9bb1ffc5759cda1bf670be9acfe8626abfdb3b23b50504e4dfc00b609df2b7ad

Analysis

max time kernel
94s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
09-05-2023 15:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
Size

1.9MB
MD5

1176914c8a8cfee425ba582c595065d6
SHA1

3f38397cd5e7aa69902badf6d7b9b935f5e822df
SHA256

9bb1ffc5759cda1bf670be9acfe8626abfdb3b23b50504e4dfc00b609df2b7ad
SHA512

e6597857c382b8e52f3080f75b442b3347abde1213c9b0ea53ffb8f6c42f14e4d138f46c1d116cb864f5808d33b916a633c0beef7db578599328d7474cf914f5
SSDEEP

49152:lvhlHWBwS6D7ddSNPHu0gbZs3HaGYLWEdZYgVbBr:RLHW2ZWH5gO3HXYLu2

Score

8^/10

bootkit persistence

Malware Config

Signatures

Downloads MZ/PE file

Checks BIOS information in registry 2 TTPs 2 IoCs

BIOS information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

Processes:

InstallerGUI.exe

description	ioc	process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion	InstallerGUI.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion	InstallerGUI.exe

Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs
Bootkits write to the MBR to gain persistence at a level below the operating system.
bootkit persistence

Bootkit
T1067

Processes:

InstallerGUI.exe

description ioc process

File opened for modification \??\PhysicalDrive0 InstallerGUI.exe
Drops file in Windows directory 1 IoCs

Processes:

InstallerGUI.exe

description ioc process

File opened for modification C:\Windows\Q487734.log InstallerGUI.exe

description	ioc	process
File opened for modification	\??\PhysicalDrive0	InstallerGUI.exe

description	ioc	process
File opened for modification	C:\Windows\Q487734.log	InstallerGUI.exe

Executes dropped EXE 42 IoCs

Processes:

1352781463_Wnzkvto_.exeInstallerGUI.execrashpad_handler.exeMovaviStatistics.exeMovaviStatistics.exePluginChecker.exePluginChecker.exePluginChecker.exeMovaviStatistics.exePluginChecker.exePluginChecker.exeMovaviStatistics.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exeConhost.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exeCodecChecker.exeCodecChecker.exeCodecChecker.exeCodecChecker.exe

pid	process
2780	1352781463_Wnzkvto_.exe
2852	InstallerGUI.exe
2984	crashpad_handler.exe
3064	MovaviStatistics.exe
4912	MovaviStatistics.exe
1916	PluginChecker.exe
4564	PluginChecker.exe
1572	PluginChecker.exe
3208	MovaviStatistics.exe
1528	PluginChecker.exe
2444	PluginChecker.exe
4432	MovaviStatistics.exe
3816	PluginChecker.exe
3228	PluginChecker.exe
448	PluginChecker.exe
4996	PluginChecker.exe
1536	PluginChecker.exe
4912	PluginChecker.exe
4232	PluginChecker.exe
3840	Conhost.exe
4120	PluginChecker.exe
4204	PluginChecker.exe
2324	PluginChecker.exe
3572	PluginChecker.exe
4704	PluginChecker.exe
3028	PluginChecker.exe
844	PluginChecker.exe
3736	PluginChecker.exe
3724	PluginChecker.exe
4384	PluginChecker.exe
2528	PluginChecker.exe
4220	PluginChecker.exe
3292	PluginChecker.exe
3260	PluginChecker.exe
4644	PluginChecker.exe
2808	PluginChecker.exe
2912	PluginChecker.exe
896	PluginChecker.exe
1404	CodecChecker.exe
1064	CodecChecker.exe
4108	CodecChecker.exe
1056	CodecChecker.exe

Loads dropped DLL 64 IoCs

Processes:

InstallerGUI.exe

pid	process
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe
2852	InstallerGUI.exe

Modifies registry class 22 IoCs

Processes:

InstallerGUI.exeCodecChecker.exeCodecChecker.exeCodecChecker.exePluginChecker.exePluginChecker.exeCodecChecker.exe

description	ioc	process
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C602395E-E89F-DEDE-1AF3}\vumkpgpo = 2555588d40f55d9c74fcd03b6c800f3205243a07	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = e454a9e97e6d7424204bc905d21709cc186f9d8c	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = 395d46d258967a31ac6c2e2624a8720dd9072048	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{711A436E-7500-48FB-9DE4-147630ECFB9C}	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{AEF294D7-F594-43E9-9575-01A421361CA8}	CodecChecker.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C602395E-E89F-DEDE-1AF3}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = 047e4fed620192fd803c58c21a2481db549d18cf	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{60252904-30EE-4929-BFB8-CCF6B4DB9A12}	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = cd64474d7e2e74dc5c4cb709caf7f6436dbf2dd7	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{B8E71948-0FD8-48A0-B256-9E4EDCB7B713}	CodecChecker.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{03358E7A-0143-4185-AC21-FC1ADE11FE85}	CodecChecker.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{E08E924A-E0D1-4016-A0E0-4FBDD13AA245}	PluginChecker.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{5AA95170-670A-4FB3-B451-BCBD2D01869A}	PluginChecker.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1013461898-3711306144-4198452673-1000\{1B9463C5-6954-4863-BCFC-55D2F28351B5}	CodecChecker.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C0937617-604C-9916-B043}	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C0937617-604C-9916-B043}\vnvfowhy = 04be8c04a28c515a6cc6283b46638cad14fc790e	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = ad9c292d806d63b5d084e01a2037f5db0dc24fb7	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = f47db1297c6da3dacc8c20f59c37f52348e547ec	InstallerGUI.exe

Suspicious behavior: AddClipboardFormatListener 2 IoCs

Processes:

InstallerGUI.exePluginChecker.exe

pid process

2852 InstallerGUI.exe
1916 PluginChecker.exe
Suspicious behavior: EnumeratesProcesses 6 IoCs

Processes:

InstallerGUI.exe

pid process

2852 InstallerGUI.exe
2852 InstallerGUI.exe
2852 InstallerGUI.exe
2852 InstallerGUI.exe
2852 InstallerGUI.exe
2852 InstallerGUI.exe

Suspicious use of SetWindowsHookEx 23 IoCs

Processes:

MovaviVideoEditorPlusSetupC_Wnzkvto_.exeInstallerGUI.exeMovaviStatistics.exePluginChecker.exePluginChecker.exeMovaviStatistics.exeMovaviStatistics.exe

pid	process
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
2852	InstallerGUI.exe
4912	MovaviStatistics.exe
4912	PluginChecker.exe
1916	PluginChecker.exe
4912	PluginChecker.exe
1916	PluginChecker.exe
4912	PluginChecker.exe
3208	MovaviStatistics.exe
3208	MovaviStatistics.exe
3208	MovaviStatistics.exe
4432	MovaviStatistics.exe
4432	MovaviStatistics.exe
4432	MovaviStatistics.exe
4432	MovaviStatistics.exe

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

MovaviVideoEditorPlusSetupC_Wnzkvto_.exe1352781463_Wnzkvto_.exeInstallerGUI.exe

description	pid	process	target process
PID 3340 wrote to memory of 2780	3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe	1352781463_Wnzkvto_.exe
PID 3340 wrote to memory of 2780	3340	MovaviVideoEditorPlusSetupC_Wnzkvto_.exe	1352781463_Wnzkvto_.exe
PID 2780 wrote to memory of 2852	2780	1352781463_Wnzkvto_.exe	InstallerGUI.exe
PID 2780 wrote to memory of 2852	2780	1352781463_Wnzkvto_.exe	InstallerGUI.exe
PID 2852 wrote to memory of 2984	2852	InstallerGUI.exe	crashpad_handler.exe
PID 2852 wrote to memory of 2984	2852	InstallerGUI.exe	crashpad_handler.exe
PID 2852 wrote to memory of 3064	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 3064	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 4912	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 4912	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 1916	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1916	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4564	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4564	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1572	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1572	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3208	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 3208	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 1528	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1528	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2444	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2444	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4432	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 4432	2852	InstallerGUI.exe	MovaviStatistics.exe
PID 2852 wrote to memory of 3816	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3816	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3228	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3228	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 448	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 448	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4996	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4996	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1536	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 1536	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4912	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4912	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4232	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4232	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3840	2852	InstallerGUI.exe	Conhost.exe
PID 2852 wrote to memory of 3840	2852	InstallerGUI.exe	Conhost.exe
PID 2852 wrote to memory of 4120	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4120	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4204	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4204	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2324	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2324	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3572	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3572	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4704	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4704	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3028	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3028	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 844	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 844	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3736	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3736	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3724	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 3724	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4384	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4384	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2528	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 2528	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4220	2852	InstallerGUI.exe	PluginChecker.exe
PID 2852 wrote to memory of 4220	2852	InstallerGUI.exe	PluginChecker.exe

