3ec03e19c13b02605fd575e0cd04f7e350946101a209f58378dd87b963a6714d

Analysis

max time kernel
134s
max time network
165s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
18/01/2024, 00:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

GIGABYTE Control Center_2023_Oct_release_All_Setup_B23102301.exe
Size

708.1MB
MD5

f281789630f263a875a83228f24f592a
SHA1

20f37aac4195888ab4e8aa9e43c1fe180e9f0873
SHA256

3ec03e19c13b02605fd575e0cd04f7e350946101a209f58378dd87b963a6714d
SHA512

b6e51e9130ddbf241fe54c3e7af27e0b53dd7f18a3d04ff86866bf1ab31088c821ac648443a368dc9eb239038d449aabaf36d102ad6367cd86cffe1440509cb8
SSDEEP

12582912:4Ug0zGgCUoBxuDJtpauOKh4xMVRDqzXCKnhOLA8Aqhi/CTtPxME/UvlB4ywo3397:z0gWuDJtIuKoqzJnhOLxAaoCxpMwIBH3

Score

7^/10

discovery persistence

Malware Config

Signatures

Executes dropped EXE 4 IoCs

pid	Process
1584	InstUpd.exe
2076	GBT_RGB_Sync_Control_23.10.27.01.exe
3088	GIGABYTE Control Center_23.10.23.01.exe
3936	GCC.exe

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\GCC = "C:\\Program Files\\GIGABYTE\\Control Center\\GCC.exe"	GIGABYTE Control Center_23.10.23.01.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 58 IoCs

description	ioc	Process
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\Update_Center.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\Gigabyte.IC.Profile.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\SMBCtrl.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\Flash.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\Pattern_But_Usercontrol.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\Color_Setting_Usercontrol.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\CalssMapJson.txt	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\FlashBios.exe	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\GCC.CommonResources.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RGBFI.dll	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Device.ini	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GCC.exe	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Install_info.xml	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Microsoft.Web.WebView2.WinForms.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\HTTP_LIB.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\FileDropLib.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GBT_Comm_Fun.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\uninst.exe	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\EULA\GigabyteEULA-zh-CN.txt	GIGABYTE Control Center_23.10.23.01.exe
File opened for modification	C:\Program Files\GIGABYTE\Control Center\Device.ini	GCC.exe
File created	C:\Program Files\GIGABYTE\Control Center\GvLoader.dll	GIGABYTE Control Center_23.10.23.01.exe
File opened for modification	C:\Program Files\GIGABYTE\Control Center\GIGABYTE Control Center.url	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\WebDevice.ini	GCC.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\GBT_RGB_Sync_Control\RGB_Sync_Pattern.dll	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\usdata1.xml	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GCC.exe.config	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GbtCloudMatrix.exe	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Microsoft.Web.WebView2.Wpf.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Microsoft.Win32.TaskScheduler.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\rgbcfg.xml	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\sp.xml	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\FBIOS.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\Pattern_Args_Usercontrol.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\EULA\GigabyteEULA-zh-TW.txt	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\GBT_RGB_Sync_Control\uninst.exe	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\dmLib.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\SMBCtrl.dll	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Search_Device_Lib.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\YccDrvv3.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\license.txt	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\GBT_Comm_Fun.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Uninstall_Package.exe	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\WindowsFirewallHelper.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\MB.CPNT.dll	GIGABYTE Control Center_23.10.23.01.exe
File opened for modification	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RGBFI.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RgbCommon.dll	GBT_RGB_Sync_Control_23.10.27.01.exe
File opened for modification	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RgbCommon.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\UIEffect.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\ExtLIB_Loader_Lib.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GHidApi.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\sp.xml	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\Update_Center\YccDrvv3.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\Newtonsoft.Json.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Lib\GBT_RGB_Sync_Control\GBT_RGB_Sync_Control.dll	GBT_RGB_Sync_Control_23.10.27.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\GCC_Main_COMM_Fun.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\Microsoft.Web.WebView2.Core.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\runtimes\win-x64\native\WebView2Loader.dll	GIGABYTE Control Center_23.10.23.01.exe
File created	C:\Program Files\GIGABYTE\Control Center\EULA\GigabyteEULA-en-US.txt	GIGABYTE Control Center_23.10.23.01.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Checks SCSI registry key(s) 3 TTPs 32 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Properties\{a45c254e-df1c-4efd-8020-67d146a850e0}\0025	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Mfg	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Driver	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\DeviceDesc	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\FriendlyName	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\HardwareID	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\DeviceDesc	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Driver	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\LocationInformation	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\DeviceDesc	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Driver	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Mfg	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Driver	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\FriendlyName	InstUpd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_DADY&PROD_DADY_DVD-ROM\4&215468A5&0&010000	GCC.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000	GCC.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{a45c254e-df1c-4efd-8020-67d146a850e0}\0025	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID	InstUpd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{a45c254e-df1c-4efd-8020-67d146a850e0}\0025	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Mfg	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\LocationInformation	GCC.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\LocationInformation	InstUpd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\Properties\{a45c254e-df1c-4efd-8020-67d146a850e0}\0025	InstUpd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000	InstUpd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_DADY&PROD_DADY_DVD-ROM\4&215468A5&0&010000	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\LocationInformation	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Mfg	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\DeviceDesc	InstUpd.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_DADY_DVD-ROM\4&215468a5&0&010000\HardwareID	GCC.exe

