304efef59376596a80dd138134e3d8c3b6cca7e294dd571fbdd5cc4a183751ca

Analysis

max time kernel
98s
max time network
121s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
05/01/2024, 05:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

WFDownloaderApp-BETA-64bit.exe
Size

58.6MB
MD5

8c0395447610b3bb8bdc22b0927bb0e7
SHA1

9abaf88debfd408d5006436d18f818bd0a9eb90b
SHA256

304efef59376596a80dd138134e3d8c3b6cca7e294dd571fbdd5cc4a183751ca
SHA512

e812ea452ee2289893485bf4beade7fef1306ab699f06a58fe20319ad2e0230249284a7ffcd482b5908dcc8c66b2c36a8c80e5a74b83f971b25242f39d61eeb5
SSDEEP

1572864:zsilFyDMOO2Lg1z1T2+WiWa2PE2eUs9V60lod/GAqhf4:zGQh391ciWa2PE2dsb60la/NQ4

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
1888	WFDownloaderApp-BETA-64bit.tmp

Loads dropped DLL 3 IoCs

pid	Process
3036	WFDownloaderApp-BETA-64bit.exe
1888	WFDownloaderApp-BETA-64bit.tmp
1888	WFDownloaderApp-BETA-64bit.tmp

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
1888	WFDownloaderApp-BETA-64bit.tmp
1888	WFDownloaderApp-BETA-64bit.tmp

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1888	WFDownloaderApp-BETA-64bit.tmp

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27
PID 3036 wrote to memory of 1888	3036	WFDownloaderApp-BETA-64bit.exe	27

C:\Users\Admin\AppData\Local\Temp\is-4IL5K.tmp\WFDownloaderApp-BETA-64bit.tmp
"C:\Users\Admin\AppData\Local\Temp\is-4IL5K.tmp\WFDownloaderApp-BETA-64bit.tmp" /SL5="$8014E,61187671,422400,C:\Users\Admin\AppData\Local\Temp\WFDownloaderApp-BETA-64bit.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of FindShellTrayWindow
PID:1888
- C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe
  "C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe"
  2⤵
  PID:2740

C:\Users\Admin\AppData\Local\Temp\WFDownloaderApp-BETA-64bit.exe
"C:\Users\Admin\AppData\Local\Temp\WFDownloaderApp-BETA-64bit.exe"
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:3036

C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe
"C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe"
1⤵
PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\is-4IL5K.tmp\WFDownloaderApp-BETA-64bit.tmp

Filesize
136KB

MD5
8f1b5fe64e28b1d561ddb9f8c235864e

SHA1
1e5932ab318112dae7008460fa32b90f53ca8d84

SHA256
f322f0162f7d448d8883fb13f56b8b80f38c5391204df5c2346f3563d156e821

SHA512
c0cf452cdf1a360c31e14b4c5ab342363743512189a840e2504a86ac3a85d2bb52d17228041bb6d9fd217f27d599747a01038a3fe5bd4a73638ea6095add2ecb

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-4IL5K.tmp\WFDownloaderApp-BETA-64bit.tmp

Filesize
15KB

MD5
10fe70f8f3f1f3dc7297b17c39fd8245

SHA1
1448a1d9ecc44927dce48ff3bf8007e4cc989356

SHA256
65f67b363801307bd2a9d0c854b81e2a608bd87c78fd33413917f45fde25c6b1

SHA512
f9a780dd25fed317d84722bf7bb52237d1fb8c4fc4ff4e9159747e9d06b846dafd37b2d820c90d9f3676ef90ad65d29cb7758c8c046ff875b86237943503fa44

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
140KB

MD5
532dca4a4299f6bc5223d57099252498

SHA1
5407989723e9694fb2730ab1e6423dd41a2392c8

SHA256
93460febda78de4df124ece7db127875c789734099a5154fe6a728b9883e1e92

SHA512
865d8e71834fd7da04f37fbc6220f0d3881f2c73de011a0a638b5d006766f4fa7f866547c25a6f9cbbcdecd740e1c8f4dec2174f31e995a0b463736efb97d94d

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
22KB

MD5
6eab87cbdf7786ff1660b7634b6c1fb7

SHA1
05dec850b78d7390b3ce97d34bd7ccceda8672c1

SHA256
f342778295d537bd3df2712180cbd64898bf741877be622a0f09ffb8025ae171

SHA512
bd4eea49fc599d8a42b60bbc1efb029db114bd081c22103668f9a15848a905ea265c47e04f69a0419ab9f2da58a9061c124c7494cffd016bd3e4919ea7af43ac

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
37KB

MD5
9cc0ff765790cdae991b8bea593984b4

SHA1
d79bc8c254922be972f94dc4b16e6626571d1a53

SHA256
b5280968d5742fa848fba7d23c46c6bf6e9c3df484f3de1c8cb93cc3d6f7fe03

SHA512
8554dbe5703ed0b51cb70e9bf3c0c2f4260c87569aa66ef368bcb8e6527f09c28b4391cd6fb7dbdb63820076722093b6a70b1e236a26514ee3b4291d8ed0e841

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\app\WFDownloaderApp.cfg

Filesize
565B

MD5
f09e351c94e37d51f2b85db4160475ac

SHA1
e67b0efada84ca69ea43dcdb3198b70c39ffadde

SHA256
3071ee0d09fc944c5c66745556bdb06c76db15a289d92e47397690de5668ffa8

SHA512
f230a3a00d1ceaffefef571b55ddd07fe92b6a9c1d1ea865a70c94f6e4d30b33ee3b42488800c046ce6b766ee90458c94d06c73e9e73d42964258d27d5b65e79

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\app\WFDownloaderApp.jar

Filesize
55KB

MD5
a87664b99d537acb2fd7a8e5dcf4ce2a

SHA1
c741569e96fe287ac06a6b8a1c541fb86419df56

SHA256
d07064f5e3a8adc00c9f4eec94d1ddf17413de1cd82a931c981623bb3c648869

SHA512
d0b7c63430dda5f76d9419a9680c90832b897b619394e1b8255aeeb00dd21106d6b8d8d243bceba6c48a04af61fe04c49e614036eafee2ca773c19a278328b26

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-utility-l1-1-0.dll

Filesize
20KB

MD5
e79464524fbc2c266da52d0a903d85d3

SHA1
6bad715617992277751a8ddfc180ba291ba75d59

SHA256
6c78d4aba91877c5bb33e545b6a69a818f377e07ff62e791b804fa5b4d2bcf02

SHA512
def71789e238ecd3b2d68dbd204acc62537ad39ce50a5bf09f320fc8cacc1b3f561822784d006ab2145eab5ab7be3f74c1c773fbe814efa040a1dbb3ffa6744e

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\java.dll

Filesize
108KB

MD5
1aa6fbb7f6bc81e29765f28fad708cb9

SHA1
a9ecdc2b62f2e18d3233f3d575489e3fbd2d1b5e

SHA256
91650089fb756ed7824d2a5c18080aca84bb7382f168b89d765ba1943228ef39

SHA512
c72f5fc68fec0cfa5e356d6b956cf3e7a53a346e9366f1d64ccca74574cf5b84bbb6c323aba096bb2eccdb38ab3939056333b779859c8ed8c323600495c8e422

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\jsvml.dll

Filesize
92KB

MD5
4f3ebd99fc0f94a264c6ce28ffdf48b3

SHA1
d413792a69aa15be8fa4c026f5a0ef00829fd9b7

SHA256
8d611bf80ee228b1f31ddadfb63d5e59edac437739ffbaa3cbd9191bba66cb42

SHA512
fbed94b0a7d23dac57665515d6303afbf0e01c704ca6d5d6e4f2ac0ab380516b232bb1bbc48cd9a74ada4297a8a288c931c70783d6a94705f67de40ff5bdc956

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\net.dll

Filesize
30KB

MD5
4a32222564180922e94e660ed0079673

SHA1
6f0c7459fc40a0c8a28b0cfc7bd9feafeab71d11

SHA256
8cb612902ba39c66eca0817f0d2e832199bfa7f8526d74312531cd3b1b69fb4e

SHA512
8a009ad7b4ccdc54eebdb8dc3f9f3f02bd73150daba032683001be5462267baf1d0d24ed6a7e6e05914971417f02c0d4e9f764b9f8e7ea43ce87f147c10c6531

