9bb1ffc5759cda1bf670be9acfe8626abfdb3b23b50504e4dfc00b609df2b7ad

Analysis

max time kernel
265s
max time network
201s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
26-05-2023 03:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
Size

1.9MB
MD5

1176914c8a8cfee425ba582c595065d6
SHA1

3f38397cd5e7aa69902badf6d7b9b935f5e822df
SHA256

9bb1ffc5759cda1bf670be9acfe8626abfdb3b23b50504e4dfc00b609df2b7ad
SHA512

e6597857c382b8e52f3080f75b442b3347abde1213c9b0ea53ffb8f6c42f14e4d138f46c1d116cb864f5808d33b916a633c0beef7db578599328d7474cf914f5
SSDEEP

49152:lvhlHWBwS6D7ddSNPHu0gbZs3HaGYLWEdZYgVbBr:RLHW2ZWH5gO3HXYLu2

Score

8^/10

bootkit persistence

Malware Config

Signatures

Downloads MZ/PE file

Checks BIOS information in registry 2 TTPs 2 IoCs

BIOS information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

Processes:

InstallerGUI.exe

description	ioc	process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion	InstallerGUI.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion	InstallerGUI.exe

Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs
Bootkits write to the MBR to gain persistence at a level below the operating system.
bootkit persistence

Bootkit
T1067

Processes:

InstallerGUI.exe

description ioc process

File opened for modification \??\PhysicalDrive0 InstallerGUI.exe
Drops file in Windows directory 1 IoCs

Processes:

InstallerGUI.exe

description ioc process

File opened for modification C:\Windows\Q487734.log InstallerGUI.exe

description	ioc	process
File opened for modification	\??\PhysicalDrive0	InstallerGUI.exe

description	ioc	process
File opened for modification	C:\Windows\Q487734.log	InstallerGUI.exe

Executes dropped EXE 18 IoCs

Processes:

679365803_Wnpxqjh_.exeInstallerGUI.execrashpad_handler.exeCoreChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exePluginChecker.exe

pid	process
1660	679365803_Wnpxqjh_.exe
1544	InstallerGUI.exe
824	crashpad_handler.exe
1932	CoreChecker.exe
600	PluginChecker.exe
1356	PluginChecker.exe
1236	PluginChecker.exe
1992	PluginChecker.exe
552	PluginChecker.exe
772	PluginChecker.exe
1760	PluginChecker.exe
516	PluginChecker.exe
2780	PluginChecker.exe
1608	PluginChecker.exe
2312	PluginChecker.exe
2000	PluginChecker.exe
2288	PluginChecker.exe
1116	PluginChecker.exe

Loads dropped DLL 64 IoCs

Processes:

MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe679365803_Wnpxqjh_.exeInstallerGUI.exe

pid	process
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1660	679365803_Wnpxqjh_.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe

Modifies registry class 14 IoCs

Processes:

InstallerGUI.exe

description	ioc	process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C0937617-604C-9916-B043}\vnvfowhy = 947d552ee2922fb68c49d85226dc6be1a4bb4238	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = 28b0a6d21c63309abaf9ded5203cc8ff9eed80b1	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C0937617-604C-9916-B043}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = a86fd98c0af02f3caa8eff751a9de7011672fe2d	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}\uumvmmux = 36b0d6aa080bc17ed4c186b5fcab6921bad5f941	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = 14e3d757ea9cb279c40661b5debb6affdc40311c	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{862988D9-7D99-1E06-4CEA}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = 94c5c428c8d00f3c2871d962d8a3e7fee487ec80	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category	InstallerGUI.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C602395E-E89F-DEDE-1AF3}	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{C602395E-E89F-DEDE-1AF3}\vumkpgpo = 466958d3fcdcefb7d0711f9a68e0a3fa420e659a	InstallerGUI.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Classes\CcFWSettg.Category\CLSID\{961EE1CE-3381-7580-E2CB}\khxuuwnb = a4444bd7feae2f3a5c48ff5eee03d4fc38e70ff9	InstallerGUI.exe

Suspicious behavior: AddClipboardFormatListener 2 IoCs

Processes:

InstallerGUI.exePluginChecker.exe

pid process

1544 InstallerGUI.exe
600 PluginChecker.exe
Suspicious behavior: EnumeratesProcesses 6 IoCs

Processes:

InstallerGUI.exe

pid process

1544 InstallerGUI.exe
1544 InstallerGUI.exe
1544 InstallerGUI.exe
1544 InstallerGUI.exe
1544 InstallerGUI.exe
1544 InstallerGUI.exe

pid	process
1544	InstallerGUI.exe
600	PluginChecker.exe

pid	process
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe
1544	InstallerGUI.exe

Suspicious use of SetWindowsHookEx 12 IoCs

Processes:

MovaviVideoEditorPlusSetupC_Wnpxqjh_.exeInstallerGUI.exePluginChecker.exe

pid	process
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
1544	InstallerGUI.exe
600	PluginChecker.exe
600	PluginChecker.exe

Suspicious use of WriteProcessMemory 55 IoCs

Processes:

MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe679365803_Wnpxqjh_.exeInstallerGUI.exeCoreChecker.exe

description	pid	process	target process
PID 1636 wrote to memory of 1660	1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe	679365803_Wnpxqjh_.exe
PID 1636 wrote to memory of 1660	1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe	679365803_Wnpxqjh_.exe
PID 1636 wrote to memory of 1660	1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe	679365803_Wnpxqjh_.exe
PID 1636 wrote to memory of 1660	1636	MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe	679365803_Wnpxqjh_.exe
PID 1660 wrote to memory of 1544	1660	679365803_Wnpxqjh_.exe	InstallerGUI.exe
PID 1660 wrote to memory of 1544	1660	679365803_Wnpxqjh_.exe	InstallerGUI.exe
PID 1660 wrote to memory of 1544	1660	679365803_Wnpxqjh_.exe	InstallerGUI.exe
PID 1544 wrote to memory of 824	1544	InstallerGUI.exe	crashpad_handler.exe
PID 1544 wrote to memory of 824	1544	InstallerGUI.exe	crashpad_handler.exe
PID 1544 wrote to memory of 824	1544	InstallerGUI.exe	crashpad_handler.exe
PID 1544 wrote to memory of 1932	1544	InstallerGUI.exe	CoreChecker.exe
PID 1544 wrote to memory of 1932	1544	InstallerGUI.exe	CoreChecker.exe
PID 1544 wrote to memory of 1932	1544	InstallerGUI.exe	CoreChecker.exe
PID 1932 wrote to memory of 600	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 600	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 600	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1356	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1356	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1356	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1236	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1236	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1236	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1992	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1992	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1992	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 552	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 552	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 552	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 772	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 772	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 772	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1760	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1760	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1760	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 516	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 516	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 516	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2780	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2780	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2780	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1608	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1608	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1608	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2312	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2312	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2312	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2000	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2000	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2000	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2288	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2288	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 2288	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1116	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1116	1932	CoreChecker.exe	PluginChecker.exe
PID 1932 wrote to memory of 1116	1932	CoreChecker.exe	PluginChecker.exe