Runs net.exe

Suspicious behavior: EnumeratesProcesses 5 IoCs

pid	Process
1584	InstUpd.exe
1584	InstUpd.exe
1584	InstUpd.exe
1584	InstUpd.exe
3936	GCC.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: SeDebugPrivilege	1584	InstUpd.exe
Token: SeDebugPrivilege	3936	GCC.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
3936	GCC.exe

Suspicious use of SendNotifyMessage 1 IoCs

pid	Process
3936	GCC.exe

Suspicious use of WriteProcessMemory 14 IoCs

description	pid	Process	procid_target
PID 3812 wrote to memory of 1584	3812	GIGABYTE Control Center_2023_Oct_release_All_Setup_B23102301.exe	96
PID 3812 wrote to memory of 1584	3812	GIGABYTE Control Center_2023_Oct_release_All_Setup_B23102301.exe	96
PID 1584 wrote to memory of 2076	1584	InstUpd.exe	97
PID 1584 wrote to memory of 2076	1584	InstUpd.exe	97
PID 1584 wrote to memory of 2076	1584	InstUpd.exe	97
PID 1584 wrote to memory of 3088	1584	InstUpd.exe	98
PID 1584 wrote to memory of 3088	1584	InstUpd.exe	98
PID 1584 wrote to memory of 3088	1584	InstUpd.exe	98
PID 1584 wrote to memory of 3936	1584	InstUpd.exe	99
PID 1584 wrote to memory of 3936	1584	InstUpd.exe	99
PID 3936 wrote to memory of 976	3936	GCC.exe	102
PID 3936 wrote to memory of 976	3936	GCC.exe	102
PID 976 wrote to memory of 3700	976	net.exe	103
PID 976 wrote to memory of 3700	976	net.exe	103

