b7b5d191158268b45ecf3c288f02bbee15ae10c4a62e67fb3481da304ba99da2c68ac44d713a44a458ef359db329b6fef3d323382a

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe

Filesize
1.3MB

MD5
0913b4c43b4a1c301353197c30e01f4f

SHA1
245c343a7bb339d402ff8e9d442389a4f3dfc3a8

SHA256
238d15cbb1a929fe19f4558c44fbc67d5d6b9a3176fd9d880345ae0174a8d87c

SHA512
9d2da27264af71d7d1b9a3eac36e9b413041836de2559899d384a76b888cd495703a306c384752047bc9e1da3f8ee908da7218a58cfd9af1f81b51be4b27321f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe

Filesize
1.3MB

MD5
0913b4c43b4a1c301353197c30e01f4f

SHA1
245c343a7bb339d402ff8e9d442389a4f3dfc3a8

SHA256
238d15cbb1a929fe19f4558c44fbc67d5d6b9a3176fd9d880345ae0174a8d87c

SHA512
9d2da27264af71d7d1b9a3eac36e9b413041836de2559899d384a76b888cd495703a306c384752047bc9e1da3f8ee908da7218a58cfd9af1f81b51be4b27321f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe

Filesize
1.3MB

MD5
0913b4c43b4a1c301353197c30e01f4f

SHA1
245c343a7bb339d402ff8e9d442389a4f3dfc3a8

SHA256
238d15cbb1a929fe19f4558c44fbc67d5d6b9a3176fd9d880345ae0174a8d87c

SHA512
9d2da27264af71d7d1b9a3eac36e9b413041836de2559899d384a76b888cd495703a306c384752047bc9e1da3f8ee908da7218a58cfd9af1f81b51be4b27321f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\lua5.1.dll

Filesize
326KB

MD5
80d93d38badecdd2b134fe4699721223

SHA1
e829e58091bae93bc64e0c6f9f0bac999cfda23d

SHA256
c572a6103af1526f97e708a229a532fd02100a52b949f721052107f1f55e0c59

SHA512
9f28073cc186b55ef64661c2e4f6fe1c112785a262b9d8e9a431703fdb1000f1d8cc0b2a3c153c822cfd48782ae945742ccb07beae4d6388d5d0b4df03103bd4

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\lua5.1.dll

Filesize
326KB

MD5
80d93d38badecdd2b134fe4699721223

SHA1
e829e58091bae93bc64e0c6f9f0bac999cfda23d

SHA256
c572a6103af1526f97e708a229a532fd02100a52b949f721052107f1f55e0c59

SHA512
9f28073cc186b55ef64661c2e4f6fe1c112785a262b9d8e9a431703fdb1000f1d8cc0b2a3c153c822cfd48782ae945742ccb07beae4d6388d5d0b4df03103bd4

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.dat

Filesize
114KB

MD5
bd5626a0237933e0f1dccf10e7c9fbd6

SHA1
10c47d382d4f44d8d44efaa203501749e42c6d50

SHA256
7dfc1176d8a507135140b23a0c014093b7e2673f0f3e5727c3d85df4e7323762

SHA512
1fd864a5386580cf8bbafbacb12a043ef51948b729b9aedfe6dc81e6c2948a100526c7c600069f22454d550f7f736ad3045a930cc2ef97458dc1d6c782928087

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe

Filesize
1.3MB

MD5
018c68cdf5ba005b4a380c20b13fee4c

SHA1
bf6043fbd31288e8667fcfc37cd74414bee1805f

SHA256
3c7e2319176b70bed0460000d772da9d4cfeb8d2b06dfd913905f15e65942923

SHA512
506c062854f64c4f0d74e2fe709cbaa60a1d2fef0ca7c226fed264be1843e3d329ee542290288335e337c10d266e487c552836d6cae1919ab035f945afa87ed6

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe

Filesize
1.3MB

MD5
018c68cdf5ba005b4a380c20b13fee4c

SHA1
bf6043fbd31288e8667fcfc37cd74414bee1805f

SHA256
3c7e2319176b70bed0460000d772da9d4cfeb8d2b06dfd913905f15e65942923

SHA512
506c062854f64c4f0d74e2fe709cbaa60a1d2fef0ca7c226fed264be1843e3d329ee542290288335e337c10d266e487c552836d6cae1919ab035f945afa87ed6

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe

Filesize
1.3MB

MD5
018c68cdf5ba005b4a380c20b13fee4c

SHA1
bf6043fbd31288e8667fcfc37cd74414bee1805f

SHA256
3c7e2319176b70bed0460000d772da9d4cfeb8d2b06dfd913905f15e65942923

SHA512
506c062854f64c4f0d74e2fe709cbaa60a1d2fef0ca7c226fed264be1843e3d329ee542290288335e337c10d266e487c552836d6cae1919ab035f945afa87ed6

