dd5891adfd1f98f945cd02c02a231a41c8224ccc350050b65e2b987e075920aa

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20230621-es
resource tags

arch:x64arch:x86image:win10v2004-20230621-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
28/06/2023, 01:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

TLauncher.exe
Size

6.3MB
MD5

a09d58d5281883d9b555cb8f99974f57
SHA1

f900108770e0ee69a88df27bfeb3aa13322385b0
SHA256

dd5891adfd1f98f945cd02c02a231a41c8224ccc350050b65e2b987e075920aa
SHA512

0f9fc01df7bd6fcf25893ef1a31d0105e19a853d81d475312c1ad4d3f17b77ad6cba659c4b78bda8040279c91947d9277987447a3795b7acb393a5eb95ae8f3c
SSDEEP

196608:kF52l8bIboBT5eN0Ca/TuQnxByJRHcj3pqxsY:hRNNG/TuoyJRui

Score

7^/10

discovery

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
3752	javaw.exe

Loads dropped DLL 10 IoCs

pid	Process
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe
3752	javaw.exe

Modifies file permissions 1 TTPs 1 IoCs

discovery

File and Directory Permissions Modification

T1222

pid	Process
1496	icacls.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
3852	javaw.exe
3852	javaw.exe
3752	javaw.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 4100 wrote to memory of 3852	4100	TLauncher.exe	81
PID 4100 wrote to memory of 3852	4100	TLauncher.exe	81
PID 3852 wrote to memory of 3752	3852	javaw.exe	86
PID 3852 wrote to memory of 3752	3852	javaw.exe	86
PID 3752 wrote to memory of 1496	3752	javaw.exe	87
PID 3752 wrote to memory of 1496	3752	javaw.exe	87

C:\Users\Admin\AppData\Local\Temp\TLauncher.exe
"C:\Users\Admin\AppData\Local\Temp\TLauncher.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:4100
- C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe
  "C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe" -jar "C:\Users\Admin\AppData\Local\Temp\TLauncher.exe"
  2⤵
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:3852
- - C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
    C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe -Xmx1024m -Dfile.encoding=UTF8 -cp C:\Users\Admin\AppData\Local\Temp\TLauncher.exe;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\inject\guice\4.1.0\guice-4.1.0.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\inject\extentions\guice-assistedinject\4.1.0\guice-assistedinject-4.1.0.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\javax\inject\javax.inject\1\javax.inject-1.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\aopalliance\aopalliance\1.0\aopalliance-1.0.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\guava\guava\19.0\guava-19.0.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\commons\commons-lang3\3.4\commons-lang3-3.4.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\net\sf\jopt-simple\jopt-simple\4.9\jopt-simple-4.9.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\log4j\log4j\1.2.17\log4j-1.2.17.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tukaani\xz\1.5\xz-1.5.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\picture-bundle\3.7\picture-bundle-3.7.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\skin-server-API\1.0\skin-server-API-1.0.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\tlauncher-resource\1.4\tlauncher-resource-1.4.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\github\junrar\junrar\0.7\junrar-0.7.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\dnsjava\dnsjava\2.1.8\dnsjava-2.1.8.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\httpcomponents\fluent-hc\4.5.13\fluent-hc-4.5.13.jar;C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\logging\log4j\log4j-core\2.14.1\log4j-core-2.14.1.jar; org.tlauncher.tlauncher.rmo.TLauncher
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - Suspicious use of SetWindowsHookEx
    - Suspicious use of WriteProcessMemory
    PID:3752
  - - C:\Windows\system32\icacls.exe
      C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M
      4⤵
      Modifies file permissions
      PID:1496

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\Oracle\Java\.oracle_jre_usage\934bb0918aaa4c7a.timestamp

Filesize
76B

MD5
90f0ad5094b3a3f340ffba43772eb18a

SHA1
e5eeab726b0fbfcba7722520084e9f2b632cdfec

SHA256
bb3cceb995d8194805bbdb69b196b375f185f1dab6bd1b50b90af8e1332638fc

SHA512
56bc5ce38733d4c6aab954e7a173d5b5404e6848d89c78524e03058fc50482807ddada2b6fbcc33389a9963d6d77b7c2a4e66239428959bb4a675c19b2d99d6a

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\aopalliance\aopalliance\1.0\aopalliance-1.0.jar

