d25466fc0950a205805ddd857199594b83ba1cfbb9b02bfe558514ed2bfe1fdd

Resubmissions

04/05/2023, 05:22

230504-f2te5aaa74 7

04/05/2023, 05:09

230504-fs7w6abh8z 7

Analysis

max time kernel
151s
max time network
35s
platform
windows7_x64
resource
win7-20230220-es
resource tags

arch:x64arch:x86image:win7-20230220-eslocale:es-esos:windows7-x64systemwindows
submitted
04/05/2023, 05:09

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

WinDS PRO 2023.04.28.exe
Size

979.1MB
MD5

6e7240f5295073d157f48f2b986382d8
SHA1

988054e1e1c29a947afce9bf474202c0996d9d6c
SHA256

d25466fc0950a205805ddd857199594b83ba1cfbb9b02bfe558514ed2bfe1fdd
SHA512

ff0f71e9f10601b50d1a84a1cc28de70ce41d48407d41fdf30cdfb05c1f2e47ae4d53b71c92baac45bb4139d8bdb070121d030eff90cad9cc5d213e7d2f735dc
SSDEEP

25165824:u1M1OD4vSVI1liBgGjUzaYAYi0Ca8K3Of/XJSP0BJJp1:AyOQ1HGYaYZC4MXJSP0BJJp1

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
behavioral1/files/0x000100000002767e-21039.dat	acprotect

Executes dropped EXE 1 IoCs

pid	Process
1640	WinDS PRO 2023.04.28.tmp

Loads dropped DLL 1 IoCs

pid	Process
1992	WinDS PRO 2023.04.28.exe

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral1/files/0x000100000002767e-21039.dat	upx

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
1640	WinDS PRO 2023.04.28.tmp
1640	WinDS PRO 2023.04.28.tmp

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1640	WinDS PRO 2023.04.28.tmp

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1640	WinDS PRO 2023.04.28.tmp

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28
PID 1992 wrote to memory of 1640	1992	WinDS PRO 2023.04.28.exe	28

C:\Users\Admin\AppData\Local\Temp\WinDS PRO 2023.04.28.exe
"C:\Users\Admin\AppData\Local\Temp\WinDS PRO 2023.04.28.exe"
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:1992
- C:\Users\Admin\AppData\Local\Temp\is-2RULG.tmp\WinDS PRO 2023.04.28.tmp
  "C:\Users\Admin\AppData\Local\Temp\is-2RULG.tmp\WinDS PRO 2023.04.28.tmp" /SL5="$70130,1025264036,832000,C:\Users\Admin\AppData\Local\Temp\WinDS PRO 2023.04.28.exe"
  2⤵
  - Executes dropped EXE
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of FindShellTrayWindow
  PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\is-2RULG.tmp\WinDS PRO 2023.04.28.tmp

Filesize
3.0MB

MD5
92ef60f6ce55807abbbf31a3c3c6e860

SHA1
d93caee05299277e1521056292c131ca22ae8168

SHA256
4fb5b851bc000ed92319c7f849fce330f0ef23be2322674f50549222d292cc54

SHA512
12f7078e1476eaac6360c09dcb23628305607005cd17fdbad76dbdd05b705d74db53dfdf6ebbea6638dad420de43f341458e7952459377aaac8ea893d104a180

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-2RULG.tmp\WinDS PRO 2023.04.28.tmp

Filesize
3.0MB

MD5
92ef60f6ce55807abbbf31a3c3c6e860

SHA1
d93caee05299277e1521056292c131ca22ae8168

SHA256
4fb5b851bc000ed92319c7f849fce330f0ef23be2322674f50549222d292cc54

SHA512
12f7078e1476eaac6360c09dcb23628305607005cd17fdbad76dbdd05b705d74db53dfdf6ebbea6638dad420de43f341458e7952459377aaac8ea893d104a180

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-135RE.tmp

Filesize
243B

MD5
bdbbc88e1c12bd51e751827209a0486e

SHA1
ec937c9b044958d9005b26d8cb9d8d859328abcd

SHA256
f31ff45fde1b2e9132e627c4e4d1fde51bc53e0c07cefb02c3061a66718e9059

SHA512
1e9656b8aa2e281831cee15bce5344fcca8ddf14d1a3e74e3e572eb77a423d3ddb63c6327593104ccb778539cabb595115a70c08d0f49663d7e5ece8fb3c0b88

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-2CUL0.tmp

Filesize
249B

MD5
eb73bee1ec4b62523f366355e18b9440

SHA1
8e8a55ffd23c97030de0b0d1cbb01dadeb35732c

SHA256
0c8f0bfea9ba7c1a5a32106642e35299e2cda8293710248aad1fa6721ef1daad

SHA512
b982051f89084db585e0cc2ed1dc47c6c49e7b142d90efc5be0dd887249db7b6713e88e9e162b050eab48dcc31b23b47d2eee083c5427d055534650f02142f7c

