155e513d1d4112f866526453f7ebbb4245fb92a0d5b29cad954d3371f63b4c1b

Analysis

max time kernel
285s
max time network
202s
platform
windows7_x64
resource
win7-20231020-en
resource tags

arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
submitted
22/11/2023, 23:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

x-mirage-inst.exe
Size

36.0MB
MD5

9dbe2a0e7c69daf944726046f44134cb
SHA1

bd5033778ec1a2179e59ce48687c0e8713039146
SHA256

155e513d1d4112f866526453f7ebbb4245fb92a0d5b29cad954d3371f63b4c1b
SHA512

f627f2495ab57b6becc6ae9b645c0865d0a0a681d3d480923b854d905361f5a26931948f0493f84731b46d6cdda6ddec23fc18a7ca8ea6cb6b7678370df99861
SSDEEP

786432:kaQSm27Ior0kd9o4Qrz7HL7HW7tLLVaZlOcopVyVFR7:n+mN06QrrbWJLVovuVY7

Score

10^/10

discovery evasion

Malware Config

Signatures

Modifies firewall policy service 2 TTPs 1 IoCs

evasion

Modify Registry

T1112

Windows Service

T1543.003

description	ioc	Process
Key created	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules	X-Mirage.exe

Executes dropped EXE 2 IoCs

pid	Process
2412	x-mirage-inst.tmp
1784	X-Mirage.exe

Loads dropped DLL 50 IoCs

pid	Process
2872	x-mirage-inst.exe
2412	x-mirage-inst.tmp
2412	x-mirage-inst.tmp
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Enumerates connected drives 3 TTPs 25 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\U:	x-mirage-inst.tmp
File opened (read-only)	\??\E:	x-mirage-inst.tmp
File opened (read-only)	\??\R:	x-mirage-inst.tmp
File opened (read-only)	\??\Y:	x-mirage-inst.tmp
File opened (read-only)	\??\N:	x-mirage-inst.tmp
File opened (read-only)	\??\P:	x-mirage-inst.tmp
File opened (read-only)	\??\L:	x-mirage-inst.tmp
File opened (read-only)	\??\H:	x-mirage-inst.tmp
File opened (read-only)	\??\S:	x-mirage-inst.tmp
File opened (read-only)	\??\W:	x-mirage-inst.tmp
File opened (read-only)	\??\Z:	x-mirage-inst.tmp
File opened (read-only)	\??\B:	x-mirage-inst.tmp
File opened (read-only)	\??\D:	x-mirage-inst.tmp
File opened (read-only)	\??\M:	x-mirage-inst.tmp
File opened (read-only)	\??\X:	x-mirage-inst.tmp
File opened (read-only)	\??\F:	x-mirage-inst.tmp
File opened (read-only)	\??\Q:	x-mirage-inst.tmp
File opened (read-only)	\??\V:	x-mirage-inst.tmp
File opened (read-only)	\??\K:	x-mirage-inst.tmp
File opened (read-only)	\??\I:	x-mirage-inst.tmp
File opened (read-only)	\??\J:	x-mirage-inst.tmp
File opened (read-only)	\??\O:	x-mirage-inst.tmp
File opened (read-only)	\??\T:	x-mirage-inst.tmp
File opened (read-only)	\??\A:	x-mirage-inst.tmp
File opened (read-only)	\??\G:	x-mirage-inst.tmp

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-errorhandling-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-rtlsupport-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-memory-l1-1-0.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-J3FAV.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-AG6NG.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-R83IV.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\vccorlib140.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\XMActiveConsole.exe	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-string-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-handle-l1-1-0.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-AP6C0.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-VV6TH.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-N1FB5.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-H1CQG.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-stdio-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\libeay32.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-NJRSD.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-EOGJD.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-L2SSP.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-profile-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\concrt140.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-locale-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-datetime-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\trrender_dsound.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\postproc.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\avdevice.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-VBMR3.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-R6FEA.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\msvcp140_atomic_wait.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\X-Mirage.exe	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-N82VN.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-G42JV.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-RU9GK.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\language\is-ISNVK.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-CF5OE.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-PLARJ.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-0QH3J.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-BHJ4C.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\language\is-19DDU.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\testvideo\is-RA8ME.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-localization-l1-2-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-utility-l1-1-0.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-N2PGN.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\language\is-2P42Q.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\ssleay32.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\unins000.dat	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-filesystem-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\X-MirageConverter.exe	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-0MSCK.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-4OA07.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\CoreFoundationLite.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\mDNSResponder.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-AEL3D.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-I7E4P.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\avcodec.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-J3VSB.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\trreg_ui.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-debug-l1-1-0.dll	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-EUDBQ.tmp	x-mirage-inst.tmp
File created	C:\Program Files (x86)\X-Mirage\is-PH2FL.tmp	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-convert-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-crt-private-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\api-ms-win-core-processthreads-l1-1-0.dll	x-mirage-inst.tmp
File opened for modification	C:\Program Files (x86)\X-Mirage\swresample.dll	x-mirage-inst.tmp

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
2412	x-mirage-inst.tmp
2412	x-mirage-inst.tmp
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2412	x-mirage-inst.tmp

Suspicious use of FindShellTrayWindow 4 IoCs

pid	Process
2412	x-mirage-inst.tmp
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe

Suspicious use of SendNotifyMessage 3 IoCs

pid	Process
1784	X-Mirage.exe
1784	X-Mirage.exe
1784	X-Mirage.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1784	X-Mirage.exe

Suspicious use of WriteProcessMemory 11 IoCs

description	pid	Process	procid_target
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2872 wrote to memory of 2412	2872	x-mirage-inst.exe	28
PID 2412 wrote to memory of 1784	2412	x-mirage-inst.tmp	32
PID 2412 wrote to memory of 1784	2412	x-mirage-inst.tmp	32
PID 2412 wrote to memory of 1784	2412	x-mirage-inst.tmp	32
PID 2412 wrote to memory of 1784	2412	x-mirage-inst.tmp	32

