5d8e32e39c128068b27ad6e977379d1f77586c8ecb0087574fcce8fe10d499f7

Analysis

max time kernel
17s
max time network
21s
platform
windows7_x64
resource
win7-20231020-en
resource tags

arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
submitted
24/11/2023, 19:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe
Size

899KB
MD5

578bab982450c2b4b96e98f72d9cb122
SHA1

ae74dbfa4db8b305be393a23fe2df7c0e49b45e2
SHA256

5d8e32e39c128068b27ad6e977379d1f77586c8ecb0087574fcce8fe10d499f7
SHA512

5eff57b287b10ac78bdb39a51cd42a03610ac43eb5b2711791bf3992b91ff6bd3e19d5def60c409cead40f075db4ce2ed2bbf38fdf960ccb755113607a80827b
SSDEEP

12288:CivtCXQd0gjKX7zuqGK8FGPDy1xrqNFpMUFhdHKeChvbxlVc3Vv140N/ElPis:CivtCXWeGK8FGXFmUbdHChbK3VN439

Score

4^/10

Malware Config

Signatures

Executes dropped EXE 3 IoCs

pid	Process
1668	BlueStacksInstaller.exe
1504	HD-CheckCpu.exe
1704	HD-CheckCpu.exe

Loads dropped DLL 4 IoCs

pid	Process
2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe
2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe
2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe
2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious behavior: EnumeratesProcesses 5 IoCs

pid	Process
1668	BlueStacksInstaller.exe
1668	BlueStacksInstaller.exe
1668	BlueStacksInstaller.exe
1668	BlueStacksInstaller.exe
1668	BlueStacksInstaller.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	1668	BlueStacksInstaller.exe

Suspicious use of WriteProcessMemory 12 IoCs

description	pid	Process	procid_target
PID 2176 wrote to memory of 1668	2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe	28
PID 2176 wrote to memory of 1668	2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe	28
PID 2176 wrote to memory of 1668	2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe	28
PID 2176 wrote to memory of 1668	2176	BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe	28
PID 1668 wrote to memory of 1504	1668	BlueStacksInstaller.exe	29
PID 1668 wrote to memory of 1504	1668	BlueStacksInstaller.exe	29
PID 1668 wrote to memory of 1504	1668	BlueStacksInstaller.exe	29
PID 1668 wrote to memory of 1504	1668	BlueStacksInstaller.exe	29
PID 1668 wrote to memory of 1704	1668	BlueStacksInstaller.exe	31
PID 1668 wrote to memory of 1704	1668	BlueStacksInstaller.exe	31
PID 1668 wrote to memory of 1704	1668	BlueStacksInstaller.exe	31
PID 1668 wrote to memory of 1704	1668	BlueStacksInstaller.exe	31

C:\Users\Admin\AppData\Local\Temp\BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe
"C:\Users\Admin\AppData\Local\Temp\BlueStacksInstaller_5.14.0.1061_native_7e8a7ad66b548ef40dba2a83d4ea86bb_MzsxNSwwOzUsMTsxNSw0OzE1.exe"
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:2176
- C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe
  "C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe"
  2⤵
  - Executes dropped EXE
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of WriteProcessMemory
  PID:1668
- - C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe
    "C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe" --cmd checkHypervEnabled
    3⤵
    - Executes dropped EXE
    PID:1504
- - C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe
    "C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe" --cmd checkSSE4
    3⤵
    - Executes dropped EXE
    PID:1704

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
27047d6107c70e1e55812f553016d7a8

SHA1
1c62ef38b19a8c302ee3df9112adaa4d8ed42ee4

SHA256
81316317e4c3fa446258e9b454d291151b9a3b6b7086186042d59ffce96223d9

SHA512
22714a036b1545c79235c306299a82168bd333537a6fb8e10b75d2993512c4ef1652ba7ad0add0c36ee378f454ad8af0194227a8e9fb00cd25377bf4c5e315cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f94ceccc72bc22ab6641c714fefedb38

SHA1
b006e715efbd7359cf43f9ac5d5444dc42876a4f

SHA256
bab71f26cf4abdb717f7a6d21701fe765de696845cdeed0b85c8943bcdaf9b1e

SHA512
b0c145af8c1b274ede48e25dd2f304b13ed09d4dfbbcdfa24600a30eb7256decdd86f3728a63e374d04773d93898135b260e9881cae8ebd95bf427d998791a5a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
96f990380f68ab8eec98a79835954028

SHA1
af7c4c41ad81fb2e5fd3cf741b1c2b076de92ebf

SHA256
058fcf6c59da2365be8e59a0dae84145062422e8cac56aa59effc198d1f5e111

SHA512
77f5f0808dfc7a9dc48c6e35d4d18c87151d11f8a3dc9a7b369ccfbcc3981c69f78cafd7a210fb9720e688d222149bdbe075e944796df25a785ad3ee7abe520f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
030478d50b190db5d43381fa78e3477f

SHA1
24b74430e64e09b6d01a6c2703534b72b839ca90

SHA256
1676352513e91d426ee90eb896e8a829e9658a933cd2b18ce73529bb6dc63421

SHA512
83704ab3683bccb7a55114f1d9f7e8c8c1a285e8b94908dacd7f096fff0ac985916e9936aca9b54f67fa239377cd2b76697a7abeaae52b4a19e69c9cd3a46e4c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
93eb80d60ff543ac93743d7fd7e771ad

SHA1
1a744f5a44319bfb225630d56875237f513b766b

SHA256
ae18de96cf2a84b5a494e4973e047e78c2ed9180bd5d2bf7a6377eb0c62b3871

SHA512
60769fa652c94bddaa2d01109cb1bb2f83c0b0e8fe28e3c7399b7aa9b84302b86b81a2ef2c45c1f5f9742bf3abdcd7328a2b59f49db4fded2172daf6c3e82aea

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
155c2d6bc82d1cb16a627f5f3c6dc22f

SHA1
17ed80dc092806bd2727960417a1b2bbee2eab52

SHA256
fd8435de26254b51e0000be5a7c75c46d86f8a4dfe545b862d81b120ca83b947

SHA512
ffd23db21b768f7b288dbe8e7e7d3468a80ecb76a91b1a6a821b61edf44985191de091de94f58544a87b9b45b9734d10101f9f8d356a8dabd5802301bc6a2370

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
82d5b9359a3797e2c810f7f261ff79c3

SHA1
549988053385aedb1fc06df33cc70fca964ec8b6

SHA256
b79ad8510594cb43e5d8dab1c906c181c5f98347f6ae15e3d4455a1646269199

SHA512
88097f686d206a76575477160a08b977b438228c55bac9cb6a60e8a229812a7a4ff61cc5c03eabe8fe54873e54fe706fde90ff3b7ea5e609089adf6b2a12fec1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7ec70ae72208e049598fcbe9db0b9c11

SHA1
403cca093e7fe3c42aa06bfb53ba823478fed746

SHA256
3d4d63a74b34ed1875528e83008050cc07b8c93fad873aedcb0121ad3e88ddb8

SHA512
46a75ba0abbf58937b6a66a4267377bbfb659033632add47194fbf564caa435687359a563d224ac60fde8784cd3bb0aa104d7c443b50596fc26cf89b1e2fe255

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d55259c5ca5af55acaf873d6f38c12dc

SHA1
39c70fc1de955d207771e4b8646fd3a685290bea

SHA256
ad5be5f698275f68d695672a362a67849b6164f77314a9341e3a655a398f31f5

SHA512
d02e8a089b5e0cce839af7dd0f3b845a9219972fdf0c78abcc0d4ad1f8fda81510cebc9bd19f2ae23449b5bc783de539c9b94f9f8a854ffd27bde07d3d1005df

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
326237eac4b339ccfa514bf142725c1f

SHA1
e0dca88f1dd353b93e8764230a3506f50fdbfd9e

SHA256
38eb826ca628fda33df431b8384adc28415bdc9383433216fbcbf922fcdcd2b2

SHA512
274f9e32a8fe30b75565e3488ef90d36ef1983b11dede090ad3e0dcbd9d682fbabf92b3cca0d754ff1b0e75280ecc6f3adbc18004cadb3a9f8c509f6c9fe3b42

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
94c2afd2c244e1075377902282b8a6fa

SHA1
4d43d11ef17376242bbdbd26c3e91939e219e27b

SHA256
f8ae15bfc03ac2e50034794fccffad8982e2f572e7529d94880c95300b2ed406

SHA512
34befe54011d3fce9fc1592c7be471d5d6fe62a918b2cf12dfeb0ce2b5639f4c427583e8f005a017617a4be3f8e4721a307d6fced8bf2bff86d0c6037681f5a9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
da2f20acd6922617f393a01813a2c43d