C:\Users\Admin\AppData\Local\Temp\MovaviVideoEditorPlusSetupC_Wnzkvto_.exe
"C:\Users\Admin\AppData\Local\Temp\MovaviVideoEditorPlusSetupC_Wnzkvto_.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:3340

C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-302875305\1352781463_Wnzkvto_.exe
C:/Users/Admin/AppData/Local/Temp/MovaviWebInstaller-302875305/1352781463_Wnzkvto_.exe /S /LOCALE=en_US /D=C:/Users/Admin/AppData/Roaming /WEBUID=nzkvto /PREFERRED_BROWSER=chrome.exe
2⤵
- Executes dropped EXE
- Suspicious use of WriteProcessMemory
PID:2780

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerGUI.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerGUI.exe "--distrib-name=C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-302875305\1352781463_Wnzkvto_.exe" "/S" "/LOCALE=en_US" "/D=C:/Users/Admin/AppData/Roaming" "/WEBUID=nzkvto" "/PREFERRED_BROWSER=chrome.exe"
3⤵
- Checks BIOS information in registry
- Writes to the Master Boot Record (MBR)
- Drops file in Windows directory
- Executes dropped EXE
- Loads dropped DLL
- Modifies registry class
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2852

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\crashpad_handler.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\crashpad_handler.exe --no-rate-limit --database=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0 --metrics-dir=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0 --url=https://o474997.ingest.sentry.io:443/api/4504371526893568/minidump/?sentry_client=sentry.native/0.5.0&sentry_key=be163ba9c8fc4472baedcce3cfb2b09b --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-event --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-breadcrumb1 --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-breadcrumb2 --initial-client-data=0x3a4,0x3a8,0x3ac,0x380,0x3b0,0x7ffd49341fe8,0x7ffd49342000,0x7ffd49342018
4⤵
- Executes dropped EXE
PID:2984

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
PID:4912

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
- Executes dropped EXE
PID:3064

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" OglManager OglManager
4⤵
- Executes dropped EXE
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:1916

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" FiltersFF AlgorithmFactory
4⤵
- Executes dropped EXE
PID:4564

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" DecodersFF CodecFactory
4⤵
- Executes dropped EXE
PID:1572

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
PID:3208

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncodersFF CodecFactory
4⤵
- Executes dropped EXE
PID:1528

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncoderLossless CodecFactory
4⤵
- Executes dropped EXE
PID:2444

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
PID:4432

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncoderNVENC CodecFactory
4⤵
- Executes dropped EXE
PID:3816

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" DecoderNVDEC CodecFactory
4⤵
- Executes dropped EXE
PID:3228

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncoderAMF CodecFactory
4⤵
- Executes dropped EXE
PID:448

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncoderIM CodecFactory
4⤵
- Executes dropped EXE
PID:4996

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" DecoderMF CodecFactory
4⤵
- Executes dropped EXE
- Modifies registry class
PID:1536

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EncoderMF CodecFactory
4⤵
- Executes dropped EXE
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4912

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" DecoderRAW CodecFactory
4⤵
- Executes dropped EXE
PID:4232

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" Effects EffectFactory
4⤵
PID:3840

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EffectsFF EffectFactory
4⤵
- Executes dropped EXE
PID:4120

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EffectsOgl EffectFactory
4⤵
- Executes dropped EXE
PID:4204

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" EffectsOnnxRT EffectFactory
4⤵
- Executes dropped EXE
PID:2324

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" Filters FilterFactory
4⤵
- Executes dropped EXE
PID:3572

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" FiltersFF FilterFactory
4⤵
- Executes dropped EXE
PID:4704

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" FiltersOgl FilterFactory
4⤵
- Executes dropped EXE
PID:3028

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" FiltersSpeex FilterFactory
4⤵
- Executes dropped EXE
PID:844

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" FiltersOnnxRT FilterFactory
4⤵
- Executes dropped EXE
PID:3736

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" AnalyzerAudio AnalyzerFactory
4⤵
- Executes dropped EXE
PID:3724

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" AnalyzerVideoOpenCV AnalyzerFactory
4⤵
- Executes dropped EXE
PID:4384

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" AnalyzerVideoOnnxRT AnalyzerFactory
4⤵
- Executes dropped EXE
PID:2528

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" MuxerFF MuxerFactory
4⤵
- Executes dropped EXE
PID:4220

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" MuxerHEIF MuxerFactory
4⤵
- Executes dropped EXE
PID:3292

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" MuxerNetworkAPI MuxerFactory
4⤵
- Executes dropped EXE
PID:3260

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" ParserFF ParserFactory
4⤵
- Executes dropped EXE
PID:4644

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" ParserHEIF ParserFactory
4⤵
- Executes dropped EXE
PID:2808

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" ParserRAW ParserFactory
4⤵
- Executes dropped EXE
PID:2912

C:\Windows\System32\Conhost.exe
\??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
5⤵
- Executes dropped EXE
PID:3840

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginChecker.exe" ParserCD ParserFactory
4⤵
- Executes dropped EXE
PID:896

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" DECODER MEDIA_FOUNDATION_IMPL CODEC_ID_WMV3 ""
4⤵
- Executes dropped EXE
- Modifies registry class
PID:1056

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" DECODER MEDIA_FOUNDATION_IMPL CODEC_ID_H264 ""
4⤵
- Executes dropped EXE
- Modifies registry class
PID:4108

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" DECODER MEDIA_FOUNDATION_IMPL CODEC_ID_AC3 ""
4⤵
- Executes dropped EXE
- Modifies registry class
PID:1064

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" DECODER MEDIA_FOUNDATION_IMPL CODEC_ID_AAC ""
4⤵
- Executes dropped EXE
- Modifies registry class
PID:1404

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" ENCODER MEDIA_FOUNDATION_IMPL CODEC_ID_H264 ""
4⤵
PID:4572

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" ENCODER MEDIA_FOUNDATION_IMPL CODEC_ID_AC3 ""
4⤵
PID:2416

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecChecker.exe" ENCODER MEDIA_FOUNDATION_IMPL CODEC_ID_AAC ""
4⤵
PID:504

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
PID:3408

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
PID:4336

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
PID:1272

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviStatistics.exe a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Movavi Video Editor 23/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
4⤵
PID:904

C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\VideoEditor.exe
"C:/Users/Admin/AppData/Roaming/Movavi Video Editor 23/VideoEditor.exe"
2⤵
PID:3972

C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\crashpad_handler.exe
"C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\crashpad_handler.exe" --no-rate-limit --database=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0 --metrics-dir=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0 --url=https://o474997.ingest.sentry.io:443/api/6722881/minidump/?sentry_client=sentry.native/0.5.0&sentry_key=0585fa203d284c9a87e12483e31f4391 --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0\e1e8bbf0-c064-47af-c892-b0825a331da1.run\__sentry-event --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0\e1e8bbf0-c064-47af-c892-b0825a331da1.run\__sentry-breadcrumb1 --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0\e1e8bbf0-c064-47af-c892-b0825a331da1.run\__sentry-breadcrumb2 --initial-client-data=0x3c8,0x3cc,0x3d0,0x3a4,0x3d4,0x7ffd49781fe8,0x7ffd49782000,0x7ffd49782018
3⤵
PID:2396

C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\MovaviStatistics.exe
"C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\MovaviStatistics.exe" a17701da2aa42d9fc36aebcc41083540 "Movavi Video Editor Plus" Movavi 23.3.0.0 DEFAULT 3162353164333834383337303238353035643836386562363865326330343338 fa1078ce9ffcb0574d9b857eaae74aefffffd81c https proxysss.movavi.com 0 80 "C:/Users/Admin/AppData/Local/Movavi/Video Editor/cache\a17701da2aa42d9fc36aebcc41083540\23.3.0.0"
3⤵
PID:2692

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" https://links.movavi.com/drivers-update/?asrc=other&huid=fa1078ce9ffcb0574d9b857eaae74aefffffd81c&webuid=nzkvto&build_name=UNKNOWN&app=videoeditorplus&module=videoeditor&app_ver=23-3-0&lang=en_us&partner=&istrial=1&utm_nooverride=1&os=win10-0-0&os_bits=64&platform=64&bundle_name=UNDEFINED&market=global
3⤵
PID:4808

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd3bdd9758,0x7ffd3bdd9768,0x7ffd3bdd9778
4⤵
PID:2256

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1812 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:2
4⤵
PID:4432

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4176

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2264 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4780

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3236 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:1
4⤵
PID:2788

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3228 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:1
4⤵
PID:900

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4636 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:1
4⤵
PID:3272

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5168 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4400

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5292 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4308

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5176 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:3952

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5260 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4072

