4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617

Analysis

max time kernel
150s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
26/11/2023, 08:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
Size

1.8MB
MD5

79485a08b6a05ab48273382e4ba311b6
SHA1

2905d7b36266bfe8fbfdd5adef98b28e6a783075
SHA256

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617
SHA512

8ece2a6923faef106bd8e6c6dc06e4e1d4a5588664307c84dec0e3c7eb8a239a6db62bed04b655e86bbe4bf483352fb0b8fdafad6a725b958114b5cfb73f2e3e
SSDEEP

49152:kM9QPdxwfE7WlFwKAfzuTiDFUFkA7GAK/tlRtYLat:k1PdVQFwKZCFgMRt6at

Score

7^/10

spyware stealer

Malware Config

Signatures

Executes dropped EXE 9 IoCs

pid	Process
2932	alg.exe
4880	DiagnosticsHub.StandardCollector.Service.exe
4788	fxssvc.exe
3992	elevation_service.exe
1672	elevation_service.exe
1336	maintenanceservice.exe
1320	msdtc.exe
3504	OSE.EXE
2504	PerceptionSimulationService.exe

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Drops file in System32 directory 21 IoCs

description	ioc	Process
File opened for modification	C:\Windows\system32\fxssvc.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	alg.exe
File opened for modification	C:\Windows\system32\fxssvc.exe	alg.exe
File opened for modification	C:\Windows\system32\msiexec.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\SysWow64\perfhost.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\msiexec.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\MSDtc\MSDTC.LOG	msdtc.exe
File opened for modification	C:\Windows\SysWow64\perfhost.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\system32\fxssvc.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Roaming\3468e4e3894cb869.bin	alg.exe
File opened for modification	C:\Windows\system32\dllhost.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\System32\msdtc.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\SysWow64\perfhost.exe	alg.exe
File opened for modification	C:\Windows\system32\dllhost.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\System32\alg.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\system32\dllhost.exe	alg.exe
File opened for modification	C:\Windows\system32\msiexec.exe	alg.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_sw.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\rmid.exe	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_am.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jdb.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\javaw.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\servertool.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_bg.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\schemagen.exe	alg.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice.exe	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\OFFICE16\LICLUA.EXE	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\InspectorOfficeGadget.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jps.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe	alg.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_pt-BR.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Mozilla Firefox\minidump-analyzer.exe	alg.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_bn.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javafxpackager.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Google\Temp\GUT831B.tmp	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\7-Zip\7zFM.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ADelRCP.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javah.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\servertool.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\extcheck.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\orbd.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\iexplore.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_zh-TW.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\java-rmi.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jstat.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javap.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_ml.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\java.exe	alg.exe
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Google\Update\DisabledGoogleUpdate.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_sv.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\javacpl.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\keytool.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\java.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\appletviewer.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\rmiregistry.exe	alg.exe
File opened for modification	C:\Program Files\Mozilla Firefox\firefox.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroTextExtractor.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_117125\java.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\appletviewer.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jps.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\schemagen.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_ta.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jrunscript.exe	alg.exe
File opened for modification	C:\Program Files\Internet Explorer\iexplore.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jconsole.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\xjc.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\unpack200.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32Info.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\pack200.exe	DiagnosticsHub.StandardCollector.Service.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_it.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\ktab.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrServicesUpdater.exe	alg.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\GoogleUpdateOnDemand.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.36.151\GoogleCrashHandler64.exe	alg.exe
File created	C:\Program Files (x86)\Google\Temp\GUM830B.tmp\goopdateres_es-419.dll	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe

Drops file in Windows directory 4 IoCs

description	ioc	Process
File opened for modification	C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
File opened for modification	C:\Windows\DtcInstall.log	msdtc.exe
File opened for modification	C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe	alg.exe
File opened for modification	C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe	DiagnosticsHub.StandardCollector.Service.exe

Modifies data under HKEY_USERS 5 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\1a\52C64B7E\@fxsresm.dll,-1131 = "Route through e-mail"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\1a\52C64B7E\@fxsresm.dll,-1132 = "Store in a folder"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\1a\52C64B7E\@fxsresm.dll,-1133 = "Print"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\1a\52C64B7E\@fxsresm.dll,-1130 = "Microsoft Modem Device Provider"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\1a\52C64B7E\@fxsresm.dll,-1134 = "Microsoft Routing Extension"	fxssvc.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4880	DiagnosticsHub.StandardCollector.Service.exe
4880	DiagnosticsHub.StandardCollector.Service.exe
4880	DiagnosticsHub.StandardCollector.Service.exe
4880	DiagnosticsHub.StandardCollector.Service.exe
4880	DiagnosticsHub.StandardCollector.Service.exe
4880	DiagnosticsHub.StandardCollector.Service.exe

Suspicious behavior: LoadsDriver 2 IoCs

pid	Process
668	Process not Found
668	Process not Found

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeTakeOwnershipPrivilege	2944	4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
Token: SeAuditPrivilege	4788	fxssvc.exe
Token: SeDebugPrivilege	2932	alg.exe
Token: SeDebugPrivilege	2932	alg.exe
Token: SeDebugPrivilege	2932	alg.exe
Token: SeDebugPrivilege	4880	DiagnosticsHub.StandardCollector.Service.exe

C:\Users\Admin\AppData\Local\Temp\4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe
"C:\Users\Admin\AppData\Local\Temp\4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe"
1⤵
- Drops file in System32 directory
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious use of AdjustPrivilegeToken
PID:2944

C:\Windows\System32\alg.exe
C:\Windows\System32\alg.exe
1⤵
- Executes dropped EXE
- Drops file in System32 directory
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious use of AdjustPrivilegeToken
PID:2932

C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
1⤵
- Executes dropped EXE
- Drops file in System32 directory
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:4880

C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k NetworkService -p -s TapiSrv
1⤵
PID:4980