C:\Users\Admin\AppData\Local\Temp\MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe
"C:\Users\Admin\AppData\Local\Temp\MovaviVideoEditorPlusSetupC_Wnpxqjh_.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1636

C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-1020450502\679365803_Wnpxqjh_.exe
C:/Users/Admin/AppData/Local/Temp/MovaviWebInstaller-1020450502/679365803_Wnpxqjh_.exe /S /LOCALE=en_US /D=C:/Users/Admin/AppData/Roaming /WEBUID=npxqjh /PREFERRED_BROWSER=chrome.exe
2⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:1660

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\InstallerGUI.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\InstallerGUI.exe "--distrib-name=C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-1020450502\679365803_Wnpxqjh_.exe" "/S" "/LOCALE=en_US" "/D=C:/Users/Admin/AppData/Roaming" "/WEBUID=npxqjh" "/PREFERRED_BROWSER=chrome.exe"
3⤵
- Checks BIOS information in registry
- Writes to the Master Boot Record (MBR)
- Drops file in Windows directory
- Executes dropped EXE
- Loads dropped DLL
- Modifies registry class
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1544

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\crashpad_handler.exe
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\crashpad_handler.exe --no-rate-limit --database=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0 --metrics-dir=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0 --url=https://o474997.ingest.sentry.io:443/api/4504371526893568/minidump/?sentry_client=sentry.native/0.5.0&sentry_key=be163ba9c8fc4472baedcce3cfb2b09b --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0\2e0f424c-df81-4f89-767e-e3c961a2566d.run\__sentry-event --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0\2e0f424c-df81-4f89-767e-e3c961a2566d.run\__sentry-breadcrumb1 --attachment=C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0\2e0f424c-df81-4f89-767e-e3c961a2566d.run\__sentry-breadcrumb2 --initial-client-data=0x1d8,0x1dc,0x1e0,0x1ac,0x1e4,0x7fefb591fe8,0x7fefb592000,0x7fefb592018
4⤵
- Executes dropped EXE
PID:824

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\CoreChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\CoreChecker.exe" all
4⤵
- Executes dropped EXE
- Suspicious use of WriteProcessMemory
PID:1932

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" OglManager OglManager
5⤵
- Executes dropped EXE
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
PID:600

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" FiltersFF AlgorithmFactory
5⤵
- Executes dropped EXE
PID:1356

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" DecodersFF CodecFactory
5⤵
- Executes dropped EXE
PID:1236

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncodersFF CodecFactory
5⤵
- Executes dropped EXE
PID:1992

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncoderLossless CodecFactory
5⤵
- Executes dropped EXE
PID:552

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncoderNVENC CodecFactory
5⤵
- Executes dropped EXE
PID:772

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" DecoderNVDEC CodecFactory
5⤵
- Executes dropped EXE
PID:1760

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncoderAMF CodecFactory
5⤵
- Executes dropped EXE
PID:516

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncoderIM CodecFactory
5⤵
- Executes dropped EXE
PID:2780

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" DecoderMF CodecFactory
5⤵
- Executes dropped EXE
PID:1608

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EncoderMF CodecFactory
5⤵
- Executes dropped EXE
PID:2312

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" DecoderRAW CodecFactory
5⤵
- Executes dropped EXE
PID:2000

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" Effects EffectFactory
5⤵
- Executes dropped EXE
PID:2288

C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe
"C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\PluginChecker.exe" EffectsFF EffectFactory
5⤵
- Executes dropped EXE
PID:1116

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Movavi\Sentry\videoeditorplus\23.4.1\installer\0.5.0\2e0f424c-df81-4f89-767e-e3c961a2566d.run\__sentry-breadcrumb1

Filesize
1002B

MD5
06c943032b27fcaa0fc189789c9b1d92

SHA1
ae3aa0ab284c9121c53c687b641ba292d008ad0f

SHA256
311190e734043c9c356086e197712d51143631dc0bb61fe744f7435fcfc09896

SHA512
f1665236cac50ecb5f8d4e4b25fce86a9f7b54af2561aa04c7b3601d5a80820e23652430b225f2bbfe258024e92c354d4d5ca8dea60410f6bc9087866a642d55

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\CrashHandlerInitializer.dll

Filesize
29KB

MD5
8aa014ff326eddcfc9248119ee0a520e

SHA1
854c45a667af74400f085ce39400335781fb8978

SHA256
a6b0569d09cc14b5984520326c0fee7fe29ad72dae86dea7691fbec33568aed7

SHA512
ea6bcc2fb5ba2129bd6bd5c1b6e1003c6a509d6face93b0155222f9061d7e9739951a9699bb7a6436a241a4454528a5d7b61eb4b4234a2030a2decc0ce183966

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndAppLocations.dll

Filesize
37KB

MD5
963ff787a8e0b75bd66d43c5216f2199

SHA1
fbcb32d69a064d99547d8d34118fa747a481105a

SHA256
df4d2cc8560a68017255d6ca08d18fe7693b23e6a34de5666439c39e8353e26e

SHA512
a211c8b784d4fd64ef6a133cce2c107f54ab45c3701e4e904c2f556c61eb25434032624776fcfb8580fea34fede54ad7b8f9aab37ae8f9c820385a2cb911ba00

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndCrashHandler.dll

Filesize
484KB

MD5
f7c8f7e9947c7c83b5f8394787806dc9

SHA1
17b993e20b5a30457fd0e237dec49aee354b4ab1

SHA256
bcaa788be6b0c02949aa71447b053d23d59b49d56b2c24ba9fda25dce519091b

SHA512
063482b01e9343bd94c16a27f544349a7cdc3288e057dc235feaefadc619f6d0601da07bb16ba196cff5b675bab62ff0376f261549150ad192ceb4c6dc913a64

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndFilesystem.dll

Filesize
284KB

MD5
5e9ba1ef5a7729b1c13de629841e7380

SHA1
fbb7969dd1de6e1027c0ba17170c62f67a9633a0

SHA256
4374e34fa4a25a40de94f71a722b050797944f16b6d1a6fdc967b86975c9560c

SHA512
b5b07db9152026164d436095a2835549a25daa4f93f7d2e58b60821209b2e0ed26c9c9684e8f9b6ebac5228d76457250616d02471eefb10ead65ebd663d0d74a

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndHash.dll

Filesize
86KB

MD5
bb501ae56cae0a5aa9b848a4fc5cd334

SHA1
7b32a73b602ca657c968201b19ba60a06060b75f

SHA256
41aef0e61187a1d71f25a19d05f26218e83b54023153ad65bf0581c38cbf18de

SHA512
e4be98321f23c4ef1d160f8d90b31bb2aeb1c9b4524e00f7b5acf7cbbd6b74c3852aa811a6402d8c95613e8ac6d67e2bbb7592b5f81f7a3964e784bc8357abf2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndPointer.dll

Filesize
23KB

MD5
08f1e921a44622a96b5949232f003842

SHA1
2573c96da564212b050ad21d2f75dc93c364eec9

SHA256
4a0a567e53e031e8c9dd5af1098d3bcfc59a6ae4db3ff6ffba60d37e4fd23d04

SHA512
da03c04b1bb5352631b6f987e59d328e3d535576d6020da35655f9ccacd3a94f0d5f240fcc8a7e1216a0356de056f139bee67294d65b1d9c3e9542682c9fa9ec