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5252 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:3172

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=3256 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:4204

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5176 --field-trial-handle=1856,i,14486887531387620354,5670768874014690775,131072 /prefetch:8
4⤵
PID:3580

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4992

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0\e1e8bbf0-c064-47af-c892-b0825a331da1.run\__sentry-breadcrumb1

Filesize
4KB

MD5
6f01310901fce9d5e7d6f51e1e78d9fd

SHA1
417c02ca62f12b85ecf728e5a1f36f042a0884d7

SHA256
8521b7952b9a1f038a462729fb012ab2be82344d0054b49d25c66224955535a1

SHA512
3a0ed2bfa63f3b295e55d845acfb5028c60732d3f05405480739522588d55777915694a73fde9f02240ac1dc6976c36d01045286a23f2610507fb1c2915ba306

Download Submit
C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\0.5.0\e1e8bbf0-c064-47af-c892-b0825a331da1.run\__sentry-event

Filesize
471B

MD5
901f51114291db22af84f21c19e8adf8

SHA1
cfd0dacd597bbdd161845b66d65f28f00c083f88

SHA256
7c501894b24f79a39bc98901787cb99750b28b994e243851f8d5c51ccebd585b

SHA512
9db1deee267a239fa0da9c9e4ddb8b14d26deed6ad9fd39a3139bcf7d8ec4456f4c30eb14afd8c5c2030807570a7b0036e5f1e0e0354389415015c61485a40fe

Download Submit
C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-breadcrumb1

Filesize
15KB

MD5
96ffdd4938379e1e95cd20c28056e6a6

SHA1
9b1647b4978eebf007c789327f86f6c07ede94b9

SHA256
234003d29ce570fc73e019c320756fd4c106c899ce4c60e6a10592910331b895

SHA512
42a0b7e0f85f7a48be956559c5a5c63586a110a5b0f1e92c21dc0900d98b901e95097451c8339ea7a8e5f4808352cb64ed103173bdd5df5310e0926c82e3f4f7

Download Submit
C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-breadcrumb1

Filesize
1KB

MD5
920c4685dc9766c4415e9122a8ab0380

SHA1
daa8eb42780b847f501fe8cab349b2d786c5ecdc

SHA256
e92c18a380ce263c85514254b1d9cd85654271f4a1b0cb383c345f1ded1dfe57

SHA512
aaf73595faec5c35c58656ec636d87a2f7642cb1ecf3e1eaa424f409e2fbd7454f6364061e5c2f9ba2dfce2a0975412486434b40c4f15e35a7d366657400c6f9

Download Submit
C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.3.0\installer\0.5.0\2a456966-dd30-430c-b795-2bfa03c1989a.run\__sentry-breadcrumb2

Filesize
8KB

MD5
f00e67ef8cb1e6a13c189be037b4fd4a

SHA1
2aa73c5ce14cd7c136a25d66db88bd3ce58abe0b

SHA256
8bd71f6e347faf2a584fbe0621dbf420bff9669238489b001746dc3d2d5d78bc

SHA512
99aed87ae1fe7d5f24e88ef98bdfaccc55d2c687ad898e40cf47c562dd4de22c317b1bb39a4d83987d5fe1f03a2c8566d7cfded882dca2e3aedb742b96a2a7e9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\AppActivation.dll

Filesize
874KB

MD5
e655fcbf1f08c2f8ec6f00bdb3e988c5

SHA1
865e70645711724ff6e3bb0fa126825fac09c6bb

SHA256
45aeda2afb110094ed78f99e99d8e04907b17cdc9d86392178a4a8e4400fbf23

SHA512
5e3e316074796014c7690889ee07ec68aff94958f091831e9982b9aaa1da552dad8cd5d2036fcf0b9b2e1aade382b0220712df0a6bfbc82d218600c2f6a508dd

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\AppActivation.dll

Filesize
874KB

MD5
e655fcbf1f08c2f8ec6f00bdb3e988c5

SHA1
865e70645711724ff6e3bb0fa126825fac09c6bb

SHA256
45aeda2afb110094ed78f99e99d8e04907b17cdc9d86392178a4a8e4400fbf23

SHA512
5e3e316074796014c7690889ee07ec68aff94958f091831e9982b9aaa1da552dad8cd5d2036fcf0b9b2e1aade382b0220712df0a6bfbc82d218600c2f6a508dd

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Application.dll

Filesize
2.9MB

MD5
8f83173b2858fd5d3a43e38068a1058f

SHA1
edaa7c73fb42d1fa2113de55653e285df0459186

SHA256
fc37de4275637309dee75543d2d573cc8632e10b95a39f56afa7053f920992cb

SHA512
f0c6b4a4dd15d38cc446a7db739b85e629f11998f63c4e98e8d09bdf06a34a171ab7b6c6b8837484c0f394c93107ffc003ce34bd28280fd0aaa4b6ffed7a32c6

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\ApplicationRegistry.dll

Filesize
318KB

MD5
afb315a622c51c34b614fbd30c6ab3ce

SHA1
830eb68d6c8ddcfd0e77b4d16c85099582f5e3d9

SHA256
9a1e0d1f18a0eed99045aad0074f7b21abe37b6175db7a26bd2efb31b6ae52d2

SHA512
76675060f2ba88951ee8c4eea50f9c02875c2b050aa648dd675a4d512345dbce975f291049eb06696ac1c510d1b2c2b964be3edfb89f91a7864a2be7065b6fc1

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CodecCheckFun.dll

Filesize
152KB

MD5
f2d7aacb85374ae93d3d501e29758d1d

SHA1
7dc122856902af961ea52e74e59a8881aac7a052

SHA256
382961242131e0b92788a339c6ebb610daefcea961d191106af39685536fa645

SHA512
32cd66aa21ac4b3becbbeda06e82acf86653b9a2e0aab1d67cc0e68427388a4532fac793a0389c544461c51d483aefd8f1da5a6ddac89d7aa2ed6f54226ed6ac

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CrashHandlerInitializer.dll

Filesize
31KB

MD5
e1fe130b0636a255bcaa4844c6ed0ff5

SHA1
3fb3dd877ed186d8519cf8576f12713cf1e5beac

SHA256
aa9ae51ccaf0f3541c52e7467b79125d7eaa241ff801c39c32c898ee38f9e4da

SHA512
54fbb1aab0d468010dfea04fa94a1ed0180f72d3fbcadfaa6de7f588fb745600a70226484d8fbd2b6ec7c30c5482f5924b75e444465dd93c5982ad3e2588fc6c

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\CrashHandlerInitializer.dll

Filesize
31KB

MD5
e1fe130b0636a255bcaa4844c6ed0ff5

SHA1
3fb3dd877ed186d8519cf8576f12713cf1e5beac

SHA256
aa9ae51ccaf0f3541c52e7467b79125d7eaa241ff801c39c32c898ee38f9e4da

SHA512
54fbb1aab0d468010dfea04fa94a1ed0180f72d3fbcadfaa6de7f588fb745600a70226484d8fbd2b6ec7c30c5482f5924b75e444465dd93c5982ad3e2588fc6c

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndAppLocations.dll

Filesize
39KB

MD5
dc0ec7778b96ec91fe68ad7feb558190

SHA1
74beb549d5751a70dedb4ebce3cc6c98ba6e6bf2

SHA256
a3d99f4a54c22a24c9963d3ed7672a307ccc8fe320faed1a2b79f4a043395765

SHA512
e385f411fd33976d8203c0b24a2b16ed0a2b72bca8d7e20a0b968f425ff38a48e4763bb1de904a7bb42da8621f87fa43325186de23cd49d66272f82a7bc66a93

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndAppLocations.dll

Filesize
39KB

MD5
dc0ec7778b96ec91fe68ad7feb558190

SHA1
74beb549d5751a70dedb4ebce3cc6c98ba6e6bf2

SHA256
a3d99f4a54c22a24c9963d3ed7672a307ccc8fe320faed1a2b79f4a043395765

SHA512
e385f411fd33976d8203c0b24a2b16ed0a2b72bca8d7e20a0b968f425ff38a48e4763bb1de904a7bb42da8621f87fa43325186de23cd49d66272f82a7bc66a93

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndCrashHandler.dll

Filesize
486KB

MD5
56be485ce1ea20c3a42d5ba9751e941a

SHA1
2f58b8be604d2d1f22e58da0090ed22b13862ed9

SHA256
a5b2419a7eae92053c1c42948f305438ca5088bd1f528d79bf632b70cdbc7feb

SHA512
94a2b0fe36176b621ea0e462a7a2902cc8abe0c959babd677eff2e9269ea6608be22a6a8b9b7c6eaec8b3119e4cfb9636275d61f4f3ecdcfe7968ba5695985d2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndCrashHandler.dll