C:\Windows\system32\fxssvc.exe
C:\Windows\system32\fxssvc.exe
1⤵
- Executes dropped EXE
- Modifies data under HKEY_USERS
- Suspicious use of AdjustPrivilegeToken
PID:4788

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
- Executes dropped EXE
PID:3992

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\elevation_service.exe"
1⤵
- Executes dropped EXE
PID:1672

C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
1⤵
- Executes dropped EXE
PID:1336

C:\Windows\System32\msdtc.exe
C:\Windows\System32\msdtc.exe
1⤵
- Executes dropped EXE
- Drops file in System32 directory
- Drops file in Windows directory
PID:1320

\??\c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
1⤵
- Executes dropped EXE
PID:3504

C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe
C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe
1⤵
- Executes dropped EXE
PID:2504

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\elevation_service.exe

Filesize
2.1MB

MD5
f123b3d1c1591b1979b4d850c7d96b01

SHA1
2fbd248da63ca14fae2e88dc6b77dd6d01ae4d76

SHA256
5a891f694bcf7df7b5a548c3adab9de25cf2ea9fdab9275e7941b1508aa15341

SHA512
cbeb16990f46e06303b96eb6027dbb6ce825a10df54f7ad9c6e3a5ffa7dcbb32777f9294c7f435233257e9657b2e8e70788e01816e57bec535198a462df9a6a3

Download Submit
C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

Filesize
1.3MB

MD5
daa90b5b569752d0f447956fbce42845

SHA1
a0acee407bc9de05e6bdf1e3f94b237f1d6999d9

SHA256
355915d59734007be535649e0252f422f74ad7062b8c8890565a0c85734ca8f0

SHA512
5e67d4b45d214dab6232958db373a25742348e28532e0b2f1c35011d5c6d7cc8f4cda5d9343cc9681f59bb17e68b44ebc02e108e657235aab7ac6f6fc9427b0f

Download Submit
C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

Filesize
1.3MB

MD5
daa90b5b569752d0f447956fbce42845

SHA1
a0acee407bc9de05e6bdf1e3f94b237f1d6999d9

SHA256
355915d59734007be535649e0252f422f74ad7062b8c8890565a0c85734ca8f0

SHA512
5e67d4b45d214dab6232958db373a25742348e28532e0b2f1c35011d5c6d7cc8f4cda5d9343cc9681f59bb17e68b44ebc02e108e657235aab7ac6f6fc9427b0f

Download Submit
C:\Program Files\7-Zip\7z.exe

Filesize
1.5MB

MD5
649d735dda788f8fe4b2373071bfae44

SHA1
36a9c46d7387fae3df19d0df4c255ca29fe6073b

SHA256
d72aa5b93de83a7a6e43e9b3b1801b5be9687d32e9ddab7c0dab3b6fd4ec7ecc

SHA512
fb13d6a76d22b181b4010668e3cdab5eec260ab1c23465c9524abe6297ceb585fd90e888cd18e6ec32aaf0e7b86f4d6b42c56995fb56af35222a3c6568aeff7f

Download Submit
C:\Program Files\7-Zip\7zFM.exe

Filesize
1.4MB

MD5
23f113180ab0a8d4e72b3f6713edd239

SHA1
0aa5a283c7fbc62b8476dcb1967444f3a906b08d

SHA256
9bec46b74abaafaa14917017b9dedc21ca7765ab5a877260a6d4f9651987585f

SHA512
8c34a1fef5fdb99bdc526224b334eb5c19a05219f0f285a0ebc908a655581dc4d2ab9552ec1c99aa41c07e798dad1a8177d642d0629eab1d3b8434d423984c79

Download Submit
C:\Program Files\7-Zip\7zG.exe

Filesize
1.1MB

MD5
86f856de7793a7b40b1e2b5e49218df1

SHA1
9897ee7d973ae449b87a211c81f89400afe4f4d3

SHA256
2822eb79b5b7b167a2060970d0e04b1ce6033960c575748dade0eb793a437eac

SHA512
581d6ab8562ae5279592a9a8857ca4ad2ecd8a1a2dbdc358044509e25b5fd353f1fb1513276dc0180d4bd252cc550a86325be8c60cc1d644e83bc5c5ddc24ca7

Download Submit
C:\Program Files\7-Zip\Uninstall.exe

Filesize
1.1MB

MD5
9c5dc12406cfb45cd87d47554b9e9dab

SHA1
d90364359a0049b1046e1c999c1ac1a052e21982

SHA256
279d7fced2ba20474e3d8d51cb52103e4345da225a816ffc7ce3dad2976cce1a

SHA512
0b074a2b41972139021aee739ecaf55a7164696af59b39215e87fba79b839dcf480167a5a3dbec080b555d862aab962ad3c284101c6299ae9b08f3e57a08baf4

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe

Filesize
1.3MB

MD5
1a01a96acd459cbec46ccb6ca7e519f3

SHA1
97a4dce9aebf409f1079b776de42c43addad1aba

SHA256
eb671e94619a2f154d754038babcd2518b1f1a3e3b1ade0526870b36f090975f

SHA512
7d897dbdbdc31291994dffc5791d29b29bacf3136fd223cea225fbd7595f430476d86df40c6eb17476d044d8cba22a07e258947dbc9bb325e333fe93597628cf

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\IntegratedOffice.exe

Filesize
4.6MB

MD5
83fa34f1aeb22d64e73be4d485660097

SHA1
f226b81b14d4fb46473f751972a23990e5a62e4d

SHA256
10abba8b043227be532db7bd847912df9d5fdbc515c38bd4c4be8d10e7697aa3

SHA512
0bbd1d093a9edc6c336a51ce682490f9f77ffcf29e28f4dbe279b58aebbf12d65fc637d5caee48eeb42942278a35220c6218fe18e29ad1268e1806c265fc18cb