SHA1
7efaa28d7a7eb5a099ab9bd881ffef9e39a4a938

SHA256
ab6c4612179518618c17a24df7dfbdfd99cccb736ce7a70b323314d7209f584a

SHA512
ef6e7c0829b890c17a17faff0d4680aa090519cb721d36f626dc63334131b05bdac0fab04a853a2feaabdfae28d0ca9582632e3604980667edaf4b11e59b3944

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
81e31c4e6007b73d1e8e14536c0db4a2

SHA1
d0d945bb20e28f04867635192513264f795322d0

SHA256
e39e87f2adb2b4ea4f4fdbe71d2d6d074567dd6f471f286d8aa3405a8163e434

SHA512
675bb883e42fe9befe3e93429452a77e66af5e6170082723aafc7d4585aa3a9c76ca465b56a23859cfb55956d48c46dfdb658d9d1a6b6ac110ab924ca85769f2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3c3b32d78a568098bfeb12f3791cbffc

SHA1
134e28362840d17dc682b0e622c320cb60bbefa6

SHA256
5c27e5ed63730f66b8617b3d31aa5e610cf42aebefbefa774f6370b34af12569

SHA512
b571b46561ab1b09e04a36469ee9e4fd2c004b38f0e19152f10d5fd4be955b899272622e23c91c56f618eeb08ea4f52a33f4391969df80f4df716b9e68414dd0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5f35f316cee3343eacac1c8e27fc0105

SHA1
3f16b5886902d7b581048393eb13ec52a670d2d5

SHA256
5b317f063ab196ca8cfd25c3141f5b5ad4c59f48f600dbc1ad391d408acee67e

SHA512
53a02b16476537d4e47f860532e6b65c0b1069996e3d16bcc3d24434281fee965c3035d3d19c1b05933bb8606350f417912e4682d36b26d1cfbe507db88ea88d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a46968f4a28185ff8e1259bafe9a0936

SHA1
eafdea9045ee16ac70992c677b11723624874184

SHA256
c9b26587c84730b38bc31e417b61e298f579ccfd305b360ed21c579e9f624582

SHA512
0d7900361a358d61f808650fc94ea9773a1bb481265adaa7cd73c8b20faa5e5a1da4d118aa47a798e12e82c1045432b17d20e912c58b8d0650de3b53fb1f8eec

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
51a23f91f6a165ca2866c58d803000e7

SHA1
6a30c69d6ec9732ce4cb85cf7ec387e28410f746

SHA256
f977b993352121ad2dd819fdd5a2f4a29e9a2df1ec1a11f20fc004e0e1396a5f

SHA512
60175d182686921bafff05f587a3eb0f833b974237fb30a11338de096c1c17f4d5eb7870d4baeed5c2142d96e681f6abccc2a8816eeb344950f85f04df146897

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
012033359b66d876da3d605da91a8a58

SHA1
b7fac99504c94dce8f99b76b0a11cbfeb8c0b023

SHA256
34617106fd8aae42d764b7cd04589ae14fbaf2c0fc0b6431deef7d5286136965

SHA512
fc9dc57140f7b5310062b00d232e39b8ebef1e8ff0211bb95ce24c8a2b1a95e37d1f8f900dc118797388e90f2e4126008f6493f9a4e6bdec2aa45c7cd61e6ce8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
090ccb0dad352cd552658ed904b0ebd0

SHA1
7fa34a9013989ddfb8647d2925a77096e386678c

SHA256
2d12416da53220279342240360def42c32cfe6b02b9961576fe5e6122c5885ed

SHA512
a2be68a04964dfc7177d3645e9572baaec77a6c2c5e7bd0d3382f6839c4e2b7344818b66f33f9e713077292a7c231a62432eaa986996df7ea554f1b84a21882c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6bc4f9596c38a9749d2809d119cd0023

SHA1
d582e2da33be4f2abfe27d06290534e5fa7b51d9

SHA256
e638f016ce63d6858b171fa10fc27f5378d5bfd89114f49f9ab966c64cc582ce

SHA512
17b9976beb42f0d3d450b7d64f437313e22e4e42669abf9856264d26011b92d011a8a8719f2fff6b3e4a69f8badd367c899bb83cbc9c0925e7a443654977a3bd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
014607bcc0f50c5c5936c3ee0b59c84b

SHA1
9504b5dc3392d8acdd668f19b228377183590c48

SHA256
4d6d082908ee963d277e509821fa010427267a7ae410a540a15533ed78255abc

SHA512
cebd667929422fd55f2c764ebea53636c81a800982727765bd6a6233c58b228b5f670f43d7c1884865e70e2bbc9abec69b2a5f5f8db556b61de31b4ef144ebee