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-2OEJF.tmp

Filesize
248B

MD5
dee976af79a83b090aeeea7431dfac66

SHA1
04cfa1e56b39338a5963e8186b5b45a52f4b2cec

SHA256
9ce8644a4b64dc6362266ce60a18f981ece8b72708759e6564fa9aaf91e84b5f

SHA512
c29a625857c5f7e1c1bf74f547080f915a448202b047617ec737d62b13e22875112ecbbc18a54c1427f9ea995eb59990b6399ce5cc8514262e99718a1a68d8fa

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-5CMVI.tmp

Filesize
241B

MD5
952e22f23ee459c357c10131034612a4

SHA1
d2fd69f88744ed892016e5b44f48faab4ae21c9e

SHA256
fcb0de8bca5401138e9ae552efe128ac4d14c0bd41739ef37363571d3f05ccec

SHA512
272253d81a6c998f75160f7322c33fff266710ad1b06e12420eb2a97245f6a5afa2b0bee23ed9e6a30cf4d418340861c5bb4e7d30d81ed998e5083ef69d271f7

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-77AF2.tmp

Filesize
253B

MD5
00a4a02569d6a8718c24c7a89f38e7fd

SHA1
9bc8832fde961e28d2a3402d35b762919417ee35

SHA256
930f43e6891d18330486b3ac5099b2743626d1368e994f7e226a5a059e43ef26

SHA512
67607fa031c5090debd67244bdea76f89d26942f2c7b87271d25cbd9322836b1eb271a5f46c5416f4e71758400e62d61c5b2acf5d52e65e342f064c31363c6d1

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-7P4RI.tmp

Filesize
254B

MD5
26fb47b051ee6e6e570c125bb1e60e6e

SHA1
22fb468da7e8fdcb942d8cc2dd5ef3b6d8af914e

SHA256
cf264a331830221cfbf3497d6c3554ec33207cbb9e2f06955a192348b18c4cfd

SHA512
a8b4a5f05c74f448a74a269c6cb9605c9c3ce75a969a397e3bfc7dd08069a5180655b12d1c37a0601ecefe11c3e78e93b52edbdc6ea563db51443d9011563648

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-F72IQ.tmp

Filesize
251B

MD5
9182b2b5fcf99b6e66f6f2abf20f7208

SHA1
21317c85918cc2f6915ecf359e68a1fa1d87e22a

SHA256
fa98161eee0e53182dc495f3afdf351a24276c486ad1b818fa0a585a4321ec75

SHA512
2d8097667fb8050a9f8b980adb809ea11ca35c694c7f9a0b039117e88604809d56fd64c80540e6fdf6b8b060c5fbfe50122077284cd32937dd7b755254249c9b

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-G6C2P.tmp

Filesize
243B

MD5
29aeb0eb03f33b705756b51d12bb6fd1

SHA1
4853e90ebd775abd4f2320524128eb4ce2497b16

SHA256
3446c74263eaeab63b06c5f8f418157506366e545f6f0c8c2922b057e05c59b5

SHA512
fc0922b094a3924fbaf11f5474bae8ea3c1683074a0e8b6501b0f69abe728d0a8bea02500c369d355d66cb5fec084bd5e945fb6183d81f4b9c9fa40b2a9b2ff3

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-NA3VI.tmp

Filesize
255B

MD5
9b70afc76d55a155722477586f86f064

SHA1
491809c59a695f3645d44c57d64da24fe2b29a4e

SHA256
ac44e6afc896712d62267f97d366f6ad4fe3b1b2a4b4a6d124b83d855061899b

SHA512
1c83a9b30ee848e5f61bbfe21d77935490062089f8294bb987f33db0fd5a3d1f59da609365a2f771c04783b8b0c95415896bcb1d6dce98c6a2d5b9cf0a2affb0

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-O84H7.tmp

Filesize
251B

MD5
8ed36b339f01f71e77b7d360ae19b172

SHA1
9e4214f98d908af373f0e5f6f34c35dfc800ba03

SHA256
fb62e779090013bebd841a435df9bb9457c3188f331464f2109d43536c88b45c

SHA512
0735c0ce30fee31314dae81464b791b6bc8837d143c29b8c76d77f524a2d5adb52c39e0048a8fd575d6d224870cefa6c9596ee75561707e622ec6c48992a9f9e