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Users\Admin\AppData\Local\Temp\GIGABYTE Control Center_2023_Oct_release_All_Setup_B23102301.exe
"C:\Users\Admin\AppData\Local\Temp\GIGABYTE Control Center_2023_Oct_release_All_Setup_B23102301.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:3812
- C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\InstUpd.exe
  .\InstUpd.exe
  2⤵
  - Executes dropped EXE
  - Checks SCSI registry key(s)
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of WriteProcessMemory
  PID:1584
- - C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GBT_RGB_Sync_Control_23.10.27.01.exe
    "C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GBT_RGB_Sync_Control_23.10.27.01.exe" /S
    3⤵
    - Executes dropped EXE
    - Drops file in Program Files directory
    PID:2076
- - C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GIGABYTE Control Center_23.10.23.01.exe
    "C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GIGABYTE Control Center_23.10.23.01.exe" /S
    3⤵
    - Executes dropped EXE
    - Adds Run key to start application
    - Drops file in Program Files directory
    PID:3088
- - C:\Program Files\GIGABYTE\Control Center\GCC.exe
    "C:\Program Files\GIGABYTE\Control Center\GCC.exe" -u
    3⤵
    - Executes dropped EXE
    - Drops file in Program Files directory
    - Checks SCSI registry key(s)
    - Suspicious behavior: EnumeratesProcesses
    - Suspicious use of AdjustPrivilegeToken
    - Suspicious use of FindShellTrayWindow
    - Suspicious use of SendNotifyMessage
    - Suspicious use of WriteProcessMemory
    PID:3936
  - - C:\Windows\SYSTEM32\net.exe
      "net.exe" user
      4⤵
      Suspicious use of WriteProcessMemory
      PID:976
    - - C:\Windows\system32\net1.exe
        
        C:\Windows\system32\net1 user
        5⤵
        
        PID:3700

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\GIGABYTE\Control Center\EULA\GigabyteEULA-en-US.txt

Filesize
11KB

MD5
303bd25a778d990c3943251928b33b90

SHA1
1d98716e52ce8f9dae6030dad1282145b0d1d45f

SHA256
89ed6b7c61d2a142da98c04cd997bd2d7b83c6d4f2d00637b530525c3f0f19ee

SHA512
5f2248eb3f36b85ebbdbe6aa2ca473a6807986c3e0ca7fa46b74735f7aabeb8f869c50ac75a7ad32351b09b277fda5d4b417aa077b742826c7ce44fddfba157f

Download Submit
C:\Program Files\GIGABYTE\Control Center\ExtLIB_Loader_Lib.dll

Filesize
37KB

MD5
b7d743cbe1888c426d7dc09be70fb415

SHA1
875473bbedd1ee1bbf1f808718092419b474b0bb

SHA256
cdfc9f15dcf40075ee91119380ec228f01ebd80498201f55421b3625b481c1ad

SHA512
95df421f1e436920efaaa754fac8ba78a1fde8357eb161d1486f5e4b61773cb773cac74dda1e8137f168eeedd344dbf4da1a2de6ade4125f8023c9119f7f13b0

Download Submit
C:\Program Files\GIGABYTE\Control Center\FileDropLib.dll

Filesize
125KB

MD5
e9f855a14044cb0c2111233740f4776e

SHA1
0f7109fcf9b62641e017ba56df469b5a85e30f19

SHA256
dc86e3a9cc21a129c74c931d7cfed959bd8c5b7cdcdcb1c454bca24adb3eace3

SHA512
90e92c1882536079e0e8f588fae2fbb5e5c870ca0b7b7b961be54e4019e17a2d176d5d10d1e3e3a4bd714322358b0c8330896e7bea01f5b369e796a07f744d0b

Download Submit
C:\Program Files\GIGABYTE\Control Center\GBT_Comm_Fun.dll

Filesize
28KB

MD5
7807242e2ed7c4c8e22b7446843ae71e

SHA1
326548346d14f3f3e48aa9ee446cb38f93460135

SHA256
3b2bc8a0cd0c1ad2005e329041cf7dea271580c81e15c11bd57a3fc92c8cbb8d

SHA512
17c224097c5f1a6c075531a316fe8ff665154e8669f9ca769f0d378c11b874b052bf8899932f3d929de1296ce238a8b3168410f282ab4d4655edc1b3e6c56bc2