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe

Filesize
1.4MB

MD5
93c621e0a7d8b5b83f665596ea69adc8

SHA1
b91fccde8570728975118f1707f944b4a53b4811

SHA256
43352ef8d3b29d69de9eb23b865bceb0e5b3f7f3219491870e0ca3478c3cd7ac

SHA512
fa8b17ea296dfc97da83267609aeaa2dc232fb1eadc1565b0ecf45622422e6c4832be01f1b50dec8ebd8fcab3d678f912911f7e300b1a215993c1f4279468ed0

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe

Filesize
24.0MB

MD5
a70dd8ee8291b1a31fecc871a3654d15

SHA1
3c7e84a1a82658bd598bef76b15bd4ab485bba77

SHA256
eeb5622cef92b1ae4bbbcb573758f55488c990ebe953005b1fdb53e489642c55

SHA512
3b6dbae5c711a976af08716de4b5745fe94999d4fa1198683cd022b82867b1772928e369f554eb951ac1ee602e783e76609992b5be3eb8f8b1a548fb468ebbe7

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\appvcleaner.exe

Filesize
2.7MB

MD5
da6dc11cc449c5bb26445c46c17d73de

SHA1
7da12a82c03b782a49b6e211b659224aacd70554

SHA256
bbf3d667f985751accbb605cfc30c713ef38d9b721e271e3bf5c9d06f5949bdb

SHA512
00fc5fba75d892ef6f0628e7f934a10c57714b75aaa91abf82933f6e8baba508e90bbf2f003b94fac674c59ed9472b5903f99279d70aecb0d90e5d2bb5084ed9

Download Submit
C:\Program Files\Common Files\microsoft shared\OFFICE16\LICLUA.EXE

Filesize
1.1MB

MD5
44cb5e5e333de0ab8f794c4336682fd2

SHA1
3b232a6b575829ae0d973f8784517d3679397f77

SHA256
a2a026228f150c22dc4c0ef36dc7c348be42c5857abdffe79f689d26e1dfae16

SHA512
56da8d2fd514a00ad9f09a5b8e2e553b5eb15f44b0eb3c2904b6dd76d9b6368b49d805fe563e7545e7cc7ce7384f7dd54bf454a02162dbef016b938e097a6fa1

Download Submit
C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE

Filesize
1.3MB

MD5
638ad45140b4292456d782c141d24c41

SHA1
a98b86966304ea50f6dc30f55e58ae46eb76e3ac

SHA256
96aa0b7cf68285852c86ae453320476532d287e8aaeb66c563afb2f3f437b841

SHA512
888f8ff0371f58d9b8408fe68f15afd7815130ca6534706d3d8a6f47a49b95f0c27f38063c92610d3110a1832ab29407a631f681da828bed53962b4792bad920

Download Submit
C:\Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.exe

Filesize
1.2MB

MD5
369d1ae17b942615429df069a196fb46

SHA1
a82d6ae5771deffe2b62047e555b6d3e72515b30

SHA256
5bfff755fc3cb6ac1c0c7fb087c4a878eb053c236c782be70b24b531d34bef8f

SHA512
1bab79e51ca4825f8ea060f16125be550905f6a390b831972dae5c7f33ac31bd7ed5c1523011c91cef90de119aa93664b3e91426700cf463ef5b6162d617757a

Download Submit
C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe

Filesize
4.8MB

MD5
4bc034dad45579bf9982556f0d639fbb

SHA1
40fa844c052448db3f38e518c12587a547b1329a

SHA256
2e7b30ec4cb629eeafe119f9a5b6d0564081e027a8c0b51e715e375fa9156e30

SHA512
05cc96a908b58e370c0c4eaae26054142e3fe57360a6ce685ba048f4d384cd3272fd238621fc66e53ee1822eec47c2c074435f742b4220b9edc5aa56a35060c5

Download Submit
C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe

Filesize
4.8MB

MD5
3aaf59fb6c798424ba770182e29feb6d

SHA1
a907543f644f0e83f2802598cf72b29f71c053f6

SHA256
a1eb1a47ebbb5efec32b92f5e4194546be27ce008995e7ee8e1fa0e274e6f687

SHA512
a45d6d44fc7649fe1d4c00b8ca367a45fb276ddba4dfebd1b7fe6c54e09e8cf1357b820365a8c76018f6edf50af653292e50af0396ed323c2da130b5c724b8a1

Download Submit
C:\Program Files\Google\Chrome\Application\106.0.5249.119\chrome_pwa_launcher.exe

Filesize
2.2MB

MD5
29c22a403575d8cbff2d8466927c7d11

SHA1
35b9c1f19d60bd6ae8a1beb46d4cc56772d320ae

SHA256
3f44ee6bf0499e71220e8b85aa92253c5e88832045dbbbd0eb039c73e64ab813

SHA512
cc6be60ac8aa6976706dfd65b5d1298fb43cca20ac9627f9d8020fd3c020c55a05a133d2c7d219e8ada7252d67aa780358889577f0a14953365445a79c70c6e7

Download Submit
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

Filesize
2.1MB

MD5
37f95fc2b7deacb858c7d76df8b0b8f0

SHA1
5033b1343401c4838769cbb70bd99d50867241c5

SHA256
3382342e902595519a2cd65ffb910063b5b2cb397e5aa557be62f54c1421dd3c

SHA512
d39364956a3ac83841ec2656686cf341dc38efd1474648c7ac80906a08883be4c4a1134e1582f944737bd1b80859ec3961a89ccd880005eb0f390e37db4ceb8e

Download Submit
C:\Program Files\Google\Chrome\Application\106.0.5249.119\notification_helper.exe

Filesize
1.8MB

MD5
48af9008332fad26f13b779f6f105736

SHA1
786c187988243507ca48fa029acc3436fa13554b

SHA256
7c262b55c90c012084fc48e879b882176a0749bec57bf7ca9ebd988a5247c820

SHA512
0a73491c92686d314125a427b9d208ea0fca994819c5d25264311e3ffce8dd15b86f67b3ab617fc7ab7a361678004499e9437ee07de40b50375e67fe485b38d3