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-PJFJC.tmp

Filesize
245B

MD5
e4abe5959faae9b3ae3ae5c6f9538b6a

SHA1
e0cfee691c8af914290c26160b4fda8fc13cba40

SHA256
1a98973915ca3e85ea42e70c4749bf595620f5457398f4e6c0ccc627e8395583

SHA512
b3e77192f501069acdce9ac6ced39859ee4df442cec54603c05770be9fc5dc693f61acb620e27b3afa7f9e06e591447484440f6cff3bf2c5b0983aa86183ad21

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-Q482U.tmp

Filesize
253B

MD5
4b3ac581e62f2fc2a0e806c365705cf5

SHA1
5ac541cdb09cbe7a220c6e757ca25ba304eade7d

SHA256
c202577c746e69b0b41c51ccf228c93d112c70cc7ca4c1364d3df36aea19f1e9

SHA512
55673d54186cdaaaa5073710ee2b198d8f7a97e75a096d983e5b65091def0120d8e1db06cdafa0d7e64db33f9666222e6d541ffda68e04c9d618a6b39deadd3a

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-Q6L7P.tmp

Filesize
243B

MD5
2cb4215e2d7da99457a7acca3fa40014

SHA1
0687aa8894c0845674bbfe7eecf9226fbcb19603

SHA256
f7d2adce48bd432a10279c671f5e1133dfc71a3a56522a525c422fb93e0c714d

SHA512
c65415a2a5e432b6b45dd625a53ae53347b2d820942e4640438fb0b7c50d250ab2f5e0d88cfdfe54c068001131696007453c15f5cc00ce8dd200e1b56d3d9ffb

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-U2UNT.tmp

Filesize
248B

MD5
127283c900756662c84432909c956649

SHA1
2b1f21de9603b8c5556dce065287304312a595c4

SHA256
d471e7697b502626bd9eaba82f136acb89118420b63796e8c74616eb40563f6e

SHA512
35c7e89dbb003748de60b43e371ab1195d1e13441619f581dc070bfd569e5a8c0682a2a9fb30dd716b9fb812d265ee3fea7a719a1fb68731c1ab176adefcc202

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\BizHawk_153\Gameboy\Palettes\is-UJAKD.tmp

Filesize
258B

MD5
d98062fd92a7a81d2506b40c55ffa59e

SHA1
095664508e9191b3d29b97094343291be92b1729

SHA256
d779ab754d7e348b468d9df325a1197c1c5e0de18e468247f06b94e665fa2967

SHA512
89daa5bd462760804c3adbebbb7d191203025abc3739f02b3a1bdb7ddf4cdde2123ae4d265ede861af5db7e68fd1fec99d31afddbcc317859eb33a226ccc15bd

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Maps\is-5N3CO.tmp

Filesize
1KB

MD5
e86f52ec77df3cb893469059cc1a8dfe

SHA1
994571cfd4e76edb7abd51622b3e6cc817681d2c

SHA256
f571cfcbe06e32ea17ef354b198956368b10c2dbc033b9b0c4e0adf45ea2f57e

SHA512
f3e7cda489238db4c475abcc5106773da9bd3fbce6f01ccd98ebe7b062b4bccea54bb684ea40de14ebe8447d6d81e1f7cf9027b1c017a5471aea2454e2b87e9c

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Maps\is-Q7GG4.tmp

Filesize
1KB

MD5
0e7eeb9b838b5ff65a57b74bc73fd30d

SHA1
eb67f1ed100a7efc8505d69e1a3a7057f53f8b97

SHA256
36eeea20c674d0fb6ea3b6368faf9f14d7f0355fea909a1ccaa7a0b2e141f7dd

SHA512
5ad92f563bd072032397717210de868cba5ce647776a0b0f223d7cc00b5a7de432862ab2c55b75ef35d4edffba658603ac50767c26ba6cc73afb5c09902ebde9

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\OpenCL\is-GA4B8.tmp

Filesize
14KB

MD5
ae0c06a4297bf793ec29e0db1d2b0b56

SHA1
2b32c47fe40c0486de337a39f75c83c2ae14cb4f

SHA256
1b0575812b6b97773aa6199d2ff5055de80afc0a88ffdca2766943d14bc948a9

SHA512
dd743f086b494109beb5cd5891c454e6aed4a1c60ea9cba12e4e1bb61209defeafcbc7de8cd2e99414aa88d9c21dfc860e7b9b2d4deb9b7dcc3a4f540f60c49f

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Themes\Boomy\is-KK1HJ.tmp

Filesize
1KB

MD5
28345bdf2eb467f36a2fa663a47f697d

SHA1
4bb99ba89cfb3aa51e9ec1b36aac242afcbf3717

SHA256
0e3906f85a1634d50501e7e9944474b2101371db4dff61cc2adb51dd439f8cf1

SHA512
16d662482e40f3eacddf3285a6c4d9a8e97ce8c9d61d97770510092b6b81a0746e4a5c653418c48768b9e518e84edccfe60fdb521e109944df85bb9873d7cb91