Download Submit
C:\Program Files\GIGABYTE\Control Center\GCC.exe

Filesize
142KB

MD5
7ecc4eb05f22830e9d1e69b823329a14

SHA1
b1358b1cf097ed7d681c9c0b1c892a046da34306

SHA256
d00872155ba1d0a0d9b355b76563dcddc89492b6a792c8ae81227aaf6fc46e11

SHA512
2eb7f32ef227e4aed178cbfe3b177a96df36fd432b7075aac236bab706b740c163dc846d92616a06c2278e338d11cae9f1e5bdb9975a1d5b5a1c52e56ab7348e

Download Submit
C:\Program Files\GIGABYTE\Control Center\GCC.exe

Filesize
437KB

MD5
27e6b303c5b6f5d352ba705d83a32f60

SHA1
66f2f0ea011ad8550701f9bad6929daf84332c8e

SHA256
bb0094cc014c39284231d45dece9d94cbcbd6b73478471301f2dd2b999dd6488

SHA512
8b08a3be8232b49e046700fbe19652e6a8ce61d50529c245ef0420ad14b249a9f099fd95e74256eb0cca976b526f40ad60936f4224e6674629595caedae764e4

Download Submit
C:\Program Files\GIGABYTE\Control Center\GCC.exe

Filesize
206KB

MD5
4e75d74f5fd26f443b3cc0f7ed8e1920

SHA1
998c78038c3b4c36a7942d2ba463eec7510de29b

SHA256
bf3557bc9672586fc9bf25efbdcf320c5b718d7fe9dfaddf0c67157fcfc74a79

SHA512
647b5e7f46c3950cca187cd15ed2400ea9199bf0297a246d13d1cb4ec2efb98bb0d3ee8df3f5d0d611a0efd2f511b9452aeef090d13835e6481f0717bd356a00

Download Submit
C:\Program Files\GIGABYTE\Control Center\GCC.exe.config

Filesize
547B

MD5
7b30cdcb95f60ae4be2c8edbf54d2d83

SHA1
2bad8ca8b41576ed29395cf5659e6f3994028f7b

SHA256
402af8214615de549ca42d3c44f74f0c030cb9e66fe3cdcd53f2af06f7c7af04

SHA512
ee4850cc46ff2318b71f6dd35ff4ce77b33bc40081b00903c2dc5634353f59aeb6301805ab401002e052559fe801236967ad1d2639483f8cffb845cb1aed839a

Download Submit
C:\Program Files\GIGABYTE\Control Center\GCC_Main_COMM_Fun.dll

Filesize
38KB

MD5
5c56f23948de89f42110c80bf9fb3bff

SHA1
20e7563fd4aeaa1aa0789fb54e0ad744350d6200

SHA256
e53ff542878e2e3c615eaa27c2c86cf67dd0ac92a0443e48d1c0d28b7e2e15ec

SHA512
82b7dd26784b101fa8727bb039885f09d2877aa03bf7f0429695f0cb88cc91cd63e67926773f0281bd6c12542c699fecf06bbff4c73d24690250d7e1df04a213

Download Submit
C:\Program Files\GIGABYTE\Control Center\GvLoader.dll

Filesize
22KB

MD5
cfa324a194c9601bd34a21ec69d05a60

SHA1
0f56270c0acb87b2f2968a21af33fe4b471cb7c3

SHA256
635cf6851fa28f28cd4d6999e6c300640640293a04a5e6d537fcca4dbeefd13f

SHA512
57b4ffa95f1d2b564528580e5d2fe2589ff79c4fc220c309e9ad45bf5d2308e8c19f23eff0a5d0132f3fe3488747c35525ecfecb052a29ff863d76e5ce776cc1

Download Submit
C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\GCC.CommonResources.dll

Filesize
211KB

MD5
e17bd9fe91e69fca966206dbf873dd6f

SHA1
f1565e4799d67e25790b9a1194db1fd1915f412e

SHA256
65535900724fb6d878c75f075eb7130e9fa6c52fd9799e3ea2912631760cb751

SHA512
4323c54b707c9cc476e15b4d4c132566e472b22b414e91070541af8170ded0804a81b708f698cac62e179a8de838cd286807d492ec1fd7bfd02a42ca48bedef4