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\nio.dll

Filesize
49KB

MD5
6b883501928b28045d4b1df07013f76f

SHA1
d2e05839f1f389d5a5c0d23b4f28a6caeeda2f73

SHA256
dab2a5753e456a47a2015b7af0bd7d83e5aec69cd92808aab8233814cbd34aaa

SHA512
764343063ef743dfa273e7262837c76496430d9a3c06283170d7379ce476d7cc0596e780a084bfd3ec42f5402875c73345bad96c26e41ab7917ae7ae1ee7474c

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\server\jvm.dll

Filesize
57KB

MD5
ba6c86f32e43da9fb2c9f083624ecfa5

SHA1
fafce826632a9481d89e14396ad92abf1102ac60

SHA256
7df4249d83190fe1ad0335f1563a40e1c14138dcc2a44c10002ac3491e66935d

SHA512
8b871e31a609fda7754d031cebea567430ccc4bba9798b84d56f6892231fad9102e3a4e67aae1708d5d539e9fe62aad9751403d862e30b8febc04248bc7fc3e7

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\zip.dll

Filesize
77KB

MD5
d52c1c5142046e1c6979861f8e1a4dd4

SHA1
ba53bd7b9160cbb1280cf545c78c7e4c3e0085e3

SHA256
abc8645c82f54bcb5569f67280e70c0c525c984e692aeb6683c00ae76396c862

SHA512
6b50a4af8bff503cd98e577b13e5f39ee3ebbea4df98a8497aa38d9fe42e8bb134cc04e3ae81b548909fe379d1265c0f80cb067337e2a766ef8ee9f5783bc95b

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\legal\java.desktop\is-0JQOE.tmp

Filesize
49B

MD5
19c9d1d2aad61ce9cb8fb7f20ef1ca98

SHA1
2db86ab706d9b73feeb51a904be03b63bee92baf

SHA256
ebf9777bd307ed789ceabf282a9aca168c391c7f48e15a60939352efb3ea33f9

SHA512
7ec63b59d8f87a42689f544c2e8e7700da5d8720b37b41216cbd1372c47b1bc3b892020f0dd3a44a05f2a7c07471ff484e4165427f1a9cad0d2393840cd94e5b

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\legal\java.desktop\is-6OMH3.tmp

Filesize
33B

MD5
16989bab922811e28b64ac30449a5d05

SHA1
51ab20e8c19ee570bf6c496ec7346b7cf17bd04a

SHA256
86e0516b888276a492b19f9a84f5a866ed36925fae1510b3a94a0b6213e69192

SHA512
86571f127a6755a7339a9ed06e458c8dc5898e528de89e369a13c183711831af0646474986bae6573bc5155058d5f38348d6bfdeb3fd9318e98e0bf7916e6608

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\legal\java.desktop\is-8UE53.tmp

Filesize
44B

MD5
7caf4cdbb99569deb047c20f1aad47c4

SHA1
24e7497426d27fe3c17774242883ccbed8f54b4d

SHA256
b998cda101e5a1ebcfb5ff9cddd76ed43a2f2169676592d428b7c0d780665f2a

SHA512
a1435e6f1e4e9285476a0e7bc3b4f645bbafb01b41798a2450390e16b18b242531f346373e01d568f6cc052932a3256e491a65e8b94b118069853f2b0c8cd619

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\lib\jvm.cfg

Filesize
29B

MD5
7ce21bdcfa333c231d74a77394206302

SHA1
c5a940d2dee8e7bfc01a87d585ddca420d37e226

SHA256
aa9efb969444c1484e29adecab55a122458090616e766b2f1230ef05bc3867e0

SHA512
8b37a1a5600e0a4e5832021c4db50569e33f1ddc8ac4fc2f38d5439272b955b0e3028ea10dec0743b197aa0def32d9e185066d2bac451f81b99539d34006074b

Download Submit
C:\Users\Admin\AppData\Local\WFDownloaderApp\runtime\lib\modules

Filesize
128KB

MD5
11907a313fc6738f4cdd2ba4343f14c5

SHA1
ef1ca3fac049a0ea7981f01cf554b734eb009d4e

SHA256
c4d309a2006848aa2b899bfc23e6a20f79237813f2f229e293574e73bd713dbd

SHA512
9c08f4bb67f7209a5d6b0e4839eb4d6a9e018098ad93eb32171b23c098114a93e0e9bc4d53fac396d04b3df519191d7a17ceb8a255fb3eab0f0a3b634c1ed1a7

Download Submit
\Users\Admin\AppData\Local\Temp\is-4IL5K.tmp\WFDownloaderApp-BETA-64bit.tmp

Filesize
1KB

MD5
453bf3e4ded9b6043b33f62f4b854c07

SHA1
9df51b42a30c1e56cd50c615874ad6d98b654f5c

SHA256
8d6b4c7518e91e0e50ebbf4c6e2a44576207a8906ab8bd3215c9ca9b91000688

SHA512
21063c5f2d91dfd614fc1d17e746839fc079c69efdcda1b2d0d226c4a7a6586adc06279eb46acd28bfc5a693093435dab51fd4e9b31642ab571cbb6b43f859f9

Download Submit
\Users\Admin\AppData\Local\Temp\is-HST0V.tmp\_isetup\_shfoldr.dll

Filesize
5KB

MD5
855cedf34fa560ed2d5090837e3fda33

SHA1
75154a41d37ef3d709b354990b9f1fa9092426f2

SHA256
fe5bd3ad61620b99447aec0bc04fa810bf05742eb227bf46261ea172fb5e89ee

SHA512
774adeccbc717bf024ae16ae85aed8137157f43769f678df2c893c7d4b65976a7429a2437c90ba348b23931178c7508df5c43673197714c9d5e54119fa82557e

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
65KB

MD5
5de66f87c60ef9d7039eed99f8f337cd

SHA1
53304f61606eed7e02733c899cce96532d330458

SHA256
2698f2970d833068c493b39e7750563de481cb1ba2063b120f67cc64e7f1bf8e

SHA512
0e7994b0119c057b0298221b280eb159609a91e08a671709517f1ff9536c2eaa9b8448486065272da8f6245486796d84aff0b80b593a4223831c5b53c7015b04

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
68KB

MD5
5e9ccf03b1bfb6654df235d41f0f389d

SHA1
cf56c84ccc39a08caedfe27249bc1d1ec163fa69

SHA256
fe158d760bbc1cfb53f268b59c1772aeec14f8022c27756a65c28c1b1d4bc234

SHA512
3f75245ed9077096e22f689450d5006ef304cd10943d5728ae911dc65222ed15f3ab148b518c03474362fa6f908a8d6d8800742a7b74fb6177437851277de8ae

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\WFDownloaderApp.exe

Filesize
45KB

MD5
15c1a4b5e540fd9a454d4d017e611a73

SHA1
5ebddc6c7c28e55471857166b776c477c4f1873c

SHA256
49f21bcb1ceab82f752111eb5311859c14eed8b7c7d39b52e3d90acc4cc6c1cf

SHA512
42fbfb2cb08dca1b43af1cb385de11f85f22e8929bfd07f3d329b54d6bde7353b05d45ba6a6efbe561df8f835b449ac0fac3d42d67418def85d172c8245732d6

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-convert-l1-1-0.dll

Filesize
24KB

MD5
cf95a8f66313283f046ba9e6e5cdbba4

SHA1
b25c686fcc6729a88a8776cdb75ff21cbceb1c5d

SHA256
2ccb01b62188ddc051a582c128bf880608111c602534e487ec09a7cf67c22d17

SHA512
59f5901e513aceeeb819c73c5b9fe2504e80af28df54db19775d7c0e0481f14c21ce38e6db207672cc10facfdd217638829af2d3f0f85a0a413d10e3a81dae9c

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-environment-l1-1-0.dll

Filesize
20KB

MD5
71407c52ff12b113cc0498fdd42db8dc

SHA1
f0c6a3c1308177b090b2a94fee90156e1df6bb9b

SHA256
5a2ae5b270c1eaf467878e7f5dbdc689b71914bdf30293d7d46c01d9dd11bdd4

SHA512
b9bb29d76a144c10b234835b6006637c84103abeb8f5db19991f3ab2baaabe3ea3fc1a87132263d097addd01afcad08e77c9834dccd4c6723b3ca204f50aac1e