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\Sys\is-HDQAO.tmp

Filesize
16KB

MD5
9473c879a5e51040e7a202b4538773a7

SHA1
3256c026284a24fb99d2ec1558d95db3b5dcc2e9

SHA256
a8ec1ec377ee3a3c93a27f74dadf9edf95112ce167fc23d1abdbeb4fa15eb179

SHA512
139dbb6648a1c8b7e5224e52ca8f8093f069b7d5f83e2b84099688b927eb77cb8445bc46f9da98ce56d3b883bfe8e38905b5e252c87a5295a334fc8b6890bff3

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\is-1S59F.tmp

Filesize
12KB

MD5
76f1f47e4340fbee8171faf2a4bd8135

SHA1
c0bb6540f7f888bd60be958d7c1de3b221d51a33

SHA256
c3a4a5649d6ed2322a0de98d2258b96a6a1d3c0179854fd21e9835d529736822

SHA512
400ef8d777ef865da1249592075f158b5a977b1267e1d38a09e69b7d3f545d6e8e394a2c4cae532600a34823741d6fbb2ba1491a379ba7a68c73c4b02391710f

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\is-E04N6.tmp

Filesize
1024B

MD5
09697a2bb22132b4b4a28f7e846037f5

SHA1
08509dd4567fa61baa2bae01ba8361e8ca439659

SHA256
13dd5b6b2682defd3b23afd8e2983d00edc25bd4dc28a8389380dee0ec45a4a5

SHA512
92ee5cf81dd89da157bd6ea1b189a755d9a46af7186d3c6b41bdc119edc1823735380cae7c4c76748411e0f4f6a1caccc016b454ac4454827107479df1bbbf26

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\is-E3H98.tmp

Filesize
32KB

MD5
deae3b73484ee178352e9d98e3fb5906

SHA1
472c670d701bd233bc03afe4c9f18e22a6fd15c1

SHA256
ed94af416c47ed3bc2c944ebcd1d734b8935d9697feb0f7039d8fea3ec514c18

SHA512
166225daf2fd97edadbc6b186a8930f81ba342d814d45d9c121e230b2b5e6c80896053f6782311199c2e76b4791532cdc7317adf431f61ab0f13a30deb47a18d

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\is-JPH3L.tmp

Filesize
62KB

MD5
42372c6860eb0a0d108b08c502035337

SHA1
27d53b55779a0db2e76dea50f51e633a53609cd5

SHA256
057b6f840c19b41ce080318bc7e717e2b910965ce72ab781a7e319017636c38e

SHA512
ed355f425aa29d8be5eaa477cc1daacb8a0c83c707a7c49374640abbc1ace2defbe2bb21c12241643106e68fb8a44341c0482fb123ba8b6efb6de8a3d787f0ae

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\mbox\is-89LA9.tmp

Filesize
32KB

MD5
59f19ca228e8c8cc7d227f620ac28326

SHA1
18cc21df587d9cd9302f38a00ed9a23d619f5673

SHA256
31f2c580b271f7c8bb98f4ed1deac3a89fd1c95089c7c4a7061466e2286cd964

SHA512
662eda56266cc3ef826327881865e32d758db1d5e6927f89ab5b395cf5a470e9bd563230ff3ace54deeb9befe881e08457a7e560986967c17a2a46a7086a8554

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\mbox\is-BJB2T.tmp

Filesize
48B

MD5
87a6fc7b9d7a069dce6049dc599213a4

SHA1
5aad884478da3c4495e033567c68e29bd8e9e783

SHA256
dd2ad8c9fb38884523459963bfaec5d5aeaa5fd20efcdc209764d461e690e435

SHA512
aa5e4117a761b164eb344cef1af360f6a036584d41138a97750f23eb4f5f23f7b8a41daca29c75201135898ab96ea5ab9a04d4916fa7d38fbfaf6d2316e141a8

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\mbox\is-DFE49.tmp

Filesize
16KB

MD5
22cff426c64ccd3e257debc67d5550d8

SHA1
8fcee88c8cf818e5d2a6a8ad0cc1c4168c93694e

SHA256
430c3795f1a0aeb198bf626a4a2ff6d123321d453807dd7b904dc3b74db35d13

SHA512
3a879504fa402f511c8f0b927f3bff1e2d4142a80f9961b4c6bdf13b52aab21cbac359b812de7b75d447347a4b8397f80e49e8a07b1a261d71af633a65515e63