Filesize
4KB

MD5
04177054e180d09e3998808efa0401c7

SHA1
0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8

SHA256
0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08

SHA512
3f44a932d8c00cfeee2eb057bcd7c301a2d029063e0a916e1e20b3aec4877d19d67a2fd8aaf58fa2d5a00133d1602128a7f50912ffb6cabc7b0fdc7fbda3f8a1

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\github\junrar\junrar\0.7\junrar-0.7.jar

Filesize
151KB

MD5
75a215b9e921044cd2c88e73f6cb9745

SHA1
18cc717b85af0b12ba922abf415c2ff4716f8219

SHA256
7c764fa1af319b98ff452189ab31bb722ea74ed7a52b17b0c6282249c10a61fc

SHA512
1a44af2f3f8dbfbf38ad5f71ef11b32d5822d734f77af2cdea419fb6af845e894acb60bffbcebb4533068d86b55a22a8b0f74be20b204c2343bdb165d9c787f9

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\guava\guava\19.0\guava-19.0.jar

Filesize
2.2MB

MD5
43bfc49bdc7324f6daaa60c1ee9f3972

SHA1
6ce200f6b23222af3d8abb6b6459e6c44f4bb0e9

SHA256
58d4cc2e05ebb012bbac568b032f75623be1cb6fb096f3c60c72a86f7f057de4

SHA512
834f2bf4a5b35edffde0263409649aeaf34ca9a742ba511a06bb9b01626f9e774d2d3c8ba91a7905929dc8cd5e6471de29f7d0ab10260ece2af709b7fdbe4bc3

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\inject\extentions\guice-assistedinject\4.1.0\guice-assistedinject-4.1.0.jar

Filesize
41KB

MD5
65912196b6e91f2ceb933001c1fb5c94

SHA1
af799dd7e23e6fe8c988da12314582072b07edcb

SHA256
663728123fb9a6b79ea39ae289e5d56b4113e1b8e9413eb792f91e53a6dd5868

SHA512
60b15182130ddfd801dd0438058d641dd5ba9122f2d1e081eb63f5e2c12fff0271d9d47c58925be0be8267ed22ae893ea9d1b251faba17dc1d2552b5d93056de

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\com\google\inject\guice\4.1.0\guice-4.1.0.jar

Filesize
658KB

MD5
41f66d1d4d250efebde3bbf8b2d55dfa

SHA1
eeb69005da379a10071aa4948c48d89250febb07

SHA256
9b9df27a5b8c7864112b4137fd92b36c3f1395bfe57be42fedf2f520ead1a93e

SHA512
109a1595668293b32376e885ad59e0e4c0e088ea00f58119f0f7d0d2055f03eb93a9f92d974b6dbd56ef721792ac03c889d9add3a2850aa7ccd732c2682d17ef

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\dnsjava\dnsjava\2.1.8\dnsjava-2.1.8.jar

Filesize
307KB

MD5
540f330717bca9d29c8762cf6daca443

SHA1
eed8a2cbf56cc60d07a189a429ead3067564193c

SHA256
52de1ff2a7556ac2cc4284abd7123bc3d6274210fc4e3b1d9ba90efad5f6a153

SHA512
a4bcb8bbb43906f42faf1802c504ccc9c616e49afd5dd7db77676d13aaed79a300979ffc2195b680a9c6d5f03466b611b6f1338d824099816aa224b234760f4b

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\javax\inject\javax.inject\1\javax.inject-1.jar

Filesize
2KB

MD5
289075e48b909e9e74e6c915b3631d2e

SHA1
6975da39a7040257bd51d21a231b76c915872d38

SHA256
91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ff

SHA512
e126b7ccf3e42fd1984a0beef1004a7269a337c202e59e04e8e2af714280d2f2d8d2ba5e6f59481b8dcd34aaf35c966a688d0b48ec7e96f102c274dc0d3b381e

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\log4j\log4j\1.2.17\log4j-1.2.17.jar

Filesize
478KB

MD5
04a41f0a068986f0f73485cf507c0f40

SHA1
5af35056b4d257e4b64b9e8069c0746e8b08629f

SHA256
1d31696445697720527091754369082a6651bd49781b6005deb94e56753406f9

SHA512
3f12937a69ba60d0f5e86265168d6a0d069ce20d95b99a3ace463987655e7c63053f4d7e36e32f2b53f86992b888ca477bf81253ad04c721896b397f94ee57fc

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\net\sf\jopt-simple\jopt-simple\4.9\jopt-simple-4.9.jar