Filesize
486KB

MD5
56be485ce1ea20c3a42d5ba9751e941a

SHA1
2f58b8be604d2d1f22e58da0090ed22b13862ed9

SHA256
a5b2419a7eae92053c1c42948f305438ca5088bd1f528d79bf632b70cdbc7feb

SHA512
94a2b0fe36176b621ea0e462a7a2902cc8abe0c959babd677eff2e9269ea6608be22a6a8b9b7c6eaec8b3119e4cfb9636275d61f4f3ecdcfe7968ba5695985d2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndDyLib.dll

Filesize
106KB

MD5
5f4f89e3966b83347130b866854f4ed7

SHA1
fa97728669b45d59f05f041c7ced11b7e795e2c9

SHA256
2fe44d0089012afb2c2a008830b9160f504a1441e8cc4a17a1c90d3c271e24c6

SHA512
70f52cdc60c36db8db6d80f9fba9078f66bada5629fcaf24393f89104d5c10ed159cb9472fc949a1d52654dc42f5bd008a46bceb36778d78e341da2819c6f4a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndDyLib.dll

Filesize
106KB

MD5
5f4f89e3966b83347130b866854f4ed7

SHA1
fa97728669b45d59f05f041c7ced11b7e795e2c9

SHA256
2fe44d0089012afb2c2a008830b9160f504a1441e8cc4a17a1c90d3c271e24c6

SHA512
70f52cdc60c36db8db6d80f9fba9078f66bada5629fcaf24393f89104d5c10ed159cb9472fc949a1d52654dc42f5bd008a46bceb36778d78e341da2819c6f4a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndException.dll

Filesize
112KB

MD5
067de09d4b2933fd66a9d74a6d3f1aee

SHA1
2899659a32422da64e8dfc60817ead996c61e59a

SHA256
dddeb18487194ac2d2d1e5e591978b4d9f6d734d58bfc645e0bdad75ddcf6509

SHA512
98875eed15ddbd36ed3c176b4b99d59311c7010d70d9a3db9bb63e56f5c68c22d5bb18dc9e69e3b4f091c4afa738c352ac2b7f05836f1044380ecd9fd6928dc2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndException.dll

Filesize
112KB

MD5
067de09d4b2933fd66a9d74a6d3f1aee

SHA1
2899659a32422da64e8dfc60817ead996c61e59a

SHA256
dddeb18487194ac2d2d1e5e591978b4d9f6d734d58bfc645e0bdad75ddcf6509

SHA512
98875eed15ddbd36ed3c176b4b99d59311c7010d70d9a3db9bb63e56f5c68c22d5bb18dc9e69e3b4f091c4afa738c352ac2b7f05836f1044380ecd9fd6928dc2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndFilesystem.dll

Filesize
261KB

MD5
5638f68acc7cafcad1c5eaffce5d90ee

SHA1
ea7c5d1a6c5a77a6a7bb3513d93a3fab18008520

SHA256
3a35dcc3853676772e311b958caf07f91cbcae7aa7e167884ad4f4f498ae2cfd

SHA512
14647953063eaf76cf1e76e27565862bb71a8c76e696b95ec86e51acb05f3beb871c1afad991c74e0e8b82d8525be6998bf76c776cfa78ee2aa0286698c19b0d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndFilesystem.dll

Filesize
261KB

MD5
5638f68acc7cafcad1c5eaffce5d90ee

SHA1
ea7c5d1a6c5a77a6a7bb3513d93a3fab18008520

SHA256
3a35dcc3853676772e311b958caf07f91cbcae7aa7e167884ad4f4f498ae2cfd

SHA512
14647953063eaf76cf1e76e27565862bb71a8c76e696b95ec86e51acb05f3beb871c1afad991c74e0e8b82d8525be6998bf76c776cfa78ee2aa0286698c19b0d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndHash.dll

Filesize
88KB

MD5
36e7f422036ce0af573e47f17fba2284

SHA1
de7078428b03e0fb0d60dc1b51568c5b9981c0f4

SHA256
645391f0a7f6e3474d9ee4eedc09fdd291bf2510f7aad7324a0c0ddbe748153d

SHA512
7a8cff98cf1ece0bd9430bd597a956c749c550dd602ade957c8d3a011f10fc94db914bf7a7f74b05b0b352e7489b2c3fc40c2e6bdcd859f74aa2f09ac7ebe691

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndHash.dll

Filesize
88KB

MD5
36e7f422036ce0af573e47f17fba2284

SHA1
de7078428b03e0fb0d60dc1b51568c5b9981c0f4

SHA256
645391f0a7f6e3474d9ee4eedc09fdd291bf2510f7aad7324a0c0ddbe748153d

SHA512
7a8cff98cf1ece0bd9430bd597a956c749c550dd602ade957c8d3a011f10fc94db914bf7a7f74b05b0b352e7489b2c3fc40c2e6bdcd859f74aa2f09ac7ebe691

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndOS.dll

Filesize
178KB

MD5
b0e0286629af4336853b3d66be20c9e1

SHA1
e78684e773ea800eeb9203820382ed0137077649

SHA256
8a06d8aa6c9f927735b24a9927e6315867e9bf9a90a06abb6e1a109043c4fedf

SHA512
0af9dd476a9ab33a3c5a2e95489015304b44f5938c74aa8cdddbaab664ff5aa303892ece25f086104c53604272390d1dc84474165fdaa6863d996154449038b5

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndOS.dll

Filesize
178KB

MD5
b0e0286629af4336853b3d66be20c9e1

SHA1
e78684e773ea800eeb9203820382ed0137077649

SHA256
8a06d8aa6c9f927735b24a9927e6315867e9bf9a90a06abb6e1a109043c4fedf

SHA512
0af9dd476a9ab33a3c5a2e95489015304b44f5938c74aa8cdddbaab664ff5aa303892ece25f086104c53604272390d1dc84474165fdaa6863d996154449038b5

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndPointer.dll

Filesize
25KB

MD5
69926b244ee491952a770cafd3a7d114

SHA1
8eee2c704a1167d28fe8c895d99408dfe8e5f639

SHA256
1fdac480d2517c6b92960ad0e016a13872b7903fd94012036f6dc5c1202f29a8

SHA512
98bb10fdf3ff00013134eb0ff18e17dd91b7f69aa62350da69baa29cb3d378134b92baea9ace2308f86dfe0be0dfb429ee56c7a568f963be9e4fcfaab9c6b86e

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndPointer.dll

Filesize
25KB

MD5
69926b244ee491952a770cafd3a7d114

SHA1
8eee2c704a1167d28fe8c895d99408dfe8e5f639

SHA256
1fdac480d2517c6b92960ad0e016a13872b7903fd94012036f6dc5c1202f29a8

SHA512
98bb10fdf3ff00013134eb0ff18e17dd91b7f69aa62350da69baa29cb3d378134b92baea9ace2308f86dfe0be0dfb429ee56c7a568f963be9e4fcfaab9c6b86e

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndString.dll

Filesize
44KB

MD5
4c4658bfe43229134aba7c476da5e0cf

SHA1
de537933c23c0417e560f4f4a83ef9fcaaee5f37

SHA256
b1ba4cc11c018b8021c29317a75e598248213f417ac4e447c6f93995c830ef57

SHA512
00b7f4dcbaae16882f21ad9b29ca4e0b9177383aa3bf7ebbd8bba813b18fa948d311ef51d56fe5a39a94153ebe623908fd30904d799299473c28895c3bc295cd

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndString.dll

Filesize
44KB

MD5
4c4658bfe43229134aba7c476da5e0cf

SHA1
de537933c23c0417e560f4f4a83ef9fcaaee5f37

SHA256
b1ba4cc11c018b8021c29317a75e598248213f417ac4e447c6f93995c830ef57

SHA512
00b7f4dcbaae16882f21ad9b29ca4e0b9177383aa3bf7ebbd8bba813b18fa948d311ef51d56fe5a39a94153ebe623908fd30904d799299473c28895c3bc295cd

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndString.dll

Filesize
44KB

MD5
4c4658bfe43229134aba7c476da5e0cf

SHA1
de537933c23c0417e560f4f4a83ef9fcaaee5f37

SHA256
b1ba4cc11c018b8021c29317a75e598248213f417ac4e447c6f93995c830ef57

SHA512
00b7f4dcbaae16882f21ad9b29ca4e0b9177383aa3bf7ebbd8bba813b18fa948d311ef51d56fe5a39a94153ebe623908fd30904d799299473c28895c3bc295cd