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\mbox\is-E4KAC.tmp

Filesize
48B

MD5
04dd38bd6f40bb7f68c1e71dc65ce4b8

SHA1
704a576c5f18a8ce4729f4dfc7f8814d6ac09802

SHA256
c248dc031ce09f7be1e55956b6f173e79d6a47d913c22a16593c4687325692b7

SHA512
ee934b94a2b4da98c1cdf7647686a65ce9fd0090f631a5fbd58ac5a850ca5dc4284b361010b4e1b7ecba0125b08ec12c148426b06f3bdd01e196642f9175f0e8

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\Wii\shared2\wc24\mbox\is-SBLC1.tmp

Filesize
107B

MD5
102e168d7917e71b45133171ebb2611e

SHA1
85ca1e5087711a061883857c2ba6742f9927118c

SHA256
91906069f91ae8e45695ebd4021c10826d22c55469dfa77f6ee3cd7f0a1a2c39

SHA512
6205c7f6cbc52d14e00cdbf67ffe5dd58a698f799f139333f40d5b7b91d341976594ba2374cdb42cd7c3878eb5bbac593cbc0305ceba2a19a0765d13bbb0c455

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\Sys\shaders\is-TTGED.tmp

Filesize
680B

MD5
af43e6954ee97e8972d1211ce6a7d7e7

SHA1
d7089d44c2f0ed77a86f554d5eed8b8642197fca

SHA256
bf5b1b5036742670ef3f736af8f97ee9f8657e9491db256d9ff231aedc4ad8ef

SHA512
92c05f4a783468b13adf19b6f8bbac1d7cc5592b6eff9490adf7f598eac745aecf04ca04828c522cf56193d6b752d876f6fb131016495d0bf78199d0bdcca220

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_32-bit\is-IPJAH.tmp

Filesize
17KB

MD5
751419260aa954499f7abaabaa882bbe

SHA1
06877624ea5c77efe3b7e39b0f909eda6e25a4ec

SHA256
ab15fd526bd8dd18a9e77ebc139656bf4d33e97fc7238cd11bf60e2b9b8666c6

SHA512
5b322abf6a5a82894113c0dfe549725b140006197a920dfdf1a3ed615730e1de0a947cceea5ff9357cdd42334f8f53a1ab66072fca9ea966be85340a56d4649c

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Dolphin_402_64-bit\Languages\is-GRT5J.tmp

Filesize
255KB

MD5
c73d673ce9f67baa6b8e1b911b8b877b

SHA1
0fa04bb804a30e5499657d8fea248e5329aed822

SHA256
e677ea00773e0c9669cc9a63296239d3f2462a0463e5a9bd7219b2b43287952d

SHA512
3d3335006b55279a8760888f3591bdc307a7ff904ae57cf024156b365decf3b525d28308c89760ab21f3e50088bb04213e91635a508d89498aee8b29923efdf9

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Gens_rr_11_r341\is-C0EJK.tmp

Filesize
31KB

MD5
556d7b02a310438694ef2c99a6f916c0

SHA1
54dccd82fea94544012963c32eeb491dd5253234

SHA256
ef92ab4990079626ad402537ba05a9116ef48f1734081a433c5a5edc6ae79706

SHA512
890c6bcdce98d774162567dd739f54ab3a5c9d3562c19296a9cab752d73022c38491a4e1aa365c896cc62d7862fbd75f1b3e29d60eb088d555181c13dd045e9b

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin64\Languages\fr\is-QJ6TL.tmp

Filesize
155KB

MD5
21c06d11d3fbf8e4ffd4686f98415242

SHA1
f8ead061f3a23914106230c91f8582e735aec420

SHA256
0cf6ebe4919e4a872c9c7a5ea05475a22028c398160a111fdb7dcb0a209c5cd8

SHA512
9868dc7e6d02930f944848cd6582efef6fe84d12eec58f3f413410de75ef6afb89e2ba94bf50937aef069ddf937f9635fe8edc2073a67797d8bb9abd2ec5c533

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin64\Sys\Resources\is-JK1NR.tmp

Filesize
234B

MD5
8044110ab4ae7923d10a8867c8654e30

SHA1
57c33e9a704374e5f0463be37f8454e8b292bd1f

SHA256
b0a0511f1287fb42fd959536af0a86b64ec3ac39969ea4934614bdd167831ccd

SHA512
0d2630fbfe42077d70e3adfdd7167f3a55a5f729481aa3701972a8a8dc4bc23d9802eebf103bf86f3f4d49e241042baeb1ab2197e9c1a29aee29cb968e6787a4

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin64\Sys\Resources\is-URL2O.tmp

Filesize
176B

MD5
0814f136e6b982375377e5d32c229f13

SHA1
d6cd976d441a33eb83c6e6530ea5434c5526ff83

SHA256
2cd26021cc84ca4316c39ef00134fa7326911d25edb2d5db4652ed16a12ca7a0

SHA512
69353b50b65f0d9fc5b7f18dee29a8630baeb90b866a40ba6a40119a15d9d752259630a22da882fb68891c3940ac410bb663c6955853517bb24a9c090be60cdc