C:\Users\Admin\AppData\Local\Temp\x-mirage-inst.exe
"C:\Users\Admin\AppData\Local\Temp\x-mirage-inst.exe"
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:2872
- C:\Users\Admin\AppData\Local\Temp\is-AH4RK.tmp\x-mirage-inst.tmp
  "C:\Users\Admin\AppData\Local\Temp\is-AH4RK.tmp\x-mirage-inst.tmp" /SL5="$70122,36859286,1145856,C:\Users\Admin\AppData\Local\Temp\x-mirage-inst.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates connected drives
  - Drops file in Program Files directory
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of WriteProcessMemory
  PID:2412
- - C:\Program Files (x86)\X-Mirage\X-Mirage.exe
    "C:\Program Files (x86)\X-Mirage\X-Mirage.exe"
    3⤵
    - Modifies firewall policy service
    - Executes dropped EXE
    - Loads dropped DLL
    - Suspicious behavior: EnumeratesProcesses
    - Suspicious use of FindShellTrayWindow
    - Suspicious use of SendNotifyMessage
    - Suspicious use of SetWindowsHookEx
    PID:1784

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

T1543

Windows Service

T1543.003

Privilege Escalation

Create or Modify System Process

T1543

Windows Service

T1543.003

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\X-Mirage\CoreFoundationLite.dll

Filesize
818KB

MD5
26660ae66ff50056beb178ca7ed6d752

SHA1
cae5bc0ed81fd9365869bd3b1208de2d460be164

SHA256
b40fa20f38b449a999ce89760257ddf2e99a6fdd4d5a858b196f98c3ec4875a4

SHA512
0b5a25b4db936147afedc3f8560e7bf41452ead0a87120b6e6d9ed67534cab355e0e241896101de4ac28621dd74cb86a368407ae3902a97a6a6c6b1075a054b7

Download Submit
C:\Program Files (x86)\X-Mirage\LIBEAY32.dll

Filesize
1.2MB

MD5
4e26089f023b2e733c73711410d6107c

SHA1
ebdba257e2731b7f9261d1a4a120a67a3568615b

SHA256
940c21c5aadd737491cef80838deff23d6a92a835de523b615516a9618badd36

SHA512
f2f14c3cfb3311e809cd3ddaf1e5c2d9885cfe1e0e6fa5c7c46d73c14607ee18857f93c41aac7e2807652a171d57e2cd2ad594d0661cc7ef1f23641e5e6d41f5

Download Submit
C:\Program Files (x86)\X-Mirage\MSVCP140.dll

Filesize
440KB

MD5
e0dd94aada0b034b212de071c33054da

SHA1
6c4f1b3f66d07bbcdcf41eb39b1480bb335efcc8

SHA256
08442853f19ce4ff3acae37d87eab33ef81c4c6da62a3432d43253ba79842b64

SHA512
76c877056f448e5dab820e990cc186ba886b2d331d689a99295aaff31a63aadb941c2693b0be98d53bd06cd8041a270eb82ddedfbde305cd9a85bcbe42fcf5a2

Download Submit
C:\Program Files (x86)\X-Mirage\MSVCR120.dll

Filesize
948KB

MD5
034ccadc1c073e4216e9466b720f9849

SHA1
f19e9d8317161edc7d3e963cc0fc46bd5e4a55a1

SHA256
86e39b5995af0e042fcdaa85fe2aefd7c9ddc7ad65e6327bd5e7058bc3ab615f

SHA512
5f11ef92d936669ee834a5cef5c7d0e7703bf05d03dc4f09b9dcfe048d7d5adfaab6a9c7f42e8080a5e9aad44a35f39f3940d5cca20623d9cafe373c635570f7

Download Submit
C:\Program Files (x86)\X-Mirage\VCRUNTIME140.dll

Filesize
74KB

MD5
87dd91c56be82866bf96ef1666f30a99

SHA1
3b78cb150110166ded8ea51fbde8ea506f72aeaf

SHA256
49b0fd1751342c253cac588dda82ec08e4ef43cebc5a9d80deb7928109b90c4f

SHA512
58c3ec6761624d14c7c897d8d0842dbeab200d445b4339905dac8a3635d174cdfb7b237d338d2829bc6c602c47503120af5be0c7de6abf2e71c81726285e44d6

Download Submit
C:\Program Files (x86)\X-Mirage\X-Mirage.exe

Filesize
29.7MB

MD5
285a5532c5e1168935004a4e8bc6e56b

SHA1
cac9b86a014006310526b59985d7ae97d14ff4dc

SHA256
7ef4dbf71172fc8d2f2ad306a43c0c30ed8a8b5197b8d554de10a57b42a44de2

SHA512
24bcc6ca2bb734da6cfe2a73c84305f4ddd0e4af15a0a90ff9cf6c5983852d2875987dca0953717b1e2a6b5c78e01a888149dc287b07a5a42052328758533349

Download Submit
C:\Program Files (x86)\X-Mirage\X-Mirage.exe

Filesize
29.7MB

MD5
285a5532c5e1168935004a4e8bc6e56b

SHA1
cac9b86a014006310526b59985d7ae97d14ff4dc

SHA256
7ef4dbf71172fc8d2f2ad306a43c0c30ed8a8b5197b8d554de10a57b42a44de2

SHA512
24bcc6ca2bb734da6cfe2a73c84305f4ddd0e4af15a0a90ff9cf6c5983852d2875987dca0953717b1e2a6b5c78e01a888149dc287b07a5a42052328758533349

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-file-l1-2-0.dll

Filesize
17KB

MD5
ea4ae42721460002dc31515f295ad1c4

SHA1
8a970d589aa4c178083ee8fb65798a6ddecdc1cf

SHA256
668f91e94e76db4457184909e6a1ab4655e81a8ef37dc37b4ecfe93146c29a88

SHA512
5ea1f2fb8be9ffdf80250b47a440ddb3a41e46a8ce73b6f4834e59cb8d30a1b474f6a33d716efa43ac7ee52d37ac941f3d51021792b9d1439c831b8a368781b9

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-file-l2-1-0.dll

Filesize
17KB

MD5
ad895b2a99a3ec18f1690bbac1e2037a

SHA1
19fab11ca8d2ab4a3c1a863209cbdc77a69e1aed

SHA256
a11c772b2451b0c9c706b03381819e4a1def3e2fbbba8362509bbe57dbd5c666

SHA512
d021a5b8451bb8bac27b4f496a1a25e0a2b2f90c93a7e27850303c5feb9441f9b926b13ef024c176827e190f2dc04f401205983510dfab0946674d18994bbe8f

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-localization-l1-2-0.dll

Filesize
20KB

MD5
41a0d67ba3833d230f1229ff058be057

SHA1
a66fda76d97d059067f11c3e03869a1b9da439a0

SHA256
4f11443a2fa6c714d3e33597f0d08de4e11a6a2fdb7de2e4a01addd5977665c5

SHA512
a4138cc25ac899059a702f4e078e7662f15b7059089e53b6eb1a78a1bbebc03704421bdd0a5fcbdffd48be2842d587e4e3e56d881f0462f60cddc5c75fc14f2f

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-processthreads-l1-1-1.dll

Filesize
18KB

MD5
f43a8e9cd787b6d91bb29dbb8eb1a4e5

SHA1
336b61853627e6e64a10fbb930577d30334e615e

SHA256
5bacbbe62e36ad0f6d7742e70361f26bc56a44dbd28cc0291f588420e0c218a6

SHA512
1fdc1170907346ef0eced900de9091136a6626c4bfc8b4416dfebbe356f35f9c2be0d2cf6c37e3dd231f3db8b5a3afe8973f15a45544c0c1c10682fe03911616

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-synch-l1-2-0.dll

Filesize
18KB

MD5
2674310f6fc087862b215b26a5d6da5b

SHA1
6e226a29124716fb6c5c54cbbf3c2b6f727c9e5a

SHA256
e29eaa099be15958cb65d03d47959cae2dac342402856c5f0e4da672193c329d

SHA512
86964e2a71a32d7fd0c6f3061ecbe66dd10d4938e0f5e3572f962b53107524259f62001bdff7e4c9173a6b8270f46b76c1037dc69b8343f10e4b4e59bd8d6782

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-core-timezone-l1-1-0.dll

Filesize
17KB

MD5
fd14fcd1550f17701fbf239645b606fa

SHA1
0d7b1de80db94dabad3ce91d31fda1a8a1a6cfab

SHA256
a5453cd2b5e98d40ca17dd20a8f5974f29de7236a076867a3bc3cbca441be928

SHA512
162559d9e6e36bffe32be41f75075e711e6947adab2ad3bb37cf03e02e787ad5a6f3fb93af4b6c3f82e1107dc401d32dbd53fcba39f85839910e852c1109db5b

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-convert-l1-1-0.dll

Filesize
21KB

MD5
bc0be695e63548171105c57d2e9b98e7

SHA1
0c4506b330487c4b45900b06dfe0a3249f6b9d88

SHA256
d16c5b0e19870e86354b5e6cdc4c81e80777749f6bbe6b675f680cec0ffae35d

SHA512
095ef210f55233a0c0eb80fc2d94646de96cb2e66d1994d631fa82e5a71a5c26b32d33abc19ac69e64bd3e4789eb1a7595818a90494038ea1771c210cd81cb2a

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-environment-l1-1-0.dll

Filesize
18KB

MD5
6bfbf95b7253f32a77bacdf119b678f3

SHA1
3e3522a9d62940e1e3c0ed6f785af0b5e3a33600

SHA256
9fc2486ed5d3fff78deb69a7386f4575451d43b67f759afb056ac66b82041e3d

SHA512
603a5a199a19028b2e496051772517c488fd3fcc05dd6bec51e15c58dad2981f7dab44c3d7e1be836afe8f3cf35ac90e574f0062737c353079e33096dba26f10

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-filesystem-l1-1-0.dll

Filesize
19KB

MD5
07ba5f40c64134e5749df0e8cfee082e

SHA1
5b872a7ea316b6b3ba604b88045b9b6f34ba4c8b

SHA256
136e5de4b535aabf6368c06f82339d2ef6c34165661f40433bcef4ebb90b30fe

SHA512
55b5c739d08f5627d9453709cc0d3d20c3fc08e9a1168f70381b49f8fdc8d91f15db85db51d47aaae612cbe920bb3ba83075e74888b2d62e3a962f181b3d2c12

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-heap-l1-1-0.dll

Filesize
18KB

MD5
cb4e401ce4fc657ccebb85f96840cc8b

SHA1
359910f84b5faf0d194d534c2f631db5074ea28d

SHA256
b90bffa9e03ffd4ecf1d0d709c60f61d13490e84c4550ef06586bc9b1024ed00

SHA512
382df8909dc347dd86696756cd22650ee9be45146ffdf3b400da4e370c7c42bcdd4c7fdb807e5a9161211b975b9750ee6cb2b2e2132aad9d3f90db9956c2275e

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-locale-l1-1-0.dll

Filesize
18KB

MD5
b53d96644f5774fe29ba8bb12d6e5f66

SHA1
260cbbada90e29ee8e308996e973ce635496d53c

SHA256
be19250a19ed49ce247999d6f0b953edc2ab7c66b46f1cfbd0c24be91b84b297

SHA512
e894cae26ea86325a9012ec2a00086e136afe64f38f8da8b3c5ee1ccad87b1dcf502ad41e050c1ecfbc1c45d2c69a3c35c5322765ef92ddaf00e5e9953f3436f

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-math-l1-1-0.dll

Filesize
28KB

MD5
49a69484b524c6f9fd641e015dd15154

SHA1
f6ec9e38d05ed66e8431b909aba0451ef8c9b540

SHA256
69c637c0be7ddfe0690d8c642ec6d0850085617c3c3dda9531cac818f06f66e8

SHA512
802d186f4b580541916c038999c0653765f2cb01c345549f6d927f7688b671b234c7ee05f2a9eba6c139f25c459e579da4437ee2ac03ed3fe3ebef849f178553

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-multibyte-l1-1-0.dll

Filesize
25KB

MD5
66f65b59dff2f8927dc3c8045d8c3a0a

SHA1
ae459d1b4d6615587d8b9133ec72162c717287fc

SHA256
414a2bd84b042e2ccf758270647bcfa02d78eb0125c0584dd53f7245481d66b9

SHA512
4fa559f7e3b423a736081a67c8a19084288a870307547b19b2dccad935afdc56311a2045ceb4791d1ca33a05f7f1f906c21363a2076436431a118667f298d577

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-runtime-l1-1-0.dll

Filesize
22KB

MD5
11218c9f81404a51d1eb6b56ba60f9ab

SHA1
acc303d1b1a5822ed7bcf8f666860a0a7aaffe91

SHA256
882da90b6368056908e9cd21c4719a016e9a3ca597eca9183892a5806b4a8d4a

SHA512
86928d70aec7bd7170863c0cdea110f8a4aa244efb30577310ad1908d71817b8a2aeb45833d5f710b15df8fe096234cfb069819b0f2b706cfcd15b5614615929

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-stdio-l1-1-0.dll

Filesize
23KB

MD5
d67520bff673cab4b2ed1af12de37a1f

SHA1
752deacc54982012852e68c37253e95b8bb89aee

SHA256
44bbb2aec747e1cbc63fc7c4d2e8c5ec1ca9f9d026835ac2ccb0d60971b6107a

SHA512
a960ec529e6889b0f3253869fc72c4f65615141d23f42d808de99e192b89b15dbc24b1d37812dc89f68576662173f18bc047a46b92598567e8c7e37e51821ab0

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-string-l1-1-0.dll

Filesize
23KB

MD5
e65f76759251845fa1e6a3cf41b5f231

SHA1
de4517eb0d8b330d3c2717e786f485150caf82ec

SHA256
034a8abf2bf027ad950fdf8fbdf488188c8d02eba8e160aa95de376ff1f32fe6

SHA512
afc7d0a26b2ffefb43846d621585fc35a2ce280eef1d046da5a327f20ae7b023cceb2bfd64176787ab86a76567e233215427686243e62eca5ded1ad14b19b5b5

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-time-l1-1-0.dll

Filesize
20KB

MD5
1622347a34eba068916713cf28f46b67

SHA1
18b3960e88118195f17c4bef47df1f7935cee459

SHA256
9766c4200b3f51630097fce8d4f10b33383e663601802ada72660604876c99e9

SHA512
90b2398918487e0ccfe8f859aee6e729a4063a110204644a75649331f10895b6c4de09e57b6e20e8fac04ac413f54a82889e602d05f5f42690b87d9c2253fa2e

Download Submit
C:\Program Files (x86)\X-Mirage\api-ms-win-crt-utility-l1-1-0.dll

Filesize
18KB

MD5
f7af6bb63229721005c8ac85dc86f5c2

SHA1
35ddd88fbea433a7e934ab0ca64907f8b0a85d9a

SHA256
fa10f7e2ab54c2ebcd4688e39bc4af1544fa21b73be7fd0562b3ff7cff041f7a

SHA512
e4f242ec6204dd481ea5b8b1edbfb9a7c8b136d9869fb85868325b21248aa170fecdf43075361e188b20a6f138f3760226b4cfb302929e04cd3901e6cb03961a

Download Submit
C:\Program Files (x86)\X-Mirage\icudt53.dll

Filesize
20.6MB

MD5
f7c5fa5e0b9e3619945595f9ce97b09b

SHA1
219058c019c86ddc0a809424a9fc53f784d19d9e

SHA256
8320943f3b16f321e1d65c1c9c096e7b8fa262a1157d19e0d121729cab6e74c2

SHA512
5a51acc72418ba296b6a99bd57c20ae9a68a6ba2b8c639317dd87063a8bdbeae96c6306e7bae3ac9056a088d01d91afb32909a3139090e1d9f1b0011d4eca7a9

Download Submit
C:\Program Files (x86)\X-Mirage\icuuc53.dll

Filesize
1.1MB

MD5
d18d4fc2b85c761a6c108a3425379771

SHA1
c0c1440a67be91bc21198f30cf0d09d0afcfd45f

SHA256
c0d7cb4f0dcfdb176de894887b0ec3f755f2663aa512dad99dbfe8006387e986

SHA512
48d1dd04f3092edebe43c216c4d795e93da6cb46d3fad805a8af0cbb8b573727dfe73f4a9b27f3be06b1b04347b05f43c2b46ba20c3886085c6f60f5fa051370

Download Submit
C:\Program Files (x86)\X-Mirage\mfc140u.dll

Filesize
4.9MB

MD5
4b6bf219bb98bccfff4a5ab2b24b5144

SHA1
8d33d3cf31beac4bb3b8fa5af3feee62c2d3ecd3

SHA256
472b3ed1fb1503e3071e1f64c0eccf48b50b95deff560e24515f1c73819c5134

SHA512
51bd2b1966d8f5d20eb929d7f25a4b3b3152fdfc03d05fae0aa32223e7b3e278504ac9eab40626412868277bf56c6a0a056b909db2e4ce212b0283139d830a49

