e52b3d25e8577a8c83f8a90b573edb4f4f5e402013acbbeed0457cfa5401bc0c

Analysis

max time kernel
338s
max time network
334s
platform
windows10-2004_x64
resource
win10v2004-20231020-es
resource tags

arch:x64arch:x86image:win10v2004-20231020-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
12/11/2023, 20:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

kodi-20.2-Nexus-x64.exe
Size

78.3MB
MD5

f1d4cb6cb78ffd60bd07d67926ba3331
SHA1

cad0d1358546e27eb60007882bef9e799757e299
SHA256

e52b3d25e8577a8c83f8a90b573edb4f4f5e402013acbbeed0457cfa5401bc0c
SHA512

3e8d01defef6cd73e509b32b75402998cf55b58c7f7cf3e356a06db013e3bbd1c8b1d487c7c4cc08a68b91e8d96514abfaf337ecb9d0f49a41fe73a04873b748
SSDEEP

1572864:m033hj3vMQMD2E5Q7npEm0leGJ1GsJpLqN1r/L5bAjgudx8Av5Ki5t:m2xvMKSzMGLGuMD5b0gudx9v0It

Score

7^/10

discovery

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
2976	Kodi.exe

Loads dropped DLL 17 IoCs

pid	Process
3704	kodi-20.2-Nexus-x64.exe
3704	kodi-20.2-Nexus-x64.exe
3704	kodi-20.2-Nexus-x64.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe
2976	Kodi.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Enumerates connected drives 3 TTPs 1 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\D:	Kodi.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\Kodi\addons\peripheral.joystick\resources\buttonmaps\xml\cocoa\DUALSHOCK_4_Wireless_Controller_v054C_p09CC_14b_6a.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\importlib\resources.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.album.universal\albumuniversal.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\screensaver.xbmc.builtin.dim\resources\language\resource.language.pt_br\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\getopt.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\asyncio\events.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\cp500.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\lib2to3\pgen2\pgen.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.generic.artists\resources\language\resource.language.mk_mk\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\resource.images.weathericons.default\resources\37.png	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\pickle.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\settings\win10.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\aliases.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\unicode_escape.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\peripheral.joystick\resources\buttonmaps\xml\directinput\USB_Gamepad_v0079_p0011_10b_6a.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\site-packages\PIL\BmpImagePlugin.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\site-packages\PIL\GimpPaletteFile.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.mouse\addon.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\mac_arabic.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\settings\freebsd.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\service.xbmc.versioncheck\resources\language\resource.language.pl_pl\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estuary\language\resource.language.hu_hu\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\re.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estouchy\xml\PlayerControls.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\library\video\movies\directors.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\library\video_flat\recentlyaddedmusicvideos.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.default\resources\language\resource.language.de_de\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.album.universal\resources\language\Croatian\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\asyncio\base_tasks.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\iso8859_16.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\keyboardlayouts\czech.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.themoviedb.org.python\resources\language\resource.language.bg_bg\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\resource.uisounds.kodi\addon.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\turtledemo\two_canvases.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estouchy\language\resource.language.mn_mn\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\distutils\tests\test_extension.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\site-packages\PIL\BlpImagePlugin.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.snes\resources\language\resource.language.szl\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.album.universal\resources\language\Swedish\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\site-packages\Cryptodome\Protocol\__init__.pyi	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\xml\etree\ElementPath.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\shaders\GL\1.2\gl_videofilter_frag.glsl	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.common.fanart.tv\fanarttv.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\screensaver.xbmc.builtin.dim\resources\language\resource.language.eu_es\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\site-packages\PIL\XVThumbImagePlugin.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.generic.albums\resources\language\resource.language.de_de\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estuary\xml\DialogPictureInfo.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\resource.language.en_gb\resources\langinfo.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estuary\language\resource.language.szl\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\typing.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.default\resources\language\resource.language.lt_lt\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.keyboard\resources\language\resource.language.vi_vn\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.generic.albums\lib\scraper.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.mouse\resources\language\resource.language.da_dk\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.artists.universal\addon.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\threading.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\game.controller.snes\resources\language\resource.language.hu_hu\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\service.xbmc.versioncheck\resources\language\resource.language.cy_gb\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\peripheral.joystick\resources\language\resource.language.vi_vn\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\library\music\musicroles\conductors.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\metadata.themoviedb.org.python\resources\language\resource.language.uk_ua\strings.po	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\skin.estuary\xml\AddonBrowser.xml	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\system\Python\Lib\encodings\cp850.py	kodi-20.2-Nexus-x64.exe
File created	C:\Program Files\Kodi\addons\peripheral.joystick\resources\buttonmaps\xml\linux\Wireless_Controller_14b_18a.xml	kodi-20.2-Nexus-x64.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Checks processor information in registry 2 TTPs 9 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor	Kodi.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\VendorIdentifier	Kodi.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1	Kodi.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString	Kodi.exe
Key enumerated	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor	Kodi.exe
Key queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor	Kodi.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	Kodi.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	Kodi.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	Kodi.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
3704	kodi-20.2-Nexus-x64.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2976	Kodi.exe
Token: SeCreatePagefilePrivilege	2976	Kodi.exe

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 3704 wrote to memory of 2976	3704	kodi-20.2-Nexus-x64.exe	106
PID 3704 wrote to memory of 2976	3704	kodi-20.2-Nexus-x64.exe	106