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\lua5.1.dll

Filesize
326KB

MD5
80d93d38badecdd2b134fe4699721223

SHA1
e829e58091bae93bc64e0c6f9f0bac999cfda23d

SHA256
c572a6103af1526f97e708a229a532fd02100a52b949f721052107f1f55e0c59

SHA512
9f28073cc186b55ef64661c2e4f6fe1c112785a262b9d8e9a431703fdb1000f1d8cc0b2a3c153c822cfd48782ae945742ccb07beae4d6388d5d0b4df03103bd4

Download Submit
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\lua5.1.dll

Filesize
326KB

MD5
80d93d38badecdd2b134fe4699721223

SHA1
e829e58091bae93bc64e0c6f9f0bac999cfda23d

SHA256
c572a6103af1526f97e708a229a532fd02100a52b949f721052107f1f55e0c59

SHA512
9f28073cc186b55ef64661c2e4f6fe1c112785a262b9d8e9a431703fdb1000f1d8cc0b2a3c153c822cfd48782ae945742ccb07beae4d6388d5d0b4df03103bd4

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\opera-installer-bro.exe

Filesize
2.6MB

MD5
6dabc69c90e22cf62346876bbcf0041d

SHA1
2fbbbe3985cb5f163a3b08693ae630c98bce3225

SHA256
4847a88f8b7fc60cef861866d2f493d3367227a606df3da5d2113f429d86d119

SHA512
eb5e79e6426d43c80464443b9ee0776271e2ea86b5102281e352a48e3a7c555cdabba7772b33381f1e5e3033315b36fcee25e69bc3d8a93d8ac9b321a7721061

Download Submit
C:\Users\Admin\AppData\Local\Temp\setuparguments.ini

Filesize
635B

MD5
bfe1d06969a3285f300233ad5dc8a153

SHA1
e1d3f02d377ce49d5826dda7a2ef58643a0e56e8

SHA256
d9fd9ae608413685cf0c8c6e0f64aec288f964328c10557ebd987e97ecdc9800

SHA512
25413e8d23490d6537ddb05a8634547f1810aec88b3020f979b4a86efa42fd91ed6c4741a43bb856ecdfa79e0d03e26daf8d072fc94746929c58f3b01ae5ef57

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe

Filesize
6.3MB

MD5
545c62b3d98ee4cc02af837a72dd09c4

SHA1
54446a007fd9b7363d9415673b0ac0232d5d70d5

SHA256
738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4

SHA512
8bf9c754861ed267efd2055ac09b4ad44df61b989859fccd14190592dca1dab0fa8f57360209eaceabb5137f742c9cea73a1a985ab1955f87a6875d0be95fdcf

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe

Filesize
6.3MB

MD5
545c62b3d98ee4cc02af837a72dd09c4

SHA1
54446a007fd9b7363d9415673b0ac0232d5d70d5

SHA256
738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4

SHA512
8bf9c754861ed267efd2055ac09b4ad44df61b989859fccd14190592dca1dab0fa8f57360209eaceabb5137f742c9cea73a1a985ab1955f87a6875d0be95fdcf

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\TLauncher.exe

Filesize
6.3MB

MD5
545c62b3d98ee4cc02af837a72dd09c4

SHA1
54446a007fd9b7363d9415673b0ac0232d5d70d5

SHA256
738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4

SHA512
8bf9c754861ed267efd2055ac09b4ad44df61b989859fccd14190592dca1dab0fa8f57360209eaceabb5137f742c9cea73a1a985ab1955f87a6875d0be95fdcf

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG1.BMP

Filesize
451KB

MD5
0b445ace8798426e7185f52b7b7b6d1e

SHA1
7a77b46e0848cc9b32283ccb3f91a18c0934c079

SHA256
2bbf97ccba3f87d469eac909c4ce8a3f13ed29c8f31b611e7d5cf89a0619eda6

SHA512
51523d5b711481293305465a3a3c6a3a50dca984cdc8cca1f4c44f3c21bfa430cd9aac1a8782d9605e6954cbafb307beb6b1a52e9785de1bc3f71067d80c6b6e

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG23.PNG

Filesize
1KB

MD5
1cf6dc4a707fb390470baa010180aa2c

SHA1
573461063ec81b452576c266fabb0e30cb774e89

SHA256
c3fcda4e4b73324d577bccdcc7750507ea59cbab13d58e13dcb5be4f3272923b

SHA512
81b259e4bbe1f0265ce72d2efb92472b23c5a65fb1da6353d007aeb08d5bad56fde5fac0d85328395f2793c8733204384031c13aae9b42b0b17e435249f1789c