Download Submit
C:\Program Files\Google\Chrome\Application\chrome_proxy.exe

Filesize
1.5MB

MD5
35856855d3778ac641d8ee6fd3f01523

SHA1
3c8bb011432b10b04fa07ac837c09298b4157097

SHA256
451069ba0156f98131c68a9a2fe522c41dd17a67d3e114f5fa13151117320b5b

SHA512
0c14f05baa38cb0087e9563c96751d2f794c6943088ff3bfed66ab3a9d4472288e7ab57d7751f141e489adf1ddd94629c425ad4881935d6a56f786503a1031a5

Download Submit
C:\Program Files\Java\jdk-1.8\bin\appletviewer.exe

Filesize
1.1MB

MD5
05dfa8a907dec816c9cbe7ffee709d0c

SHA1
021ccd03d3dc8016d4be541dab99af059277dd54

SHA256
e10c4e2cc26a477fce210b544d5852b0d603351434dfb6885886f699cc81227f

SHA512
6fb00e4865f61259b3ace892b3f9b1fe10158ba35394b7c3ed157a0a3317817a80233b081f4ac905e6a56cbc101badb2c2d7f4236d597b9b8c25cda62540eb47

Download Submit
C:\Program Files\Java\jdk-1.8\bin\extcheck.exe

Filesize
1.1MB

MD5
1d847b1d0fe4c8eefc66f2ac0e889e99

SHA1
550d7a750ab4009cb842bdeb0d06409d689203ad

SHA256
78780ab1c6ff6c4b0eb5c2ae2aca83766aebedd74400e8bc7eaa126ec0dcc531

SHA512
300f4143816f91f76e7929166b766dcd2a3d65e0c720495ec662d157e35196b26aeb65014a4af167e1cb7d0614d20f34202e3a4a7f7a4a0d4c3c8c5950487304

Download Submit
C:\Program Files\Java\jdk-1.8\bin\idlj.exe

Filesize
1.1MB

MD5
238a7b3dd33f923673f966d2ba5fb156

SHA1
78b458aaec1922044141e85037b6e36a07c876bf

SHA256
7dd9022974e0323f428777651b0392aec0a0d71c89952864163ceccd13a37608

SHA512
34ea9024ac3e76b808803ef6a905e91e53ab4e23750f218001b9d9fe7cacb6d52054e8290e629648ed8017820a4cd9384a9f3c6e81cdcb32913f1b25ad9ac9aa

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jabswitch.exe

Filesize
1.1MB

MD5
eefaa363bf240be6e259b8f6871e4101

SHA1
95916b09c3909e02b8579401f7426e24bf47e45a

SHA256
e27cb391d40f66d4834f7a952ce9f8c7be1b448c18e95e27123135c866e5bc23

SHA512
283a2ea47f2eecb167ceb17fd9db3057860f4d605e70df398b6195161ed51c876406e4680173c373bae571ba79828750967345453496e066afdeafe7a93a0a36

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jar.exe

Filesize
1.1MB

MD5
c43b3b20bdb703029c071be7e0b07334

SHA1
26ac63c84dbec61bccff93046dc918f2f7841f72

SHA256
fb1370451dfbc6015103df0707e0ed516e3e226493e7283ad861733f66b72805

SHA512
b123e6285a98d6a1f9b379eac678fb7d8e717a757bd0347af841d505233119dfa6ebf4bda47d8392893db88816074aa4630651ee52fd00b69ad44b6728585eba

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jarsigner.exe

Filesize
1.1MB

MD5
2498b8e236c21ef9fa3089a64c1781de

SHA1
aebdab3e6dbf9d3a42bb958b57a1b6246e15a36c

SHA256
973fb2079a7488fe9782fb4b5909433d8100d43e0252fcc65ed0aa2b53ac810e

SHA512
67fb221eb16a4703b728e5ab5a1a9fca0c5a15acd47d7d0ce1cc8ec4d0678ad8bef25f7c8cfe5239b225505ab9b8aac2c94b5e6ae20a70b25fd303549e1fcd1a

Download Submit
C:\Program Files\Java\jdk-1.8\bin\java-rmi.exe

Filesize
1.1MB

MD5
e1e311615f36983294e1b2f905f62337

SHA1
bd33c4bd2180b56df5ca2332ea4cc0935704fd15

SHA256
f59fabe3b23fd668dc1902483386a492798cd4eda1ab61fc155b5c77aa122973

SHA512
7d35b54315af1cd1bc4f835831d3609589f3e851b93e7a9c7560184c135e929b3a101da510a9b636790566cddd77daec143a706dc2f1da41a00166affd145494

Download Submit
C:\Program Files\Java\jdk-1.8\bin\java.exe

Filesize
1.3MB

MD5
601bb52cde5c83c3903697afe2c89504

SHA1
c7abf93397aac2aee7315519fc2e5bbf2b3bbbde

SHA256
5d5fa073ec3bfcd7bee3cadb2b22fb96da7491db335bbe13d6031675b6189d72

SHA512
3a10f2ef0ed1f4498b2ebe81db738f48f7742eec0763059fd0f6537e20ce02128a7a2e0bbc805de4e43757f10ced0f3d89be7aa37321d35de2d9bc4f4aa44e73

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javac.exe

Filesize
1.1MB

MD5
5add857286724a638c4a6f86e37849f3

SHA1
308e6e9c9d00bd5708a317fe345526273d96c98b

SHA256
fc30dd4ebf8da3f342dd296383daf60d86b682301e05d560359c887c35cdf456

SHA512
6a1ed22eba3881bc7f2cc2dab7ccabc80b72b0c00fe204917117c725cd4604b3cc43b6bb737156f7ff5fa5a1d348695c66288f279362fd75e41d5581a11a29ae

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javadoc.exe

Filesize
1.1MB

MD5
6a873adaa896ef714d52411d1f5de9fc

SHA1
2364d6a008e27e9d8f00274ec1ff170d85fd1499

SHA256
614f11845151ecb961176897e3c7159436a735048a857692ac8b7b0d12cd83b0

SHA512
9258b5286d2d083f3a1767bafc3590c7260301321f3bd9b90c14e677622d7dc625da796dc4ddefcf576272b9c4d2b74cc4b5c4d7d89755e12e132c6f1066d9a0

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javafxpackager.exe

Filesize
1.2MB

MD5
63fd4025232c0595bc15a2d5875d9c7d

SHA1
b96ceb58f0956f347bb2e9ea45c9d7e2b64a0c17

SHA256
f06ecb8ccdd38384977ff431f2d63a3dd640c97a0531a4b7b4598246e95da51b

SHA512
60d05b7b93a9dbd34fe0419f332849ba51d07dc014f9d6578cebc48db8315874a4ab9f3a9473ab40e7ff6df36510f6a09e6955d7055d38ce43d9779c4e5e9805

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javah.exe

Filesize
1.1MB

MD5
f533058d1c83b9e96f74ccfd37492837

SHA1
90c3aa2e591b43da3e28a42cab2bb182f0a91edb

SHA256
6cee8692ef3341200d73d134f53ba0b71d019dea12cef6153035b7d32b5e640a

SHA512
cd95deeb5b7911f8669747b7678d093179a450ef8cc73f78a976c1abdfc925a0f4516c97cba7b7e70decb63a41c771053d584665797f5f494c03eca4faf26fc5

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javap.exe

Filesize
1.1MB

MD5
30b62f05f4a001fbffe022e632b4a4f3

SHA1
29e9ccf28a1d9707c71953a7832150912e397d88

SHA256
1382f7f86c535eff4f7f55b2dbd92309374622ac591d4dc40fa2eba7ea5616aa

SHA512
acfb2ad06f15027535e8379e3e28638a2b3008781933ae11c0d0815d63f263cdc4b1d287070255c1ee7cb78c968f80aa57b4951be7bcae109c62db96db2f49f6

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javapackager.exe

Filesize
1.2MB

MD5
01250f5b134cf1db772de85db9bd3a38

SHA1
2e30037ca2c811ebd3b1f07a1d4445047da0918a

SHA256
e63f4d75fb5fdfe85cc5a616d38a0b4916b3ba9c2b7e1e2bd301a07a7af0fb0e

SHA512
a56e85539913ac3037f6780fae10a64d01939a7b48a24fe093cdf331911cbb8f16fc9b8bc40b965abaf405ed64a6d1eb5512c7bdbe76153407b0431d8dbef89a

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javaw.exe

Filesize
1.3MB

MD5
e7e97a9fa6d6765300688f1a0f8bde0f

SHA1
83da2965b167bfa27403749704adfd6f1de98f77

SHA256
6f07333f955a63bacea617b2bcf144e463941544db739eb5e1f82231ff8d15fb

SHA512
9480838eb5d967b2faf8fc17352d8690453a17f5d7d8d5e24ad055a3a7c889f587c13d03e4eb636f341893662d51037c05fb97b4101d5dfed92f2be4145ff095

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javaws.exe

Filesize
1.5MB

MD5
7b702121f2c832fd2cc77ff8c9eba84f

SHA1
695a9bd7610a03043260cfe41f1ce669522b72c1

SHA256
ca4fa562e2b5d44272eaa06cf4f9545c8377ba98930cbc3d0cdc0252672921bd

SHA512
58ea0edf04640032c97cc15ffefb535490b68bc7095d9497093059659b1e14da264d27549295c91f5e79180715e21ea7ed793192509ea827828a1ee86e70b3c9

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jcmd.exe

Filesize
1.1MB

MD5
ae445d1a4fa45fc14ff3f8dc3999ea61

SHA1
519ec6d602aa7876578a8ea955e56dc81f63ac7a

SHA256
fee9a1353890568a2668418296bcf9e9437a3723e6609cd76272a931cb34902b

SHA512
540f6cd307ecfb7eabb3aa93756bce9c29eb042109f3c3917231dff1cb278bbf0ccf445a97885f371329d22be2bb9794e48b11bed7c55c569a9f61e8a51488ae

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jconsole.exe

Filesize
1.1MB

MD5
27717a1f006050e96f41bcdbea58a3f3

SHA1
f7f0bfeb884dccdc2cbe8dd8d0969f9a599548f7

SHA256
54c4b067192234d00e48172fa69ad7e84f45a7e61e6b4103e047100f70f2d998

SHA512
23467c733d798ac0ff25cad9097440b4acb1db6e7102008d8f500d5a581c8591fb0ed10e0188b902fa7cb8037e57b947c2c07f483da7380b2be5afd0d540d494

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jdb.exe

Filesize
1.1MB

MD5
260933b8753379c56b0d7413b39d73ce

SHA1
745ec847c71eadd3c883ca5631ea8620844728af

SHA256
ae43675b6dc0d9aa2de036b98f54e7502a92d52226947626d9e2f6cc7e3748b4

SHA512
df8c463cb78649b3feeae8553cc934d52ffaa1244e6c62fab582fd72a847f452401ff5ecb3980ab72683f496c5ce0c28f3859ee8e25da27ff7b21666578c7d8b

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jdeps.exe

Filesize
1.1MB

MD5
e0d2c57b9c8786b1bc995e4664a4ae2f

SHA1
65b0b9631e5319f7424ba2f4fdc2761279c5a8e6

SHA256
1145abeb20b1c0a49e9218844c287fb58b8cbcbe1b0d38229cc9c38330465b14

SHA512
4d9bef47d9355b97a2b09a9f8cb214f80c6873451e13fe3c0d2b8d5fad856825a766256c877ec549f0c6665c6e1a44a975af50dbbff379fe1337321a25a5056f

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jhat.exe

Filesize
1.1MB

MD5
04b1c2f4a6b2c9176467b4321d3ebd67

SHA1
0ecb095313489b7a219a56ad384d04daa996c060

SHA256
836e6e580d08ba96594575496a7b26c42a888a4d592a751b62f4b9100c23b608

SHA512
d489160d804a048436c3267b1acb146ae52c1eb7efb5ff76a4bfdbe75181f3d4b548c9cec689e747a9dc8155c1541604e166ec45483ee7aeeb94771c24920387

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jinfo.exe

Filesize
1.1MB

MD5
0da7d7b9a90fafc6e8240625fb92ae67

SHA1
a7a36db07b7e0d50c130cda16a4cfe8f7cb12dc4

SHA256
ec2afd00e7343e1f853a20aaca65ce5a46938791aae7ef85879412c4b52be8be

SHA512
e8ca056fd7ebbdd27da7d363d6f1299d2130f4ba4fff0bbba11b68452f930ed1f31e436db78b10342effb7f262368e8e6f7a9fff493cd2fb8ef35c085c4033d3

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jjs.exe

Filesize
1.1MB

MD5
4075426dc3baafe37780fb1efa475c7a

SHA1
2dc63c0b1d4750cf38de696a2926a018e6ca9b66

SHA256
b3d97bd15c1143a31495e96808c476db2fdde348324c6e7852f56121d9dcb03b

SHA512
0411365aafd8202522fd0009dfe592a88964285d33f5f925f2ed9b53b7cea3b0f729b1bd530524b856735bba04dafcbd41fb2a6303deec783360d20474f1b7ef

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jmap.exe

Filesize
1.1MB

MD5
9206cee8be67929de6123c22db45cfd4

SHA1
fb731f186de11195cfbfb7f62f2cebe38475a809

SHA256
2958613e24094fd95687a1689129e8dfaf67d2e169d3e6f54b03379e5eedfa20

SHA512
5264e22c1ae177f206b025e02f5e7aacfe958eb5b1827d5a843e2634ce850648e9451e90bd0a61766f3cfefd77ef87ef3b179105666106656ec608fd2212fdc7

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jps.exe

Filesize
1.1MB

MD5
3c08ebafaf218f82206e5e1d7547eb5d

SHA1
676dde7120a3b7a0854913f6d84d053ebd12f605

SHA256
e8456dec294ecaa32fd4df950517291068e0b4095d965bf14a184351ccd180d1

SHA512
91b43fb566fc3be584490299709085e1926d52755b6912a5ef0ca4adf4b278c81dfb3fdc6fefaebc94ef7d0c6d1b871e7aa36e23db413ffe97c81930b02ba60d

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jrunscript.exe

Filesize
1.1MB

MD5
e1a36dd1b44de72b6d224daf591b2cb8

SHA1
7401dc3140abde1755ef7b6745763d8247e77938

SHA256
0676885f86ffa9aaadaf44e3c81a2516a746a6943c2a201cb9f8ba5c652793d7

SHA512
44b2458d077234c2bd06ff04ff19bee04844a9ec682c619fba97369a7fd0a8b082a70a5813e0c370db2f0e7b4bdd316deb5925a3c9d65d919816996344337ec6

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jsadebugd.exe

Filesize
1.1MB

MD5
fb43939a728c6b450bfee7134503bfa2

SHA1
9a6052de848e7bf22597f47d434d8b8898919606

SHA256
f9ad43b6e2eae2120f2ce8268a45bc7cf91f2b8d2c93dc306b426c082d5dc199

SHA512
cb89dd53e6443e3da51e07a4e0b3d3a306e39c90bc5d364d83e56a87513acfbb11e08b3548525d26ba001733f57e0eb6f2d5f3ae05d0fb3e94ac50637dc55089

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstack.exe

Filesize
1.1MB

MD5
a682e619c5d2de9553117ef008a071a7

SHA1
6111181907df3d4f7a36a8758f2a82360190462f

SHA256
35d30a2e7f2320c9bf682ac4ac952027eaf84902ca4e99b283e4755f26fb5d10

SHA512
0ee96c98d753fbef31820823f38ce24646d6a7df58e95ebdcf53e973149990e4fef608f3fcf2756f841120ef23cc66ff5f85aa4baaa0bd3c4cb2391993efe449

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstat.exe

Filesize
1.1MB

MD5
ff4261f77e97ea574ca7bba5ea04e6fd

SHA1
b915ea5f96e5a549c0e0aa0201d6427d1ea24a84

SHA256
e91286261c42f67fcb4879240b28279ae11a0581ff3a79bc7f58251974f5cf35

SHA512
55eb1ef8c14b748d5995fb9deb3735ec7b4f73de6e2ba08bd1fef2dd5dee4dbc690380faba7ec9ae2560ceac6195463da046a8ab7fa123458c1db8e223ef253a

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstatd.exe

Filesize
1.1MB

MD5
f98cf172d2362404722af4ad2a4c51f9

SHA1
a9a7086f2f2564220c2d8499ceb7565f30e1b872

SHA256
a61108179bb759e7727114ef810edf92bf99613bdbf0a82997c73a6c606a6fbc

SHA512
11b3842467a28019ef729589ed9b5349e4d1ec0448bb1e9baf9cffe6cee238b1939dfcf3b5f812018b81af8a6a89628d5c02e748d4d3b163df65a7f3a916b03c

Download Submit
C:\Program Files\Java\jdk-1.8\bin\keytool.exe

Filesize
1.1MB

MD5
908c48aced7d7a632eab7e2bdb17f803

SHA1
4e7fdaba07b922497aba42e1f4a845d186f3f91a

SHA256
782a822a2da2ae05e75749e3f6c93758962acae1071586177f92a10df70508b3

SHA512
f581de78d61237367f946fa6324d8d709c119837d8ce3781ad4afc8ec16938e880e5399854f42d7698ceefeef31a4e564bca5d61517c39cc45b2ab48544a45d2

Download Submit
C:\Program Files\Java\jdk-1.8\bin\kinit.exe

Filesize
1.1MB

MD5
4e06325ce22d5f1a60a64e6d00285f12

SHA1
48507898b804b3858c29e6d7656689cdce070d8f

SHA256
1e0dfc8809330e8b9bbe09c1728f6a090b581d86980352a95db158cc2e70a00b

SHA512
3a2c350e569b53e396d21a6f0864c2ef668dd09f9aadf77682c0553bdac9ade4fabc83b4fbdc21114a96985ebc67059af56895c5e2054137a3b4a66e8561f07c

Download Submit
C:\Program Files\Java\jdk-1.8\bin\klist.exe

Filesize
1.1MB

MD5
dae5b1d4d9d2ac6a9bf61cff038f796e

SHA1
27b62df19025ebf018f25bd9e002911e81058c5c

SHA256
c0519de58013c7dd9c59355a84d38c3419c493d5a3ecb1a054190423b2383331

SHA512
4f338ddc51eb9bddc31e1596134061dc47e9bf04beb5362a2469da29a75250ca30a391a8d2d28cc5bdcdcde9e6b1e3bfdd9ae78e6ed7c70707f9bdef3a7bc16d

Download Submit
C:\Windows\SysWow64\perfhost.exe

Filesize
1.1MB

MD5
9666f0757341d35508c7051eaeaabd33

SHA1
250c86ef2e7afeb673fe98392d0e9913c6dbc9c2

SHA256
07ebec8707550a1625de473d13f976825255af002af3d4dea5c5fc34b9ad1f97

SHA512
7e31cd16890a4b98043f3266a2aa0e3d11b6e50563577b5a4ba5c1cd4c2e29e1c0adb6068c4279dd122dabbf76311bbd69f6a989fbd98447a2fe109374d6d13d

Download Submit
C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe

Filesize
1.2MB

MD5
e718162391e1790ac192f3e2549d186a

SHA1
01140eeda24f55810dd09aab1ba4e88eb686b4e7

SHA256
831d6fa8c784b5685f40e0ecc7d0937134ce5e9c83341aba8daf726ad5728af1

SHA512
123d1e080ddccfcf8ce837a405be24450476bc0150c2c0bfb2dd636f75272d8ec7494d2377b5f79815f7c23f05b07e7e9f5a98208efb65303f12641e32365328

Download Submit
C:\Windows\System32\FXSSVC.exe

Filesize
1.2MB

MD5
9121f92f443299b9b75d5e79badad52f

SHA1
b3da9283162840c9dd837ac0dab45464c1cf2f3c

SHA256
40977d22b86eb1726e12056300e46ef3c199d426b44517961d96995dd44d61b6

SHA512
ec841eeadf33810a31335ccd315d346d898276db9fe463593f1bcb342b339addc26c4cd1ec721382e8bf425e5c4a5486674fd25f72d27e234096f1d848e819ae

Download Submit
C:\Windows\System32\PerceptionSimulation\PerceptionSimulationService.exe

Filesize
1.2MB

MD5
2bd3183fc40fababa2c0fca96358d5e5

SHA1
9dcbc9cdb1e457a0badeebf118f7c88eb1a6776a

SHA256
3b881aa0493799bbe4830148d9ee97fc5a69151b3ce1ad4e7a2b481d90c7d256

SHA512
ae8f4d1ef7a0e61d0d76fc72ada9754d1fd2a2a8ccdbcda8d01a92daa1fe8a9e4ebf8c93f7e5ec974320c187268aacad7b43411815dd0daf51bef2c11becf3fb

Download Submit
C:\Windows\System32\alg.exe

Filesize
1.2MB

MD5
3ecb6a2dcf26472eeaffe20ba2dde1c6

SHA1
97ef55352e9acbf449145389ac66b9355b96b536

SHA256
8ddd64055eb6cc30194506732b9a8f04d39549f2cde07eacd6230e8074856296

SHA512
a901e05d48f2d2cf5b8be71c2dce061f545764918de07e71a1d41a3e3c51ee55ca38849fecea7d0729368cd386865420d254201e25ebb35f033f1d05382ff5d6

Download Submit
C:\Windows\System32\msdtc.exe

Filesize
1.2MB

MD5
99ea6ab58dcacb764df852eff4002eba

SHA1
9f406c62ed8ba2fe922d4288010f92ae3fcc4643

SHA256
7b067f22ec1b809047458dc76d7abd78de41bc56fd22e01cbda84cf0e7c496e9

SHA512
1f1c5a498b9f0449ca5da1708ac9aac9c9fa02e88fd81279e13c680d598809e925bd4ecccb46d8754ec6242732d7299c74a56e26f7cc1ea8899fffce931cea05

Download Submit
C:\Windows\system32\AppVClient.exe

Filesize
1.3MB

MD5
c597fa2e420f0d20ae2d47f6e936b8ff

SHA1
e800f840080ed92cd50697709434412a83a1ea7e

SHA256
aab9e0c7f00a501e935e3bcd11aa6545527f401c9ee6564356782a8fe8e7e290

SHA512
bda551636d29883b60fab5057aefe91a5e74438c52483af1980976eaf5744ad094dab1f2da020f2e23f6e8b995c5d2a15bf9888757e0dc461d0b9cb79dd28c87

Download Submit
C:\Windows\system32\fxssvc.exe

Filesize
1.2MB

MD5
9121f92f443299b9b75d5e79badad52f

SHA1
b3da9283162840c9dd837ac0dab45464c1cf2f3c

SHA256
40977d22b86eb1726e12056300e46ef3c199d426b44517961d96995dd44d61b6

SHA512
ec841eeadf33810a31335ccd315d346d898276db9fe463593f1bcb342b339addc26c4cd1ec721382e8bf425e5c4a5486674fd25f72d27e234096f1d848e819ae

Download Submit
C:\Windows\system32\msiexec.exe

Filesize
1.1MB

MD5
e936345efe2733ddaff737c5275bf5a3

SHA1
4178a6b8e3310c9fb004c49b725fc0dda230e815

SHA256
c7104e554fda6548d11f2777e3515065fb455c723c2f43ca17d5383f40f52380

SHA512
ca32a29bfc82716a3dc588b24cb844fcfe81649cb3ebcd7b1aef3f5633448b24fdedda7f6c9c8807504002a4ba2b5e87577e563782861406b46ac762dc66dc10

Download Submit
C:\odt\office2016setup.exe

Filesize
5.6MB

MD5
2e38cd9e40c01b43e6285281b919809b

SHA1
1dcdf2458edaa0cb8488babb82e130d589add1a2

SHA256
adc13c501f92e4414c68851f9b15902d4f01fbe0f30624338ac5afd7e9f14039

SHA512
01c4c7cf2680502e14b2ef7c4f7be7a26189665223cedbf6688794a38abfb96a09a0db98e1cef97618db8dedb97c1473b8ce9777ed10c501910dc103636c6e16

Download Submit
memory/1320-434-0x0000000140000000-0x000000014013D000-memory.dmp

Filesize
1.2MB

Download
memory/1320-167-0x0000000000710000-0x0000000000770000-memory.dmp

Filesize
384KB

Download
memory/1320-159-0x0000000140000000-0x000000014013D000-memory.dmp

Filesize
1.2MB

Download
memory/1320-160-0x0000000000710000-0x0000000000770000-memory.dmp

Filesize
384KB

Download
memory/1336-145-0x0000000140000000-0x000000014014E000-memory.dmp

Filesize
1.3MB

Download
memory/1336-153-0x0000000000CE0000-0x0000000000D40000-memory.dmp

Filesize
384KB

Download
memory/1336-143-0x0000000000CE0000-0x0000000000D40000-memory.dmp

Filesize
384KB

Download
memory/1336-150-0x0000000000CE0000-0x0000000000D40000-memory.dmp

Filesize
384KB

Download
memory/1336-156-0x0000000140000000-0x000000014014E000-memory.dmp

Filesize
1.3MB

Download
memory/1672-130-0x00000000001A0000-0x0000000000200000-memory.dmp

Filesize
384KB

Download
memory/1672-133-0x0000000140000000-0x000000014022B000-memory.dmp

Filesize
2.2MB

Download
memory/1672-138-0x00000000001A0000-0x0000000000200000-memory.dmp

Filesize
384KB

Download
memory/1672-393-0x0000000140000000-0x000000014022B000-memory.dmp

Filesize
2.2MB

Download
memory/2504-195-0x0000000000770000-0x00000000007D0000-memory.dmp

Filesize
384KB

Download
memory/2504-190-0x0000000140000000-0x000000014012F000-memory.dmp

Filesize
1.2MB

Download
memory/2504-439-0x0000000000770000-0x00000000007D0000-memory.dmp

Filesize
384KB

Download
memory/2504-436-0x0000000140000000-0x000000014012F000-memory.dmp

Filesize
1.2MB

Download
memory/2932-13-0x0000000140000000-0x000000014012E000-memory.dmp

Filesize
1.2MB

Download
memory/2932-19-0x00000000004C0000-0x0000000000520000-memory.dmp

Filesize
384KB

Download
memory/2932-142-0x0000000140000000-0x000000014012E000-memory.dmp

Filesize
1.2MB

Download
memory/2932-12-0x00000000004C0000-0x0000000000520000-memory.dmp

Filesize
384KB

Download
memory/2944-1-0x0000000000BB0000-0x0000000000C17000-memory.dmp

Filesize
412KB

Download
memory/2944-0-0x0000000000400000-0x00000000005CD000-memory.dmp

Filesize
1.8MB

Download
memory/2944-6-0x0000000000BB0000-0x0000000000C17000-memory.dmp

Filesize
412KB

Download
memory/2944-7-0x0000000000BB0000-0x0000000000C17000-memory.dmp

Filesize
412KB

Download
memory/2944-131-0x0000000000400000-0x00000000005CD000-memory.dmp

Filesize
1.8MB

Download
memory/2944-275-0x0000000000400000-0x00000000005CD000-memory.dmp

Filesize
1.8MB

Download
memory/3504-172-0x0000000140000000-0x0000000140154000-memory.dmp

Filesize
1.3MB

Download
memory/3504-435-0x0000000140000000-0x0000000140154000-memory.dmp

Filesize
1.3MB

Download
memory/3504-183-0x0000000000440000-0x00000000004A0000-memory.dmp

Filesize
384KB

Download
memory/3992-120-0x0000000000720000-0x0000000000780000-memory.dmp

Filesize
384KB

Download
memory/3992-188-0x0000000140000000-0x0000000140237000-memory.dmp

Filesize
2.2MB

Download
memory/3992-119-0x0000000140000000-0x0000000140237000-memory.dmp

Filesize
2.2MB

Download
memory/3992-126-0x0000000000720000-0x0000000000780000-memory.dmp

Filesize
384KB

Download
memory/4788-112-0x0000000000E90000-0x0000000000EF0000-memory.dmp

Filesize
384KB

Download
memory/4788-105-0x0000000140000000-0x0000000140135000-memory.dmp

Filesize
1.2MB

Download
memory/4788-106-0x0000000000E90000-0x0000000000EF0000-memory.dmp

Filesize
384KB

Download
memory/4788-115-0x0000000000E90000-0x0000000000EF0000-memory.dmp

Filesize
384KB

Download
memory/4788-118-0x0000000140000000-0x0000000140135000-memory.dmp

Filesize
1.2MB

Download
memory/4880-93-0x0000000140000000-0x000000014012D000-memory.dmp

Filesize
1.2MB

Download
memory/4880-94-0x00000000006A0000-0x0000000000700000-memory.dmp

Filesize
384KB

Download
memory/4880-101-0x00000000006A0000-0x0000000000700000-memory.dmp

Filesize
384KB

Download
memory/4880-158-0x0000000140000000-0x000000014012D000-memory.dmp

Filesize
1.2MB

Download