Download Submit
C:\Program Files (x86)\X-Mirage\trprofile.dll

Filesize
232KB

MD5
45763ea5455fdc25fcf9655fb7619fe2

SHA1
f8193880bd5221a9fe8ce4fc66965e607faeec12

SHA256
b7b8579fe0d144552f847357b28c6e06f23a6d550d11a0a767d8ccd3dc7a2128

SHA512
51d2245bdecd4c2442db8bdc5672ece6a75ce3d48a578d640b811e37f7d9848408f5e7effc598935507933f2c19278e3626f3714bc2cc5c261e05567bf764018

Download Submit
C:\Program Files (x86)\X-Mirage\trreg_ui.dll

Filesize
987KB

MD5
0402b19acf0c2b06363037c4247e368b

SHA1
8888c2ad143c90222082f84c23cfc315d1ac05ae

SHA256
3f43f631d48373abdcc134cc43542061806684637601abaa2d962dc186884348

SHA512
bb758f1f8898df2628055766c5216a816e47fd20a01028d26310d19ae186e155e2e4ad6c71dfa0892a72c1478b1400b7dc042cf706c23560aecedeeea33e3ab4

Download Submit
C:\Program Files (x86)\X-Mirage\ucrtbase.DLL

Filesize
895KB

MD5
d2c5233317767ee9329f470c39b046b1

SHA1
42493597d3ded76daa9a3c5cad5d4343958d0d55

SHA256
f085b1b009ab89049ba95dd4ffde276d5b1f6fa0055f58dc3fc0d4b03ae8116d

SHA512
930b31042b5ddc507d4810c10677db9786b8a16ad8a3ed09ba0a6256dddc9c2706d1957abbe3071d09c8cdcc2f142914ae7f7b727dc3e9f8dd7d821d118b715a

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-AH4RK.tmp\x-mirage-inst.tmp

Filesize
2.8MB

MD5
1337cc8677dc43eeba9292f63898f445

SHA1
c2dc1c91c186c20abbd8c8691b89697e8b81519c

SHA256
109f45236402f178b8d4a1d8d67829d62229424fa7bd8fc0873d526a20cb9dc6

SHA512
0e6d576f2f68caeb22f0455ded5cc54701c143e1c3d43e6f3fbb1ad3667c2860e1a3809953cae5f4329231ea7b7e2ef2ab81783f91b7e85b545eec6d1a220fd2

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-AH4RK.tmp\x-mirage-inst.tmp

Filesize
2.8MB

MD5
1337cc8677dc43eeba9292f63898f445

SHA1
c2dc1c91c186c20abbd8c8691b89697e8b81519c

SHA256
109f45236402f178b8d4a1d8d67829d62229424fa7bd8fc0873d526a20cb9dc6

SHA512
0e6d576f2f68caeb22f0455ded5cc54701c143e1c3d43e6f3fbb1ad3667c2860e1a3809953cae5f4329231ea7b7e2ef2ab81783f91b7e85b545eec6d1a220fd2

Download Submit
\Program Files (x86)\X-Mirage\CoreFoundationLite.dll

Filesize
818KB

MD5
26660ae66ff50056beb178ca7ed6d752

SHA1
cae5bc0ed81fd9365869bd3b1208de2d460be164

SHA256
b40fa20f38b449a999ce89760257ddf2e99a6fdd4d5a858b196f98c3ec4875a4

SHA512
0b5a25b4db936147afedc3f8560e7bf41452ead0a87120b6e6d9ed67534cab355e0e241896101de4ac28621dd74cb86a368407ae3902a97a6a6c6b1075a054b7

Download Submit
\Program Files (x86)\X-Mirage\X-Mirage.exe

Filesize
29.7MB

MD5
285a5532c5e1168935004a4e8bc6e56b

SHA1
cac9b86a014006310526b59985d7ae97d14ff4dc

SHA256
7ef4dbf71172fc8d2f2ad306a43c0c30ed8a8b5197b8d554de10a57b42a44de2

SHA512
24bcc6ca2bb734da6cfe2a73c84305f4ddd0e4af15a0a90ff9cf6c5983852d2875987dca0953717b1e2a6b5c78e01a888149dc287b07a5a42052328758533349

Download Submit
\Program Files (x86)\X-Mirage\X-Mirage.exe

Filesize
29.7MB

MD5
285a5532c5e1168935004a4e8bc6e56b

SHA1
cac9b86a014006310526b59985d7ae97d14ff4dc

SHA256
7ef4dbf71172fc8d2f2ad306a43c0c30ed8a8b5197b8d554de10a57b42a44de2

SHA512
24bcc6ca2bb734da6cfe2a73c84305f4ddd0e4af15a0a90ff9cf6c5983852d2875987dca0953717b1e2a6b5c78e01a888149dc287b07a5a42052328758533349

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-file-l1-2-0.dll

Filesize
17KB

MD5
ea4ae42721460002dc31515f295ad1c4

SHA1
8a970d589aa4c178083ee8fb65798a6ddecdc1cf

SHA256
668f91e94e76db4457184909e6a1ab4655e81a8ef37dc37b4ecfe93146c29a88

SHA512
5ea1f2fb8be9ffdf80250b47a440ddb3a41e46a8ce73b6f4834e59cb8d30a1b474f6a33d716efa43ac7ee52d37ac941f3d51021792b9d1439c831b8a368781b9

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-file-l2-1-0.dll

Filesize
17KB

MD5
ad895b2a99a3ec18f1690bbac1e2037a

SHA1
19fab11ca8d2ab4a3c1a863209cbdc77a69e1aed

SHA256
a11c772b2451b0c9c706b03381819e4a1def3e2fbbba8362509bbe57dbd5c666

SHA512
d021a5b8451bb8bac27b4f496a1a25e0a2b2f90c93a7e27850303c5feb9441f9b926b13ef024c176827e190f2dc04f401205983510dfab0946674d18994bbe8f

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-localization-l1-2-0.dll

Filesize
20KB

MD5
41a0d67ba3833d230f1229ff058be057

SHA1
a66fda76d97d059067f11c3e03869a1b9da439a0

SHA256
4f11443a2fa6c714d3e33597f0d08de4e11a6a2fdb7de2e4a01addd5977665c5

SHA512
a4138cc25ac899059a702f4e078e7662f15b7059089e53b6eb1a78a1bbebc03704421bdd0a5fcbdffd48be2842d587e4e3e56d881f0462f60cddc5c75fc14f2f

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-processthreads-l1-1-1.dll

Filesize
18KB

MD5
f43a8e9cd787b6d91bb29dbb8eb1a4e5

SHA1
336b61853627e6e64a10fbb930577d30334e615e

SHA256
5bacbbe62e36ad0f6d7742e70361f26bc56a44dbd28cc0291f588420e0c218a6

SHA512
1fdc1170907346ef0eced900de9091136a6626c4bfc8b4416dfebbe356f35f9c2be0d2cf6c37e3dd231f3db8b5a3afe8973f15a45544c0c1c10682fe03911616

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-synch-l1-2-0.dll

Filesize
18KB

MD5
2674310f6fc087862b215b26a5d6da5b

SHA1
6e226a29124716fb6c5c54cbbf3c2b6f727c9e5a

SHA256
e29eaa099be15958cb65d03d47959cae2dac342402856c5f0e4da672193c329d

SHA512
86964e2a71a32d7fd0c6f3061ecbe66dd10d4938e0f5e3572f962b53107524259f62001bdff7e4c9173a6b8270f46b76c1037dc69b8343f10e4b4e59bd8d6782

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-core-timezone-l1-1-0.dll

Filesize
17KB

MD5
fd14fcd1550f17701fbf239645b606fa

SHA1
0d7b1de80db94dabad3ce91d31fda1a8a1a6cfab

SHA256
a5453cd2b5e98d40ca17dd20a8f5974f29de7236a076867a3bc3cbca441be928

SHA512
162559d9e6e36bffe32be41f75075e711e6947adab2ad3bb37cf03e02e787ad5a6f3fb93af4b6c3f82e1107dc401d32dbd53fcba39f85839910e852c1109db5b

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-convert-l1-1-0.dll

Filesize
21KB

MD5
bc0be695e63548171105c57d2e9b98e7

SHA1
0c4506b330487c4b45900b06dfe0a3249f6b9d88

SHA256
d16c5b0e19870e86354b5e6cdc4c81e80777749f6bbe6b675f680cec0ffae35d

SHA512
095ef210f55233a0c0eb80fc2d94646de96cb2e66d1994d631fa82e5a71a5c26b32d33abc19ac69e64bd3e4789eb1a7595818a90494038ea1771c210cd81cb2a

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-environment-l1-1-0.dll

Filesize
18KB

MD5
6bfbf95b7253f32a77bacdf119b678f3

SHA1
3e3522a9d62940e1e3c0ed6f785af0b5e3a33600

SHA256
9fc2486ed5d3fff78deb69a7386f4575451d43b67f759afb056ac66b82041e3d

SHA512
603a5a199a19028b2e496051772517c488fd3fcc05dd6bec51e15c58dad2981f7dab44c3d7e1be836afe8f3cf35ac90e574f0062737c353079e33096dba26f10

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-filesystem-l1-1-0.dll

Filesize
19KB

MD5
07ba5f40c64134e5749df0e8cfee082e

SHA1
5b872a7ea316b6b3ba604b88045b9b6f34ba4c8b

SHA256
136e5de4b535aabf6368c06f82339d2ef6c34165661f40433bcef4ebb90b30fe

SHA512
55b5c739d08f5627d9453709cc0d3d20c3fc08e9a1168f70381b49f8fdc8d91f15db85db51d47aaae612cbe920bb3ba83075e74888b2d62e3a962f181b3d2c12

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-heap-l1-1-0.dll

Filesize
18KB

MD5
cb4e401ce4fc657ccebb85f96840cc8b

SHA1
359910f84b5faf0d194d534c2f631db5074ea28d

SHA256
b90bffa9e03ffd4ecf1d0d709c60f61d13490e84c4550ef06586bc9b1024ed00

SHA512
382df8909dc347dd86696756cd22650ee9be45146ffdf3b400da4e370c7c42bcdd4c7fdb807e5a9161211b975b9750ee6cb2b2e2132aad9d3f90db9956c2275e

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-locale-l1-1-0.dll

Filesize
18KB

MD5
b53d96644f5774fe29ba8bb12d6e5f66

SHA1
260cbbada90e29ee8e308996e973ce635496d53c

SHA256
be19250a19ed49ce247999d6f0b953edc2ab7c66b46f1cfbd0c24be91b84b297

SHA512
e894cae26ea86325a9012ec2a00086e136afe64f38f8da8b3c5ee1ccad87b1dcf502ad41e050c1ecfbc1c45d2c69a3c35c5322765ef92ddaf00e5e9953f3436f

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-math-l1-1-0.dll

Filesize
28KB

MD5
49a69484b524c6f9fd641e015dd15154

SHA1
f6ec9e38d05ed66e8431b909aba0451ef8c9b540

SHA256
69c637c0be7ddfe0690d8c642ec6d0850085617c3c3dda9531cac818f06f66e8

SHA512
802d186f4b580541916c038999c0653765f2cb01c345549f6d927f7688b671b234c7ee05f2a9eba6c139f25c459e579da4437ee2ac03ed3fe3ebef849f178553

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-multibyte-l1-1-0.dll

Filesize
25KB

MD5
66f65b59dff2f8927dc3c8045d8c3a0a

SHA1
ae459d1b4d6615587d8b9133ec72162c717287fc

SHA256
414a2bd84b042e2ccf758270647bcfa02d78eb0125c0584dd53f7245481d66b9

SHA512
4fa559f7e3b423a736081a67c8a19084288a870307547b19b2dccad935afdc56311a2045ceb4791d1ca33a05f7f1f906c21363a2076436431a118667f298d577

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-runtime-l1-1-0.dll

Filesize
22KB

MD5
11218c9f81404a51d1eb6b56ba60f9ab

SHA1
acc303d1b1a5822ed7bcf8f666860a0a7aaffe91

SHA256
882da90b6368056908e9cd21c4719a016e9a3ca597eca9183892a5806b4a8d4a

SHA512
86928d70aec7bd7170863c0cdea110f8a4aa244efb30577310ad1908d71817b8a2aeb45833d5f710b15df8fe096234cfb069819b0f2b706cfcd15b5614615929

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-stdio-l1-1-0.dll

Filesize
23KB

MD5
d67520bff673cab4b2ed1af12de37a1f

SHA1
752deacc54982012852e68c37253e95b8bb89aee

SHA256
44bbb2aec747e1cbc63fc7c4d2e8c5ec1ca9f9d026835ac2ccb0d60971b6107a

SHA512
a960ec529e6889b0f3253869fc72c4f65615141d23f42d808de99e192b89b15dbc24b1d37812dc89f68576662173f18bc047a46b92598567e8c7e37e51821ab0

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-string-l1-1-0.dll

Filesize
23KB

MD5
e65f76759251845fa1e6a3cf41b5f231

SHA1
de4517eb0d8b330d3c2717e786f485150caf82ec

SHA256
034a8abf2bf027ad950fdf8fbdf488188c8d02eba8e160aa95de376ff1f32fe6

SHA512
afc7d0a26b2ffefb43846d621585fc35a2ce280eef1d046da5a327f20ae7b023cceb2bfd64176787ab86a76567e233215427686243e62eca5ded1ad14b19b5b5

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-time-l1-1-0.dll

Filesize
20KB

MD5
1622347a34eba068916713cf28f46b67

SHA1
18b3960e88118195f17c4bef47df1f7935cee459

SHA256
9766c4200b3f51630097fce8d4f10b33383e663601802ada72660604876c99e9

SHA512
90b2398918487e0ccfe8f859aee6e729a4063a110204644a75649331f10895b6c4de09e57b6e20e8fac04ac413f54a82889e602d05f5f42690b87d9c2253fa2e

Download Submit
\Program Files (x86)\X-Mirage\api-ms-win-crt-utility-l1-1-0.dll

Filesize
18KB

MD5
f7af6bb63229721005c8ac85dc86f5c2

SHA1
35ddd88fbea433a7e934ab0ca64907f8b0a85d9a

SHA256
fa10f7e2ab54c2ebcd4688e39bc4af1544fa21b73be7fd0562b3ff7cff041f7a

SHA512
e4f242ec6204dd481ea5b8b1edbfb9a7c8b136d9869fb85868325b21248aa170fecdf43075361e188b20a6f138f3760226b4cfb302929e04cd3901e6cb03961a

Download Submit
\Program Files (x86)\X-Mirage\icudt53.dll

Filesize
20.6MB

MD5
f7c5fa5e0b9e3619945595f9ce97b09b

SHA1
219058c019c86ddc0a809424a9fc53f784d19d9e

SHA256
8320943f3b16f321e1d65c1c9c096e7b8fa262a1157d19e0d121729cab6e74c2

SHA512
5a51acc72418ba296b6a99bd57c20ae9a68a6ba2b8c639317dd87063a8bdbeae96c6306e7bae3ac9056a088d01d91afb32909a3139090e1d9f1b0011d4eca7a9

Download Submit
\Program Files (x86)\X-Mirage\icuuc53.dll

Filesize
1.1MB

MD5
d18d4fc2b85c761a6c108a3425379771

SHA1
c0c1440a67be91bc21198f30cf0d09d0afcfd45f

SHA256
c0d7cb4f0dcfdb176de894887b0ec3f755f2663aa512dad99dbfe8006387e986

SHA512
48d1dd04f3092edebe43c216c4d795e93da6cb46d3fad805a8af0cbb8b573727dfe73f4a9b27f3be06b1b04347b05f43c2b46ba20c3886085c6f60f5fa051370

Download Submit
\Program Files (x86)\X-Mirage\libeay32.dll

Filesize
1.2MB

MD5
4e26089f023b2e733c73711410d6107c

SHA1
ebdba257e2731b7f9261d1a4a120a67a3568615b

SHA256
940c21c5aadd737491cef80838deff23d6a92a835de523b615516a9618badd36

SHA512
f2f14c3cfb3311e809cd3ddaf1e5c2d9885cfe1e0e6fa5c7c46d73c14607ee18857f93c41aac7e2807652a171d57e2cd2ad594d0661cc7ef1f23641e5e6d41f5

Download Submit
\Program Files (x86)\X-Mirage\mfc140u.dll

Filesize
4.9MB

MD5
4b6bf219bb98bccfff4a5ab2b24b5144

SHA1
8d33d3cf31beac4bb3b8fa5af3feee62c2d3ecd3

SHA256
472b3ed1fb1503e3071e1f64c0eccf48b50b95deff560e24515f1c73819c5134

SHA512
51bd2b1966d8f5d20eb929d7f25a4b3b3152fdfc03d05fae0aa32223e7b3e278504ac9eab40626412868277bf56c6a0a056b909db2e4ce212b0283139d830a49

Download Submit
\Program Files (x86)\X-Mirage\msvcp140.dll

Filesize
440KB

MD5
e0dd94aada0b034b212de071c33054da

SHA1
6c4f1b3f66d07bbcdcf41eb39b1480bb335efcc8

SHA256
08442853f19ce4ff3acae37d87eab33ef81c4c6da62a3432d43253ba79842b64

SHA512
76c877056f448e5dab820e990cc186ba886b2d331d689a99295aaff31a63aadb941c2693b0be98d53bd06cd8041a270eb82ddedfbde305cd9a85bcbe42fcf5a2

Download Submit
\Program Files (x86)\X-Mirage\msvcr120.dll

Filesize
948KB

MD5
034ccadc1c073e4216e9466b720f9849

SHA1
f19e9d8317161edc7d3e963cc0fc46bd5e4a55a1

SHA256
86e39b5995af0e042fcdaa85fe2aefd7c9ddc7ad65e6327bd5e7058bc3ab615f

SHA512
5f11ef92d936669ee834a5cef5c7d0e7703bf05d03dc4f09b9dcfe048d7d5adfaab6a9c7f42e8080a5e9aad44a35f39f3940d5cca20623d9cafe373c635570f7

Download Submit
\Program Files (x86)\X-Mirage\trprofile.dll

Filesize
232KB

MD5
45763ea5455fdc25fcf9655fb7619fe2

SHA1
f8193880bd5221a9fe8ce4fc66965e607faeec12

SHA256
b7b8579fe0d144552f847357b28c6e06f23a6d550d11a0a767d8ccd3dc7a2128

SHA512
51d2245bdecd4c2442db8bdc5672ece6a75ce3d48a578d640b811e37f7d9848408f5e7effc598935507933f2c19278e3626f3714bc2cc5c261e05567bf764018

Download Submit
\Program Files (x86)\X-Mirage\trreg_ui.dll

Filesize
987KB

MD5
0402b19acf0c2b06363037c4247e368b

SHA1
8888c2ad143c90222082f84c23cfc315d1ac05ae

SHA256
3f43f631d48373abdcc134cc43542061806684637601abaa2d962dc186884348

SHA512
bb758f1f8898df2628055766c5216a816e47fd20a01028d26310d19ae186e155e2e4ad6c71dfa0892a72c1478b1400b7dc042cf706c23560aecedeeea33e3ab4

Download Submit
\Program Files (x86)\X-Mirage\ucrtbase.dll

Filesize
895KB

MD5
d2c5233317767ee9329f470c39b046b1

SHA1
42493597d3ded76daa9a3c5cad5d4343958d0d55

SHA256
f085b1b009ab89049ba95dd4ffde276d5b1f6fa0055f58dc3fc0d4b03ae8116d

SHA512
930b31042b5ddc507d4810c10677db9786b8a16ad8a3ed09ba0a6256dddc9c2706d1957abbe3071d09c8cdcc2f142914ae7f7b727dc3e9f8dd7d821d118b715a

Download Submit
\Program Files (x86)\X-Mirage\vcruntime140.dll

Filesize
74KB

MD5
87dd91c56be82866bf96ef1666f30a99

SHA1
3b78cb150110166ded8ea51fbde8ea506f72aeaf

SHA256
49b0fd1751342c253cac588dda82ec08e4ef43cebc5a9d80deb7928109b90c4f

SHA512
58c3ec6761624d14c7c897d8d0842dbeab200d445b4339905dac8a3635d174cdfb7b237d338d2829bc6c602c47503120af5be0c7de6abf2e71c81726285e44d6

Download Submit
\Users\Admin\AppData\Local\Temp\is-AH4RK.tmp\x-mirage-inst.tmp

Filesize
2.8MB

MD5
1337cc8677dc43eeba9292f63898f445

SHA1
c2dc1c91c186c20abbd8c8691b89697e8b81519c

SHA256
109f45236402f178b8d4a1d8d67829d62229424fa7bd8fc0873d526a20cb9dc6

SHA512
0e6d576f2f68caeb22f0455ded5cc54701c143e1c3d43e6f3fbb1ad3667c2860e1a3809953cae5f4329231ea7b7e2ef2ab81783f91b7e85b545eec6d1a220fd2

Download Submit
memory/1784-289-0x0000000002420000-0x0000000002421000-memory.dmp

Filesize
4KB

Download
memory/1784-290-0x0000000002420000-0x0000000002421000-memory.dmp

Filesize
4KB

Download
memory/1784-288-0x0000000002000000-0x0000000002001000-memory.dmp

Filesize
4KB

Download
memory/1784-285-0x0000000002600000-0x0000000002788000-memory.dmp

Filesize
1.5MB

Download
memory/2412-222-0x0000000000400000-0x00000000006DA000-memory.dmp

Filesize
2.9MB

Download
memory/2412-8-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download
memory/2412-11-0x0000000000400000-0x00000000006DA000-memory.dmp

Filesize
2.9MB

Download
memory/2412-13-0x0000000000400000-0x00000000006DA000-memory.dmp

Filesize
2.9MB

Download
memory/2412-14-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download
memory/2412-16-0x0000000000400000-0x00000000006DA000-memory.dmp

Filesize
2.9MB

Download
memory/2412-228-0x0000000000400000-0x00000000006DA000-memory.dmp

Filesize
2.9MB

Download
memory/2872-10-0x0000000000400000-0x0000000000525000-memory.dmp

Filesize
1.1MB

Download
memory/2872-286-0x0000000000400000-0x0000000000525000-memory.dmp

Filesize
1.1MB

Download
memory/2872-1-0x0000000000400000-0x0000000000525000-memory.dmp

Filesize
1.1MB

Download