C:\Users\Admin\AppData\Local\Temp\kodi-20.2-Nexus-x64.exe
"C:\Users\Admin\AppData\Local\Temp\kodi-20.2-Nexus-x64.exe"
1⤵
- Loads dropped DLL
- Drops file in Program Files directory
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of WriteProcessMemory
PID:3704
- C:\Program Files\Kodi\Kodi.exe
  "C:\Program Files\Kodi\Kodi.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates connected drives
  - Checks processor information in registry
  - Suspicious use of AdjustPrivilegeToken
  PID:2976

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\Kodi\Kodi.exe

Filesize
42.0MB

MD5
4bfa739d9d8590639a3ebf92a4017795

SHA1
e0012b797c0846b3aa061daef262cff9fd47daa9

SHA256
049ef89dd2af9a46bf0e20b52127ff92ff3efb703dba6efe8b6b7865c5a859c4

SHA512
419b499aca1623ac1a9b55b5c1f50c49cb152e15b00923303e84e454625a141260f51333c5524317788103968b7f209b182b2e055e93cc05c8947dd14a6d5bd5

Download Submit
C:\Program Files\Kodi\LCMS2.DLL

Filesize
415KB

MD5
773e5cd8f3fb6402e3faba6aac737134

SHA1
a3604b4c03196a9a75ca44a9988a125b17844f56

SHA256
5e4ba5337156f92331d9f7a93f3b31a7298b66880ccf6453054222a3cf33aaa2

SHA512
b161122bf192b94a014875d043455aad0d2f9ec38329f3d16980a629ae402026ccb81282982f4c0f290da34259140c3e8dc79ca84302e83aa9fc60e29e10f8d7

Download Submit
C:\Program Files\Kodi\addons\audioencoder.kodi.builtin.aac\addon.xml

Filesize
6KB

MD5
5c4ed1066533d1cb6ab6acf1c10c7ecb

SHA1
12177da43586290e0ca4d64e8e3c73d19ee9b55d

SHA256
7b562ef75f9335e1185c69f190758ff2486b787e9a375a1ed0203bc23f1de80e

SHA512
e95eacfbb2d7ae48e69a2e5a3d0ca18b3112207c17419a1251c7a77751af682939ba860003c8e19425ffacc0f895ebd35e4c1df986fd09ee3df0da4bcc9c0aa7

Download Submit
C:\Program Files\Kodi\addons\audioencoder.kodi.builtin.wma\addon.xml

Filesize
5KB

MD5
b292517318ccc22a67d7b76b87666afb

SHA1
7379363d3a83da320154f6d27a12dbb011eb74c2

SHA256
e552a7fa1d6f390c41ba5df84febf1e11c11982a6d8f71f33185e9ca7d41f486

SHA512
4ba44078348dc25623b027fda3410d7429bacc3b0cd43e2cd376497faaa2673a54b727ac82e66550e0bb227b74caf88d6114ca6b3681a85ac0e466f376f20541

Download Submit
C:\Program Files\Kodi\addons\game.controller.default\addon.xml

Filesize
8KB

MD5
09c0821275178a01e1d30f56a627c92b

SHA1
1cd79daec0c3148889bb2f78e9c58d6ac2f19edc

SHA256
8b9def7ac50c90390e9cac5cfc30c9fc7e4f4db61f2256e92279ef03810ada0c

SHA512
c36dbcd0fc558df3318287c7ff8efb3eba703dd1176be5e73fde7b5c5a8f9974bcbb3715f4e7debb1c51cb5f579cdc485573a1c2e98f7a0a4067022e3f598ff8

Download Submit
C:\Program Files\Kodi\addons\game.controller.keyboard\addon.xml

Filesize
3KB

MD5
f919452471ede9462a21f56b43b5c84c

SHA1
95a26e71443a2583cb89cbd0e517248c3269b7c7

SHA256
0095214fd75b3ed4fbcbc508e223e9a8ede73e78b4a76ca4a84f66a2f484b175

SHA512
bd0a599c7219228597bd0ec0005f0b0a78213a7504f1e59b0e58c7cd3ddc1f4e3bc0ecaeb5fd258a1e9b8999d029de4e0d4083debf61b522de40a365e80694aa

Download Submit
C:\Program Files\Kodi\addons\game.controller.mouse\addon.xml

Filesize
2KB

MD5
ae4ababf0bb9182736a900c1edd28db0

SHA1
ad50fead7340717485e41d8c723c04ba724b0c55

SHA256
2336eac4663512924c45ebbe010bdd360c4c72cf899eef783a26a3b9bd272b95

SHA512
bcc035dea6f93fa362249155ae87faf0d74569b5af4c36fa1cd740ad76bf9e69a672ddb7d7b4c9ae8aa5a2a29113c411423e8fc8e3df75cca65e9cc73fd2b87b

Download Submit
C:\Program Files\Kodi\addons\game.controller.snes\addon.xml

Filesize
12KB

MD5
186e14d9033f153e4744dd92fd2c7825

SHA1
0de7adfd7a5a60a55c5271b534bcd7e8ef3021ba

SHA256
f631d3ad5553fb669b2ec819bd5bdf9edcf1cc389eadd0891a9a8f8f811ffc72

SHA512
a9b131a9e890fd998b084eb0262c2ba29e04651e409d45041b7e6f465db8baa2c752b226ca21ff6f14bd4f5907b6da929b6f4958a31309c21867cbcbdfede805