Download Submit
C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RGBFI.dll

Filesize
20KB

MD5
d275d23a6e0c7db400c4772aa8f12a4f

SHA1
5c420eafcf60285f633fdbf5033bbf4e843529c6

SHA256
20dc58b32028bd6e0b8374412260f6ff7ca6a8dda23c00a73e8b1be850d24976

SHA512
dafcb5457fdb03f796b10116a685e0e1c602fdb48234ee7bdf380f66d252481ea3a6619d40e8529111129b6c3a3e5560c80ba71fbb51ec3be808a2f3274006cd

Download Submit
C:\Program Files\GIGABYTE\Control Center\Lib\COMMDLL\RgbCommon.dll

Filesize
31KB

MD5
99cfe72a270e3135b556ca80b6ee46c3

SHA1
468d7bf557e1238a3c12fccfcd585c42e43b3dd5

SHA256
276c4b615fde8a40ef7cb5b4c81799f76bf61f4bc19c286addaef023f326d1cf

SHA512
fda2e4ce970cde379d88e3dd27c3eaeefa21692370e8953e9559c564fc68eeaa1c3332ae214e1d1ae390ebf94b38b5e0186286df4e1da639876493012cbdca20

Download Submit
C:\Program Files\GIGABYTE\Control Center\Lib\CalssMapJson.txt

Filesize
8KB

MD5
cd3f36a13087e7e66e4cb40cd7701fb8

SHA1
b9f55d53109f2cbc1c745307fe09b6e72875c389

SHA256
1e4b5d9933679c262d728e188c5b8c0965a7683f3c589c77a1a03de87225e3b6

SHA512
de5e4112ac390fd4d0fd31fedeef9b960eca0178053b95f4f0d2b017aa49208578b1774a75fc6a1a760cb9e6b823c6a93c39ff0a72e057a4fc56db9aaf88e743

Download Submit
C:\Program Files\GIGABYTE\Control Center\Microsoft.Win32.TaskScheduler.dll

Filesize
20KB

MD5
4521d7256ebb971089e55db170ebc8f7

SHA1
ff2893d7385b57b335f5444dd115cfabf755aead

SHA256
e2ba3e60da4b1f4256d7cd733947f36e18344a6de53c6ee525bdec8287b13c5b

SHA512
b0bb3fabc19b536d708888365f49f2a705c75be2c9b9a64230ccdc017c8d196c5b60df6b3c5dea96eb74a9c152402e2010d94c1d3b5c9d33abf954effb921ebc

Download Submit
C:\Program Files\GIGABYTE\Control Center\Search_Device_Lib.dll

Filesize
38KB

MD5
c64279435e7d7c9dfa62c1eda1aacd4a

SHA1
3ce73c3d431da30a2fc221823ac76406aea893e5

SHA256
979d25df4095d1fd4e04eff944f857b7b4bb2696605523e5ea88df522fb679c4

SHA512
875306aae4658205725b07de7aebf287a61b8568689f2b64f223c0d978636112b41352a6d0247859809cff286af9081d08a47fe6e8de0e36d942fa946b8be705

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\CalssMapJson.txt

Filesize
7KB

MD5
827a861dd8d6d21494cc9472c6da13f4

SHA1
c198d3aa09c95c72a64222d30e3f65377941a40d

SHA256
65d67cd3a8f6e0a93fd36e7cb89a6c9eb87f007db2ca41b7925507d84d24b97c

SHA512
cd3d191cba94d9b664d4a3f10dea7a154bc59038b72f2fc29c464f01436c1ee628c56d9411a46d78b93063811cf72c7a988376fad2f78d83392fc484d00d54a7

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\ExtLIB_Loader_Lib.dll

Filesize
37KB

MD5
54b72210b4a8997e3ee2a0db22640672

SHA1
9a401e72fe5df405288aedaf1df22b26e35814db

SHA256
32cc3c75f185942dff71d8dc5da773e0a693bdbbe28900b17d988d2cf0c714c1

SHA512
64acce922276c5376f6a17afe72ef952aa2f9816c1104706d3ee2a2584dee99ebe62fefe8f033c6ebd39254c67a77cc59a5d69cbcc2c2a5af8007968ae7a1d67

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GBT_Comm_Fun.dll

Filesize
28KB

MD5
0297b036684b0a26c1c0db98c679e229

SHA1
b4298a817fb0e8abbe29f7c025a8be82c5fd7b0b

SHA256
7527b7e3316ad7319926ee647e67cdcf81ee791027174d76c235991fa5089532

SHA512
cf6d3805852bd279440c9032dac9ee650debfb7834a68b6d51c3606cadf384655403fd1572e15570675a50be4009460bf97dc0b134ca8e092f8ecb2c64602731

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GBT_RGB_Sync_Control_23.10.27.01.exe

Filesize
694KB

MD5
a787f19083fa68768e36d311cd17e913

SHA1
afef79d7175e8421afb514943b78cc9b815cd5b2

SHA256
31bd48fb2b1443260336b745d534e9951b0ec9645dfd0fb2f665dfbe487223c1

SHA512
dbc85aa64d0da056940a98aa776770d4ba7a79352fdc9b3f37ec20f2099263630910feeeabf6053904b22d58d071a27c87a24388b9ec36825c40225b6ac3b31a

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GBT_RGB_Sync_Control_23.10.27.01.exe

Filesize
787KB

MD5
9ad21bf110ab18f29adfd8551cf2f496

SHA1
3fd417ba2c9d525504981cd7c69c028e7e19c4aa

SHA256
54ce9ea751b6b0f113bc366342dfc03b28cbc4e26ef056b9970b223ae7621883

SHA512
97385f57b18c04f3a5e0466449c20a4e3a89365900c45a6a99abecabc564aa34c344cc17cd72ff3305d11df31571957bf49a09b669063d90aede53df9b873772

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GCC_Main_COMM_Fun.dll

Filesize
33KB

MD5
f224574b7d28f04864516ba5b165ae51

SHA1
24f56952599b1011157e585a7b3efc09cfb44632

SHA256
790440951c8ea067160121b86a47d585f506840ce9131eed9e392a4f36021caa

SHA512
29f7e6624ce14e44c876e5f3ea122b3a690f876656a5df2f2e24dd757a00f59f5316c49aa370827c17f6fe5f6b7f41177b99bd70febeddc86893dbdc9acb9721

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GIGABYTE Control Center_23.10.23.01.exe

Filesize
590KB

MD5
7e3057e57ac9754b00509c21e5c51b00

SHA1
cf0df197adc183fb952ce1c4fe3f2ce5b9f1ce8c

SHA256
af76a537edaee1d1ca68c5e00cace6bd65fb9622bf1e036e496945ebe2d0d577

SHA512
eac9246e1882fe584b9297e4337e4787abdc3653e6b98abae808440ad2da9f40e25466b59c9b83c724d25b76cd8f8c7aa6afdad0fa02b66d2a7d63306b70e671

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GIGABYTE Control Center_23.10.23.01.exe

Filesize
706KB

MD5
abcd6c46a93e5f805da17e96ee93658d

SHA1
a7a413e0dce89079993450cf05d085dbd7b822be

SHA256
7727c2f6ff882ed5bb7d5672173d988fc9ea76f29c23c52d0bf64d5a473eea2d

SHA512
6d0778f4b3e03df7a18920abe9dc5f8979df24bd42989880dbf959102d71c010b9133e5b57336bac83f5bbaeb4ddd6332085c94f1fd1d3556ed73e208a978bd1

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\GvLoader.dll

Filesize
28KB

MD5
447a69e915a1183fd77662954cc32161

SHA1
82799153c4bea0a8927d6a1151ef6beb0bd59c70

SHA256
1d8363281f08c4c2142d0fedd599028229030383a8648f486a91bbaa57c179dc

SHA512
468d31e87790dfbc24febed131af1f5908c4d498443506e520cfe53f3f8581930f407721f9abf09ce1a78baf09dd2bba3921d0611971ce2d29c2f02f427b9b89

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\InstUpd.exe

Filesize
985KB

MD5
367e4282460460305d20d41bbfd12c7f

SHA1
17e73607305da0cb5338d6344bf2ddb26207baea

SHA256
d424e86108cae92119caa54fc91d7a00e833d5ab35355eb6b6e1409e349a2b60

SHA512
603801247cc19fab286e2899d10de260be64c008fda48c20c515a1c492d90a13c50191d92a6448e4c8db16c8e49e6688242a56e0a3180abd2b1a4c6bf0206927

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\InstUpd.exe

Filesize
494KB

MD5
f32da1a5786593c2b4737d2e4ddab63b

SHA1
23abc126be8aa7364a3890b82c828fc7724debf7

SHA256
9deb7ec8cf6c45f5547456748502de17c7f2d67a0af9498dab44ea85460c1e1e

SHA512
8cf4154d231736298874b5cfcc90ffd3f186c1d65c02adbae72939209d3e06c69124430ec7e3a39d971eddd6c16586510added1b6d894fc591e87157f38fe92d

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\Install_info.xml

Filesize
2KB

MD5
0a7da338dcd4304d7514a1f6ce3d201c

SHA1
7f6acb9c8aaf80b4286b6a061d3c2ef2ae4d5d2e

SHA256
47f48a7f82b722812f33de27b93804c2e631ced36ee4f83c006b2442260beff7

SHA512
a8ebaf93d23ad3e3a03b780a37190b3f7159831c726d5c7a6365b28b68fefbafec19bd780a6af089d15f119635935b2fa162d83a3d2d84e5f0a539e7b504d18b

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\Search_Device_Lib.dll

Filesize
38KB

MD5
0a806f25521f38b193f552d892c0ba1b

SHA1
e837dcf9439656a29c04b3360a8b023219d4cee5

SHA256
32c650ecfedf2deba0c7cd9055b93d31a5443038e9e5f17e2502b6eebf17891c

SHA512
11f9bc79845052f0ff7b64e2bfe990cee6d30dc4db349c1ad7b43badcb4f8dd4438d3a33c42993a2d57a06b65f96a3aa7383a3cd2d917e90178a25f7ac41edd7

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\WebDevice.ini

Filesize
57KB

MD5
8f56079a4bda730492e1674114f63f05

SHA1
bc2d925aa7340856a8aa9c203dbad243881bf135

SHA256
f878c9af218f9e39a4986429e231bf270a1dacf27e94c882f13dc2d8bfa65210

SHA512
3e20061a42c6dddb8abb5f274d7a0dd01f7f648308b2953a50d410b57b60317b3bf163117b305ec55d745183874d6b8c365ad37a162c44f42cc1bf646772cf14

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\WindowsFirewallHelper.dll

Filesize
51KB

MD5
62ae33bbdeea4de5b757db232e100227

SHA1
44604fbbf4d3c78de1b1c115818f211953aa2328

SHA256
bd9d9d3a712c835ee5c59909a651f5416367b39136f632b2e0c655cac08288ae

SHA512
4d8dea8e668e31a01b4ff010f2f772c2ea16e5f42f1be9cdeaf700f616375013ef54319c5c11fd565138529842daf1f94bac512e5395e351f662b7ac62c35f05

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS9CEC.tmp\ver2.ini

Filesize
1KB

MD5
0c425f5a4d6183f5e90ac7eb0d61ff38

SHA1
0beeec2815765e26d39ced394838e22bb8f7badb

SHA256
83b67e7815a304ca7843e2a8e8e337dad9513568a272b49c93e02459fbe91796

SHA512
6d68e96482a819d4fb524a25348dc54c5ba8547c1fa0492b6bfb1e7da00b6056884f663ae0f72875d2432a7c1d14567885312938d8ebc1aa855d4caf391e7fe9

Download Submit
memory/1584-85-0x00000200F7AF0000-0x00000200F7B2C000-memory.dmp

Filesize
240KB

Download
memory/1584-69-0x00000200EEB30000-0x00000200EEC28000-memory.dmp

Filesize
992KB

Download
memory/1584-90-0x00000200F7AC0000-0x00000200F7ACE000-memory.dmp

Filesize
56KB

Download
memory/1584-75-0x00000200F6910000-0x00000200F691E000-memory.dmp

Filesize
56KB

Download
memory/1584-80-0x00000200F6980000-0x00000200F698E000-memory.dmp

Filesize
56KB

Download
memory/1584-88-0x00000200F7AB0000-0x00000200F7ABE000-memory.dmp

Filesize
56KB

Download
memory/1584-196-0x00007FFB69FA0000-0x00007FFB6AA61000-memory.dmp

Filesize
10.8MB

Download
memory/1584-92-0x00000200F7B40000-0x00000200F7B4A000-memory.dmp

Filesize
40KB

Download
memory/1584-70-0x00007FFB69FA0000-0x00007FFB6AA61000-memory.dmp

Filesize
10.8MB

Download
memory/1584-71-0x00000200F2A70000-0x00000200F2A80000-memory.dmp

Filesize
64KB

Download
memory/1584-78-0x00000200F77C0000-0x00000200F77F8000-memory.dmp

Filesize
224KB

Download
memory/1584-72-0x00000200F2A70000-0x00000200F2A80000-memory.dmp

Filesize
64KB

Download
memory/1584-84-0x00000200F7A90000-0x00000200F7AA2000-memory.dmp

Filesize
72KB

Download
memory/1584-74-0x00000200F6940000-0x00000200F6978000-memory.dmp

Filesize
224KB

Download
memory/1584-82-0x00000200F6990000-0x00000200F699C000-memory.dmp

Filesize
48KB

Download
memory/1584-73-0x00000200F2A70000-0x00000200F2A80000-memory.dmp

Filesize
64KB

Download
memory/3936-245-0x000001A5AD530000-0x000001A5AD53E000-memory.dmp

Filesize
56KB

Download
memory/3936-240-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-251-0x000001A5C9DF0000-0x000001A5C9E5E000-memory.dmp

Filesize
440KB

Download
memory/3936-252-0x000001A5AD570000-0x000001A5AD578000-memory.dmp

Filesize
32KB

Download
memory/3936-241-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-254-0x000001A5CA0D0000-0x000001A5CA33C000-memory.dmp

Filesize
2.4MB

Download
memory/3936-247-0x000001A5AD540000-0x000001A5AD54C000-memory.dmp

Filesize
48KB

Download
memory/3936-256-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-255-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-258-0x000001A5CCA70000-0x000001A5CCAC8000-memory.dmp

Filesize
352KB

Download
memory/3936-249-0x000001A5AD550000-0x000001A5AD55E000-memory.dmp

Filesize
56KB

Download
memory/3936-243-0x000001A5AD510000-0x000001A5AD51E000-memory.dmp

Filesize
56KB

Download
memory/3936-239-0x000001A5AAE40000-0x000001A5ACFDA000-memory.dmp

Filesize
33.6MB

Download
memory/3936-197-0x00007FFB69FA0000-0x00007FFB6AA61000-memory.dmp

Filesize
10.8MB

Download
memory/3936-286-0x00007FFB69FA0000-0x00007FFB6AA61000-memory.dmp

Filesize
10.8MB

Download
memory/3936-288-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-287-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-290-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download
memory/3936-289-0x000001A5AD520000-0x000001A5AD530000-memory.dmp

Filesize
64KB

Download