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndVersion.dll

Filesize
67KB

MD5
d1e7062775a3b95a43a0bf639e9ca98e

SHA1
6f00a58d62cfa2b629ddfe75c464799e1e4091db

SHA256
6d259489dbd954ee58cd4e57c0d9a02338fff423f7c068e5e9a5585840a558b5

SHA512
5c55bcd767b462e46dc7afa05fd796c1cd022e54c77319774eb97a82124e9723915b0af8950dfd1c5f3d237f630c0df8c145629196612914df75c18d0e53d0ac

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\FndVersion.dll

Filesize
67KB

MD5
d1e7062775a3b95a43a0bf639e9ca98e

SHA1
6f00a58d62cfa2b629ddfe75c464799e1e4091db

SHA256
6d259489dbd954ee58cd4e57c0d9a02338fff423f7c068e5e9a5585840a558b5

SHA512
5c55bcd767b462e46dc7afa05fd796c1cd022e54c77319774eb97a82124e9723915b0af8950dfd1c5f3d237f630c0df8c145629196612914df75c18d0e53d0ac

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\GeneralMovaviTrackerWrapper.dll

Filesize
79KB

MD5
8db7ac3d20264cb4637d9fcf6d8e254e

SHA1
11af927fc1e453b3f83e14a2d2c50a2001f6957d

SHA256
5927af85dcf9639f8dbd3bdbec3c3f0d42888595326f7835d71bc7e150bf3385

SHA512
a66a3c5e4f62d2d1cfbb411a6ca1b0a5c9109052d6377b847314b332f4cae2896ea58e39275e9fb7323db6843cb8ae5a898cf5bed1138553415c7c452537dc81

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\GeneralMovaviTrackerWrapper.dll

Filesize
79KB

MD5
8db7ac3d20264cb4637d9fcf6d8e254e

SHA1
11af927fc1e453b3f83e14a2d2c50a2001f6957d

SHA256
5927af85dcf9639f8dbd3bdbec3c3f0d42888595326f7835d71bc7e150bf3385

SHA512
a66a3c5e4f62d2d1cfbb411a6ca1b0a5c9109052d6377b847314b332f4cae2896ea58e39275e9fb7323db6843cb8ae5a898cf5bed1138553415c7c452537dc81

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerGUI.exe

Filesize
1.1MB

MD5
9d36fafb8a367e89c58b7a5f2f629352

SHA1
b9b9a48cb9346a8b847b6da7e983b1dcd318c38d

SHA256
d930e724628c447ce71f0b725f7b451563c8402bc76faca42ef9d48ce708e76d

SHA512
2b840e9bb0489737572106addb5f3d16c2d97a80722774773c29b9b90699c8718de181a8649e6993ffbb04883215887bad07e5b286b4cfa63a8f2a1fc7e9b96d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerGUI.exe

Filesize
1.1MB

MD5
9d36fafb8a367e89c58b7a5f2f629352

SHA1
b9b9a48cb9346a8b847b6da7e983b1dcd318c38d

SHA256
d930e724628c447ce71f0b725f7b451563c8402bc76faca42ef9d48ce708e76d

SHA512
2b840e9bb0489737572106addb5f3d16c2d97a80722774773c29b9b90699c8718de181a8649e6993ffbb04883215887bad07e5b286b4cfa63a8f2a1fc7e9b96d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerLib.dll

Filesize
4.3MB

MD5
d1758992de4fcabf44cbfe039aac633e

SHA1
c6ced6f19678527a114dca346331708a5a469f2d

SHA256
45b7b8830a93cdb60c8754547cee8567b4850b2e86c4e6b5a301eaa7b2bfb181

SHA512
2234972c7111d1880321389f1dae003710d8ee08f62ea1ef7415bdf519263e7e9532a877a206d97a99f15e10fd1304320f3fe42dbd6edb49890ed26e00701868

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\InstallerLib.dll

Filesize
4.3MB

MD5
d1758992de4fcabf44cbfe039aac633e

SHA1
c6ced6f19678527a114dca346331708a5a469f2d

SHA256
45b7b8830a93cdb60c8754547cee8567b4850b2e86c4e6b5a301eaa7b2bfb181

SHA512
2234972c7111d1880321389f1dae003710d8ee08f62ea1ef7415bdf519263e7e9532a877a206d97a99f15e10fd1304320f3fe42dbd6edb49890ed26e00701868

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MQtUtil.dll

Filesize
534KB

MD5
4205c5e2696b4f3ebc28a7de208232d0

SHA1
50d74ecb7c357210ac1cc29d8e24313f400b6bf1

SHA256
136d900738303160e8e1ebb28b9c775ad9c7bbba0700b65eecbc441bbaebd173

SHA512
1a78bc3f014bcc2a10112b404f39c9777c9c4414d21167cf621058c442e04a5d582c3dc4193fded01dea5cd6daf1370a10213f2f8915b67d8fd186a903e3ac45

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MQtUtil.dll

Filesize
534KB

MD5
4205c5e2696b4f3ebc28a7de208232d0

SHA1
50d74ecb7c357210ac1cc29d8e24313f400b6bf1

SHA256
136d900738303160e8e1ebb28b9c775ad9c7bbba0700b65eecbc441bbaebd173

SHA512
1a78bc3f014bcc2a10112b404f39c9777c9c4414d21167cf621058c442e04a5d582c3dc4193fded01dea5cd6daf1370a10213f2f8915b67d8fd186a903e3ac45

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MSVCP140.dll

Filesize
552KB

MD5
29c6c243cfb1cec96b4a1008274f9600

SHA1
c54b10ef6305cc3814c68e6c8fd6daecbb27622a

SHA256
44a5af24f8d5f9c50a9e5a200a0486100afb6a0e86377e2e3e622a7bbb57cb04

SHA512
39c34554ea7b6d433c2aecfdeff87959e625e943bf7a446ebca8e5878eaf24198c1b188359a0343fb78478f2bc8b986ca4d0e69d39bac6ff80cb901fe4f113ee

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\MovaviWidget.dll

Filesize
441KB

MD5
32c1afb26ed98aeb357b95167d838865

SHA1
131d79e18c66651868aac04bfe909b7a771db79a

SHA256
70ffdab597e2ae2fdf847bc18681cf0ab328f149e7776de1f57442efeb33e00d

SHA512
68385ea9e4634899dd9812c7246b28586eb439efde5e440b6e0a4716c973bb43ef2360960f2d9455ddb11b9e605c5292744401889faff1fe17c1e7356342096b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginCheckFun.dll

Filesize
96KB

MD5
1fe00247bb5d0016192246ef1ff2c816

SHA1
ca047b959e3483e7c1bb38703191b16ebb6ab03b

SHA256
f63bbd0470314e3d4a19a5fec39045e5779c0b2ed0a73e2b73c06cb1c916b53f

SHA512
006676dac0a9e02b3ec9779929a47a960f5a9d33d7a0334ac6ebba3f7c48d3e6d10c93f53a01f5c83a19f2d5f4a227ee1eb309932720e01f56683d14d301d75a

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\PluginCheckFun.dll

Filesize
96KB

MD5
1fe00247bb5d0016192246ef1ff2c816

SHA1
ca047b959e3483e7c1bb38703191b16ebb6ab03b

SHA256
f63bbd0470314e3d4a19a5fec39045e5779c0b2ed0a73e2b73c06cb1c916b53f

SHA512
006676dac0a9e02b3ec9779929a47a960f5a9d33d7a0334ac6ebba3f7c48d3e6d10c93f53a01f5c83a19f2d5f4a227ee1eb309932720e01f56683d14d301d75a

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Core.dll

Filesize
5.8MB

MD5
d8d89690855f48497c7a5171e3b35cd8

SHA1
db09ed59c226ce00d98e17ce8d67ec5ae65882d6

SHA256
fbf17da60876db492b0dd35d7117a171e780800d85d4d6653738bef7d70333b3

SHA512
7b86061cf9770cf3d0dbfd284f4e396645b71a3d2759507eff4e7dc2ace577aa46ddb216c8469ad034e5332f19dc98abb5214283a430a323398210a1fa908ce7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Core.dll

Filesize
5.8MB

MD5
d8d89690855f48497c7a5171e3b35cd8

SHA1
db09ed59c226ce00d98e17ce8d67ec5ae65882d6

SHA256
fbf17da60876db492b0dd35d7117a171e780800d85d4d6653738bef7d70333b3

SHA512
7b86061cf9770cf3d0dbfd284f4e396645b71a3d2759507eff4e7dc2ace577aa46ddb216c8469ad034e5332f19dc98abb5214283a430a323398210a1fa908ce7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Gui.dll

Filesize
6.5MB

MD5
2c088f57c08b3aceb1bc37d2728fd603

SHA1
5deb5fcaf7b90c3b9e8c3d0ec22bc394c8143617

SHA256
7ac9fed5e55391a864f8d9eccd747baf0097d60f18ac3cbb6f889b168e3ad4d5

SHA512
e016b651cee05910101913976fcb0aadff43784ccde7b3697c93cded7862f5e11c9ccb915caabaf7145468313734eb63f6a3b739a687ffccc90a1f005e5f53f4