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin64\Sys\Wii\shared2\ec\is-4VNNU.tmp

Filesize
32B

MD5
70bc8f4b72a86921468bf8e8441dce51

SHA1
de8a847bff8c343d69b853a215e6ee775ef2ef96

SHA256
66687aadf862bd776c8fc18b8e9f8e20089714856ee233b3902a591d0d5f2925

SHA512
5046adc1dba838867b2bbbfdd0c3423e58b57970b5267a90f57960924a87f1960a6a85eaa642dac835424b5d7c8d637c00408c7a73da672b7f498521420b6dd3

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin64\Sys\Wii\shared2\wc24\is-OU0IK.tmp

Filesize
1024B

MD5
0c425c24e91335f18a3246b1d611a8ca

SHA1
caf8a96a36573d7e67f086f73fec675a5d1c4245

SHA256
7afebf33eeb0035397cc74e15e892e700cd2903641d26562f5d46cfbb6171109

SHA512
001e0d8dd5e5b2e2d8b8357bba7d8c20ac33dca3a6b7897f11a1f01f391118da4f457d5a5c6531eedabebd6883dcde0bb3526b97ed7b3357a7e6d768d9c322af

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin\Sys\Themes\Clean Blue\is-N2Q1O.tmp

Filesize
321B

MD5
e249663340138f53af6d0d99f0004cf2

SHA1
54174021794ee48f31fff6f58e6b39fdf19753dc

SHA256
57d33764d658e1f3bfaca3803eb02e50c97f01aaf0aaa8af939e27bfcc0c2d02

SHA512
5a8deb249b656346e5189d598c929ff8b4ba5c5d2965bc0fad2d10f4fdd4f1e43ed12d97c16a4d481814b748e177787ebb2a4e74771748ab981bca360f04bf3d

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin\Sys\Themes\Clean Lite\is-HA2B7.tmp

Filesize
553B

MD5
c581d0401d6a23be481405f4097b61de

SHA1
61d0d8467c4de89478d2493dc25927fb41354cd1

SHA256
c8840da10a5e98c3d81a4dc4bfa78a1cec6977f48762d285c66f0032f8035be8

SHA512
19aea7b680f0bce15a53f514532c46f80798c02c82f0b6b8dd3eea35272d2919d1e83ba34750201cc9fc0356c2e5826375b90741438b917d4f5a715db1bbc3a8

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin\Sys\Themes\Clean Lite\is-K3M94.tmp

Filesize
64B

MD5
0f3c358607aa67579e4b7f6596d7e6fb

SHA1
dc0daae178d5de96415e78b09266489c1209fe95

SHA256
7c019cb53c2482f918b1becbd1be0efb4f7c070bd8af271959a65ef63313b3c6

SHA512
350737f05523dcb118c6418752aa4322c30d5eab8127ad090f6f2ba6e47b038c6fc92022ab2ae6db930f94a4d0c40490240eea6089f63efbb3fef689212d409b

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\IshiirukaDolphin\languages\es\is-0CPH6.tmp

Filesize
111KB

MD5
022f992ba28649db31e4a0fecf486734

SHA1
bac2ff417556e9dd9ec709c1779e68bbdb51f54d

SHA256
aeec33eb2cb540d2cd0c02f56bd9a7d4d4b86290b3575133ac0964a5d00cc4dd

SHA512
c518a3d7077437878fa41d538fcec675b30482f732b00b4b280a3c5588ef9dfd9aac0e9d2af3b15a48ab1ffc1dce0b0ffeb65b70a66e309d0dda4b3d0ec50dff

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Nestopia\is-OC9NR.tmp

Filesize
15KB

MD5
f590324e05b1bdd1caa7d99313b2c44c

SHA1
85e61fb599009b49714187ced07710aef772bf67

SHA256
281b556f40be115b1bc4a948971a3f4676c922fab69750e78eb3bd3d0150287c

SHA512
57b3d8358298565d2d9df4f5023551e2fef419c2770dc5e5e28ce0216284cc9b9c38e8a66ebf7afe52eb163f1b27622bd7d56e0dea6a9255a550f101735eb9a3

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\Open_MSX_0100_32-bit\Catapult\doc\is-N78C7.tmp

Filesize
17KB

MD5
b234ee4d69f5fce4486a80fdaf4a4263

SHA1
4cc77b90af91e615a64ae04893fdffa7939db84c

SHA256
8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643

SHA512
aee80b1f9f7f4a8a00dcf6e6ce6c41988dcaedc4de19d9d04460cbfb05d99829ffe8f9d038468eabbfba4d65b38e8dbef5ecf5eb8a1b891d9839cda6c48ee957