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-filesystem-l1-1-0.dll

Filesize
20KB

MD5
bbbf361746440219a3f7933ced5234bb

SHA1
1e3ededaa28e41f51e903c2ca66e7bd048fbaee7

SHA256
42a99227775e85ca8c197811a86aad0e2af496bd21623e4c9a2dd747571c8990

SHA512
f6681875bc02903676cd3ea3303920202c563a1a6e82dd687ed9bd0fafe92c9abba4a6df3e9c93f2bb0da9dccf0abb4543b6a5e5f0c92fa06e809b30b84085aa

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-heap-l1-1-0.dll

Filesize
20KB

MD5
bacc491eb1dee4786ade841e7b480cd8

SHA1
84cb8f770cdf873415403edf48e625514aecad02

SHA256
43c80120970be1efed3ea60bf7aa37b46fcce946b94fb11ca6e3ffff2f16bb29

SHA512
7832912f38cd6ba145af57548c2a1d4da3bed9392a0ab3a0faffe18fab40087e1d74676e2af004627a37f7e079b9146dccf7aaa04e360a88443196fede4ccadc

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-locale-l1-1-0.dll

Filesize
20KB

MD5
fb992bbb73e0127c70d075f81e52aaf9

SHA1
e9d326d436e2e55c521261ad9a5b73d2e998f644

SHA256
6011ece89f4833dcb4cefb02ea366b828725205eae6f25ab704b76fd9e5d86eb

SHA512
f568898a660c3850998b71a854fb5b8ffee59f02ebe7bc8c12ad9bc68f5472a0c812cf0a8ebc096fcc462e941a86a2a46619d4f03030e7ab69a0e4a9e7b1e0b6

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-math-l1-1-0.dll

Filesize
28KB

MD5
0936c89e36a8bac313de187e50c61078

SHA1
7f0e64a66301e1926fa9acdc36ad728958ce6d78

SHA256
5ba8f9c2842990ccdb447fc6d22023103b03f5387f341d3375809f060b5bb4ef

SHA512
a72fcadc55d12c97770f1222bb3b605b7d58157f6f55814d900fe0f1b5ff8075f84914c7ac66d4b0e59ef41c01504a35c391bfb182e2e9019d152037ef4ec20f

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-runtime-l1-1-0.dll

Filesize
24KB

MD5
01380df01b9e61fc241f82f8fb984c2d

SHA1
18f92390b292af0db8aaa7c7e6f6aa24463f9b84

SHA256
698fa887c5b994375c9271222e21d0d4c74810e73d377ad898927549fb69dcb3

SHA512
743d45fae759d8ff3ef862ffa70584696824b86991f262ddc897f6f469fbb4264cf7da3fe001f33c6305523753d37a7a64874c5010cc7fe63252c53cd96b06f0

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-stdio-l1-1-0.dll

Filesize
24KB

MD5
a3f3ffcde3dd59cc94fb7dba16715671

SHA1
bbf272dab014d4cde1a57831a2daf4fde03b4884

SHA256
c1541ed4dc6879a136bf532393f7cefd3c48ad371d2ed9965e7cbd44c87a1137

SHA512
0e323b44b4ed7959c5f6409e565707e6e402382c950d2a0fc18d18f56ab588a49a260c99ecbda1bdb3778be131fb71b1b1158d852981e2e86d0b989b05496e02

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-string-l1-1-0.dll

Filesize
24KB

MD5
535d1195f493f7d92fe9007258494ebc

SHA1
1bf95ec546a6c1a8832d9002b7cd01265a1bbdad

SHA256
4429b8e6707645fb503ebc3bd50ce2a84f559b6a2ed778196835808bdfec2f48

SHA512
cd47f34032fc59a89dd286115db2cc2d1918f6ecc069fa37d2295126876fc5c931d6272892fb22db5eff1f810de818e64e6140617786a4d3fb153fd80c107468

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\api-ms-win-crt-time-l1-1-0.dll

Filesize
20KB

MD5
ed44b4aac3c881a9bc524d15ae3f3944

SHA1
a87983d6c714aac9242bb60037864139863b1848

SHA256
f3e6f692cec86adb3985b929345c731469777aeaeb088e3ce070957df481f924

SHA512
25513c666f228365ce7e092782a92fb7eb144f6b3293f896b08317c36323006ba10f4133bbfdadd2576053c1d6ac0e28cc3ad5798b92eec34fc8fa36e8d83047

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\javafx\api-ms-win-core-console-l1-1-0.dll