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndString.dll

Filesize
42KB

MD5
7a4d31b1809fbd0e4b03c7f4ee80519b

SHA1
9a7605669c6ffa946aac1cc6bfd684a3a22e15ac

SHA256
3c2ef452b64c96a2478d40bf1a59ec80c191f07de9376edd5c9dc2fb594c2341

SHA512
e1d8e71fd7308f0dcf2cd532abf843baf093ec0f6b3182eb563664736a8744c2dbe3fd165ef982e0e2b718b75f6e5d516763d8494866e95c8a6e18e4d83b4d94

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\InstallerGUI.exe

Filesize
1.1MB

MD5
1d18bd6c2650155763c69ef13c61d5ba

SHA1
1881232d78cb058f8a7687870f468783fd0f3141

SHA256
27b2fe086b03178faf707e549594efe207ea9721e31f7b0c962f37691bffbb4f

SHA512
3dcfd05fe0b4b2ccedff3e65810479e18a13af03fa79880d3ce8dde89fb7e3437717be9211e336ad05b0eab4bae947a2ec708d2f3614dc42c7838c8a672b3df9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\MSVCP140.dll

Filesize
552KB

MD5
29c6c243cfb1cec96b4a1008274f9600

SHA1
c54b10ef6305cc3814c68e6c8fd6daecbb27622a

SHA256
44a5af24f8d5f9c50a9e5a200a0486100afb6a0e86377e2e3e622a7bbb57cb04

SHA512
39c34554ea7b6d433c2aecfdeff87959e625e943bf7a446ebca8e5878eaf24198c1b188359a0343fb78478f2bc8b986ca4d0e69d39bac6ff80cb901fe4f113ee

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\VCRUNTIME140.dll

Filesize
94KB

MD5
02794a29811ba0a78e9687a0010c37ce

SHA1
97b5701d18bd5e25537851614099e2ffce25d6d8

SHA256
1729421a22585823493d5a125cd43a470889b952a2422f48a7bc8193f5c23b0f

SHA512
caf2a478e9c78c8e93dd2288ed98a9261fcf2b7e807df84f2e4d76f8130c2e503eb2470c947a678ac63e59d7d54f74e80e743d635428aa874ec2d06df68d0272

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\VCRUNTIME140_1.dll

Filesize
36KB

MD5
d8d1a08176ba2542c58669c1c04da1b7

SHA1
e0d0059baf23fb5e1d2dadedc12e2f53c930256d

SHA256
26c29d01df73a8e35d32e430c892d925abb6e4ad62d3630ae42b69daacba1a0d

SHA512
5308790fbcf6348e87e7d5b9235ed66942527326f7ba556c910d68d94617bdd247a4ed540b4b9f8d4e73d15cf4a7204c0a57d4fd348ec26e53f39b91be8617fb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-file-l1-2-0.dll

Filesize
11KB

MD5
5a72a803df2b425d5aaff21f0f064011

SHA1
4b31963d981c07a7ab2a0d1a706067c539c55ec5

SHA256
629e52ba4e2dca91b10ef7729a1722888e01284eed7dda6030d0a1ec46c94086

SHA512
bf44997c405c2ba80100eb0f2ff7304938fc69e4d7ae3eac52b3c236c3188e80c9f18bda226b5f4fde0112320e74c198ad985f9ffd7cea99aca22980c39c7f69

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-file-l2-1-0.dll

Filesize
11KB

MD5
721b60b85094851c06d572f0bd5d88cd

SHA1
4d0ee4d717aeb9c35da8621a545d3e2b9f19b4e7

SHA256
dac867476caa42ff8df8f5dfe869ffd56a18dadee17d47889afb69ed6519afbf

SHA512
430a91fcecde4c8cc4ac7eb9b4c6619243ab244ee88c34c9e93ca918e54bd42b08aca8ea4475d4c0f5fa95241e4aacb3206cbae863e92d15528c8e7c9f45601b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-localization-l1-2-0.dll

Filesize
14KB

MD5
1ed0b196ab58edb58fcf84e1739c63ce

SHA1
ac7d6c77629bdee1df7e380cc9559e09d51d75b7

SHA256
8664222823e122fca724620fd8b72187fc5336c737d891d3cef85f4f533b8de2

SHA512
e1fa7f14f39c97aaa3104f3e13098626b5f7cfd665ba52dcb2312a329639aaf5083a9177e4686d11c4213e28acc40e2c027988074b6cc13c5016d5c5e9ef897b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-processthreads-l1-1-1.dll

Filesize
11KB

MD5
7e8b61d27a9d04e28d4dae0bfa0902ed

SHA1
861a7b31022915f26fb49c79ac357c65782c9f4b

SHA256
1ef06c600c451e66e744b2ca356b7f4b7b88ba2f52ec7795858d21525848ac8c

SHA512
1c5b35026937b45beb76cb8d79334a306342c57a8e36cc15d633458582fc8f7d9ab70ace7a92144288c6c017f33ecfc20477a04432619b40a21c9cda8d249f6d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-synch-l1-2-0.dll

Filesize
11KB

MD5
e86cfc5e1147c25972a5eefed7be989f

SHA1
0075091c0b1f2809393c5b8b5921586bdd389b29

SHA256
72c639d1afda32a65143bcbe016fe5d8b46d17924f5f5190eb04efe954c1199a

SHA512
ea58a8d5aa587b7f5bde74b4d394921902412617100ed161a7e0bef6b3c91c5dae657065ea7805a152dd76992997017e070f5415ef120812b0d61a401aa8c110

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-timezone-l1-1-0.dll

Filesize
11KB

MD5
91a2ae3c4eb79cf748e15a58108409ad

SHA1
d402b9df99723ea26a141bfc640d78eaf0b0111b

SHA256
b0eda99eabd32fefecc478fd9fe7439a3f646a864fdab4ec3c1f18574b5f8b34

SHA512
8527af610c1e2101b6f336a142b1a85ac9c19bb3af4ad4a245cfb6fd602dc185da0f7803358067099475102f3a8f10a834dc75b56d3e6ded2ed833c00ad217ed

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-convert-l1-1-0.dll

Filesize
15KB

MD5
4ec4790281017e616af632da1dc624e1

SHA1
342b15c5d3e34ab4ac0b9904b95d0d5b074447b7

SHA256
5cf5bbb861608131b5f560cbf34a3292c80886b7c75357acc779e0bf98e16639

SHA512
80c4e20d37eff29c7577b2d0ed67539a9c2c228edb48ab05d72648a6ed38f5ff537715c130342beb0e3ef16eb11179b9b484303354a026bda3a86d5414d24e69

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-environment-l1-1-0.dll

Filesize
11KB

MD5
7a859e91fdcf78a584ac93aa85371bc9

SHA1
1fa9d9cad7cc26808e697373c1f5f32aaf59d6b7

SHA256
b7ee468f5b6c650dada7db3ad9e115a0e97135b3df095c3220dfd22ba277b607

SHA512
a368f21eca765afca86e03d59cf953500770f4a5bff8b86b2ac53f1b5174c627e061ce9a1f781dc56506774e0d0b09725e9698d4dc2d3a59e93da7ef3d900887

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-filesystem-l1-1-0.dll

Filesize
13KB

MD5
972544ade7e32bfdeb28b39bc734cdee

SHA1
87816f4afabbdec0ec2cfeb417748398505c5aa9

SHA256
7102f8d9d0f3f689129d7fe071b234077fba4dd3687071d1e2aeaa137b123f86

SHA512
5e1131b405e0c7a255b1c51073aff99e2d5c0d28fd3e55cabc04d463758a575a954008ea1ba5b4e2b345b49af448b93ad21dfc4a01573b3cb6e7256d9ecceef1

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-heap-l1-1-0.dll

Filesize
12KB

MD5
8906279245f7385b189a6b0b67df2d7c

SHA1
fcf03d9043a2daafe8e28dee0b130513677227e4

SHA256
f5183b8d7462c01031992267fe85680ab9c5b279bedc0b25ab219f7c2184766f

SHA512
67cac89ae58cc715976107f3bdf279b1e78945afd07e6f657e076d78e92ee1a98e3e7b8feae295af5ce35e00c804f3f53a890895badb1eed32377d85c21672b9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-locale-l1-1-0.dll

Filesize
11KB

MD5
dd8176e132eedea3322443046ac35ca2

SHA1
d13587c7cc52b2c6fbcaa548c8ed2c771a260769

SHA256
2eb96422375f1a7b687115b132a4005d2e7d3d5dc091fb0eb22a6471e712848e

SHA512
77cb8c44c8cc8dd29997fba4424407579ac91176482db3cf7bc37e1f9f6aa4c4f5ba14862d2f3a9c05d1fdd7ca5a043b5f566bd0e9a9e1ed837da9c11803b253

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-math-l1-1-0.dll

Filesize
20KB

MD5
a6a3d6d11d623e16866f38185853facd

SHA1
fbeadd1e9016908ecce5753de1d435d6fcf3d0b5

SHA256
a768339f0b03674735404248a039ec8591fcba6ff61a3c6812414537badd23b0

SHA512
abbf32ceb35e5ec6c1562f9f3b2652b96b7dbd97bfc08d918f987c0ec0503e8390dd697476b2a2389f0172cd8cf16029fd2ec5f32a9ba3688bf2ebeefb081b2c

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-runtime-l1-1-0.dll

Filesize
15KB

MD5
f1a23c251fcbb7041496352ec9bcffbe

SHA1
be4a00642ec82465bc7b3d0cc07d4e8df72094e8

SHA256
d899c2f061952b3b97ab9cdbca2450290b0f005909ddd243ed0f4c511d32c198

SHA512
31f8c5cd3b6e153073e2e2edf0ca8072d0f787784f1611a57219349c1d57d6798a3adbd6942b0f16cef781634dd8691a5ec0b506df21b24cb70aee5523a03fd9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-stdio-l1-1-0.dll

Filesize
17KB

MD5
55b2eb7f17f82b2096e94bca9d2db901

SHA1
44d85f1b1134ee7a609165e9c142188c0f0b17e0

SHA256
f9d3f380023a4c45e74170fe69b32bca506ee1e1fbe670d965d5b50c616da0cb

SHA512
0cf0770f5965a83f546253decfa967d8f85c340b5f6ea220d3caa14245f3cdb37c53bf8d3da6c35297b22a3fa88e7621202634f6b3649d7d9c166a221d3456a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-string-l1-1-0.dll

Filesize
17KB

MD5
9b79965f06fd756a5efde11e8d373108

SHA1
3b9de8bf6b912f19f7742ad34a875cbe2b5ffa50

SHA256
1a916c0db285deb02c0b9df4d08dad5ea95700a6a812ea067bd637a91101a9f6

SHA512
7d4155c00d65c3554e90575178a80d20dc7c80d543c4b5c4c3f508f0811482515638fe513e291b82f958b4d7a63c9876be4e368557b07ff062961197ed4286fb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-time-l1-1-0.dll

Filesize
13KB

MD5
1d48a3189a55b632798f0e859628b0fb

SHA1
61569a8e4f37adc353986d83efc90dc043cdc673

SHA256
b56bc94e8539603dd2f0fea2f25efd17966315067442507db4bffafcbc2955b0

SHA512
47f329102b703bfbb1ebaeb5203d1c8404a0c912019193c93d150a95bb0c5ba8dc101ac56d3283285f9f91239fc64a66a5357afe428a919b0be7194bada1f64f

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-utility-l1-1-0.dll

Filesize
11KB

MD5
dbc27d384679916ba76316fb5e972ea6

SHA1
fb9f021f2220c852f6ff4ea94e8577368f0616a4

SHA256
dd14133adf5c534539298422f6c4b52739f80aca8c5a85ca8c966dea9964ceb1

SHA512
cc0d8c56749ccb9d007b6d3f5c4a8f1d4e368bb81446ebcd7cc7b40399bbd56d0acaba588ca172ecb7472a8cbddbd4c366ffa38094a832f6d7e343b813ba565e

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\boost_filesystem-mt-x64.dll

Filesize
122KB

MD5
31da89363adca29f49020ca60fb251db

SHA1
0f5c9326f296c9c14516171bc8411521185ecd2f

SHA256
575501d52d546d52efc36514da3c102718a8557b6014896997179df0b22de8c9

SHA512
cb024b3bc9b6a674d165f701134ff5c3187ec3efd57de7c9309b318b8d629dd0f1c07701c828980699f4ce7624ab64fd0e8ad193ce1511cbd4f94240e6d71c61

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\glog.dll

Filesize
112KB

MD5
73d9be6e551abe3c896094e1ea3a66e4

SHA1
4c3aa841094f25da9f4f105363eb006d9c00d9b3

SHA256
3b46b2a798c870e1d5d32711fc733ea1b5830e8c7e3dc115fa223139cd972902

SHA512
7cd12fbc77de30e7b2ab5c55ae5ad4a24ad07ce9afed035ff95410cc6500419a44ccc25e625b9a996a2d9a7cd8d9fab58469b89e36b49e9800998f0ae28b01ce

Download Submit
C:\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\ucrtbase.DLL

Filesize
1011KB

MD5
849959a003fa63c5a42ae87929fcd18b

SHA1
d1b80b3265e31a2b5d8d7da6183146bbd5fb791b

SHA256
6238cbfe9f57c142b75e153c399c478d492252fda8cb40ee539c2dcb0f2eb232

SHA512
64958dabdb94d21b59254c2f074db5d51e914ddbc8437452115dff369b0c134e50462c3fdbbc14b6fa809a6ee19ab2fb83d654061601cc175cddcb7d74778e09

Download Submit
C:\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-1020450502\679365803_Wnpxqjh_.exe

Filesize
92.9MB

MD5
2018fc813b7c9187985db6f95d3710bd

SHA1
23bc69dd4843190872a5dfaef477e8ca0f05e6da

SHA256
b0cba5a3a840d5224edac9762f5115d3967e81e768ca882dd4aab52cc013c473

SHA512
950fcd294ca986f8cda1140795e4bc385344be305a08482a705699e19dc29c390ff062e1d4b2f667bce9823002daef43498716daf5858adaabb390c33873bf08

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\animations\All\05__Downward\meta.json

Filesize
57B

MD5
4f8135f11ccd766f922dc8b9f57a94cc

SHA1
5196d6a5290ab0a56681f2cc9e5306f99702cfd0

SHA256
ee8c7882ba0b39e936662a0b537b371888ece13fb07174688874a53cf333fb33

SHA512
44572598ef8a8441f974209afca226bd8b86b293d81d127ad6256bad8ab322ccde3124cf0114a5e4a30fd6d6bac7b79f7e46ce30536a387bfe02600cb4c83ccd

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\imports\Audio\Audio_Beep_set\images\preview.png

Filesize
5KB

MD5
2be0449cb69305f3d7108801d75220e8

SHA1
a00d24ed4f86a990d608aaee0aab41b052ca3faa

SHA256
0e3e825d4ad89330bdf051defaadc3fb1401bab8af64337b05a8802542718f2e

SHA512
97f40c818dad8013995e8267604ab65990bd34150ce44b63318f7491665fd28e24869722eaa90b3d6b2d46269b9a3bb1a8020674f35d25631520771f5ec05919

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockNewEffects2020\effects\all\{bbed1f60-10d7-4b68-a9e9-4c808f3b4fee}\version.xml

Filesize
111B

MD5
ee967846b96120d073ae5e8322a23b3e

SHA1
79d2551e78f09fcfbe3768bb785baca08d994bb6

SHA256
3d8f290b1548b462c6ea73f1d075abc84ea951641e237e853f639268318c5e03

SHA512
89b215294f0c498492d82c5a9fc62e30eac65299a760c9b73fcd693975eec1aab373b2d25e1fe75289d41620135c204beb605eb0726e2f3554fd7b35f924b162

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockThemesPack\imports\all\{475708e8-6e49-416f-b2e8-c08c5fd663da}\version.xml

Filesize
111B

MD5
f4e01c472f397751b00783072ee3d41b

SHA1
7bbb4c67cdb42bc4ab9011c51ea5307dce46138e

SHA256
2fd01c6dc5ddb425d4c2e2a2c40f46cff667e2768385dbbae4d622dfe509a5f0

SHA512
c63f1fe50d01b9171ce107262ab5e03db8e3b7ee922e48c21404d33b59f7b8893493bf39e35c4e4e2c99550f4e22510488b5e2b75f7d20f64372a436fb925d50

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockThemesPack\resources\randomTheme\theme\version.xml

Filesize
111B

MD5
40b03fd39ce75a817795881d9bb408db

SHA1
7a32668c8d74d470a16e5dd6bd53a85bd68d53e0

SHA256
769cadc93b30fc0a019d7e6ae27f4191bfcd03d2dc05029303971183f3b55d23

SHA512
8f9d027a765b2e7d00f74e35b1f97ae4df19db4d0b56da7c7213ac594ae9def7100aab74e86ce8dd92a3d13ee7d8f4069c891da4e9ff3ea650383c2a040f0803

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockTransitionsWithAudio\Transitions\all\{98e9e41e-3a7d-499e-84b9-8d264b0fab94}\version.xml

Filesize
112B

MD5
5a92f85207732f261e8c9780ee31d4f1

SHA1
62735ffceaceee0f5662ab56c534401f95cabb78

SHA256
18f339c06a84c2075b9de5610233f1775e999fc4f56856e123f02e23c6bf54fd

SHA512
8877bc84ba928e98e103c5d7e24f885b9ba2639119b959b26e9a812061f706875577bd467b9e720c998999a65d81908b87ff93f864bb09652afbc7258b785447

Download Submit
C:\Users\Admin\AppData\Roaming\Movavi Video Editor 23\resources\samples\stock\packages\Content\RemotePackages\MESStockWhooshTransitions\transitions\all\{1c3ea148-67bc-4ebf-a4c2-9386a130026c}\version.xml

Filesize
108B

MD5
5eef0966fad2031510ea22c37c06cf16

SHA1
0bb95bc1d28700e13547e4b58d3861a7b2a5e8cf

SHA256
3f8def7c6ee86d81011715cd98fc70d1fdb36dd9cfcbec117f0237bcea211c67

SHA512
a91cf3b139c781e10d6ea674c27e3f0b72831d2e62ba0f6c092c1b144ba2ac49b925f3cb8b548d5b14ec5068ef2a6e29d2fb65cca7c5950c3fa7e371af32dec8

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\CrashHandlerInitializer.dll

Filesize
29KB

MD5
8aa014ff326eddcfc9248119ee0a520e

SHA1
854c45a667af74400f085ce39400335781fb8978

SHA256
a6b0569d09cc14b5984520326c0fee7fe29ad72dae86dea7691fbec33568aed7

SHA512
ea6bcc2fb5ba2129bd6bd5c1b6e1003c6a509d6face93b0155222f9061d7e9739951a9699bb7a6436a241a4454528a5d7b61eb4b4234a2030a2decc0ce183966

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndAppLocations.dll

Filesize
37KB

MD5
963ff787a8e0b75bd66d43c5216f2199

SHA1
fbcb32d69a064d99547d8d34118fa747a481105a

SHA256
df4d2cc8560a68017255d6ca08d18fe7693b23e6a34de5666439c39e8353e26e

SHA512
a211c8b784d4fd64ef6a133cce2c107f54ab45c3701e4e904c2f556c61eb25434032624776fcfb8580fea34fede54ad7b8f9aab37ae8f9c820385a2cb911ba00

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndCrashHandler.dll

Filesize
484KB

MD5
f7c8f7e9947c7c83b5f8394787806dc9

SHA1
17b993e20b5a30457fd0e237dec49aee354b4ab1

SHA256
bcaa788be6b0c02949aa71447b053d23d59b49d56b2c24ba9fda25dce519091b

SHA512
063482b01e9343bd94c16a27f544349a7cdc3288e057dc235feaefadc619f6d0601da07bb16ba196cff5b675bab62ff0376f261549150ad192ceb4c6dc913a64

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndFilesystem.dll

Filesize
284KB

MD5
5e9ba1ef5a7729b1c13de629841e7380

SHA1
fbb7969dd1de6e1027c0ba17170c62f67a9633a0

SHA256
4374e34fa4a25a40de94f71a722b050797944f16b6d1a6fdc967b86975c9560c

SHA512
b5b07db9152026164d436095a2835549a25daa4f93f7d2e58b60821209b2e0ed26c9c9684e8f9b6ebac5228d76457250616d02471eefb10ead65ebd663d0d74a

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndHash.dll

Filesize
86KB

MD5
bb501ae56cae0a5aa9b848a4fc5cd334

SHA1
7b32a73b602ca657c968201b19ba60a06060b75f

SHA256
41aef0e61187a1d71f25a19d05f26218e83b54023153ad65bf0581c38cbf18de

SHA512
e4be98321f23c4ef1d160f8d90b31bb2aeb1c9b4524e00f7b5acf7cbbd6b74c3852aa811a6402d8c95613e8ac6d67e2bbb7592b5f81f7a3964e784bc8357abf2