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG4.PNG

Filesize
45KB

MD5
f9eec55204e0bd1957aaa009bc1f0aa9

SHA1
3f576b56f97fc8cf1557d054496ac66d82f1569b

SHA256
015062c19f673688f853a0054f62ded39687d3c16cfd58cdd05954f58de76b6f

SHA512
355e36a9f014d841975ae955c6020b941396f595e1cc5e39a6a526481d5344800cbba6be5db83e44e866a9c04465a79354ca4dbd529f6a63518740fba1c1207d

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG41.PNG

Filesize
457B

MD5
e715517d216e2ea8972321486c64a82e

SHA1
ce56341376871dfb0940da71b8c2b0174eeb9a37

SHA256
9cace032772bfc90b522b17a1a262072df599ad8e9517a4e16d6e0b97d68e8ed

SHA512
008324bdd3cb33bb3d905e789af3648f814ed826db1a38f58426005637aaf8c11fb7cf038d38901f9fdf342a89a1f7f5db298923589fe6801567eb82b0f5f49d

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG42.PNG

Filesize
352B

MD5
f88854422ec72b0b5277a3873d17998a

SHA1
d2e8cbbb9872a1373fa2359a8097dbd338e10e78

SHA256
9c737e6242db287ef5afa117dc938286b9aa05efeb0d6af1f6fe6e83efb3900f

SHA512
d7094b9c457ac5b76eb8a1a2918e5571e7d8c8b57669e046037a3f8ee3749d57c1dadca4b8b0fadd0c5ffc488f036cb70d7f392ed11f74d99592bc7a5e4b7435

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG45.PNG

Filesize
438B

MD5
677ed3c0ef77f1d3d09d888f82d22089

SHA1
6fdddf5102cba85694b2212a058e7b061fe49fa4

SHA256
87db8c352230acedd0b49189c6cdf8cb168e68cd48548724c2186db978240d05

SHA512
24ea7cce29a2d968f7cce44178d91651fa6f35a17dea23aa00ac1913bc14e6ae2263bd2e93233efd387370abb7c3512fba92635e3bf6631fce2e12221fe6c1d6

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG46.PNG

Filesize
206B

MD5
8afc6a2df8322ac99e9320a0eb07f978

SHA1
1c5134eb8e2d52fb55ad9a5dfddddd82c38897bb

SHA256
e5a9aafbba5c72f541d09f5d6cbedabe1caf0076fc198a6ac2fba7ad7a0df979

SHA512
9f955409fff9a0011a06967040df80675aad83b893ab2d00080d3411aad2844e416641b247ba18bcb9a7753f17e4887ecc18b9fca1389075dc8d1f98bbce694b

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG48.PNG

Filesize
1KB

MD5
b892dcb07f669beaf1f92b08237d712f

SHA1
320d43d5afc38abf5d73d0363f88417b4363dd8b

SHA256
cadbc5331a0cadb9898090f5624decc1e231cc8b1b50d35bee97a8bfae04e6f0

SHA512
d47a0555f0a048e18d9628f50299d1ad5632da9cb620164bf3a684fa22a33d56b3736f64d614566532029d31e92cc2184a85fd6970257a78a11deacca5e79b32

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG5.PNG

Filesize
1KB

MD5
3868db0b80c782a378d17b7133f41a7f

SHA1
0c52b2223be436848c656472db2aaa5fe99422e5

SHA256
b814c7da30e3615e78267290272964bc1cf700a8cab57520f4d7624fcef20b89

SHA512
029d4e6a4a5e6d1644b17d6c3b376f57564b25bc941c810466c39f6fdf5d87915f5ba36e31a64ea73b15c9b2eea9b73089ecf2b3773c6f9be8567ace230d2c33

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG66.PNG

Filesize
41KB

MD5
383d7e5742dade5dc9f24d3b3ea42812

SHA1
650af6fc1ca47619a7298c090d9c1e5ede22a271

SHA256
681a223f76a0c42de09062573219c16988512efc43e056391d71bc9dc3363b4c

SHA512
01f370ec27505f5474e2b6b746d46e37d121906f3c43e4468a1ee78053c75b3249a4dbe1cb813d13363a4575785629925558621d5d660a32a4e7a5ad666c6396

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\IRIMG67.PNG

Filesize
1KB

MD5
de1b0d4aebc8d24f87c9536c5f2a5ff3

SHA1
9855d577b6827c7e96171584b907e2efe5b803e6

SHA256
ec0653fad51c2068e8b22e17a31907b2cd0c9629781112d6ba27a3f499e83509

SHA512
85dd7a66ec9cc5e782578886349e26956b68ad80fd7d20ea931f6b4ea9cd957248ddb52ebafa9161f9302862ecc72b72bd497068d9b63db467d46e74c71cdffe

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\uninstall.xml

Filesize
33KB

MD5
30eb633556a350a8c524a1952dc63b7b

SHA1
f5337fbfbecdfb0df02e97aab978869ad525cadf

SHA256
5226e413ae2cbca8c2c651b97ca07b911c2bdf7bab08ad6bbf10667019937e9a

SHA512
5a548a8637e337c5dfc57184a1da6a3c0a5ed33b96b2be104094c3b662ebb14c0a2f325f932d087c3892c2de7c23155d8c4df7e8add7ff23bfd2b8f1c15b395a

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\Uninstall\uninstall.xml

Filesize
12KB

MD5
1c35bc1aa42aaec7fa275462a3b36550

SHA1
0841ab911e36f783ac94e9e813051e49c3f8afa1

SHA256
70191460c7e03bf4b56a7daa9e7741cf07d850c4e9ab74d10be82ad29a0193ad

SHA512
cd8a292472446c36e78ee65c2d0d9410ca4af818c923cf876ada01804ccf786242019f2a5f1d2e843a464dbd1aaa0e725952af4e47bd8114f95ef755c0749fd9

Download Submit
C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports\settings.dat

Filesize
40B

MD5
4951153a6bd18b7fdcbf783a088b0f71

SHA1
a809fe28082510192ca32449c27b8e78428dee04

SHA256
174563aad7967d8beed150cc643119633143ba6d77383bda9e5f172f5272cdf1

SHA512
47cf14659dab407b256ec8b9e9c6de653441a53b3ac5453bf0109245a16645964920198d6dc10ca3e34100f301126bd3310a95a8a3eb136a549569c5ad105687

Download Submit
C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports\settings.dat

Filesize
40B

MD5
4951153a6bd18b7fdcbf783a088b0f71

SHA1
a809fe28082510192ca32449c27b8e78428dee04

SHA256
174563aad7967d8beed150cc643119633143ba6d77383bda9e5f172f5272cdf1

SHA512
47cf14659dab407b256ec8b9e9c6de653441a53b3ac5453bf0109245a16645964920198d6dc10ca3e34100f301126bd3310a95a8a3eb136a549569c5ad105687

Download Submit
C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports\settings.dat

Filesize
40B

MD5
4951153a6bd18b7fdcbf783a088b0f71

SHA1
a809fe28082510192ca32449c27b8e78428dee04

SHA256
174563aad7967d8beed150cc643119633143ba6d77383bda9e5f172f5272cdf1

SHA512
47cf14659dab407b256ec8b9e9c6de653441a53b3ac5453bf0109245a16645964920198d6dc10ca3e34100f301126bd3310a95a8a3eb136a549569c5ad105687

Download Submit
memory/760-668-0x00000000007E0000-0x0000000000CEE000-memory.dmp

Filesize
5.1MB

Download
memory/964-629-0x00000000007E0000-0x0000000000CEE000-memory.dmp

Filesize
5.1MB

Download
memory/1300-661-0x00000000007E0000-0x0000000000CEE000-memory.dmp

Filesize
5.1MB

Download
memory/1360-147-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-440-0x0000000010000000-0x0000000010051000-memory.dmp

Filesize
324KB

Download
memory/1360-1985-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-515-0x0000000010000000-0x0000000010051000-memory.dmp

Filesize
324KB

Download
memory/1360-512-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-469-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-462-0x0000000010000000-0x0000000010051000-memory.dmp

Filesize
324KB

Download
memory/1360-461-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-441-0x0000000006530000-0x0000000006533000-memory.dmp

Filesize
12KB

Download
memory/1360-730-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-1971-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/1360-647-0x0000000000FC0000-0x00000000013A8000-memory.dmp

Filesize
3.9MB

Download
memory/2064-1996-0x0000000000740000-0x0000000000741000-memory.dmp

Filesize
4KB

Download
memory/2064-2005-0x0000000000740000-0x0000000000741000-memory.dmp

Filesize
4KB

Download
memory/2072-653-0x00000000001F0000-0x00000000005D8000-memory.dmp

Filesize
3.9MB

Download
memory/2072-541-0x00000000001F0000-0x00000000005D8000-memory.dmp

Filesize
3.9MB

Download
memory/2072-1977-0x00000000001F0000-0x00000000005D8000-memory.dmp

Filesize
3.9MB

Download
memory/2668-628-0x0000000000E00000-0x000000000130E000-memory.dmp

Filesize
5.1MB

Download
memory/4524-1976-0x0000000000400000-0x0000000000417000-memory.dmp

Filesize
92KB

Download
memory/4564-622-0x00000000007E0000-0x0000000000CEE000-memory.dmp

Filesize
5.1MB

Download