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Gui.dll

Filesize
6.5MB

MD5
2c088f57c08b3aceb1bc37d2728fd603

SHA1
5deb5fcaf7b90c3b9e8c3d0ec22bc394c8143617

SHA256
7ac9fed5e55391a864f8d9eccd747baf0097d60f18ac3cbb6f889b168e3ad4d5

SHA512
e016b651cee05910101913976fcb0aadff43784ccde7b3697c93cded7862f5e11c9ccb915caabaf7145468313734eb63f6a3b739a687ffccc90a1f005e5f53f4

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Widgets.dll

Filesize
5.3MB

MD5
9d72caff2f5b5197e624d36f3878c61f

SHA1
23f81afa894b0e77efd45c5ece024459292221e2

SHA256
27ec360c740c9b6e5cc3ab796f5fb844ddada5c847fdf3fb00f2abacc2313473

SHA512
e18c2ce361f68ee6b50062ec627b7cadf483b955251e72e374ab945fdc1448e25f8e802c0b27dec003e2ca38d863c4c3623ba1d5015496ec2a495b44ce9d6aa9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Qt5Widgets.dll

Filesize
5.3MB

MD5
9d72caff2f5b5197e624d36f3878c61f

SHA1
23f81afa894b0e77efd45c5ece024459292221e2

SHA256
27ec360c740c9b6e5cc3ab796f5fb844ddada5c847fdf3fb00f2abacc2313473

SHA512
e18c2ce361f68ee6b50062ec627b7cadf483b955251e72e374ab945fdc1448e25f8e802c0b27dec003e2ca38d863c4c3623ba1d5015496ec2a495b44ce9d6aa9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Tracker.dll

Filesize
39KB

MD5
76fa5f67747c14f5acab02657bc4afd1

SHA1
cdf493e8283ce42369e0663c4699006152c5b2e7

SHA256
60afaea2107997b90fc488d3c9f5534598690768313b8bc2965079bcba756a55

SHA512
9ed75563e47299354814eafce09e4d501899b2e6eb9c3653ae5aa40dd9f6bf8f5ded555b6a214c7d6b79110a8f516a7366c202598d23c8afee899ce9793b74a7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\Tracker.dll

Filesize
39KB

MD5
76fa5f67747c14f5acab02657bc4afd1

SHA1
cdf493e8283ce42369e0663c4699006152c5b2e7

SHA256
60afaea2107997b90fc488d3c9f5534598690768313b8bc2965079bcba756a55

SHA512
9ed75563e47299354814eafce09e4d501899b2e6eb9c3653ae5aa40dd9f6bf8f5ded555b6a214c7d6b79110a8f516a7366c202598d23c8afee899ce9793b74a7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\TrackerFactory.dll

Filesize
117KB

MD5
fb89d641c8e8ffebc4356bdd7a2025cf

SHA1
8d2bd712e59693cb039612c156aeb535af2ba3ca

SHA256
f23d1f488339472c9f99af8f9c93f6579939cbce8c24e4ab541cc26fc4a0df4e

SHA512
20bc04aa4cf6024a4fd71fc76572f00d092ebecfc8bf8ebf542253cbd5a74c17ef6f235987a2097ef9ceeda874d3b76c696c208a77895a702f1170a038aed882

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\TrackerFactory.dll

Filesize
117KB

MD5
fb89d641c8e8ffebc4356bdd7a2025cf

SHA1
8d2bd712e59693cb039612c156aeb535af2ba3ca

SHA256
f23d1f488339472c9f99af8f9c93f6579939cbce8c24e4ab541cc26fc4a0df4e

SHA512
20bc04aa4cf6024a4fd71fc76572f00d092ebecfc8bf8ebf542253cbd5a74c17ef6f235987a2097ef9ceeda874d3b76c696c208a77895a702f1170a038aed882

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\VCRUNTIME140.dll

Filesize
94KB

MD5
02794a29811ba0a78e9687a0010c37ce

SHA1
97b5701d18bd5e25537851614099e2ffce25d6d8

SHA256
1729421a22585823493d5a125cd43a470889b952a2422f48a7bc8193f5c23b0f

SHA512
caf2a478e9c78c8e93dd2288ed98a9261fcf2b7e807df84f2e4d76f8130c2e503eb2470c947a678ac63e59d7d54f74e80e743d635428aa874ec2d06df68d0272

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\VCRUNTIME140_1.dll

Filesize
36KB

MD5
d8d1a08176ba2542c58669c1c04da1b7

SHA1
e0d0059baf23fb5e1d2dadedc12e2f53c930256d

SHA256
26c29d01df73a8e35d32e430c892d925abb6e4ad62d3630ae42b69daacba1a0d

SHA512
5308790fbcf6348e87e7d5b9235ed66942527326f7ba556c910d68d94617bdd247a4ed540b4b9f8d4e73d15cf4a7204c0a57d4fd348ec26e53f39b91be8617fb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\boost_filesystem-mt-x64.dll

Filesize
124KB

MD5
f1f8544abaae47b61cbbb5c8ba4bdcbd

SHA1
8ff7de499f3bf503be60851262fba516152d6bba

SHA256
57731503db5a05f1dff01b00c983ff5b00c6bd228f8615301afaeeef83437f08

SHA512
13a3a4cb288c485750fcf5c6c033511547b44cc705ca42e16bf4c554e6c104313eaaf78eb6fbf42e356656d8b103aadcc8e08f7593166c85f4a2ecc792493207

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\boost_filesystem-mt-x64.dll

Filesize
124KB

MD5
f1f8544abaae47b61cbbb5c8ba4bdcbd

SHA1
8ff7de499f3bf503be60851262fba516152d6bba

SHA256
57731503db5a05f1dff01b00c983ff5b00c6bd228f8615301afaeeef83437f08

SHA512
13a3a4cb288c485750fcf5c6c033511547b44cc705ca42e16bf4c554e6c104313eaaf78eb6fbf42e356656d8b103aadcc8e08f7593166c85f4a2ecc792493207

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\glog.dll

Filesize
114KB

MD5
4f255c84763533758bbaaa44bfa3ab65

SHA1
c59e416aee8573ce29f4df713b239e85938d5de0

SHA256
cd2cbd578f37b834fb5c3567711d790643ec1b78aa701b4dc2966d6a72e2a4a2

SHA512
bb68f5a7fbf2151d1ae65871123bf9abd33ea682d475e607f19034eb0da0338d83d45c6bc4604385fcd4164cda0fbea538044cdf2f8fce37b62ed204c056cd33

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\glog.dll

Filesize
114KB

MD5
4f255c84763533758bbaaa44bfa3ab65

SHA1
c59e416aee8573ce29f4df713b239e85938d5de0

SHA256
cd2cbd578f37b834fb5c3567711d790643ec1b78aa701b4dc2966d6a72e2a4a2

SHA512
bb68f5a7fbf2151d1ae65871123bf9abd33ea682d475e607f19034eb0da0338d83d45c6bc4604385fcd4164cda0fbea538044cdf2f8fce37b62ed204c056cd33

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\glog.dll

Filesize
114KB

MD5
4f255c84763533758bbaaa44bfa3ab65

SHA1
c59e416aee8573ce29f4df713b239e85938d5de0

SHA256
cd2cbd578f37b834fb5c3567711d790643ec1b78aa701b4dc2966d6a72e2a4a2

SHA512
bb68f5a7fbf2151d1ae65871123bf9abd33ea682d475e607f19034eb0da0338d83d45c6bc4604385fcd4164cda0fbea538044cdf2f8fce37b62ed204c056cd33

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\msvcp140.dll

Filesize
552KB

MD5
29c6c243cfb1cec96b4a1008274f9600

SHA1
c54b10ef6305cc3814c68e6c8fd6daecbb27622a

SHA256
44a5af24f8d5f9c50a9e5a200a0486100afb6a0e86377e2e3e622a7bbb57cb04

SHA512
39c34554ea7b6d433c2aecfdeff87959e625e943bf7a446ebca8e5878eaf24198c1b188359a0343fb78478f2bc8b986ca4d0e69d39bac6ff80cb901fe4f113ee

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\vcruntime140.dll

Filesize
94KB

MD5
02794a29811ba0a78e9687a0010c37ce

SHA1
97b5701d18bd5e25537851614099e2ffce25d6d8

SHA256
1729421a22585823493d5a125cd43a470889b952a2422f48a7bc8193f5c23b0f

SHA512
caf2a478e9c78c8e93dd2288ed98a9261fcf2b7e807df84f2e4d76f8130c2e503eb2470c947a678ac63e59d7d54f74e80e743d635428aa874ec2d06df68d0272