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
936f80a737f5deb493eacdc818d39f5b

SHA1
f814b5fbd8686c826436516f14096e2c72d3e244

SHA256
ebf744b6990e55b90cbbfdc24d3ff1cee1a1eb833c4c46db21a48add666e58ed

SHA512
1c3214d55429ccdc6b3a5928cd3541511919ecd93cd9adf1ffebdf55f1d0d13f365cc15c998e8bcd85a019b8b3961d6e8b55b261f43d842171049b35b1fbc679

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8da79dbe3110fe1a3fd7f24e36468c05

SHA1
51a414cab3722904328c2fcd40ebd9939340190a

SHA256
ca3bc8a3b510c24fb906451239a586f3c5b4410d833f5581b499d8c762d9e65e

SHA512
5c93ebc595fd43ddfea25cd6478ae973496dd1d79e9e4edb42b3aa089269b29e5ca59ed2ee1d6109da017a0b13fa2fb6829e83d1e5d9157ddcaed8b9236e45e6

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\Assets\exit_close.png

Filesize
670B

MD5
26eb04b9e0105a7b121ea9c6601bbf2a

SHA1
efc08370d90c8173df8d8c4b122d2bb64c07ccd8

SHA256
7aaef329ba9fa052791d1a09f127551289641ea743baba171de55faa30ec1157

SHA512
9df3c723314d11a6b4ce0577eb61488061f2f96a9746a944eb6a4ee8c0c4d29131231a1b20988ef5454b79f9475b43d62c710839ecc0a9c98324f977cab6db68

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\Assets\loader.png

Filesize
279B

MD5
03903fd42ed2ee3cb014f0f3b410bcb4

SHA1
762a95240607fe8a304867a46bc2d677f494f5c2

SHA256
076263cc65f9824f4f82eb6beaa594d1df90218a2ee21664cf209181557e04b1

SHA512
8b0e717268590e5287c07598a06d89220c5e9a33cd1c29c55f8720321f4b3efc869d20c61fcc892e13188d77f0fdc4c73a2ee6dece174bf876fcc3a6c5683857

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\Assets\minimize_progress.png

Filesize
212B

MD5
1504b80f2a6f2d3fefc305da54a2a6c2

SHA1
432a9d89ebc2f693836d3c2f0743ea5d2077848d

SHA256
2f62d4e8c643051093f907058dddc78cc525147d9c4f4a0d78b4d0e5c90979f6

SHA512
675db04baf3199c8d94af30a1f1c252830a56a90f633c3a72aa9841738b04242902a5e7c56dd792626338e8b7eabc1f359514bb3a2e62bc36c16919e196cfd94

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe.config

Filesize
324B

MD5
1b456d88546e29f4f007cd0bf1025703

SHA1
e5c444fcfe5baf2ef71c1813afc3f2c1100cab86

SHA256
d6d316584b63bb0d670a42f88b8f84e0de0db4275f1a342084dc383ebeb278eb

SHA512
c545e416c841b8786e4589fc9ca2b732b16cdd759813ec03f558332f2436f165ec1ad2fbc65012b5709fa19ff1e8396639c17bfad150cabeb51328a39ea556e6

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe

Filesize
200KB

MD5
81234fd9895897b8d1f5e6772a1b38d0

SHA1
80b2fec4a85ed90c4db2f09b63bd8f37038db0d3

SHA256
2e14887f3432b4a313442247fc669f891dbdad7ef1a2d371466a2afa88074a4c

SHA512
4c924d6524dc2c7d834bfc1a0d98b21753a7bf1e94b1c2c6650f755e6f265512d3a963bc7bc745351f79f547add57c37e29ba9270707edbf62b60df3a541bc16

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe

Filesize
200KB

MD5
81234fd9895897b8d1f5e6772a1b38d0

SHA1
80b2fec4a85ed90c4db2f09b63bd8f37038db0d3

SHA256
2e14887f3432b4a313442247fc669f891dbdad7ef1a2d371466a2afa88074a4c

SHA512
4c924d6524dc2c7d834bfc1a0d98b21753a7bf1e94b1c2c6650f755e6f265512d3a963bc7bc745351f79f547add57c37e29ba9270707edbf62b60df3a541bc16

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\HD-CheckCpu.exe

Filesize
200KB

MD5
81234fd9895897b8d1f5e6772a1b38d0

SHA1
80b2fec4a85ed90c4db2f09b63bd8f37038db0d3

SHA256
2e14887f3432b4a313442247fc669f891dbdad7ef1a2d371466a2afa88074a4c

SHA512
4c924d6524dc2c7d834bfc1a0d98b21753a7bf1e94b1c2c6650f755e6f265512d3a963bc7bc745351f79f547add57c37e29ba9270707edbf62b60df3a541bc16