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.audioengine\addon.xml

Filesize
257B

MD5
ed8440fa21a93c97cac0c7a4aa048e70

SHA1
392d64041bd17ab725025a0bce5ac4615d9e79e6

SHA256
59dc2f5fd62630f60950e10fe417f5d29466bdeceb015154a99d6c5c2ecdf08f

SHA512
1fbb0359bc87535344461250166cc4f33f6e6464d003182a66d369a67804774e4b6b39daf88a69ec28a7a9e175178178009a60326d9ec35c2977f152efec6238

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.filesystem\addon.xml

Filesize
256B

MD5
5caf7489b5493f664227a4972ed80807

SHA1
875e6be8237804ddcaacde82dc510189e2793d2c

SHA256
7e8c6d15d5425809ee8bd89d4f130059d1296f18471161386648dac29052a72f

SHA512
e2d6335aa12e7e319a50de75ba46a3d8e898b9745e654e36e4da998a1a61e2215448a96aa4687adb3943aba4b87c0196a0a708eaf9ebf9dead6b0278803c70e3

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.general\addon.xml

Filesize
253B

MD5
016c427f3e4693f6d3d52b5e2d0cb8ea

SHA1
7755b10efacf62e1ac60077c5df72187cf30e403

SHA256
b005910669ddd2cc081143c0dd19bce0a18dfa0e091259688dd4fd5276dc772c

SHA512
63eb6feacf56e03767fa01c88be654eca49b70243d3899d1f87f84a232364fc69c6734bb3bd031069c53ebcea8264a08935c3af5c3355ec39ed74e687ff07d06

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.gui\addon.xml

Filesize
251B

MD5
04bfce1babbaf06f422abe01d36f05c6

SHA1
7991756e75062f0638c51fbf7f947a4eeac0ed91

SHA256
ebaac4e8b9f0f34feb5b82dd3465b5b1e1c25b8bd83ada4fdd4e3073e308daf7

SHA512
90755bf85248980635e446925ec2433855ece6d4af6d76f01ad3c2f97883e419d84c31a6f683735f55bd76a451f5288d5b02fab20eebb93d2bc07eac06d4843a

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.main\addon.xml

Filesize
250B

MD5
5d4af5aaec143d36e2886dc0c64640ce

SHA1
78d20224e5dcb65852e951c70e199daf2a98dca5

SHA256
874705fc47fe2100ee27c7cf91f9cae3309890f5dfa8da3c890a228a5b78f5d2

SHA512
c7ab909d5284aa13bbefa49e2407c1dd286942d9be2e2548ee7cdeb943beec9c3230cf30be4faa6c0d4777213aafd94faa61058164bae9c14a2444fc183837c0

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.network\addon.xml

Filesize
253B

MD5
c45f4c34bf85aa671f4e5924c4f3e194

SHA1
c2de6158af4c300fe37f74e8647802ac3f6cbe21

SHA256
c63de80cf36f24f030a8269d4158530f23e54e8418e030d0be2879dc6ed35935

SHA512
70912cf9f780ec83ff6dc5b24ae68347e8582dd058ccc5d2fcddf11a33fd58d81e704ae3f80a23dfe9c36d0cf82a77d8e3eda23aaad2cc660ab3ea7fbd88e944

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.global.tools\addon.xml

Filesize
251B

MD5
405cd5394afd9d2b46f7566668157250

SHA1
bc12e324f0d3b2ff2787270093f9d1660d6fb46a

SHA256
335af71f1846e9776b44a76d4a576a3e7d1ffc4b7e634f0c128c2f455ae68eb5

SHA512
44c7dde5980bfa83a510c5fbcccdc98b7b3e21d09347f042c96c3370844763e56f8908537f8306e8d84de4d18e2477b391c6ad95a23a53739a629f25a3b8d525

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.audiodecoder\addon.xml

Filesize
260B

MD5
6f34dea77b067c0c1ad663cd69c49591

SHA1
b4c487806acb68fad6a1592149b436f4cf649038

SHA256
1c07ae658d01922b642eb8a0e3c07d745652b287d45f0f2e3d4b9daa0897c74b

SHA512
1b38a8f76391baf43b8c6dd29f1f88fb39479ebef259284431727ed1af5c072c6798e332cfb8b8e8eb42556f54c611b7db7cfdc7bf5cd9b4e18b6bf9d142aa4d

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.audioencoder\addon.xml

Filesize
260B

MD5
28cbf838bb1bf12af9b42d61ba0b52dd

SHA1
68b982496d9c6ffffc44161ffd38b7c2f5008bd1

SHA256
4c4b61e38cdaf53bffc1ea3bab6db02ee1516d35cfdc7a9b994792fad07aaca1

SHA512
98d624d6849d2688688a970244f7554d3c67186f111b501a98ca3a68202b78017cadb2cf3cdacd8bd1366cee53b687c58731192ae83fe31765bddeb66bf0de16

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.game\addon.xml

Filesize
308B

MD5
7aa5f51c7523a76e945d7a6e58e01b14

SHA1
a5c675fa5830441c77ff6672a43237d0292a5150

SHA256
86a4f1eed1f438b2fd2b15f2219de4bfd51667e38744a6d8cc18aac1c6820c61

SHA512
bbce821562ffdfa2e697e047a668578c8c2902be9ce892e89b654e6259b1436276e9377e574071339cdd9b37a6bfbb21b1f69d2d4e4506eeaaec54d7396e8b2d