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\Themes\DIGIblue_SuiteX2\is-1UC91.tmp

Filesize
10KB

MD5
7996a55faf1464ac5e0dfc1deef5d741

SHA1
b9a4b4105004eb7f2ba05d677429c774960b7d16

SHA256
c465f980694cd8abc976bf36f32cb048a4505f5b27ff179dc9c69cbfaedd88ad

SHA512
78bdc7842201b20d3e7b3b0cf833f24eccd5df117c98df1cd5fa356e34ccfb003e04cec6c978abbe6f6f244962542c374d2dc5418eb1b3477211607b8a146c3c

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\Themes\DIGIblue_SuiteX2\is-CBD4C.tmp

Filesize
3KB

MD5
1184de74c9680ac2038bf15224f02ac7

SHA1
b67e499b16de31c10a5a685fef17554169dd0ce1

SHA256
6f3d875c8d5590f7619f11008ffd2d0f37b7112191971c98406343585594abb4

SHA512
43c75e12973d2d870d5154b7293e7e1458f2c9e3a710dfba7c9da85a8261b2ac01f17b9aed6562a8ac52587db5353d4a12b7ac29958862fa992cbbfcb115cf63

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\Themes\DIGIblue_SuiteX2\is-ERTEI.tmp

Filesize
3KB

MD5
699c9ea0aa90a6f5311b85b9c38749db

SHA1
1c56358915b3f28e618160b94bb8a817fc67e218

SHA256
f458851f3a6c9a4f291194b8603c1f50274df4747c08a9d01647e89393792a60

SHA512
984dfac9b6a75dcf180cef438aaca398920e3e278dc5b03656394157cfdbaf7f52a31dd3bcb08bf482e3b35dd9894912f068bea3ad1d430cb9caa1dd1658a87a

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\Themes\DIGIblue_SuiteX2\is-HDULK.tmp

Filesize
3KB

MD5
b246c95509cf7d3f31f61b2ca5ce5e57

SHA1
f48c7200e54b87d6528c273e92de1f05928b0078

SHA256
3f6e6d34aded0d22176789034b56b765a26556d5b3bb218a18db0a4a05e3273b

SHA512
c5408eaf517a99f8487767f630b31857302ffecb87088d44fd420b86ad2bf9090704cf2973a230714d3c0f9885f34473cab1f2f4246097ced834707c9c645900

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\Themes\DIGIblue_SuiteX2\is-M437G.tmp

Filesize
3KB

MD5
991606c06597c33facc4b31365e0900a

SHA1
53c487b37e616b6366ed62833ec106583a96945c

SHA256
e9a5f4cdf1e23dc165b09708cf0b2e510632dd877cd910d05d2cdb31df764d09

SHA512
c7fd423ecb879be1ddffd57aa06161bed38d1a5b8b53cdbf162e207e5f52b63710e078c75d634866e5c77a3723fee6993646f00d4a7407436ed74e08ee5286ea

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\machines\MSX2+ - C-BIOS\is-N37GO.tmp

Filesize
8KB

MD5
86065454ad150f78acb1ea3d2b4659c0

SHA1
1152f3e3eff0afac2143d478f157fd26c7466e6e

SHA256
2c8e6134c6d76ce7744f9b0e96cb732498da140fc1700761c5ac1f6dcdbb3036

SHA512
066791d435020908d91517172b04f061cc5c2da02addf3827fb60d5281f7e059a27a61c40b69fae3a7437264afb2d0f1c2b07a07356a0e7cf5563dd6010c4978

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\blueMSX_282\machines\SVI - Spectravideo SVI-328 80 Column\is-JFPNC.tmp

Filesize
32KB

MD5
352f054ab09605070bdff49d73f335cc

SHA1
10349ce675f6d6d47f0976e39cb7188eba858d89

SHA256
407b47ff8c1ed31d8050600233ef8b70c495f5176d86f98511c4a0cee438f559

SHA512
e5963e7bc82e2643ffb76e05b6489b026b4d17fb2a583b33ffbb5bb544269a48f5762567c8ee4e9879ba24e614985bd8775d090ccdf358938bdf99bfb33d7522

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\cemu\resources\hu\is-1JR1N.tmp

Filesize
54KB

MD5
197c014f47fcf71daea794391e8f2fc9

SHA1
bd25ea3829ce3b759ffa49b335df5d38d12b220e

SHA256
e694fecf710a328484c29540ff667601b1cfca40c12ad76d3a91ba9c2c6c9ce1

SHA512
6935e0baaeefde122e6b6d3e89c465e962b81a46affdba84df9972114d98932ef09a639825fc247dee9b9b7471b9e6903e5f0364adcc1a757cbc16f89ac70ccc

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\ePSXe_190\BIOS\is-HM36V.tmp

Filesize
512KB

MD5
924e392ed05558ffdb115408c263dccf

SHA1
10155d8d6e6e832d6ea66db9bc098321fb5e8ebf

SHA256
71af94d1e47a68c11e8fdb9f8368040601514a42a5a399cda48c7d3bff1e99d3

SHA512
ea097d56a3a6fa41e23908fbf73fab555c951059280d229815a15d79a168285c4bf993c8be43275912c2eccd40a0c76c797a95c13e82d532e0d48aaba6597430

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\ePSXe_190\covers\is-MIM7T.tmp

Filesize
25B

MD5
47295ab66edd6cb81e19148f68b9e3ea

SHA1
4349f8178595b3afe443c487f01b189437360870

SHA256
5fdaaf58ab8eb5cb7c00fd1a261af2221f6805aa191d8541dbeecbc57a27d99b

SHA512
a82024bc55e9e1ca8ccf1c3c30fd7890331904f69b36419773d99920aa58a8245b62107baa89ab90b05174e786283aafc322b44b44d7dfb920d36b5794c7db1c

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\ePSXe_190\plugins\4xGLSLScale shader\is-CF7M3.tmp

Filesize
767B

MD5
373fbf2232d74f38156165f5f6386680

SHA1
fa7479b072740dddfb2369aadad466a51ae0f867

SHA256
3962a900e9cee9a76c62493b3fe06fa18260744b1a03d557d4a3231dd95c539e

SHA512
851f14db0ca40608d1c60bdb0cefaae1eb48c697d5cf1ee11980c0f4415008e86b43e3b2b8aa94ce32580099d0ccc1c9212f2251fc3a1ac92de1b6d7153112c3

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\ePSXe_190\plugins\Cartoon Shaders Class B\Cartoon shader I\is-2FMGS.tmp

Filesize
775B

MD5
16399252dd974371100025e3d2d7cf96

SHA1
056ee25403c21f0ccf1c33a9273be1b6d72a8d31

SHA256
87466eb93a94e736b3211f3a540ab2e074b301a4a02ebc60de215617a2994290

SHA512
92e248c5fcdd07aa2dd40e9dc54262956c1cd834c0cd7e24860c90fa0ffa2a0ed83af92aa09488612236ffd9041dc9acfa6bc19d1087d7e14428f738bbdbc54d

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\ePSXe_190\plugins\Cartoon Shaders Class C\Cartoon shader II\is-FFSBU.tmp

Filesize
537B

MD5
286ad02371cd712bbc7018bfc1dc9b41

SHA1
149cf0424da5a24581b599c7ff98e101e2bd8952

SHA256
3c07615c543f2a390f16c541e566efed2dd8222cfa975ecfa3bf84d1b50bc799

SHA512
1bde4d7d170a688f8b0ce599383ff1f94eb3e507b2b85f675efb7e8540ab1dc8bfb9d408dca216f39e0c79b4b9c7e8be94a0629c57e50473eed51d0541ace500

Download Submit
C:\Users\Public\Documents\WinDS PRO\emu\mGBA\licenses\is-9KTDQ.tmp

Filesize
17KB

MD5
94d55d512a9ba36caa9b7df079bae19f

SHA1
dfac199a7539a404407098a2541b9482279f690d

SHA256
32b1062f7da84967e7019d01ab805935caa7ab7321a7ced0e30ebe75e5df1670

SHA512
4b8966dc9ff55c8a4e06f05887d2258a90c2b23c9f655df7b98511699bf1c6ddb8b8c89f91a03dbdc442d857d31deae4a6e0b54174e64b542903daf95f7a6f52

Download Submit
\Users\Admin\AppData\Local\Temp\is-2RULG.tmp\WinDS PRO 2023.04.28.tmp

Filesize
3.0MB

MD5
92ef60f6ce55807abbbf31a3c3c6e860

SHA1
d93caee05299277e1521056292c131ca22ae8168

SHA256
4fb5b851bc000ed92319c7f849fce330f0ef23be2322674f50549222d292cc54

SHA512
12f7078e1476eaac6360c09dcb23628305607005cd17fdbad76dbdd05b705d74db53dfdf6ebbea6638dad420de43f341458e7952459377aaac8ea893d104a180

Download Submit
memory/1640-19286-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-3160-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-92-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-12852-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-15782-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-4514-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-6571-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-9557-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-65-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download
memory/1640-67-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-854-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-63-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-184-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-21166-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1640-61-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download
memory/1640-21562-0x0000000000400000-0x0000000000712000-memory.dmp

Filesize
3.1MB

Download
memory/1992-54-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download
memory/1992-62-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download