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndPointer.dll

Filesize
23KB

MD5
08f1e921a44622a96b5949232f003842

SHA1
2573c96da564212b050ad21d2f75dc93c364eec9

SHA256
4a0a567e53e031e8c9dd5af1098d3bcfc59a6ae4db3ff6ffba60d37e4fd23d04

SHA512
da03c04b1bb5352631b6f987e59d328e3d535576d6020da35655f9ccacd3a94f0d5f240fcc8a7e1216a0356de056f139bee67294d65b1d9c3e9542682c9fa9ec

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\FndString.dll

Filesize
42KB

MD5
7a4d31b1809fbd0e4b03c7f4ee80519b

SHA1
9a7605669c6ffa946aac1cc6bfd684a3a22e15ac

SHA256
3c2ef452b64c96a2478d40bf1a59ec80c191f07de9376edd5c9dc2fb594c2341

SHA512
e1d8e71fd7308f0dcf2cd532abf843baf093ec0f6b3182eb563664736a8744c2dbe3fd165ef982e0e2b718b75f6e5d516763d8494866e95c8a6e18e4d83b4d94

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\InstallerGUI.exe

Filesize
1.1MB

MD5
1d18bd6c2650155763c69ef13c61d5ba

SHA1
1881232d78cb058f8a7687870f468783fd0f3141

SHA256
27b2fe086b03178faf707e549594efe207ea9721e31f7b0c962f37691bffbb4f

SHA512
3dcfd05fe0b4b2ccedff3e65810479e18a13af03fa79880d3ce8dde89fb7e3437717be9211e336ad05b0eab4bae947a2ec708d2f3614dc42c7838c8a672b3df9

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-file-l1-2-0.dll

Filesize
11KB

MD5
5a72a803df2b425d5aaff21f0f064011

SHA1
4b31963d981c07a7ab2a0d1a706067c539c55ec5

SHA256
629e52ba4e2dca91b10ef7729a1722888e01284eed7dda6030d0a1ec46c94086

SHA512
bf44997c405c2ba80100eb0f2ff7304938fc69e4d7ae3eac52b3c236c3188e80c9f18bda226b5f4fde0112320e74c198ad985f9ffd7cea99aca22980c39c7f69

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-file-l2-1-0.dll

Filesize
11KB

MD5
721b60b85094851c06d572f0bd5d88cd

SHA1
4d0ee4d717aeb9c35da8621a545d3e2b9f19b4e7

SHA256
dac867476caa42ff8df8f5dfe869ffd56a18dadee17d47889afb69ed6519afbf

SHA512
430a91fcecde4c8cc4ac7eb9b4c6619243ab244ee88c34c9e93ca918e54bd42b08aca8ea4475d4c0f5fa95241e4aacb3206cbae863e92d15528c8e7c9f45601b

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-localization-l1-2-0.dll

Filesize
14KB

MD5
1ed0b196ab58edb58fcf84e1739c63ce

SHA1
ac7d6c77629bdee1df7e380cc9559e09d51d75b7

SHA256
8664222823e122fca724620fd8b72187fc5336c737d891d3cef85f4f533b8de2

SHA512
e1fa7f14f39c97aaa3104f3e13098626b5f7cfd665ba52dcb2312a329639aaf5083a9177e4686d11c4213e28acc40e2c027988074b6cc13c5016d5c5e9ef897b

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-processthreads-l1-1-1.dll

Filesize
11KB

MD5
7e8b61d27a9d04e28d4dae0bfa0902ed

SHA1
861a7b31022915f26fb49c79ac357c65782c9f4b

SHA256
1ef06c600c451e66e744b2ca356b7f4b7b88ba2f52ec7795858d21525848ac8c

SHA512
1c5b35026937b45beb76cb8d79334a306342c57a8e36cc15d633458582fc8f7d9ab70ace7a92144288c6c017f33ecfc20477a04432619b40a21c9cda8d249f6d

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-synch-l1-2-0.dll

Filesize
11KB

MD5
e86cfc5e1147c25972a5eefed7be989f

SHA1
0075091c0b1f2809393c5b8b5921586bdd389b29

SHA256
72c639d1afda32a65143bcbe016fe5d8b46d17924f5f5190eb04efe954c1199a

SHA512
ea58a8d5aa587b7f5bde74b4d394921902412617100ed161a7e0bef6b3c91c5dae657065ea7805a152dd76992997017e070f5415ef120812b0d61a401aa8c110

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-core-timezone-l1-1-0.dll

Filesize
11KB

MD5
91a2ae3c4eb79cf748e15a58108409ad

SHA1
d402b9df99723ea26a141bfc640d78eaf0b0111b

SHA256
b0eda99eabd32fefecc478fd9fe7439a3f646a864fdab4ec3c1f18574b5f8b34

SHA512
8527af610c1e2101b6f336a142b1a85ac9c19bb3af4ad4a245cfb6fd602dc185da0f7803358067099475102f3a8f10a834dc75b56d3e6ded2ed833c00ad217ed

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-convert-l1-1-0.dll

Filesize
15KB

MD5
4ec4790281017e616af632da1dc624e1

SHA1
342b15c5d3e34ab4ac0b9904b95d0d5b074447b7

SHA256
5cf5bbb861608131b5f560cbf34a3292c80886b7c75357acc779e0bf98e16639

SHA512
80c4e20d37eff29c7577b2d0ed67539a9c2c228edb48ab05d72648a6ed38f5ff537715c130342beb0e3ef16eb11179b9b484303354a026bda3a86d5414d24e69

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-environment-l1-1-0.dll

Filesize
11KB

MD5
7a859e91fdcf78a584ac93aa85371bc9

SHA1
1fa9d9cad7cc26808e697373c1f5f32aaf59d6b7

SHA256
b7ee468f5b6c650dada7db3ad9e115a0e97135b3df095c3220dfd22ba277b607

SHA512
a368f21eca765afca86e03d59cf953500770f4a5bff8b86b2ac53f1b5174c627e061ce9a1f781dc56506774e0d0b09725e9698d4dc2d3a59e93da7ef3d900887

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-filesystem-l1-1-0.dll

Filesize
13KB

MD5
972544ade7e32bfdeb28b39bc734cdee

SHA1
87816f4afabbdec0ec2cfeb417748398505c5aa9

SHA256
7102f8d9d0f3f689129d7fe071b234077fba4dd3687071d1e2aeaa137b123f86

SHA512
5e1131b405e0c7a255b1c51073aff99e2d5c0d28fd3e55cabc04d463758a575a954008ea1ba5b4e2b345b49af448b93ad21dfc4a01573b3cb6e7256d9ecceef1

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-heap-l1-1-0.dll

Filesize
12KB

MD5
8906279245f7385b189a6b0b67df2d7c

SHA1
fcf03d9043a2daafe8e28dee0b130513677227e4

SHA256
f5183b8d7462c01031992267fe85680ab9c5b279bedc0b25ab219f7c2184766f

SHA512
67cac89ae58cc715976107f3bdf279b1e78945afd07e6f657e076d78e92ee1a98e3e7b8feae295af5ce35e00c804f3f53a890895badb1eed32377d85c21672b9

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-locale-l1-1-0.dll

Filesize
11KB

MD5
dd8176e132eedea3322443046ac35ca2

SHA1
d13587c7cc52b2c6fbcaa548c8ed2c771a260769

SHA256
2eb96422375f1a7b687115b132a4005d2e7d3d5dc091fb0eb22a6471e712848e

SHA512
77cb8c44c8cc8dd29997fba4424407579ac91176482db3cf7bc37e1f9f6aa4c4f5ba14862d2f3a9c05d1fdd7ca5a043b5f566bd0e9a9e1ed837da9c11803b253

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-math-l1-1-0.dll

Filesize
20KB

MD5
a6a3d6d11d623e16866f38185853facd

SHA1
fbeadd1e9016908ecce5753de1d435d6fcf3d0b5

SHA256
a768339f0b03674735404248a039ec8591fcba6ff61a3c6812414537badd23b0

SHA512
abbf32ceb35e5ec6c1562f9f3b2652b96b7dbd97bfc08d918f987c0ec0503e8390dd697476b2a2389f0172cd8cf16029fd2ec5f32a9ba3688bf2ebeefb081b2c

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-runtime-l1-1-0.dll

Filesize
15KB

MD5
f1a23c251fcbb7041496352ec9bcffbe

SHA1
be4a00642ec82465bc7b3d0cc07d4e8df72094e8

SHA256
d899c2f061952b3b97ab9cdbca2450290b0f005909ddd243ed0f4c511d32c198

SHA512
31f8c5cd3b6e153073e2e2edf0ca8072d0f787784f1611a57219349c1d57d6798a3adbd6942b0f16cef781634dd8691a5ec0b506df21b24cb70aee5523a03fd9

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-stdio-l1-1-0.dll

Filesize
17KB

MD5
55b2eb7f17f82b2096e94bca9d2db901

SHA1
44d85f1b1134ee7a609165e9c142188c0f0b17e0

SHA256
f9d3f380023a4c45e74170fe69b32bca506ee1e1fbe670d965d5b50c616da0cb

SHA512
0cf0770f5965a83f546253decfa967d8f85c340b5f6ea220d3caa14245f3cdb37c53bf8d3da6c35297b22a3fa88e7621202634f6b3649d7d9c166a221d3456a5

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-string-l1-1-0.dll

Filesize
17KB

MD5
9b79965f06fd756a5efde11e8d373108

SHA1
3b9de8bf6b912f19f7742ad34a875cbe2b5ffa50

SHA256
1a916c0db285deb02c0b9df4d08dad5ea95700a6a812ea067bd637a91101a9f6

SHA512
7d4155c00d65c3554e90575178a80d20dc7c80d543c4b5c4c3f508f0811482515638fe513e291b82f958b4d7a63c9876be4e368557b07ff062961197ed4286fb

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-time-l1-1-0.dll

Filesize
13KB

MD5
1d48a3189a55b632798f0e859628b0fb

SHA1
61569a8e4f37adc353986d83efc90dc043cdc673

SHA256
b56bc94e8539603dd2f0fea2f25efd17966315067442507db4bffafcbc2955b0

SHA512
47f329102b703bfbb1ebaeb5203d1c8404a0c912019193c93d150a95bb0c5ba8dc101ac56d3283285f9f91239fc64a66a5357afe428a919b0be7194bada1f64f

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\api-ms-win-crt-utility-l1-1-0.dll

Filesize
11KB

MD5
dbc27d384679916ba76316fb5e972ea6

SHA1
fb9f021f2220c852f6ff4ea94e8577368f0616a4

SHA256
dd14133adf5c534539298422f6c4b52739f80aca8c5a85ca8c966dea9964ceb1

SHA512
cc0d8c56749ccb9d007b6d3f5c4a8f1d4e368bb81446ebcd7cc7b40399bbd56d0acaba588ca172ecb7472a8cbddbd4c366ffa38094a832f6d7e343b813ba565e

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\boost_filesystem-mt-x64.dll

Filesize
122KB

MD5
31da89363adca29f49020ca60fb251db

SHA1
0f5c9326f296c9c14516171bc8411521185ecd2f

SHA256
575501d52d546d52efc36514da3c102718a8557b6014896997179df0b22de8c9

SHA512
cb024b3bc9b6a674d165f701134ff5c3187ec3efd57de7c9309b318b8d629dd0f1c07701c828980699f4ce7624ab64fd0e8ad193ce1511cbd4f94240e6d71c61

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\glog.dll

Filesize
112KB

MD5
73d9be6e551abe3c896094e1ea3a66e4

SHA1
4c3aa841094f25da9f4f105363eb006d9c00d9b3

SHA256
3b46b2a798c870e1d5d32711fc733ea1b5830e8c7e3dc115fa223139cd972902

SHA512
7cd12fbc77de30e7b2ab5c55ae5ad4a24ad07ce9afed035ff95410cc6500419a44ccc25e625b9a996a2d9a7cd8d9fab58469b89e36b49e9800998f0ae28b01ce

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\msvcp140.dll

Filesize
552KB

MD5
29c6c243cfb1cec96b4a1008274f9600

SHA1
c54b10ef6305cc3814c68e6c8fd6daecbb27622a

SHA256
44a5af24f8d5f9c50a9e5a200a0486100afb6a0e86377e2e3e622a7bbb57cb04

SHA512
39c34554ea7b6d433c2aecfdeff87959e625e943bf7a446ebca8e5878eaf24198c1b188359a0343fb78478f2bc8b986ca4d0e69d39bac6ff80cb901fe4f113ee

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\ucrtbase.dll

Filesize
1011KB

MD5
849959a003fa63c5a42ae87929fcd18b

SHA1
d1b80b3265e31a2b5d8d7da6183146bbd5fb791b

SHA256
6238cbfe9f57c142b75e153c399c478d492252fda8cb40ee539c2dcb0f2eb232

SHA512
64958dabdb94d21b59254c2f074db5d51e914ddbc8437452115dff369b0c134e50462c3fdbbc14b6fa809a6ee19ab2fb83d654061601cc175cddcb7d74778e09

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\vcruntime140.dll

Filesize
94KB

MD5
02794a29811ba0a78e9687a0010c37ce

SHA1
97b5701d18bd5e25537851614099e2ffce25d6d8

SHA256
1729421a22585823493d5a125cd43a470889b952a2422f48a7bc8193f5c23b0f

SHA512
caf2a478e9c78c8e93dd2288ed98a9261fcf2b7e807df84f2e4d76f8130c2e503eb2470c947a678ac63e59d7d54f74e80e743d635428aa874ec2d06df68d0272

Download Submit
\Users\Admin\AppData\Local\Temp\Movavi-installer-81b089fa-ffbf-4276-9ef9-0b9acddc2680\vcruntime140_1.dll