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.imagedecoder\addon.xml

Filesize
260B

MD5
be100097172849194aea1e092f380cd4

SHA1
8c24e145a509e705e73b0fe1578d6abbad98cb99

SHA256
eda9e11924c147e1dcf862a470217212c66b19df1e722f629d18635ecaabf78f

SHA512
029cb529cec2bb8d465cc9d28b5a52f7075fab9bb91bc346f3469e828bfe758d991951b1ddf33704a6cbcf6d3c5d0357d153be1c4a293a1d2d3abda15ec01e4c

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.inputstream\addon.xml

Filesize
259B

MD5
1b5442b04cdfb1ea74ebc4d44cca213a

SHA1
cf9b0729da57f053f3074230ca5fa53a5eaf77bc

SHA256
a4f2bdd11accdc0383823e28ac501398345499c849b62dddd853548db5925bc6

SHA512
33bed74e89e7e78c13e078eb8e07dc00d92d5b4f0c24435122110bdfca107dc23302e0d907c1186a8de900c2bad398079b6749c9b361c0134da41ae8f5c18149

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.peripheral\addon.xml

Filesize
254B

MD5
48fe6cb6bee1b19cac9d8e6439ccd928

SHA1
9f167f6ed91428a581e29bc6cf30d5128d54113e

SHA256
39742cd4d6fca734642d81f725b248ddc85915284577e278cc8af00f70f750f3

SHA512
f2ac368ffcfb2f705f7688425acf5000d94d5e810e9548c219d35b7d111cede68cae79268c576d20969578b475056660afd12f59fdaefdea3c3c79a77cd9f5c5

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.pvr\addon.xml

Filesize
251B

MD5
7f53c19423baff3bb42703f3823ffe44

SHA1
419e758b867fac8b891114d9abf1830ebfb820f2

SHA256
aef9f6c67120a279e61fab657fd4c0290ee31cf6e3f2725a2391101561b1d723

SHA512
49015db98d63676a3eb89d8fe138d03751b38ce36f1eeacf7941237d7e05e1c63f38c6048cd37aa19bad8037c704104ffafdf55547664682b12bb88b545416b4

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.screensaver\addon.xml

Filesize
259B

MD5
b0732c14d7bcc9d652b8efb253280ce9

SHA1
fbb4ce381b33d01f80a61b3cb3a7cee77eddbddb

SHA256
5ccddd73519a18d843a59f508a1be2fac52cd8e7e903b4fc186b73bf933454f0

SHA512
c0dfe33666bd3604f4bb1bff0403d4e0aac4ca66586df24e1004dcb82ec1d52753db1efa4e97d1616562cb2dbd458c9112cb7960a4f6e40017b9d70f0f1220db

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.vfs\addon.xml

Filesize
251B

MD5
a7909efb8b99dadcdc6950ce193848ec

SHA1
e4f2100337b3f34b64369963ba64c62e6e05ecb5

SHA256
118b322a996fbc95e9e6eabb5c86ac5ef4a480f4a6f67552c953cead6461b0ad

SHA512
a032b68c73f7eb9ff5d741dcf3a73d0fc4187a3c9c75f8ad31c78c9670dd25c23415eab16d92d78b60afaa68f957653f1eba43e928cf77ead3577f3588c6709f

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.videocodec\addon.xml

Filesize
258B

MD5
651bd9ea7b653937520af4bfb24ec0b3

SHA1
c876ab440fdde7526696853cc82e560becd91a81

SHA256
f8fa58cffc62bc5f238dbee4a74c884820252312ec5cbffa676e59b6daa41376

SHA512
8c661cfcb20df0536d857f7de66be67291bc8f35a33d901a2d83827059933acb2790e365412ec9c99766a9efd5008fa04fa00141e59735419da8ed9aab09a576

Download Submit
C:\Program Files\Kodi\addons\kodi.binary.instance.visualization\addon.xml

Filesize
261B

MD5
e336e56496de206fcbc65d3d965522ee

SHA1
f2e83c75c968c9851f857db0d71bba6f5ee54e2e

SHA256
03ba5987025dcce979a8917eb2953afd0dbc899f9b0c312cf9b91e61eff0a276

SHA512
ee441fb51e5501eace063ba2bcb9ff31de9c3083d960dae2e5455b9088725baecd9b5e6abe54cac9426c7d40f12fb8760f2f673c4b789ea890c9f211111d6701

Download Submit
C:\Program Files\Kodi\addons\kodi.resource\addon.xml

Filesize
435B

MD5
aa8a7ad785cbfd3b186821c0edfdbb92

SHA1
e24a16c4d4d60f01986abbfeda369a062ce3569e

SHA256
da78036eca4c2395d028d5a1f9fa621795e0ce3d81d92a7f69239a3544da7ce4

SHA512
5d05c1e4dbff9b5e12ea3672d39b2c4c770fa70a88355062708962f2876e8df95a0c46439d8b8af67cca8b5f2be419707ece3de3b86673b796147b3c786ff715