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\vcruntime140.dll

Filesize
94KB

MD5
02794a29811ba0a78e9687a0010c37ce

SHA1
97b5701d18bd5e25537851614099e2ffce25d6d8

SHA256
1729421a22585823493d5a125cd43a470889b952a2422f48a7bc8193f5c23b0f

SHA512
caf2a478e9c78c8e93dd2288ed98a9261fcf2b7e807df84f2e4d76f8130c2e503eb2470c947a678ac63e59d7d54f74e80e743d635428aa874ec2d06df68d0272

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\vcruntime140_1.dll

Filesize
36KB

MD5
d8d1a08176ba2542c58669c1c04da1b7

SHA1
e0d0059baf23fb5e1d2dadedc12e2f53c930256d

SHA256
26c29d01df73a8e35d32e430c892d925abb6e4ad62d3630ae42b69daacba1a0d

SHA512
5308790fbcf6348e87e7d5b9235ed66942527326f7ba556c910d68d94617bdd247a4ed540b4b9f8d4e73d15cf4a7204c0a57d4fd348ec26e53f39b91be8617fb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-3796fc8d-4ccb-4639-b0de-f8605853dc6a\vcruntime140_1.dll

Filesize
36KB

MD5
d8d1a08176ba2542c58669c1c04da1b7

SHA1
e0d0059baf23fb5e1d2dadedc12e2f53c930256d

SHA256
26c29d01df73a8e35d32e430c892d925abb6e4ad62d3630ae42b69daacba1a0d

SHA512
5308790fbcf6348e87e7d5b9235ed66942527326f7ba556c910d68d94617bdd247a4ed540b4b9f8d4e73d15cf4a7204c0a57d4fd348ec26e53f39b91be8617fb

Download Submit
C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-302875305\1352781463_Wnzkvto_.exe

Filesize
90.1MB

MD5
5df245fde4e3f391c971eef69cd5b81a

SHA1
d850c5d0b1426b20016e43cc1260f8dc453daf40

SHA256
e0ab15ac2da2fb2fdbe3f2c47179453665aa2dd0ec0bfe47654a0cc9ed9cabc8

SHA512
bbd0f1296e21b6ba4c06b6699c386e63a4d74d3f2a00daec4d93cfe17c9838b81c955141610e2286700b79c963ac0daf3b54b00216e414bbc56fc2bdd0739d91

Download Submit
C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-302875305\1352781463_Wnzkvto_.exe

Filesize
90.1MB

MD5
5df245fde4e3f391c971eef69cd5b81a

SHA1
d850c5d0b1426b20016e43cc1260f8dc453daf40

SHA256
e0ab15ac2da2fb2fdbe3f2c47179453665aa2dd0ec0bfe47654a0cc9ed9cabc8

SHA512
bbd0f1296e21b6ba4c06b6699c386e63a4d74d3f2a00daec4d93cfe17c9838b81c955141610e2286700b79c963ac0daf3b54b00216e414bbc56fc2bdd0739d91

Download Submit
C:\Users\Admin\AppData\Local\Temp\scoped_dir4808_710523845\CRX_INSTALL\_locales\en_CA\messages.json

Filesize
711B

MD5
558659936250e03cc14b60ebf648aa09

SHA1
32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825

SHA256
2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b

SHA512
1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727

Download Submit
C:\Users\Admin\AppData\Local\Temp\scoped_dir4808_710523845\ff8e3664-bd76-4a3c-a175-751d45cd4558.tmp

Filesize
88KB

MD5
9caa8c614bab0c667ec308c2fc7268d0

SHA1
118810cb2e84e9fb58b45786809e1062c1032658

SHA256
3474c2e016e2e6558afa52729659a90e014e7437be68f8606f9f152f1ba2f8fa

SHA512
85111e6075bd5b5a260684cdcb30718f6b0ea295faeeb5e8e406848597a3e35b62a15cd0977c6a13c62537021db00d0bb2317bfe3773e40028495f4e19bf7369

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\MovaviStatistics.exe

Filesize
50KB

MD5
56d01c79e6d8d208a1651bca4dda8560

SHA1
785ba69adfad24c4a565fb3f640961d396681202

SHA256
5fd3ba7fd176b2bfa4b14f5d53718bacb67ef20b7b0deeb6328f0de3a56a53df

SHA512
03e0c09ec88dc9f87e852caf780e8c2e69e3110fbe55887e8d6f0b23a3263f6d462fd3c94a918ad60c71818ba4e27e5d65fe3ba122d0d3c5fd591322a75b158b

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\VideoEditor.exe

Filesize
7.3MB

MD5
a2dc38d5e9df8c6e30de9def55dd0061

SHA1
dcab779f6850c072fd44bbcb9ef0a6c918def695

SHA256
50f9e5079427838e24e416181e307f4eeb43e602d2eaa5eea97f764952fd4410

SHA512
5ffa72c06b5d3febab1841c5731f3072d107f74c36a8af558fe3c062c0241e59a8ffa310996319374ccda31c1ed24fc4b87ce1b2f3558e3ad6862acdf1e6d0ba

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\animations\All\05__Downward\meta.json

Filesize
57B

MD5
397860e39114807636143cf9cded92d0

SHA1
105b7f704618fff593c5a0cdd3195496ff8dd770

SHA256
4e1bffe7ba9fc5997d2772351ed5fc876bbb9082876867668ac2f3374fe0a967

SHA512
add114e352c8b98bbf0f404cbdaad92495ad149c91d64b3b4139a8a99e7d502ccbdb1e63d9b0146b6ab298c6ce3a5ceadf47785c75c197d7977a023bb50d8961

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\imports\Audio\Audio_Beep_set\images\preview.png

Filesize
5KB

MD5
2be0449cb69305f3d7108801d75220e8

SHA1
a00d24ed4f86a990d608aaee0aab41b052ca3faa

SHA256
0e3e825d4ad89330bdf051defaadc3fb1401bab8af64337b05a8802542718f2e

SHA512
97f40c818dad8013995e8267604ab65990bd34150ce44b63318f7491665fd28e24869722eaa90b3d6b2d46269b9a3bb1a8020674f35d25631520771f5ec05919

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockNewEffects2020\effects\all\{bbed1f60-10d7-4b68-a9e9-4c808f3b4fee}\version.xml

Filesize
111B

MD5
ee967846b96120d073ae5e8322a23b3e

SHA1
79d2551e78f09fcfbe3768bb785baca08d994bb6

SHA256
3d8f290b1548b462c6ea73f1d075abc84ea951641e237e853f639268318c5e03

SHA512
89b215294f0c498492d82c5a9fc62e30eac65299a760c9b73fcd693975eec1aab373b2d25e1fe75289d41620135c204beb605eb0726e2f3554fd7b35f924b162

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockThemesPack\imports\all\{475708e8-6e49-416f-b2e8-c08c5fd663da}\version.xml

Filesize
111B

MD5
f4e01c472f397751b00783072ee3d41b

SHA1
7bbb4c67cdb42bc4ab9011c51ea5307dce46138e

SHA256
2fd01c6dc5ddb425d4c2e2a2c40f46cff667e2768385dbbae4d622dfe509a5f0

SHA512
c63f1fe50d01b9171ce107262ab5e03db8e3b7ee922e48c21404d33b59f7b8893493bf39e35c4e4e2c99550f4e22510488b5e2b75f7d20f64372a436fb925d50

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockThemesPack\resources\randomTheme\theme\version.xml

Filesize
111B

MD5
40b03fd39ce75a817795881d9bb408db

SHA1
7a32668c8d74d470a16e5dd6bd53a85bd68d53e0

SHA256
769cadc93b30fc0a019d7e6ae27f4191bfcd03d2dc05029303971183f3b55d23

SHA512
8f9d027a765b2e7d00f74e35b1f97ae4df19db4d0b56da7c7213ac594ae9def7100aab74e86ce8dd92a3d13ee7d8f4069c891da4e9ff3ea650383c2a040f0803

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockTransitionsWithAudio\Transitions\all\{98e9e41e-3a7d-499e-84b9-8d264b0fab94}\version.xml

Filesize
112B

MD5
5a92f85207732f261e8c9780ee31d4f1

SHA1
62735ffceaceee0f5662ab56c534401f95cabb78

SHA256
18f339c06a84c2075b9de5610233f1775e999fc4f56856e123f02e23c6bf54fd

SHA512
8877bc84ba928e98e103c5d7e24f885b9ba2639119b959b26e9a812061f706875577bd467b9e720c998999a65d81908b87ff93f864bb09652afbc7258b785447

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockWhooshTransitions\transitions\all\{1c3ea148-67bc-4ebf-a4c2-9386a130026c}\version.xml