Filesize
64KB

MD5
39c6476e4de3d4f90ad4ca0ddca48ec2

SHA1
ee9e9eaa0a35360dcfeac129ff4923215fd65904

SHA256
26c5856e954b5f864db76f13b86919b59c6eecf9fd930b96baa8884626baf2f5

SHA512
fd04c19bce810a1548b2d2eaadb915cff2cbc81a81ec5258aafc1ba329100daedc49edad1fc7b254ab892996796124283d7004b5414f662c0efa3979add9ca5f

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\commons\commons-lang3\3.4\commons-lang3-3.4.jar

Filesize
424KB

MD5
8667a442ee77e509fbe8176b94726eb2

SHA1
5fe28b9518e58819180a43a850fbc0dd24b7c050

SHA256
734c8356420cc8e30c795d64fd1fcd5d44ea9d90342a2cc3262c5158fbc6d98b

SHA512
b1b556692341a240f8b81f8f71b8b5c0225ccf857ce1b185e7fe6d7a9bb2a4d77823496cd6e2697a20386e7f3ba02d476a0e4ff38071367beb3090104544922d

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\httpcomponents\fluent-hc\4.5.13\fluent-hc-4.5.13.jar

Filesize
30KB

MD5
8f7e4f1a95a870ebee87ddacc425362c

SHA1
300bf1846737e34b9ea10faae257ca8fdcd0616f

SHA256
f883b6b027d5e05c53e48e4fe3548715c52dbd590ffa3f52d039574f1a4d0728

SHA512
98e30ed27d6ac078450efe5e236117445c93e05eb280399e056816c52643a3a33adce5e3a885ce8488186f38d05e0fb6c65dfcbaa509be8c6047ef2f0870d9b0

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\apache\logging\log4j\log4j-core\2.14.1\log4j-core-2.14.1.jar

Filesize
1.7MB

MD5
948dda787593340a7af1a18e328b7b7f

SHA1
9141212b8507ab50a45525b545b39d224614528b

SHA256
ade7402a70667a727635d5c4c29495f4ff96f061f12539763f6f123973b465b0

SHA512
6e41ff42f12deedb8da06cbed73d0a9a5389660b7ee058436f8fcb6b14a6ab3105faf8e3f2c007d38ccc85af1e704505b84be5a80d8e68a434aae82b54b85f70

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\picture-bundle\3.7\picture-bundle-3.7.jar

Filesize
2.1MB

MD5
904094a40b7d81b12936f43b49952922

SHA1
5ccf048dd51a7d0cdd59a1ea6ce2e3b167feacf3

SHA256
0cd5746118a3a38b7e6126770bc53c0f7c4641fab786e3d6004a4caace4fc536

SHA512
36e2bc67d73319b8f10a572ee3ca6f541aa51ca16c1efea9430111f3a058c9c922a43865b064811117f1c3892e39aee3bc79d7fc5ce20ccd75a13d447ca68911

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\skin-server-API\1.0\skin-server-API-1.0.jar

Filesize
14KB

MD5
13a8e72587ac6eacfb0986f75e51eb7c

SHA1
6c3daf89705427f73e6106d2d4d9619e99c5ecb5

SHA256
1fcffa073f722737431e2699b1f3ea48b92a3b825397d8f0d1464e4d4d15a014

SHA512
134735390415f60d0c42ff33a060bda508e273b35fc9aab271c20ff23f331b51cf3fa36443009e0987049f6bfb22c4098a1473e65ea0349e719fbf4b528f344e

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tlauncher\tlauncher-resource\1.4\tlauncher-resource-1.4.jar

Filesize
3.2MB

MD5
acbc8aa5ba5cdddf5f1e67befe8cc597

SHA1
63b4bf89744b532e65c1afa3294743d2b3798f2b

SHA256
1f46b3a163012f9729905633b5e5e03ce385066ae43138a564729c942f9ca6b9

SHA512
d974a032d9af451c0dd51fbc0d64840f3e03eb502f40e4ab60d6722913b8a48d44a75752fcff60656e4d19089570a894222959745af11bcdf93ea1544192fee3

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\tlauncher_libraries\org\tukaani\xz\1.5\xz-1.5.jar