Filesize
20KB

MD5
39852d24acf76cf0b3a427f46663efdf

SHA1
92b9730c276c6f2a46e583fc815374c823e6098b

SHA256
191e08dea0ad5ac02e7e84669d9fffa5aa67dc696e36077c5fa20d81c80b6a56

SHA512
e6f0898871b769244818d93117fe3cb82cc8f12bb24d6b3406ffcaa2a26f0b5754246b5c739e9cbcf07cb94aabba2fd934e7054607b4086b2f4c5592607e8385

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\javafx\api-ms-win-core-console-l1-2-0.dll

Filesize
20KB

MD5
f33ec623aa4a2bd4c004d3befe0bdd08

SHA1
79a3c89d842d502f989fb5a3eaeabccb0abae8d2

SHA256
9e04918d9e751dbc56d0251d3ada573381b469a012599554d72aa4affda9658a

SHA512
be24a3cb876d617f8054fd49dd815d89473b053bab175373169a1cb0f016ccd05a718da9a8c29de66690f02bdd60782222928ecd2e24aa5128573e67356e5af2

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\javafx\api-ms-win-core-datetime-l1-1-0.dll

Filesize
20KB

MD5
b71c18f8966cead654800ff402c6520f

SHA1
a6f658ea85ad754cf571f7b67f3360d5417f94bd

SHA256
a94b80a5111aabefb1309609abdd300bb626d861cd8e0938b9735ab711a43c22

SHA512
17867aaa57542c1cd989ca3000f3d93bbb959eb5a69100c70c694bde10db8f8422d3e86e1a5fc0848677e4343c424013cdf496b8bb685f8875c3330271242369

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\jimage.dll

Filesize
22KB

MD5
17c42f5d277cfd65700fe4b11f226c2a

SHA1
0838147b96592a3d2a75dfab13e45a5f7513fd3f

SHA256
dfefb8b1e3861bd201bf248d7b93531b4e5bee90b85f0273f51e971a8b433374

SHA512
a6863e4f03bdd5c65a42da5ad2148a51547fd3bf3c8c08038adc9bfd0ef26ab1138f81f0d1c35a5e4a9dcafb9f067ae84ef95eff74e39453e268f4b091e9e162

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\jli.dll

Filesize
77KB

MD5
c64d92ea192ac95a979a263d1c2cb3d8

SHA1
2fa0c68f39e80845c747f684895170639fcb6c77

SHA256
b6dd40afc23000b472ae143069e0595b5e3133cb7036eba1ef51278460dbe8e8

SHA512
1868bddea0f8e4587fc3c934a54efedf69ecc977f814cdf3caf261a1edeebdef2c07dbff6afa46b5a667b01e96a624e23912f7e4bf5806a9984557970f91aeef

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\jsvml.dll

Filesize
58KB

MD5
f745269f92c1c1514d5f2bec6498feb9

SHA1
649be0236b83d4520fc77377aad3efa6a8632715

SHA256
f410e4172e52bdee54c289660186b1541cf5da4f30ba477fea1bd0634dab5ee7

SHA512
f1e5e8edd68c5a53280cadb148e317718016ee4265f205132a41c4fed07dde3467720a34699a7bbc4738e55ef2d6594d5dac34a2f4b286f083021da13305f560

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\msvcp140.dll

Filesize
128KB

MD5
7f25874aa87d3ea6995157fffed62a6e

SHA1
75267d0249041930bf5f19f5ce2c8b3da78eb0da

SHA256
28e726ea22ae9b6b8fe578d640ade0789c3c9aaeda477ee59d1d2cd8ea152973

SHA512
4ce4b21fa4cf2231b12e4232f39e7769e1067f9839e52fb9f20e57b9966369932c9f7ce66116bb10bf79210a60df0efe75320cc85d81a85cd0b8f7ad345b8a75

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\net.dll

Filesize
11KB

MD5
95db29da77be9779a99e9b1d2b287fc7

SHA1
c8d4ffd070464c591cca33d7146adab073f99746

SHA256
1974d2f9eaff50927ea1a47edaf056423e4d4e04af021656088951a6148de861

SHA512
d40383cb53ec2e4eedfcbfef0b498b74aefdd1e102dbac8a7bbaaedbb4a77d84bd96aaaa7cdc69fd3b23e763231b78f96fbd967ca2408f311f3bc78b8b937147

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\nio.dll

Filesize
23KB

MD5
680b806428c793adcd7f012022f437dd

SHA1
13e07daffad0c5f454ba292eb9c7b5c0284013a3

SHA256
b3447fb7d503732cf45f36a9569276c8971236401d29f3f501a98cd2368508b5

SHA512
44f36d0577c5804643495c133e204f6e3ecbf9ead9b9fc8af3ddf88fd201e3b0c01821b9de2dd23c4aaad24a890f512ed7755e279198219738693e5e231dce33

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\server\jvm.dll

Filesize
128KB

MD5
020bf2e1021692a1ca1c10976961fa9b

SHA1
cf59c0e41c631049cb8ee8e32a2823fae98d548e

SHA256
8610519464b7aa3fcc845d7e84a4ff5d3be04fed6b1e1d03a586debe11429790

SHA512
5b3028ce10587068be2864c20e2f2567607b37645219fbac4f94af929ed7ed2dbf909c103569bbb7668f22e3bc8fb55c9d58ced4f6b600a1be1b24513b941905

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\vcruntime140.dll

Filesize
95KB

MD5
7415c1cc63a0c46983e2a32581daefee

SHA1
5f8534d79c84ac45ad09b5a702c8c5c288eae240

SHA256
475ab98b7722e965bd38c8fa6ed23502309582ccf294ff1061cb290c7988f0d1

SHA512
3d4b24061f72c0e957c7b04a0c4098c94c8f1afb4a7e159850b9939c7210d73398be6f27b5ab85073b4e8c999816e7804fef0f6115c39cd061f4aaeb4dcda8cf

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\vcruntime140_1.dll

Filesize
36KB

MD5
fcda37abd3d9e9d8170cd1cd15bf9d3f

SHA1
b23ff3e9aa2287b9c1249a008c0ae06dc8b6fdf2

SHA256
0579d460ea1f7e8a815fa55a8821a5ff489c8097f051765e9beaf25d8d0f27d6

SHA512
de8be61499aaa1504dde8c19666844550c2ea7ef774ecbe26900834b252887da31d4cf4fb51338b16b6a4416de733e519ebf8c375eb03eb425232a6349da2257

Download Submit
\Users\Admin\AppData\Local\WFDownloaderApp\runtime\bin\zip.dll

Filesize
59KB

MD5
d3164ed8b90a6589bc4d388a8219476d

SHA1
ef4f0b8e5d739def8e405af8e2d5eb2dce15dc87

SHA256
2a96913bf2894100c94bb3947bc596cdbf39423c6bb9c70eb658becc0562b267

SHA512
556e95335a8dca2a35946e9f5d66c09288a6889db262b3072dbbd0957b396d630385533498fd3acd3182657ee59cb610b7c29d8b89c14245fea6ddbe47c0d158

Download Submit
memory/1888-1003-0x0000000000400000-0x0000000000516000-memory.dmp

Filesize
1.1MB

Download
memory/1888-908-0x0000000000400000-0x0000000000516000-memory.dmp

Filesize
1.1MB

Download
memory/1888-19-0x00000000003D0000-0x00000000003D1000-memory.dmp

Filesize
4KB

Download
memory/1888-16-0x0000000000400000-0x0000000000516000-memory.dmp

Filesize
1.1MB

Download
memory/1888-14-0x00000000003D0000-0x00000000003D1000-memory.dmp

Filesize
4KB

Download
memory/2844-1010-0x000000000AB70000-0x000000000BB70000-memory.dmp

Filesize
16.0MB

Download
memory/2844-1035-0x0000000000180000-0x000000000018A000-memory.dmp

Filesize
40KB

Download
memory/2844-1048-0x000000000AB70000-0x000000000BB70000-memory.dmp

Filesize
16.0MB

Download
memory/2844-1037-0x000000000AB70000-0x000000000BB70000-memory.dmp

Filesize
16.0MB

Download
memory/2844-1033-0x0000000000180000-0x000000000018A000-memory.dmp

Filesize
40KB

Download
memory/2844-1034-0x0000000000180000-0x000000000018A000-memory.dmp

Filesize
40KB

Download
memory/3036-15-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download
memory/3036-0-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download
memory/3036-1027-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download
memory/3036-2-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download