Download Submit
C:\Program Files\Kodi\addons\metadata.album.universal\addon.xml

Filesize
32KB

MD5
781b56d6c28e23c9a78830fe7e5d2b99

SHA1
a5017e09cdf6f96026539305b734863a78b1a7ca

SHA256
b5cfd3727131ef294071906b9085fc67b96780a91dcaa8d439e2c16643f0fd90

SHA512
0a8e7550a264f4e58091ebce8b0a40893402b199f2504d2d28a29c4075b67968b62c2500a9d63e0cc51a7e7adf0b6881a5b24209dd0f6564703fe172871cb788

Download Submit
C:\Program Files\Kodi\cec.dll

Filesize
506KB

MD5
bd9838ebcaea6c94104c19d95c16b0d4

SHA1
5cc10b7541f435786d037008fd2696f15c21fbc6

SHA256
72ba899fd808f5e1d864b0f55809d9feaba2ae6078b5701ec1fcbd97f5fda8c5

SHA512
04d77f92e614a2760aaca21fec0eff5ee98162d0d792635fdf819c97eb0a692211ac68bcd071834ecdc75dbe4015ff95fa282a64bae6a775a1b623427f82d767

Download Submit
C:\Program Files\Kodi\cec.dll

Filesize
506KB

MD5
bd9838ebcaea6c94104c19d95c16b0d4

SHA1
5cc10b7541f435786d037008fd2696f15c21fbc6

SHA256
72ba899fd808f5e1d864b0f55809d9feaba2ae6078b5701ec1fcbd97f5fda8c5

SHA512
04d77f92e614a2760aaca21fec0eff5ee98162d0d792635fdf819c97eb0a692211ac68bcd071834ecdc75dbe4015ff95fa282a64bae6a775a1b623427f82d767

Download Submit
C:\Program Files\Kodi\harfbuzz.dll

Filesize
1.7MB

MD5
217f976c1d0875f96a9364f631258f34

SHA1
371f9065389700b43e058741712af1021b08e0d5

SHA256
a3847188120f5d064a643359b38efc4bc437828ee5fc06ef351e2875c278f6e5

SHA512
d3816964bb0525427193df557122eeba27a60408a23b90343836ff79fe9d47d9787a23a547c2d2dc836ac9261c13512c4ae4468e365f645ab958eed0ea117f40

Download Submit
C:\Program Files\Kodi\harfbuzz.dll

Filesize
1.7MB

MD5
217f976c1d0875f96a9364f631258f34

SHA1
371f9065389700b43e058741712af1021b08e0d5

SHA256
a3847188120f5d064a643359b38efc4bc437828ee5fc06ef351e2875c278f6e5

SHA512
d3816964bb0525427193df557122eeba27a60408a23b90343836ff79fe9d47d9787a23a547c2d2dc836ac9261c13512c4ae4468e365f645ab958eed0ea117f40

Download Submit
C:\Program Files\Kodi\kodi.exe

Filesize
42.0MB

MD5
4bfa739d9d8590639a3ebf92a4017795

SHA1
e0012b797c0846b3aa061daef262cff9fd47daa9

SHA256
049ef89dd2af9a46bf0e20b52127ff92ff3efb703dba6efe8b6b7865c5a859c4

SHA512
419b499aca1623ac1a9b55b5c1f50c49cb152e15b00923303e84e454625a141260f51333c5524317788103968b7f209b182b2e055e93cc05c8947dd14a6d5bd5

Download Submit
C:\Program Files\Kodi\lcms2.dll

Filesize
415KB

MD5
773e5cd8f3fb6402e3faba6aac737134

SHA1
a3604b4c03196a9a75ca44a9988a125b17844f56

SHA256
5e4ba5337156f92331d9f7a93f3b31a7298b66880ccf6453054222a3cf33aaa2

SHA512
b161122bf192b94a014875d043455aad0d2f9ec38329f3d16980a629ae402026ccb81282982f4c0f290da34259140c3e8dc79ca84302e83aa9fc60e29e10f8d7

Download Submit
C:\Program Files\Kodi\libass.dll

Filesize
2.1MB

MD5
bd1a2a94002ca810d1e5827887a58a90

SHA1
8cc57fa36ecbc3b3a111a2c4ade9b1072534af2d

SHA256
d4f0a95b0b12c02653daf693b89151e7417ba9a48acd3da57180a0861ab0bbbe

SHA512
3826c3e5503030c4fffe2d4e0ac760f7db6787abbaf0629710c72b76b1a2d7677e2c5f17e61df3d8e1846115e619b75d2a9ff93d325b2bb1848de33182b65953

Download Submit
C:\Program Files\Kodi\libass.dll

Filesize
2.1MB

MD5
bd1a2a94002ca810d1e5827887a58a90

SHA1
8cc57fa36ecbc3b3a111a2c4ade9b1072534af2d

SHA256
d4f0a95b0b12c02653daf693b89151e7417ba9a48acd3da57180a0861ab0bbbe

SHA512
3826c3e5503030c4fffe2d4e0ac760f7db6787abbaf0629710c72b76b1a2d7677e2c5f17e61df3d8e1846115e619b75d2a9ff93d325b2bb1848de33182b65953

Download Submit
C:\Program Files\Kodi\libbluray.dll

Filesize
845KB

MD5
048810a5ec5bcdba2eea1646ed9056cb

SHA1
f7d519a258ff264822bcc4ebc16f329fd952a3a3

SHA256
3be91eff45b04acade46598de255b48a0d513cb191e79b022150601882689754

SHA512
bcda0f3d66785c94ecc5fb27c27a3e91fcc00b48042172c969b93f39ab0540828c6955868ca3a0db887e253800dfc4f3892998de2304bafca6a54281c796dbad