Filesize
36KB

MD5
d8d1a08176ba2542c58669c1c04da1b7

SHA1
e0d0059baf23fb5e1d2dadedc12e2f53c930256d

SHA256
26c29d01df73a8e35d32e430c892d925abb6e4ad62d3630ae42b69daacba1a0d

SHA512
5308790fbcf6348e87e7d5b9235ed66942527326f7ba556c910d68d94617bdd247a4ed540b4b9f8d4e73d15cf4a7204c0a57d4fd348ec26e53f39b91be8617fb

Download Submit
\Users\Admin\AppData\Local\Temp\MovaviWebInstaller-1020450502\679365803_Wnpxqjh_.exe

Filesize
92.9MB

MD5
2018fc813b7c9187985db6f95d3710bd

SHA1
23bc69dd4843190872a5dfaef477e8ca0f05e6da

SHA256
b0cba5a3a840d5224edac9762f5115d3967e81e768ca882dd4aab52cc013c473

SHA512
950fcd294ca986f8cda1140795e4bc385344be305a08482a705699e19dc29c390ff062e1d4b2f667bce9823002daef43498716daf5858adaabb390c33873bf08

Download Submit
memory/552-1308-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/552-1312-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/600-693-0x0000000000850000-0x000000000085A000-memory.dmp

Filesize
40KB

Download
memory/600-754-0x000007FEEFD20000-0x000007FEEFDB5000-memory.dmp

Filesize
596KB

Download
memory/600-727-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/600-730-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/600-739-0x000007FEF1FC0000-0x000007FEF1FE8000-memory.dmp

Filesize
160KB

Download
memory/600-743-0x000007FEEC9E0000-0x000007FEEF1B1000-memory.dmp

Filesize
39.8MB

Download
memory/600-751-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/600-752-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/600-753-0x000007FEEFDC0000-0x000007FEEFFFD000-memory.dmp

Filesize
2.2MB

Download
memory/600-696-0x0000000000860000-0x000000000086A000-memory.dmp

Filesize
40KB

Download
memory/600-692-0x0000000000830000-0x0000000000840000-memory.dmp

Filesize
64KB

Download
memory/600-695-0x0000000000860000-0x000000000086A000-memory.dmp

Filesize
40KB

Download
memory/1236-1207-0x000007FEEFD20000-0x000007FEEFDB5000-memory.dmp

Filesize
596KB

Download
memory/1236-1198-0x000007FEEFDC0000-0x000007FEEFFFD000-memory.dmp

Filesize
2.2MB

Download
memory/1236-1190-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1236-1183-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1236-1125-0x000007FEEC9E0000-0x000007FEEF1B1000-memory.dmp

Filesize
39.8MB

Download
memory/1236-1120-0x000007FEF1FC0000-0x000007FEF1FE8000-memory.dmp

Filesize
160KB

Download
memory/1236-1102-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/1236-1109-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1356-976-0x000007FEEFD20000-0x000007FEEFDB5000-memory.dmp

Filesize
596KB

Download
memory/1356-986-0x000007FEEF450000-0x000007FEEF6DD000-memory.dmp

Filesize
2.6MB

Download
memory/1356-907-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/1356-1011-0x0000000068DC0000-0x00000000690B1000-memory.dmp

Filesize
2.9MB

Download
memory/1356-1033-0x000007FEEF420000-0x000007FEEF450000-memory.dmp

Filesize
192KB

Download
memory/1356-911-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1356-916-0x000007FEF1FC0000-0x000007FEF1FE8000-memory.dmp

Filesize
160KB

Download
memory/1356-919-0x000007FEEC9E0000-0x000007FEEF1B1000-memory.dmp

Filesize
39.8MB

Download
memory/1356-952-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1356-962-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1356-969-0x000007FEEFDC0000-0x000007FEEFFFD000-memory.dmp

Filesize
2.2MB

Download
memory/1544-512-0x000007FEF2BB0000-0x000007FEF317A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-514-0x00000000008C0000-0x00000000008D0000-memory.dmp

Filesize
64KB

Download
memory/1544-416-0x000007FEF4EB0000-0x000007FEF52AD000-memory.dmp

Filesize
4.0MB

Download
memory/1544-1151-0x000007FEF2890000-0x000007FEF2E5A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-506-0x0000000140000000-0x00000001405E8000-memory.dmp

Filesize
5.9MB

Download
memory/1544-1335-0x000007FEF2BB0000-0x000007FEF317A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-1332-0x0000000140000000-0x00000001405E8000-memory.dmp

Filesize
5.9MB

Download
memory/1544-1329-0x0000000140000000-0x00000001405E8000-memory.dmp

Filesize
5.9MB

Download
memory/1544-778-0x000007FEF2890000-0x000007FEF2E5A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-516-0x000007FEF2890000-0x000007FEF2E5A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-510-0x0000000140000000-0x00000001405E8000-memory.dmp

Filesize
5.9MB

Download
memory/1544-1342-0x000007FEF2890000-0x000007FEF2E5A000-memory.dmp

Filesize
5.8MB

Download
memory/1544-415-0x000007FEF5FA0000-0x000007FEF64EA000-memory.dmp

Filesize
5.3MB

Download
memory/1608-3046-0x000007FE9C3C0000-0x000007FE9C3CA000-memory.dmp

Filesize
40KB

Download
memory/1932-1094-0x0000000068DC0000-0x00000000690B1000-memory.dmp

Filesize
2.9MB

Download
memory/1932-1000-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1932-989-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/1932-1016-0x000007FEF1FC0000-0x000007FEF1FE8000-memory.dmp

Filesize
160KB

Download
memory/1932-1024-0x000007FEEC9E0000-0x000007FEEF1B1000-memory.dmp

Filesize
39.8MB

Download
memory/1932-1053-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/1932-1060-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1932-1070-0x000007FEEFDC0000-0x000007FEEFFFD000-memory.dmp

Filesize
2.2MB

Download
memory/1932-1080-0x000007FEEFD20000-0x000007FEEFDB5000-memory.dmp

Filesize
596KB

Download
memory/1992-1270-0x000007FEEFDC0000-0x000007FEEFFFD000-memory.dmp

Filesize
2.2MB

Download
memory/1992-1266-0x000000006FC40000-0x000000006FDA5000-memory.dmp

Filesize
1.4MB

Download
memory/1992-1233-0x000007FEF1A50000-0x000007FEF1AE2000-memory.dmp

Filesize
584KB

Download
memory/1992-1235-0x0000000064940000-0x0000000064955000-memory.dmp

Filesize
84KB

Download
memory/1992-1238-0x000007FEF1FC0000-0x000007FEF1FE8000-memory.dmp

Filesize
160KB

Download
memory/1992-1273-0x000007FEEFD20000-0x000007FEEFDB5000-memory.dmp

Filesize
596KB

Download
memory/1992-1244-0x000007FEEC9E0000-0x000007FEEF1B1000-memory.dmp

Filesize
39.8MB

Download
memory/1992-1262-0x0000000061440000-0x000000006145A000-memory.dmp

Filesize
104KB

Download
memory/2780-2374-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2379-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2381-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2378-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2377-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2375-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2372-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2371-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download
memory/2780-2369-0x00000000022A0000-0x00000000022AA000-memory.dmp

Filesize
40KB

Download