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\JSON.dll

Filesize
411KB

MD5
f5fd966e29f5c359f78cb61a571d1be4

SHA1
a55e7ed593b4bc7a77586da0f1223cfd9d51a233

SHA256
d2c8d26f95f55431e632c8581154db7c19547b656380e051194a9d2583dd2156

SHA512
d99e6fe250bb106257f86135938635f6e7ad689b2c11a96bb274f4c4c5e9a85cfacba40122dbc953f77b5d33d886c6af30bff821f10945e15b21a24b66f6c8be

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\Locales\i18n.en-US.txt

Filesize
18KB

MD5
34405af4ef073eebfaa23df0ba5555c0

SHA1
2024caf7834505097673287739f881d64f79e9b1

SHA256
f0c241cbc4175898b7bd568fc69ec02323c12faeeb752e8e43355fadcd05dd5f

SHA512
e7fc8cb7380ea15f366f867679a52f21ea1c14373f1042061e6d42ef64f8db61f110b9ba61c08e6ac6811621f3b26679e7c2778008ddc39b51956034a738fa10

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS08845B26\ThemeFile

Filesize
80KB

MD5
c3e6bab4f92ee40b9453821136878993

SHA1
94493a6b3dfb3135e5775b7d3be227659856fbc4

SHA256
de1a2e6b560e036da5ea6b042e29e81a5bfcf67dde89670c332fc5199e811ba6

SHA512
a64b6b06b3a0f3591892b60e59699682700f4018b898efe55d6bd5fb417965a55027671c58092d1eb7e21c2dbac42bc68dfb8c70468d98bed45a8cff0e945895

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab4EAE.tmp

Filesize
61KB

MD5
f3441b8572aae8801c04f3060b550443

SHA1
4ef0a35436125d6821831ef36c28ffaf196cda15

SHA256
6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

SHA512
5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4EC1.tmp

Filesize
163KB

MD5
9441737383d21192400eca82fda910ec

SHA1
725e0d606a4fc9ba44aa8ffde65bed15e65367e4

SHA256
bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

SHA512
7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

Download Submit
\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
\Users\Admin\AppData\Local\Temp\7zS08845B26\BlueStacksInstaller.exe

Filesize
604KB

MD5
892b42d0dbed992076c7f6df21b67be6

SHA1
0a615eae78f959004a46ba95db256a36c201aaa0

SHA256
bd0df622d5dadf695cf0c113d9118b210098dabb833e4a4e3aee11986d6b12f3

SHA512
18b9425ebdb62b6b04b32d7d4e19ca3f5fe4d7dc873852c23cab1aa1bd5dcdc1cc83f9da97a286c807927e606914a47efc4a8db5e64a653434961ba22806e02e

Download Submit
memory/1668-182-0x0000000000350000-0x000000000035A000-memory.dmp

Filesize
40KB

Download
memory/1668-120-0x00000000005F0000-0x0000000000670000-memory.dmp

Filesize
512KB

Download
memory/1668-347-0x000000001A890000-0x000000001A891000-memory.dmp

Filesize
4KB

Download
memory/1668-118-0x0000000000CE0000-0x0000000000D7A000-memory.dmp

Filesize
616KB

Download
memory/1668-122-0x0000000000B10000-0x0000000000B78000-memory.dmp

Filesize
416KB

Download
memory/1668-181-0x0000000000350000-0x000000000035A000-memory.dmp

Filesize
40KB

Download
memory/1668-1043-0x000007FEF5070000-0x000007FEF5A5C000-memory.dmp

Filesize
9.9MB

Download
memory/1668-1053-0x00000000005F0000-0x0000000000670000-memory.dmp

Filesize
512KB

Download
memory/1668-1108-0x00000000005F0000-0x0000000000670000-memory.dmp

Filesize
512KB

Download
memory/1668-1117-0x0000000000350000-0x000000000035A000-memory.dmp

Filesize
40KB

Download
memory/1668-1118-0x0000000000350000-0x000000000035A000-memory.dmp

Filesize
40KB

Download
memory/1668-178-0x00000000005F0000-0x0000000000670000-memory.dmp

Filesize
512KB

Download
memory/1668-119-0x000007FEF5070000-0x000007FEF5A5C000-memory.dmp

Filesize
9.9MB

Download