Download Submit
C:\Program Files\Kodi\libbluray.dll

Filesize
845KB

MD5
048810a5ec5bcdba2eea1646ed9056cb

SHA1
f7d519a258ff264822bcc4ebc16f329fd952a3a3

SHA256
3be91eff45b04acade46598de255b48a0d513cb191e79b022150601882689754

SHA512
bcda0f3d66785c94ecc5fb27c27a3e91fcc00b48042172c969b93f39ab0540828c6955868ca3a0db887e253800dfc4f3892998de2304bafca6a54281c796dbad

Download Submit
C:\Program Files\Kodi\libcdio.dll

Filesize
220KB

MD5
8bd2abbb89f01aedcb43f0c2814f039c

SHA1
f1368e8e4cdd29ae3eaafb94e5d7bff5500c6d2d

SHA256
40b1c68ce0b890f3415458da4dedfbad2ec46fc9d57704d1f68af083ec4d450d

SHA512
29700d8d12f54dd0ad34169a4b2a59e032347642944b694de381fb853103df03934ac11fa7373320f3269bcf1a4d7686e47c7c1af6dc6b241ff2fa5999cae8a7

Download Submit
C:\Program Files\Kodi\libcdio.dll

Filesize
220KB

MD5
8bd2abbb89f01aedcb43f0c2814f039c

SHA1
f1368e8e4cdd29ae3eaafb94e5d7bff5500c6d2d

SHA256
40b1c68ce0b890f3415458da4dedfbad2ec46fc9d57704d1f68af083ec4d450d

SHA512
29700d8d12f54dd0ad34169a4b2a59e032347642944b694de381fb853103df03934ac11fa7373320f3269bcf1a4d7686e47c7c1af6dc6b241ff2fa5999cae8a7

Download Submit
C:\Program Files\Kodi\libcurl.dll

Filesize
2.9MB

MD5
168ffa04b40afabd0348c371525aee62

SHA1
2863a376faa2a1c8cdb58d21840cbe95122cbb10

SHA256
19ac1ad05ba279fec2ec1a48aee7192ed24ec3add4d563fa01afa9f3b1fafc6a

SHA512
819fa56d1b24fb7b56a7960486da8a1b907cbac368da99a07750193dc0f0484218afbccf8a09314593135019053eca4f136b02a8203948102bf99a9687c0d570

Download Submit
C:\Program Files\Kodi\libcurl.dll

Filesize
2.9MB

MD5
168ffa04b40afabd0348c371525aee62

SHA1
2863a376faa2a1c8cdb58d21840cbe95122cbb10

SHA256
19ac1ad05ba279fec2ec1a48aee7192ed24ec3add4d563fa01afa9f3b1fafc6a

SHA512
819fa56d1b24fb7b56a7960486da8a1b907cbac368da99a07750193dc0f0484218afbccf8a09314593135019053eca4f136b02a8203948102bf99a9687c0d570

Download Submit
C:\Program Files\Kodi\libdav1d.dll

Filesize
1.3MB

MD5
09c90e406bb0fee1d0b829ff6a578371

SHA1
c3fb377cb5e6c36be7581dc6590d76db14a88b26

SHA256
09c46a7c57a575ad2ee394269c1f85df18fd1734be275481ca423fce0f5554b6

SHA512
dcfeaf686eac93930452871129e3fd29b11cc13301654e0037d519ef47947812506bf05f375b93f557378e451ea0d37e31ee7376e66ee3559b4e1225f84b6a9e

Download Submit
C:\Program Files\Kodi\libdav1d.dll

Filesize
1.3MB

MD5
09c90e406bb0fee1d0b829ff6a578371

SHA1
c3fb377cb5e6c36be7581dc6590d76db14a88b26

SHA256
09c46a7c57a575ad2ee394269c1f85df18fd1734be275481ca423fce0f5554b6

SHA512
dcfeaf686eac93930452871129e3fd29b11cc13301654e0037d519ef47947812506bf05f375b93f557378e451ea0d37e31ee7376e66ee3559b4e1225f84b6a9e

Download Submit
C:\Program Files\Kodi\libplist.dll

Filesize
134KB

MD5
32df464b6b4c238015c148ff4876b5e4

SHA1
a4e204f8867f4460a6f1557128b249496cb2421e

SHA256
60b1f70d1b5b394e95797d96b4ef0936f62e9e137721096cb6d180a1c3c6c4dc

SHA512
cba0e597242497e1cbbb7b83e73c262bfa71d00c4a200425ff461a784803775ecd8ee036bd7c371645c917674ff8ea8bfa096f1c93f57d813dc7b72bf1a68c3d

Download Submit
C:\Program Files\Kodi\libplist.dll

Filesize
134KB

MD5
32df464b6b4c238015c148ff4876b5e4

SHA1
a4e204f8867f4460a6f1557128b249496cb2421e

SHA256
60b1f70d1b5b394e95797d96b4ef0936f62e9e137721096cb6d180a1c3c6c4dc

SHA512
cba0e597242497e1cbbb7b83e73c262bfa71d00c4a200425ff461a784803775ecd8ee036bd7c371645c917674ff8ea8bfa096f1c93f57d813dc7b72bf1a68c3d