Filesize
108B

MD5
5eef0966fad2031510ea22c37c06cf16

SHA1
0bb95bc1d28700e13547e4b58d3861a7b2a5e8cf

SHA256
3f8def7c6ee86d81011715cd98fc70d1fdb36dd9cfcbec117f0237bcea211c67

SHA512
a91cf3b139c781e10d6ea674c27e3f0b72831d2e62ba0f6c092c1b144ba2ac49b925f3cb8b548d5b14ec5068ef2a6e29d2fb65cca7c5950c3fa7e371af32dec8

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\uninst.exe

Filesize
1.1MB

MD5
9d36fafb8a367e89c58b7a5f2f629352

SHA1
b9b9a48cb9346a8b847b6da7e983b1dcd318c38d

SHA256
d930e724628c447ce71f0b725f7b451563c8402bc76faca42ef9d48ce708e76d

SHA512
2b840e9bb0489737572106addb5f3d16c2d97a80722774773c29b9b90699c8718de181a8649e6993ffbb04883215887bad07e5b286b4cfa63a8f2a1fc7e9b96d

Download Submit
memory/504-5230-0x000001DC66110000-0x000001DC66120000-memory.dmp

Filesize
64KB

Download
memory/904-5346-0x0000022BEA120000-0x0000022BEA130000-memory.dmp

Filesize
64KB

Download
memory/1064-5158-0x000001A711D30000-0x000001A711D31000-memory.dmp

Filesize
4KB

Download
memory/1404-5156-0x000001F67F030000-0x000001F67F040000-memory.dmp

Filesize
64KB

Download
memory/1528-4455-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1528-4449-0x00007FFD3E3F0000-0x00007FFD40BC1000-memory.dmp

Filesize
39.8MB

Download
memory/1528-4447-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/1528-4451-0x00007FFD44650000-0x00007FFD4488D000-memory.dmp

Filesize
2.2MB

Download
memory/1528-4452-0x00007FFD44530000-0x00007FFD445C2000-memory.dmp

Filesize
584KB

Download
memory/1528-4453-0x00007FFD44430000-0x00007FFD44458000-memory.dmp

Filesize
160KB

Download
memory/1528-4456-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1528-4457-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1528-4454-0x00007FFD44390000-0x00007FFD44425000-memory.dmp

Filesize
596KB

Download
memory/1572-3562-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1572-3539-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1572-3136-0x00007FFD3E3F0000-0x00007FFD40BC1000-memory.dmp

Filesize
39.8MB

Download
memory/1572-3427-0x00007FFD44530000-0x00007FFD445C2000-memory.dmp

Filesize
584KB

Download
memory/1572-3446-0x00007FFD44430000-0x00007FFD44458000-memory.dmp

Filesize
160KB

Download
memory/1572-3378-0x00007FFD44650000-0x00007FFD4488D000-memory.dmp

Filesize
2.2MB

Download
memory/1572-3500-0x00007FFD44390000-0x00007FFD44425000-memory.dmp

Filesize
596KB

Download
memory/1572-3517-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1572-3062-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/1916-1017-0x00007FFD44650000-0x00007FFD4488D000-memory.dmp

Filesize
2.2MB

Download
memory/1916-1196-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1916-1197-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1916-1140-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1916-1122-0x00007FFD44390000-0x00007FFD44425000-memory.dmp

Filesize
596KB

Download
memory/1916-1052-0x00007FFD44430000-0x00007FFD44458000-memory.dmp

Filesize
160KB

Download
memory/1916-1046-0x00007FFD44530000-0x00007FFD445C2000-memory.dmp

Filesize
584KB

Download
memory/1916-796-0x00007FFD3E3F0000-0x00007FFD40BC1000-memory.dmp

Filesize
39.8MB

Download
memory/1916-794-0x000002820EB30000-0x000002820EB40000-memory.dmp

Filesize
64KB

Download
memory/1916-733-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/2416-5245-0x0000019EAA950000-0x0000019EAAB50000-memory.dmp

Filesize
2.0MB

Download
memory/2416-5233-0x0000019EAA950000-0x0000019EAAB50000-memory.dmp

Filesize
2.0MB

Download
memory/2416-5229-0x0000019EA9100000-0x0000019EA9110000-memory.dmp

Filesize
64KB

Download
memory/2444-4465-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/2852-5146-0x0000021696900000-0x0000021696910000-memory.dmp

Filesize
64KB

Download
memory/2852-2162-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/2852-2208-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/2852-2150-0x00007FFD44650000-0x00007FFD4488D000-memory.dmp

Filesize
2.2MB

Download
memory/2852-4450-0x00007FFD43BC0000-0x00007FFD4417B000-memory.dmp

Filesize
5.7MB

Download
memory/2852-2155-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/2852-478-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/2852-2153-0x00007FFD44430000-0x00007FFD44458000-memory.dmp

Filesize
160KB

Download
memory/2852-2152-0x0000000068DC0000-0x00000000690B1000-memory.dmp

Filesize
2.9MB

Download
memory/2852-2151-0x00007FFD44530000-0x00007FFD445C2000-memory.dmp

Filesize
584KB

Download
memory/2852-479-0x00007FFD45080000-0x00007FFD4547D000-memory.dmp

Filesize
4.0MB

Download
memory/2852-505-0x00007FFD43BC0000-0x00007FFD4417B000-memory.dmp

Filesize
5.7MB

Download
memory/2852-528-0x0000021691BB0000-0x0000021691BC0000-memory.dmp

Filesize
64KB

Download
memory/2852-5279-0x0000021696900000-0x0000021696910000-memory.dmp

Filesize
64KB

Download
memory/2852-2154-0x00007FFD44390000-0x00007FFD44425000-memory.dmp

Filesize
596KB

Download
memory/2852-2156-0x00007FFD3E3F0000-0x00007FFD40BC1000-memory.dmp

Filesize
39.8MB

Download
memory/2852-556-0x00007FFD43A40000-0x00007FFD43FFB000-memory.dmp

Filesize
5.7MB

Download
memory/3064-546-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/3208-3269-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/3408-5281-0x00000242E82F0000-0x00000242E8300000-memory.dmp

Filesize
64KB

Download
memory/3972-5390-0x00007FFD3B4D0000-0x00007FFD3BA8B000-memory.dmp

Filesize
5.7MB

Download
memory/3972-5407-0x0000025622900000-0x0000025622910000-memory.dmp

Filesize
64KB

Download
memory/3972-5361-0x00007FFD3BB00000-0x00007FFD3C0BB000-memory.dmp

Filesize
5.7MB

Download
memory/3972-5360-0x0000025622900000-0x0000025622910000-memory.dmp

Filesize
64KB

Download
memory/3972-5408-0x00007FFD3BB00000-0x00007FFD3C0BB000-memory.dmp

Filesize
5.7MB

Download
memory/4108-5157-0x0000014073FB0000-0x0000014073FC0000-memory.dmp

Filesize
64KB

Download
memory/4432-4663-0x0000023B78E60000-0x0000023B78E70000-memory.dmp

Filesize
64KB

Download
memory/4564-2520-0x00007FFD44530000-0x00007FFD445C2000-memory.dmp

Filesize
584KB

Download
memory/4564-2209-0x00007FFD3E3F0000-0x00007FFD40BC1000-memory.dmp

Filesize
39.8MB

Download
memory/4564-2149-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/4564-2527-0x00007FFD44430000-0x00007FFD44458000-memory.dmp

Filesize
160KB

Download
memory/4564-2638-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/4564-2570-0x00007FFD44390000-0x00007FFD44425000-memory.dmp

Filesize
596KB

Download
memory/4564-2796-0x0000000068DC0000-0x00000000690B1000-memory.dmp

Filesize
2.9MB

Download
memory/4564-2817-0x00007FFD496D0000-0x00007FFD49700000-memory.dmp

Filesize
192KB

Download
memory/4564-2740-0x00007FFD43760000-0x00007FFD439ED000-memory.dmp

Filesize
2.6MB

Download
memory/4564-2464-0x00007FFD44650000-0x00007FFD4488D000-memory.dmp

Filesize
2.2MB

Download
memory/4564-2697-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/4564-2678-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/4572-5228-0x00000171B3EA0000-0x00000171B3EB0000-memory.dmp

Filesize
64KB

Download
memory/4912-4725-0x000001A0F7E50000-0x000001A0F7E60000-memory.dmp

Filesize
64KB

Download
memory/4912-524-0x00007FFD47A90000-0x00007FFD47FDA000-memory.dmp

Filesize
5.3MB

Download
memory/4912-2216-0x000001A0F7E50000-0x000001A0F7E60000-memory.dmp

Filesize
64KB

Download
memory/4912-4884-0x000001A0F7E50000-0x000001A0F7E60000-memory.dmp

Filesize
64KB

Download