Filesize
97KB

MD5
51050e595b308c4aec8ac314f66e18bc

SHA1
9c64274b7dbb65288237216e3fae7877fd3f2bee

SHA256
86f30fa8775fa3a62cdb39d1ed78a6019164c1058864048d42cbee244e26e840

SHA512
c5c130bf22f24f61b57fc0c6243e7f961ca2a8928416e8bb288aec6650c1c1c06ace4383913cd1277fc6785beb9a74458807ea7e3d6b2e09189cfaf2fb9ab7e1

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre-8u281-windows-x64.tar.gz

Filesize
73.9MB

MD5
5c482185ed6ae3dc5ee0bce647dbd997

SHA1
c77455fb17472ba547db49e146d3047c81519fce

SHA256
e7e76bd683b832dec6c9badf62d9cb44e669b67d0d9715be3496aadb10089f6a

SHA512
561a7c40576e3bd1482e194bc66bd9ab0391ca9b1c6573cf78abf0242cc4eff5c8eab4da52dade0958996c775a08bf0639903126ead3e961ad0f169dfa534c3c

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\awt.dll

Filesize
1.4MB

MD5
d490a92ad643cdaa908acc6c523331ec

SHA1
685485b7cfd294c23a49a67951c082b76472631c

SHA256
3dabdf89394fb5b3c87a7a148b53b6869698eb656d1edf6a88059f3fc8bee08f

SHA512
2d5addcee9308362187839925e27e16b36f458fa64eb45a50157c5d19b93ecdcb98d2c4d43433f009c509adce89da6130a70f92b259217704ed9c06bc1258b07

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\awt.dll

Filesize
1.4MB

MD5
d490a92ad643cdaa908acc6c523331ec

SHA1
685485b7cfd294c23a49a67951c082b76472631c

SHA256
3dabdf89394fb5b3c87a7a148b53b6869698eb656d1edf6a88059f3fc8bee08f

SHA512
2d5addcee9308362187839925e27e16b36f458fa64eb45a50157c5d19b93ecdcb98d2c4d43433f009c509adce89da6130a70f92b259217704ed9c06bc1258b07

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\java.dll

Filesize
160KB

MD5
949fc2c63994ec317abcccfc1452ef22

SHA1
41d496159e826e894988ad1dcca7918d10e793e5

SHA256
6cca6ced25b89323900dc9e5f75604c922a78bd70887ef003313f9e2e7b9aca8

SHA512
26f13807dce767a89d053690023ca322409dc819120f213944291f06e597a0d4f0a08435251d69a74bc15811540ba7f2472bf5962f0f66515603e34b0cd2815c

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\java.dll

Filesize
160KB

MD5
949fc2c63994ec317abcccfc1452ef22

SHA1
41d496159e826e894988ad1dcca7918d10e793e5

SHA256
6cca6ced25b89323900dc9e5f75604c922a78bd70887ef003313f9e2e7b9aca8

SHA512
26f13807dce767a89d053690023ca322409dc819120f213944291f06e597a0d4f0a08435251d69a74bc15811540ba7f2472bf5962f0f66515603e34b0cd2815c

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe

Filesize
270KB

MD5
74198e9118b9b57592f08fed2380ddb6

SHA1
e5c6541d4a133d434192155f758b750a17a532c5

SHA256
a8c0c9cd921236b8b47c62718638690e74edebdfd555f306ce3247207e032458

SHA512
c1838904824f7d7fba36e811a2b81f68beaba2f26b6ba1dd5249c6e3289583b818afb3fd934a08d526c30bd983240dcab0679f6a3f62fb29998430e75df92026

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\management.dll

Filesize
40KB

MD5
37b0569971b26876e53c6de81a1b3f92

SHA1
b11cd13b385201dcfc0c0a493c4590975159b902

SHA256
24a6e6375ec24524f4c035184b5e142712940861ddfabc44a48e8848e830f87b

SHA512
d030d024e52c3f8ec36fb9cb4bc8d83877256b4eeb89bb2028c7069ff2aea8e9f725b43822ee721f116b2cb2534940366f4be3feb05bc72c2299b190aac9ed97

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\management.dll

Filesize
40KB

MD5
37b0569971b26876e53c6de81a1b3f92

SHA1
b11cd13b385201dcfc0c0a493c4590975159b902

SHA256
24a6e6375ec24524f4c035184b5e142712940861ddfabc44a48e8848e830f87b

SHA512
d030d024e52c3f8ec36fb9cb4bc8d83877256b4eeb89bb2028c7069ff2aea8e9f725b43822ee721f116b2cb2534940366f4be3feb05bc72c2299b190aac9ed97

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\msvcp140.dll

Filesize
613KB

MD5
c1b066f9e3e2f3a6785161a8c7e0346a

SHA1
8b3b943e79c40bc81fdac1e038a276d034bbe812

SHA256
99e3e25cda404283fbd96b25b7683a8d213e7954674adefa2279123a8d0701fd

SHA512
36f9e6c86afbd80375295238b67e4f472eb86fcb84a590d8dba928d4e7a502d4f903971827fdc331353e5b3d06616664450759432fdc8d304a56e7dacb84b728

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\msvcp140.dll

Filesize
613KB

MD5
c1b066f9e3e2f3a6785161a8c7e0346a

SHA1
8b3b943e79c40bc81fdac1e038a276d034bbe812

SHA256
99e3e25cda404283fbd96b25b7683a8d213e7954674adefa2279123a8d0701fd

SHA512
36f9e6c86afbd80375295238b67e4f472eb86fcb84a590d8dba928d4e7a502d4f903971827fdc331353e5b3d06616664450759432fdc8d304a56e7dacb84b728

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\net.dll

Filesize
100KB

MD5
1f06a0a450a470a60370089408237e36

SHA1
ab488bc6dd912a4107ee6753d760fa2a0c9ca2f0

SHA256
69ae7599e82c5c25906faf7f845421405caad07acdbb5f1021aa56e170c5152b

SHA512
1d41781c4b86ff2fe62650f8db32ba6df3cc029d0faf9d4f21a3fdace2f3bd7ab667e70a0055cf7b84b54762ee35dcdd032ccb41bf02787b3e28bb7230ad0ea9

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\net.dll

Filesize
100KB

MD5
1f06a0a450a470a60370089408237e36

SHA1
ab488bc6dd912a4107ee6753d760fa2a0c9ca2f0

SHA256
69ae7599e82c5c25906faf7f845421405caad07acdbb5f1021aa56e170c5152b

SHA512
1d41781c4b86ff2fe62650f8db32ba6df3cc029d0faf9d4f21a3fdace2f3bd7ab667e70a0055cf7b84b54762ee35dcdd032ccb41bf02787b3e28bb7230ad0ea9

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\nio.dll

Filesize
63KB

MD5
a0bf549a97dd4752c34bd7d502f8d778

SHA1
1197c9c31eb06bcf81d265c33d11c6db016c7378

SHA256
7a2cd76fa640ec6154ebfac5ef46d472f08d5d1c00247049ac67896b6aefb156

SHA512
87c8f7201dc8c50403c990b84400b71a710243969f590a187604bb1bb1678582e95e28521ca0aad0565c32d26d7c4799c1f7f161cf344e5f6fa627641720b3c1

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\nio.dll

Filesize
63KB

MD5
a0bf549a97dd4752c34bd7d502f8d778

SHA1
1197c9c31eb06bcf81d265c33d11c6db016c7378

SHA256
7a2cd76fa640ec6154ebfac5ef46d472f08d5d1c00247049ac67896b6aefb156

SHA512
87c8f7201dc8c50403c990b84400b71a710243969f590a187604bb1bb1678582e95e28521ca0aad0565c32d26d7c4799c1f7f161cf344e5f6fa627641720b3c1

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\server\jvm.dll

Filesize
8.2MB

MD5
b6eccb52a3c72e3359419bedac89ccad

SHA1
e0448d8ac5a0ddee4ad91c6d373ae6467b3b4595

SHA256
c39842d7a68037629d734cef260af727c5346177929030adc00b0adc4671088d

SHA512
34b9fe1dda4624afe286440fc607d4b2d2e6a905974748fbb740132c825df6d2638d32f914881a9db79660be821e9ec9ca26c40a1ed382f72d7b70944bce384a

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\server\jvm.dll

Filesize
8.2MB

MD5
b6eccb52a3c72e3359419bedac89ccad

SHA1
e0448d8ac5a0ddee4ad91c6d373ae6467b3b4595

SHA256
c39842d7a68037629d734cef260af727c5346177929030adc00b0adc4671088d

SHA512
34b9fe1dda4624afe286440fc607d4b2d2e6a905974748fbb740132c825df6d2638d32f914881a9db79660be821e9ec9ca26c40a1ed382f72d7b70944bce384a

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\vcruntime140.dll

Filesize
83KB

MD5
1453290db80241683288f33e6dd5e80e

SHA1
29fb9af50458df43ef40bfc8f0f516d0c0a106fd

SHA256
2b7602cc1521101d116995e3e2ddfe0943349806378a0d40add81ba64e359b6c

SHA512
4ea48a11e29ea7ac3957dcab1a7912f83fd1c922c43d7b7d78523178fe236b4418729455b78ac672bb5632ecd5400746179802c6a9690adb025270b0ade84e91

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\vcruntime140.dll

Filesize
83KB

MD5
1453290db80241683288f33e6dd5e80e

SHA1
29fb9af50458df43ef40bfc8f0f516d0c0a106fd

SHA256
2b7602cc1521101d116995e3e2ddfe0943349806378a0d40add81ba64e359b6c

SHA512
4ea48a11e29ea7ac3957dcab1a7912f83fd1c922c43d7b7d78523178fe236b4418729455b78ac672bb5632ecd5400746179802c6a9690adb025270b0ade84e91

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\verify.dll

Filesize
51KB

MD5
900d7fa750bfddfc160e1732470d305d

SHA1
fc5c9fa077eceb5886e3b88fc94ad08937f6387b

SHA256
f6d5e4a6d7b3f960bda6863bbacbde7834460fe83d778b74f7ed1f51bd62a25e

SHA512
243ba475580fa58d5b45b2d5c4faaf454136dc761eb293399309ebc5ee8f7caead67aef2482776bc16e87a11baf74d6431c71dd12fadb9d38c4b8af6b839889d

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\verify.dll

Filesize
51KB

MD5
900d7fa750bfddfc160e1732470d305d

SHA1
fc5c9fa077eceb5886e3b88fc94ad08937f6387b

SHA256
f6d5e4a6d7b3f960bda6863bbacbde7834460fe83d778b74f7ed1f51bd62a25e

SHA512
243ba475580fa58d5b45b2d5c4faaf454136dc761eb293399309ebc5ee8f7caead67aef2482776bc16e87a11baf74d6431c71dd12fadb9d38c4b8af6b839889d

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\zip.dll

Filesize
81KB

MD5
2bad0abfd30c0bf121f5374f35702fcd

SHA1
f88f5c79d8f24d140ffbf88cd245cd9277f69887

SHA256
99a91373caf1f2e1fdb0c2c7975e5c8e8b8958bcfa640341dfece09fa4f1a5d8

SHA512
f3bf0ba14a8233fe6db50a07d33be809f1b6112ac957be214433ab240a66eee9917890fabbe5e18a3e8ab9abb795a0ffb91755d083a0da4ff419060d15eb134f

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\zip.dll

Filesize
81KB

MD5
2bad0abfd30c0bf121f5374f35702fcd

SHA1
f88f5c79d8f24d140ffbf88cd245cd9277f69887

SHA256
99a91373caf1f2e1fdb0c2c7975e5c8e8b8958bcfa640341dfece09fa4f1a5d8

SHA512
f3bf0ba14a8233fe6db50a07d33be809f1b6112ac957be214433ab240a66eee9917890fabbe5e18a3e8ab9abb795a0ffb91755d083a0da4ff419060d15eb134f

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\accessibility.properties

Filesize
149B

MD5
2ed483df31645d3d00c625c00c1e5a14

SHA1
27c9b302d2d47aae04fc1f4ef9127a2835a77853

SHA256
68ef2f3c6d7636e39c6626ed1bd700e3a6b796c25a9e5feca4533abfacd61cdf

SHA512
4bf6d06f2ceaf070df4bd734370def74a6dd545fd40efd64a948e1422470ef39e37a4909feeb8f0731d5badb3dd9086e96dace6bdca7bbd3078e8383b16894da

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\amd64\jvm.cfg

Filesize
634B

MD5
499f2a4e0a25a41c1ff80df2d073e4fd

SHA1
e2469cbe07e92d817637be4e889ebb74c3c46253

SHA256
80847ed146dbc5a9f604b07ec887737fc266699abba266177b553149487ce9eb

SHA512
7828f7b06d0f4309b9edd3aa71ae0bb7ee92d2f8df5642c13437bba2a3888e457dc9b24c16aa9e0f19231530cb44b8ccd955cbbdf5956ce8622cc208796b357d

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\charsets.jar

Filesize
2.9MB

MD5
67374911df954ceea5e7f39ef34f457d

SHA1
a4e92db3d9d0dca3b248f8539e04ef09c8b4fdf3

SHA256
1084059cc0a99a04bc55582772311050274bc38710095e3828acb0c3c049c5f1

SHA512
7dc21958aabc59c07968b8756138c3f5aaac51d2db74c5b7573476b169c27528e9f3a3484794d189b23cb1ce7f364e916bd7909f2fe5993740f93f3099bca72b

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\currency.data

Filesize
4KB

MD5
06cbdc01d247d7b365c804c4e9aaefad

SHA1
183cb72e7bf7118d870e549e9ca1fc096a2e3107

SHA256
183cea6ec937c92c47f2af345fda468cb19c6126dbb1a35b70dd47623efabe2b

SHA512
78a768406649b73457796f19f347c407c867c630be77d79997e25ca852e3987c0645fb5affecaaae458b1d6f9dbc6e359f505760652a898d6a1f515034a004c2

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\ext\cldrdata.jar

Filesize
3.7MB

MD5
a5c79910a260e61ff73e41127eab9dfe

SHA1
b92ec67e3eac281a5e5f7c5c84c6ef4d33f472b7

SHA256
ebf2432e90d8484f51db5fe0fd073daaeae3e1f8c3e919aceb811474864b2cb3

SHA512
c8caa8120b735b57ca9f4a2a282c4b58fbaffd7f19361e230ef526216efcae2d1461e70771d37f984bc2db7c24f000c768d5a4c1242c013e75db8833b1e20e8e

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\ext\localedata.jar

Filesize
1.1MB

MD5
fb3d07349f60828dd345d13f8e132c94

SHA1
d6fe96755f4471c3a8ffdbbb35524824139cd369

SHA256
44e60598b3a2b9d9c0294ed0e352eeec3612ca8a3eeec0cd384a76424d34c17b

SHA512
d3feaf5e8eb000342a922b69adbbc8909b04cc72d4daa30076361838496926a27a2d3d47b1d7121256d5110ad03a342fb5cf639e4e024f6f24c417f0ab653c5f

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\ext\meta-index

Filesize
1KB

MD5
005faac2118450bfcd46ae414da5f0e5

SHA1
9f5c887e0505e1bb06bd1fc7975a3219709d061d

SHA256
f0bce718f8d2b38247ce0ac814a1470c826602f4251d86369c2359ff60676bd8

SHA512
8b618c74b359ab3c9d3c8a4864f8e48fe4054514a396352a829a84c9b843a2028c6c31eb53e857e03c803294e05f69c5bf586e261312264e7607b2efd14f78a9

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\jce.jar

Filesize
115KB

MD5
add502acaefc139fe3ae8e7e484a41c3

SHA1
cf4be57ad520baa55d9e526c411c4a6e41a029cd

SHA256
f583dadafc2e1672da2861428d20d6c91ce702ec7f34bf5f5f97f15ea080395d

SHA512
5d43c9d2eb3e89ef8ef2d7a35c3942f641e13bffb324a548b9527374eac305ed3b7d2d73361b18448871c2fd3d14ee50c027969ba90330e22fa19dd7e49b50fb

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\jfr.jar

Filesize
559KB

MD5
7b55067c892d4e543c50dfe339d3c045

SHA1
08d82c6684351b73220d25d8dec22107d033a772

SHA256
d20e6f6d62f6e392640124fbf4319780130e3cd128bd4823eeb92d2b77b331ca

SHA512
dd97f44a5018b361cdbea244c09831488c36a7e4b170533b861930c6ba794068f15b1ce01b3be2dce1f38d68e01ba2ce2f9fda0c936e4bcc0f29c73d548398a1

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\jsse.jar

Filesize
1.8MB

MD5
dba0bf9f6b98935aedc0fb9a51b595c7

SHA1
234537e4eb503680683d447fccc6e6cb6ef6d58e

SHA256
6870cf65be3347816aed672938540d119b9442168bafa22821f490e671772799

SHA512
454a43cc175436c6c039f9a1608344f7d323243da77dfdcae7f7e61798ea7a6243b9f9d8975968ec8dd5d4ad21579532c15cee52f6e4ded72ca51839b4f7731e

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\meta-index

Filesize
2KB

MD5
91aa6ea7320140f30379f758d626e59d

SHA1
3be2febe28723b1033ccdaa110eaf59bbd6d1f96

SHA256
4af21954cdf398d1eae795b6886ca2581dac9f2f1d41c98c6ed9b5dbc3e3c1d4

SHA512
03428803f1d644d89eb4c0dcbdea93acaac366d35fc1356ccabf83473f4fef7924edb771e44c721103cec22d94a179f092d1bfd1c0a62130f076eb82a826d7cb

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\resources.jar

Filesize
3.4MB

MD5
168ce2722069378d518639bf864e5cc7

SHA1
d4ec09c71649c578648bbcb487ab4d89d8cdfd39

SHA256
7f959725602ff75a444d619a140d2302420afa2dbb1db2fecbbf7b92358901ab

SHA512
2ef79da45a0c61aa788661e28a7b26f675e22fe0c2349ddf153a023d0039eb08d3e1999b5c8117c700550256fe5398eebe99cd823279ea1878705db4b998d967

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\rt.jar

Filesize
61.6MB

MD5
fe585f04bd7d106d1813fd6139e3dd0c

SHA1
872297c77a7d1d3c706761404aedbdce24f694c1

SHA256
1f9f7bc629c6205e9d0eb3c097803b9e06a2045cecbbaf69a526c5b488dd3a7e

SHA512
9466beda4744a2eadd218b42f6bbe6f063306e99635eb8195bc551701ab945f42938cd7397f9e7a8a8947520b630bfd9c2fc05f44232524f9e0924c5e2c86f0a

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\security\java.security

Filesize
49KB

MD5
44e161cddfff8b98e40eb76212b5654f

SHA1
9d2da007c0747c6dcf7b27e70805fc38f6f521d4

SHA256
0457564ff35fcc49b4e33f26e6b46a32b68095034c3bdfc17508d8c4c6b1db0f

SHA512
b6f05e107c3a80eab39100ca82475e84bcc02edeb95e1ac8f7fcf5e8e72fc683f09cddb0f4a13c1363556832dfb2f0c94aa460c52c70b5e54063944003235b9b

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\tzdb.dat

Filesize
105KB

MD5
87bf51971bb056fd8b4e295905557467

SHA1
e2ab9b21bed47a7863566f4f4a1587f2fde744d7

SHA256
b0b5edb15f66402c4c2510a7aa800e5284e2cc32946cd44014332ce18c76e5e9

SHA512
fabf88cda16226fee963dc75146bc52ce04163ddafb89e84604bfccbc13cabd00aac0d0342c153e85b9511d90e4d5ef03ad75a118d47967e4f1b08eb1356af9f

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\lib\tzmappings

Filesize
9KB

MD5
62bc9fa21191d34f1db3ed7ad5106efa

SHA1
750cc36b35487d6054e039469039aece3a0cc9e9

SHA256
83755efbcb24476f61b7b57bcf54707161678431347e5de2d7b894d022a0089a

SHA512
af0ddb1bc2e9838b8f37dc196d26024126ac989f5b632cb2a8efdc29fbce289b4d0bac587fe23f17dfb6905ceada8d07b18508db78f226b15b15900738f581a3

Download Submit
C:\Users\Admin\AppData\Roaming\.tlauncher\tlauncher-2.0.properties

Filesize
51B

MD5
39f85e006ae6725733306364dc436a86

SHA1
6a49e824ef9cfbb59788f4cf3d75170b41f1ee8a

SHA256
ec782d1dbe86ffc31065437aaedf7c5676f3221f61b79ca4697ee4cc280d2331

SHA512
9877b792775c1963e5b88c2fa281a70eec1e3418e9389a5f68872e7b5364c91ffa27911b173cb2d522d2b6b07db343c93903df9d4ebbde53bdefb0d254b39a8a

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-4129409437-3162877118-52503038-1000\83aa4cc77f591dfc2374580bbd95f6ba_b7c2c17f-d18f-4e40-8a8c-2e93d1960e8a

Filesize
45B

MD5
c8366ae350e7019aefc9d1e6e6a498c6

SHA1
5731d8a3e6568a5f2dfbbc87e3db9637df280b61

SHA256
11e6aca8e682c046c83b721eeb5c72c5ef03cb5936c60df6f4993511ddc61238

SHA512
33c980d5a638bfc791de291ebf4b6d263b384247ab27f261a54025108f2f85374b579a026e545f81395736dd40fa4696f2163ca17640dd47f1c42bc9971b18cd

Download Submit
memory/3852-222-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-232-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-234-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-215-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-196-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-188-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-178-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-174-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-155-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/3852-144-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/4100-133-0x0000000000400000-0x0000000000417000-memory.dmp

Filesize
92KB

Download