Download Submit
C:\Program Files\Kodi\libxml2.dll

Filesize
2.5MB

MD5
233b69b85b5f6e84f559c88aad51446d

SHA1
934791edbf920dbca247a637da35d33da446722f

SHA256
a2904bb66bc6b2c5c25775ff450892cb53e84abdbd268cda782712a11f5f1267

SHA512
e8a2a0d83b550f9a2704437f1cddfb987925cde41929d7c0e19c73098fb7a4e69b9bd4fe4422d4de5f2d1d86e97bc638d4fe8cf9076d4b0a6f21b2cb7e0cbb2c

Download Submit
C:\Program Files\Kodi\libxml2.dll

Filesize
2.5MB

MD5
233b69b85b5f6e84f559c88aad51446d

SHA1
934791edbf920dbca247a637da35d33da446722f

SHA256
a2904bb66bc6b2c5c25775ff450892cb53e84abdbd268cda782712a11f5f1267

SHA512
e8a2a0d83b550f9a2704437f1cddfb987925cde41929d7c0e19c73098fb7a4e69b9bd4fe4422d4de5f2d1d86e97bc638d4fe8cf9076d4b0a6f21b2cb7e0cbb2c

Download Submit
C:\Program Files\Kodi\python3.8.dll

Filesize
3.8MB

MD5
c20a4348b02cde710a8e0a2d3411b403

SHA1
dfaef6abbca8ef0587afbb7f066830f6fefe6939

SHA256
59b9e55c876e3dd0ed7bdabb4835665da99d4f62787d50ca9714354484424741

SHA512
18c91d236330ff997ce577bb04a6225edb966f07ac91570198c4af902e5173098f297a065476f4e206425316539e2c620507b9e014ddb8f025c4c688fccfe00e

Download Submit
C:\Program Files\Kodi\python3.8.dll

Filesize
3.8MB

MD5
c20a4348b02cde710a8e0a2d3411b403

SHA1
dfaef6abbca8ef0587afbb7f066830f6fefe6939

SHA256
59b9e55c876e3dd0ed7bdabb4835665da99d4f62787d50ca9714354484424741

SHA512
18c91d236330ff997ce577bb04a6225edb966f07ac91570198c4af902e5173098f297a065476f4e206425316539e2c620507b9e014ddb8f025c4c688fccfe00e

Download Submit
C:\Program Files\Kodi\shairplay.dll

Filesize
133KB

MD5
6169664a19828243115ef68f3a7d3710

SHA1
9e6058aabb149dc51814808023b0aa1cca12e7f6

SHA256
afee7f69586815f8f527021941b79131c344cccb831535c67d5ebd6645158b01

SHA512
458bfe6459794fc9c7c646ce69850f0b5c6f6fbeafac8d6ccfa2b63ea53a4f2c09d882dbd56d1d9eaaee9080007e9ed8d0b99d6a7db3d16d8c2e1c6599d00d1e

Download Submit
C:\Program Files\Kodi\shairplay.dll

Filesize
133KB

MD5
6169664a19828243115ef68f3a7d3710

SHA1
9e6058aabb149dc51814808023b0aa1cca12e7f6

SHA256
afee7f69586815f8f527021941b79131c344cccb831535c67d5ebd6645158b01

SHA512
458bfe6459794fc9c7c646ce69850f0b5c6f6fbeafac8d6ccfa2b63ea53a4f2c09d882dbd56d1d9eaaee9080007e9ed8d0b99d6a7db3d16d8c2e1c6599d00d1e

Download Submit
C:\Program Files\Kodi\sqlite3.dll

Filesize
809KB

MD5
f7482a37ee0851475866f1233c928762

SHA1
043ef4f21a4c51ad62babf1406e00fff15904579

SHA256
ed9bff4b113aefca5368ff915aed289e1acf46a2ecf05c1c7c62dd248d023c35

SHA512
c9b8505583d5c3c487a60c9e82e9914f243dcbfb580e95fcfd9acbb9b46c206f426f624949f31b1a55a0503d2ed6d9a5ffc89ac66161245168d2179158a0012f

Download Submit
C:\Program Files\Kodi\sqlite3.dll

Filesize
809KB

MD5
f7482a37ee0851475866f1233c928762

SHA1
043ef4f21a4c51ad62babf1406e00fff15904579

SHA256
ed9bff4b113aefca5368ff915aed289e1acf46a2ecf05c1c7c62dd248d023c35

SHA512
c9b8505583d5c3c487a60c9e82e9914f243dcbfb580e95fcfd9acbb9b46c206f426f624949f31b1a55a0503d2ed6d9a5ffc89ac66161245168d2179158a0012f

Download Submit
C:\Program Files\Kodi\system\addon-manifest.xml

Filesize
2KB

MD5
a7063f71553534ad506d59a5d5c91463

SHA1
2413e6a01f7a1b610289125a944c15916f1834bc

SHA256
fb620c218063e28ce39c0923d6e1a8fe0c90964c214d4c53924bbd7cc389dfd0

SHA512
af2a8c3ec285a4fadbaa3b8a80d0b540276c047ef2088694c0fe90c007432e2de29c9dc2646f5575631cf8a1354dbb2dc7d13591435ce2c1cc24a032f4861354

Download Submit
C:\Program Files\Kodi\system\settings\settings.xml

Filesize
167KB

MD5
cac28aab0bc1113991bf365c0afa0b84

SHA1
a103b1fd295dfc1962e3ea8c5bb3a7a7597885c5

SHA256
12bc57e7802844dc8f2a32408eaadf4cbaf16b7a4a719cae2968763f35a0adc3

SHA512
cdc8120b04937615fb7c16c1ff3f64e66724fa27d1e47d969d57933a269debb528ed2c9a87d8eed4e1018cccb87442dc5d114b5eac58bc2f90b56d49ca2e38e8

Download Submit
C:\Program Files\Kodi\system\settings\win32.xml

Filesize
592B

MD5
65ff822ba02e93fbf7c6e766a9f409a8

SHA1
3c0bf5adeab35f4e392511bcfc7abbb19c0b0168

SHA256
bb41e264e2453828506422dbc4c1a1ddea7ca22c89f578fbfcf55343e0cc4e95

SHA512
320ffe38b92cbc61440606f0c343856d1f49db193d4db90b53f71f2a064251c63a36dca5ec182fdb4f5d3d77c2f15089ca8729d46b1584b77936f6a017a10e1f

Download Submit
C:\Program Files\Kodi\system\settings\windows.xml

Filesize
2KB

MD5
9edddb6dc8a531358f605ec90afaccd4

SHA1
b6ad7edd00f3533bd99d34d4da7564df2fb758a6

SHA256
3ca0260e2a34d09c9f502360e63365bdb8490a547413c1938a927d6c8099bc35

SHA512
d5b21e54232ef1bbd12af8d5bbddb7a70e006ae263d2e4e17c6b5cf74ca5c02af0913b6159cbc3f5ccd615c4599ab5b0df2bf49735a5b7543d82682e3cde2a5b

Download Submit
C:\Program Files\Kodi\userdata\RssFeeds.xml

Filesize
549B

MD5
e5cb8c967b8fb9d2342ece287487fac2

SHA1
09139233ea0484c16373eb8724869a803618980d

SHA256
3ba3b17f5d6a22e104ce8972e6bf176620f40d2b7ad816538030ae6ccb2b95f7

SHA512
75ca5d994fe6f41d1554853e585db6d1acf4158fb15b00a181b4725376c1d795b985f7ba23cc599a95c4b96ceb909d39a17a154b67aa77e0ca1a2a857148c6db

Download Submit
C:\Program Files\Kodi\zlib.dll

Filesize
121KB

MD5
5bf7d9c8984e56e559ba8c9c78c9b1ac

SHA1
65dae7a5180a3b46821ab06ae16b7a69cc2464e7

SHA256
ec48e6bb9b25b91f245725dc0bee483fec4b5cda3d5396ee22536942d489d367

SHA512
003dada6e3b38d16cb83420f71a560ded27d0ff6b8633500405fdb5943cbf80c8cd0c898ec210bdcc829ae1053fc0eacba5330177dbd34649f26e1774ae9ab64

Download Submit
C:\Program Files\Kodi\zlib.dll

Filesize
121KB

MD5
5bf7d9c8984e56e559ba8c9c78c9b1ac

SHA1
65dae7a5180a3b46821ab06ae16b7a69cc2464e7

SHA256
ec48e6bb9b25b91f245725dc0bee483fec4b5cda3d5396ee22536942d489d367

SHA512
003dada6e3b38d16cb83420f71a560ded27d0ff6b8633500405fdb5943cbf80c8cd0c898ec210bdcc829ae1053fc0eacba5330177dbd34649f26e1774ae9ab64

Download Submit
C:\Users\Admin\AppData\Local\Temp\nseC44B.tmp\StartMenu.dll

Filesize
7KB

MD5
d070f3275df715bf3708beff2c6c307d

SHA1
93d3725801e07303e9727c4369e19fd139e69023

SHA256
42dd4dda3249a94e32e20f76eaffae784a5475ed00c60ef0197c8a2c1ccd2fb7

SHA512
fcaf625dac4684dad33d12e3a942b38489ecc90649eee885d823a932e70db63c1edb8614b9fa8904d1710e9b820e82c5a37aeb8403cf21cf1e3692f76438664d

Download Submit
C:\Users\Admin\AppData\Local\Temp\nseC44B.tmp\System.dll

Filesize
12KB

MD5
cff85c549d536f651d4fb8387f1976f2

SHA1
d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e

SHA256
8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8

SHA512
531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88

Download Submit
C:\Users\Admin\AppData\Local\Temp\nseC44B.tmp\modern-wizard.bmp

Filesize
150KB

MD5
c8436f0adb6c63a8a5dc142aa3bf3f15

SHA1
d7a2ddebac2bce7594fb043e0a45983c729fa17f

SHA256
e33d65084ed6804f65a8993ab2d544e32fbae4a4de9eb8ef7ec409b0444cbb28

SHA512
03dd1626cc07fd4c34c5587df64620798f1b0505acd7807ee9a5b5791a465eb2619811aa41e17017f25bc0535ca2c77070a8c47c962d6104117df0ef1b4b73b3

Download Submit
C:\Users\Admin\AppData\Local\Temp\nseC44B.tmp\nsDialogs.dll

Filesize
9KB

MD5
6c3f8c94d0727894d706940a8a980543

SHA1
0d1bcad901be377f38d579aafc0c41c0ef8dcefd

SHA256
56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2

SHA512
2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads