fantom | f4234a501edcd30d3bc15c983692c9450383b73bdd310059405c5e3a43cc730b

Analysis

max time kernel
150s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
01-03-2024 09:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Trojan-Ransom.MSIL.Tear.exe
Size

261KB
MD5

7d80230df68ccba871815d68f016c282
SHA1

e10874c6108a26ceedfc84f50881824462b5b6b6
SHA256

f4234a501edcd30d3bc15c983692c9450383b73bdd310059405c5e3a43cc730b
SHA512

64d02b3e7ed82a64aaac1f74c34d6b6e6feaac665ca9c08911b93eddcec66595687024ec576e74ea09a1193ace3923969c75de8733859835fef45335cf265540
SSDEEP

3072:vDKW1LgppLRHMY0TBfJvjcTp5XxG8pt+oSOpE22obq+NYgvPuCEbMBWJxLRiUgV:vDKW1Lgbdl0TBBvjc/M8n35nYgvKjdzi

Score

10^/10

fantom evasion ransomware

Malware Config

Extracted

Path

C:\Program Files\7-Zip\Lang\DECRYPT_YOUR_FILES.HTML

Ransom Note

<html> <head> <style> body{ background-color: #3366CC; } h1 { background-color: RGB(249, 201, 16); } p { background-color: maroon; color: white; } </style> </head> <body> <center> <h1><b> Attention ! All your files </b> have been encrypted. </h1></br> <p> Due encrypting was used algoritm RSA-4096 and AES-256, used for protection military secrets.</br> That means > RESTORE YOU DATA POSIBLE ONLY BUYING decryption passwords from us.</br> Getting a decryption of your files is - SIMPLY task.</br></br> That all what you need:</br> 1. Sent Your ID_KEY on mailbox [email protected] or [email protected] </br> 2. For test, decrypt 2 small files, to be sure that we can decrypt you files.</br> 3. Pay our services. </br> 4. GET software with passwords for decrypt you files.</br> 5. Make measures to prevent this type situations again.</br></br> IMPORTANT(1)</br> Do not try restore files without our help, this is useless, and can destroy you data permanetly.</br></br> IMPORTANT(2) </br> We Cant hold you decryption passwords forever. </br>ALL DECRYPTION PASSWORDS, for what wasn`t we receive reward, will destroy after week of moment of encryption. </p> <p> Your ID_KEY: <br> </p> <table width="1024" border="0"> <tbody> <tr> <td><p>PM0H+GJwaU+bk1N8wkeW1lZPQZ4PY0ynArQ9MvNvzVFOrgZXSqLbGsfsdb5JOt/9Q5l8/WtRWs3RHV4uY+/VQVnNB9CMAHX7nEPVy5leSG0ExdhF9Ok1fLWTBAXU3yUKNUE3YKd71mFL9JXJYnGNdjJN7ZRDubw/Nk3YGD7ANm1Enwgu4es7tXkuwwRo6GpUcTus/Jz64eHP+r0SWOoq+h5dkFrcwmuJXZtH73EALZE7CRl90TlUkBW+9+1+ki2mblFTuCGt0VsXeDS7CwJgZul0lS0Ad3KWOTcMhR9qCOZfXjZoUkxiTU6AoHbkiqe3MUHY0p5k4aylcHi/wLPV3A==ZW4tVVM=</p></td> </tr> </tbody> </table> </center></html></body>

Emails

[email protected]

Signatures

Fantom
Ransomware which hides encryption process behind fake Windows Update screen.
ransomware fantom
Renames multiple (1020) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware
Disables Task Manager via registry modification
evasion

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-2727153400-192325109-1870347593-1000\Control Panel\International\Geo\Nation	Trojan-Ransom.MSIL.Tear.exe

Executes dropped EXE 1 IoCs

pid	Process
3872	WindowsUpdate.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.30251.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-20_altform-unplated_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_6.1908.2042.0_x64__8wekyb3d8bbwe\Common.View.UWP\Strings\nl-NL\View3d\3DViewerProductDescription-universal.xml	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\lib\rt.jar	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderSmallTile.contrast-white_scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\169.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\39.jpg	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\Assets\Logos\Square44x44\PaintAppList.targetsize-32_altform-unplated.png	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\7-Zip\Lang\ms.txt	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\7-Zip\Lang\uk.txt	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\keypad\ea.xml	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Internet Explorer\ja-JP\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\contrast-white\SmallTile.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11910.1002.5.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\LibrarySquare150x150Logo.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_48.49.31001.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubSmallTile.scale-125_contrast-white.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-black\BadgeLogo.scale-100_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Microsoft Office\root\Office16\MSIPC\hu\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STRTEDGE\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Windows Media Player\fr-FR\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Windows Media Player\Visualizations\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Shell\Themes\Glyphs\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-black\LargeTile.scale-400_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.6.73.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Wide310x150Logo.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\Assets\GetStartedSplash.scale-100_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppList.targetsize-32_contrast-white.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Java\jdk-1.8\legal\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-60.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\VideoLAN\VLC\plugins\lua\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-black\SmallTile.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\Resources\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\images\FileSway32x32.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\ro-RO\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\dialogs\error_window.html	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\9.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-16_contrast-white.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MixedReality.Portal_2000.19081.1301.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MixedReality.Portal_2000.19081.1301.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\Assets\Dial\ApplySticker.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe\Win10\MicrosoftSolitaireAppList.targetsize-256_altform-unplated.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.6.73.0_x64__8wekyb3d8bbwe\Assets\Square44x44Logo.targetsize-32_altform-lightunplated.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\HWRCustomization\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\Common Files\microsoft shared\MSInfo\fr-FR\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\OneNoteLogoSmall.contrast-black_scale-140.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.30251.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-36_contrast-white.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_6.1908.2042.0_x64__8wekyb3d8bbwe\Common.View.UWP\Strings\da-DK\View3d\3DViewerProductDescription-universal.xml	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\OneNoteLogo.contrast-white_scale-80.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2018.826.98.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraLargeTile.contrast-black_scale-200.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe\AppxManifest.xml	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\Icons_Icon_Wind_sm.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\VideoLAN\VLC\locale\hu\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.DesktopAppInstaller_1.0.30251.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-white\MedTile.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.YourPhone_0.19051.7.0_neutral_split.scale-125_8wekyb3d8bbwe\DECRYPT_YOUR_FILES.HTML	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Checkmark.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.30251.0_x64__8wekyb3d8bbwe\Assets\AppPackageStoreLogo.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.30251.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageSplashScreen.scale-150_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe
File opened for modification	C:\Program Files\7-Zip\History.txt	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\Assets\Logos\Square44x44\PaintAppList.targetsize-256.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.DesktopAppInstaller_1.0.30251.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-white\AppPackageMedTile.scale-100_contrast-white.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\contrast-black\LargeTile.scale-125.png	Trojan-Ransom.MSIL.Tear.exe
File created	C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppList.targetsize-32_altform-unplated_contrast-black.png	Trojan-Ransom.MSIL.Tear.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious behavior: EnumeratesProcesses 1 IoCs

pid	Process
952	Trojan-Ransom.MSIL.Tear.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	952	Trojan-Ransom.MSIL.Tear.exe

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 952 wrote to memory of 3872	952	Trojan-Ransom.MSIL.Tear.exe	95
PID 952 wrote to memory of 3872	952	Trojan-Ransom.MSIL.Tear.exe	95

C:\Users\Admin\AppData\Local\Temp\Trojan-Ransom.MSIL.Tear.exe
"C:\Users\Admin\AppData\Local\Temp\Trojan-Ransom.MSIL.Tear.exe"
1⤵
- Checks computer location settings
- Drops file in Program Files directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
PID:952
- C:\Users\Admin\AppData\Local\Temp\WindowsUpdate.exe
  "C:\Users\Admin\AppData\Local\Temp\WindowsUpdate.exe"
  2⤵
  - Executes dropped EXE
  PID:3872

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\7-Zip\Lang\DECRYPT_YOUR_FILES.HTML

Filesize
1KB

MD5
5cad7b0936e1ab729db0e9ee0a8a2c34

SHA1
39c569ed619189bac589344b53398424b6fffa2d

SHA256
5bdd98551bfb72aa6545e2466b5ac6e5848f564b9173ebbaea9adc92ba3bdcec

SHA512
42ad32ec35def218ed014beefc04e7d3493a46a3522b2cbb2e479c7e57c77b72c01986a5049c9884591c7ed973dce2e5c19c0f56a7d97566c7e3720c58d5fae2

Download Submit
C:\Program Files\Java\jdk-1.8\jre\lib\images\cursors\win32_LinkNoDrop32x32.gif

Filesize
160B

MD5
8c9d81109593a3665db6609ed672884e

SHA1
4cddef702cdb3f6f9fc81c42ab58e60cc42f9be3

SHA256
3795aff4b614e65521db56c8bfe152657880fc35340f13125f46d8420e4473ee

SHA512
9fd170b5b6dfed81abca7b1b29f1306910acf950fd8f542c3689c4279834e157a2abc6940740a4e0714487b6b66484220d476ef1484a6475776acf5eb01e5a39

Download Submit
C:\Program Files\Java\jre-1.8\THIRDPARTYLICENSEREADME-JAVAFX.txt

Filesize
192B

MD5
a9c134f22bd305289bd77fe1531e1c54

SHA1
39d38939357b414a92d012f3c774d5724e479783

SHA256
6fb1aa35ea1fb65cd16a0f1c6a7671bc8f2bf96aa78ffa9677163239fcfaf717

SHA512
ff4367aba874c1ee1c38238f76db5227ba1a23b086b0303d34de77809f2d7d301b6801286428599c35c84dd144d35ba979ffd6f72226107acba7c7d6e7e821c3

Download Submit
C:\Program Files\Java\jre-1.8\THIRDPARTYLICENSEREADME.txt.fantom

Filesize
192B

MD5
ca982ae6c1db1b793e0ce39414d79bda

SHA1
c4c186e60ca46c84dd4b4b72def3431c5456d1f7

SHA256
02d0d81071c1c3d87f5295b812ddc3049dffdc75d38a820b0657d698907c591d

SHA512
5faf20ff98493dbb9083a254b13bff187f5886369e64da1e913ea0a141bd9d11ceb4e41e36a05cbf7af9f58b8075023a684df866371614720300faab0a205561

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\directshow.md

Filesize
1KB

MD5
9bb68aa6d6eed96ac3fac80726cf7f18

SHA1
3b9d4791c6a629c781f2990d60c24b6eea56677c

SHA256
245c1f8de994abdc39c54bb64221ed0db426ea1d3a5493ca156a25b09242d623

SHA512
ceb9f35b8a1682adb4fec068c3a413240a5247853808f24aa6eb07f0c337e13c363a54cab2980a18454ea670d829d39001a54bd59c98d35a9c6a2927557f9273

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\glib.md

Filesize
31KB

MD5
73d90c8f833a4a196110fd71266963f2

SHA1
867a2e2341a02b58cc27413c623ca2f97fbbcba1

SHA256
5130811923e9235da477aa3fe3b56f9bf7da8bf70928b3369f1605c14e0f8de8

SHA512
f1806b0e14e5be288e39611a372b111043d996a2d65e30541b3257c334a86c876c759fee5493c9ae8b47b347fe957d4192e3d1b12137fa9b4e5961657a2ed1ce

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\gstreamer.md

Filesize
34KB

MD5
6b85491ef5a8e02317d9f4853797f0c4

SHA1
1791cbf7b9edf5b1eb171012bc00d4a44cb0d08e

SHA256
dc5943dcadc64646579eee53a794c0d4312c291f2aa6314a86f5320a61482d05

SHA512
57cf10525afa0f5cad48a4cc320a6f90c987b827032ce14f345e291be6396f4ad9317e8839643af14ce639ce1531f6b4ec63ce2db9d0fe8ae5b7a34cfc6093fe

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\icu_web.md

Filesize
23KB

MD5
f44eaa75aea55e12c17c4aad4686ca46

SHA1
1538e0abaa95f34b408201bd8377a6158ed54193

SHA256
d0c86f63cf6e9d2178414c2782672e9438197982ec02a5f13d2a7a8c94d2381b

SHA512
ebc79cd8633991c9ef148d429a6a32c483187e6f184a152812fce1e59477283ba3d0205bb13fc7b85acf00e6204a4c0aabf921d10ef8e2086d256543a1bb9f59

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\jpeg_fx.md

Filesize
2KB

MD5
2381f5e3d8e3f549148e8ca424eb8888

SHA1
42e5a377b275d0141dbb0155c9158909d5ea6df5

SHA256
e4844527402082714a0fa385edf8f7d66c76cc3886d0684b30747a09b0c70830

SHA512
8726f6832e54d75c634b7c0691773a37f13bceea61c7b97c8b6bf094b41ca19095a11402b9583160dca49d6aad95fab6bb63c0389866c47a6ba0f3dfeded4d71

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libffi.md

Filesize
1KB

MD5
95314777cfe20ead5b16ec8e8abf761b

SHA1
eb048f17582846efe8e5710e71ac79b9e3f51859

SHA256
852ca573d360a344ef54086d54a35a4d2e70ca27f5381012ba67e1fa526e2f56

SHA512
8933d2587ef2b5bc281542524a28097f6335156007cc87408674649089033d369a1cf849c1af56942ded16bcd6f1b4927fc35732f9ceddb3c1098c073101ba11

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libxml2.md

Filesize
3KB

MD5
122ca909bde663a87ca79d7d8bcea0e5

SHA1
865bcd6a8322ec52fbb51f5366e0106fcb69c89b

SHA256
9b8629666a9d200c1fa1ef0af513d91b43f2a9d4bc611fdb91a92e7a90033354

SHA512
92d474b5a8b93158bbd66aa960920977c5c42e6614e0c2519af2048067b59d840f8aafa8dcf869371f7627f646a1396e39723ecababa0ea264164e4c18e9a365

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libxslt.md.fantom

Filesize
2KB

MD5
a7bca01d2f60b8ebaf93a426011c1789

SHA1
7fbe075a5f70dcde4b8f2f4017129d6d6aaaa3ed

SHA256
73f02355dc23073cb5e49959b4da0688bb9eebef76cf5a0e09a1d269499f5522

SHA512
5d4f04d54764a8033d32a9426fcc28a926d109b2f73adbc2c764135001e15669ba055ec30f153bdb4c395210d7b1f9fa8e38917612682e67ecce3860e1b317da

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\mesa3d.md

Filesize
5KB

MD5
f5c71e196d7e76fa9539afd222b820f8

SHA1
50bc203025773eaab21fb413535504748bbd69f6

SHA256
66bc8521b922a1a059f85467f4dc03c19e98eae986847c2dab150d70f838d41b

SHA512
8b03aa6611ae3e9aa075dd583aca8c2d0882a687356cf154e451148f6b5e10b786014b58fd43a2fb0ee23f7651f9aacd326468ed73eb576c28650a51d871c28c

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\public_suffix.md

Filesize
17KB

MD5
46ff729da450e837edd8e587dd99af14

SHA1
9a44fa863a0787d2ebf6d83114af4e9efcd87559

SHA256
7b200294a322540db53ebb5ba2dc77eaad6fa1b501457179a19cb7724631f2e5

SHA512
7e24178f142142b3c1db3ba2d11b6c7dd2734127d34a92597c0db33e463727e9becc3adf0c0fd0092ccf053db44ac6eee1e3afe6e456e29df04d39f134191089

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\webkit.md

Filesize
320KB

MD5
848a64486829d6626742be11b8aee942

SHA1
6e32febd80207c513d8d27100e3bf7129981c0e9

SHA256
d34bc1d63de66ac37b31403f58420362550c4b116680437df011c185fc00fd5e

SHA512
c0a22db8962f61c62adac0a4dd6d365b9430d56919c2a3fe52013ee48e7e2113e2213003f48349422f2a8ff4f8f9863839a6a11719dfdcefe5ef6bcf137b0884

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\asm.md

Filesize
1KB

MD5
ef6f4580e4e21bf3ae2888a944f3d1ae

SHA1
20f20c796b1250c4dd86a019811a5cc8c503210e

SHA256
7c5450ca972fd927314f1457cb11478e457572a458f2d28d2742dba273eee484

SHA512
17a37ec7d55c1f22a62c42402f36982341c1492241ea0e30b230ca4de5108fdee3bb363fa0905fd6ef99e0a0c2b62f335b27a72107a5c86fd59e27ac6966676f

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\bcel.md

Filesize
10KB

MD5
d9191c156cb4e09025103c957dad70ca

SHA1
1045c80b96fd11464cee017d9a4f3491b123817a

SHA256
d77f035d407ff1e770bb34c526264c2242057935bc9a3b0fef3a5140f6a329c5

SHA512
42dd6193030a487161c228a9555cdad5f9482e80c89efa9560476cc0c7ac44a2f586f7338e0c2678ee15bcac1010c7004b0988a987b0b8186396ecbca2f08752

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\cldr.md

Filesize
3KB

MD5
4558390edc849390b3aa8dcf2257aca4

SHA1
5a86063b8866a6cfc9ec8f56d79761664c55f328

SHA256
0b3ca7d2d5bda05e588cab571a3e7547a822f1ec1d9cafc3c251b91d36817693

SHA512
0e005f9b05609603c1234e4f40ff937583ca760ad7116ba21864ebb6824439bcef9c286b582c36d8b2df961b9e7ab5c1cc4492fa267836ab1feb4bebf745def9

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\colorimaging.md

Filesize
176B

MD5
dd08ad7bb9fd7d7a8f9531c6127bf385

SHA1
d585f8cbdab8e8eac980b5c43eb61cd7086f2378

SHA256
5fdfe8a1d71435a3febdc9d4cfee34e81267ab8b16b8e023ea3d61d02fb33bf0

SHA512
2f7657f99c44102b67aa74e12c19d5132b65c057577099a02a0f235f704db8eb6a7f7d8f0c1a419561789224d9e273bdf8850c469a0ba8b42ee5fac6260d810a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\cryptix.md

Filesize
1KB

MD5
b10efbf0ab074bf7fa8a1216875c4fc4

SHA1
c717f48ce2cf7a61b8f6237dcaca7780fedc2cd7

SHA256
2ea6d1dfeefc6589edcd8259e38bf36533232e7ced9059e4401631457b57e82a

SHA512
ae1a5d7fcc0be3ee6f6425ad23c26ff859574bfdbb96b990a511074a7d7ba1a4dc60952a2ad5ddb636cfa87a024d5c8243b221896c123680ffc3d5e23c17e94f

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\dom.md

Filesize
3KB

MD5
1e35afd63734213504540cf5592e2367

SHA1
526f72eec1faf128dffdadaf9de2092ab9b2063d

SHA256
94ab500d169d34ffd980a47b57753e87542309f8c65487c8991be4cf231cb708

SHA512
e5d54c89ca990287f6ebdb37771bbef5274c90ed42b97b345641e65717777d74bebbe1f33321470aedf87d30d05d0edbc4f4952e8420291b975c0cac5a67a479

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\dynalink.md

Filesize
1KB

MD5
753ea4e268c44e881fedbf9127f627db

SHA1
22cbf3f8f0fb9fd9667e448fa7cf5ac6b5b613c2

SHA256
3d16984cd11c3070cda9d426df2da00172b28805bc4f6656bcaadffed8bd8dd3

SHA512
5fa9e9f2fa9adaaea6530e043b26643670ed3e95fb663b6e581d05483ebe49ecfd476b370594a13889fce67230386f409571705c40695f88ff2fda91a3443a31

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\ecc.md

Filesize
28KB

MD5
1f85820f30989f07d3c92e118e665dd5

SHA1
3304751d39ea8a77e890c8660ab3a2c7ceef7b66

SHA256
1e2a05bc091ebfdc67f4fc8163d58e8802d15746a13c7cc5e524fc0ecefe2272

SHA512
c6d1dc92f5ef30dd8d071f14c172dde01e7fbfcc65a24a4076fbe5ca3850c649f2beb0c949f99ca1c7ce3384c8d3d2c7d3298030769589f7d16a1a7b83def463

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\freebxml.md

Filesize
2KB

MD5
26622808b2e96dcdb3a460a879e84127

SHA1
6123701b5252441855afdb87636e2f43287320a9

SHA256
de8ee9fe811cf60d691a9cff01b83520752e37d72eaa787bdd51172f89d54cbe

SHA512
1f47ca1821015dbfaf202e340f8e3f0fc0314e27e13e656c95b5d05085dce5d6f57e5925b57b4560f87cfc07dad4205eb6fd9d33ccb2fe0fb68ead9968eb5719

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\giflib.md

Filesize
1KB

MD5
61b6586f42352f44be86d468c2f95e2f

SHA1
4e53a97d9e1912b220f161d76b0938283c1fe68d

SHA256
73cb52c8e1cf120228134d37d9e5bc41c055dabb0c39a3f7ab251ca6e4e4a590

SHA512
9edb3a9141cf6de8e46623e0664c6011ac7dbd2ecfc201e924a3ce60a6871c918a999c249d937eb95cb6d7c7c0a5e4439c257756fffef595af1ef772276daa10

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\icu.md

Filesize
2KB

MD5
b7481242c121ae308e1ae06f3a83bbf4

SHA1
b6e6adfb8ca51d688c92cb392fe8f60f1b42c0d9

SHA256
55f3697520e47a016ad3242d6cefc149d1685546c49d5657b12294e1d9d7c006

SHA512
1cd841fb2442cb33787a7602295eed061b4d0d57693c84fa2048616f61fd6ddb8c8bed6a6cc5546c89589c6d65003b28d390bf3254309ae9002f20d8d55ddcc1

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jcup.md.fantom

Filesize
1KB

MD5
cd0061dcd4f642ba309b76a9ad2bdbcb

SHA1
6da0ff2bdecac091b7f017699f1fd16c8040e590

SHA256
790c0b3627b3beae0ad9528c051588474622551415118bcac215817aab9bf696

SHA512
16a13146b4e137a5893c0354e8753e4da4f1f62ee6e29b32476a59976b23895aa1225a1d936e194b7260af8acd704ad67257c2b4b86880b7ccb16058f4efd395

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\joni.md

Filesize
1KB

MD5
79f2037c41494adbe6be85cc8ef3d653

SHA1
842cb489c8c14db8b5920c5610acb89c6afb7738

SHA256
69fa102c955fbd0128ed7dedced1d6314f1c63f341bc4b783581849d1e63dbb3

SHA512
63e470ff338cab9cc0176d619595866877f71250e84397a5f7870a708c47a59276c55e7a5d0e43ef4ea8956a188cc6d2b1530d63ef878ed2f0237b1501094ca7

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jopt-simple.md

Filesize
1KB

MD5
2f4be73c35300080f6bd05400814e163

SHA1
2b72cbb2153cb223227afd9bc0b596534f4736a9

SHA256
281f990020b996e234b21e774fc7b9162b3d32e3ad2795169b7825d53b80d39e

SHA512
2b4384c698b0d4ad53a1cf942c4a2610661b8862a8e4c8a943eaa09cd75ddd59f4543e51d68b2d1725c6c652e51be1b7c2442421024d8bc5653f74eaa4734c6a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jpeg.md

Filesize
3KB

MD5
58a3020d44857b87d0523b49e740029b

SHA1
0096b75da50db0c2c723341c59d82ac6acac84f2

SHA256
af7ebaa62299170afe1e8a0fdbb8d16abc74e52563a26c1b113b969c4f446f95

SHA512
4e26b4ffcf0073fd5dd2a5fa6ea1b501d97a37682d26751c5f9700473b5f26d1619ffa1294ec980d1b022da9f4c28599d06c732f26d679b3c988ecff6dc781a5

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\lcms.md

Filesize
2KB

MD5
a8833d2365b22cca83d76045b84a6d6c

SHA1
18d9cd68f2ebbc66fea5c09ded2e38e277e91807

SHA256
f3a196e11566af62209130ba3d019bcc39d031d4275b6bcd499c654ff9aaf90e

SHA512
d04a383587792638ed619a9ee3797eb4dafb424f665f85294cecd7000dc7289dcf08dc45cb332b757bcd6dd1be94a13cad62cd386561cac2fc91377f1c4954b8

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\libpng.md

Filesize
6KB

MD5
a678c4b4c93641250f1a7a95e197afb6

SHA1
b4d2e7faf032ebeae0a613aece93ce6fd60cc139

SHA256
8b932bfe4cc6f47668a1c598f94dc9ca0ad1c15366c72d118af25e8ecd9d8710

SHA512
a481abc50b3e70f2204bdad59a0bde1c98e413609d88944f2f0a1ce139210186587fa72a74c43bd5b59ed63b763af4267810cb56de5883da20d808d90e7da577

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\mesa3d.md

Filesize
5KB

MD5
defceb4bdc9a7fb8c9d0b362941a04a3

SHA1
396304ce5c103b0079b63e929b1f04b5575bf10b

SHA256
d28ece09ba75e9ef9a9be89022ecb8e67e69fe06295bc5a8c5af96a31eedda18

SHA512
02e7334e66b7af04e1c033a288db4b666a21d200d56b1083ae5f1a1cd362ef0c3f6ac8b4b90ceb7e5e196fb9d65a6dbf2940d4d04790dffbdb44a2bebc8a18b1

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\pkcs11cryptotoken.md

Filesize
3KB

MD5
31efd7d279f4cf3742b4074db21550d4

SHA1
ce3310594e9c5dcfd233aa36442c1f35b567719a

SHA256
efdbbdf87f97bee173d3d9946902272778566216aad9bb8393728e98166fe9f7

SHA512
cd233893c0929d675ae54c98f4f391951baa12081593f1d20c3226980b5d3282fabd6b7091ffc54c53ca7c2adecaca6ed725371d5c76055dbb7363e4449e6715

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\pkcs11wrapper.md

Filesize
2KB

MD5
36c0ded02cb7600e7e13e7d8818cfd94

SHA1
425e9d7ebed521347255351e184da6360a78bf41

SHA256
705d28c4c78812ffd5caae92f67266ca9c751e3fc9ddd0b8b6a2a51e06938949

SHA512
1f52ef54091a0872e9e776996211bd193dbd3840beac21e47e23825e05e54caaf62d41bec0bbc79049d70e7f4d4688d4b1ad138fb4a334f2615244305fcfb8f6

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngcc.md

Filesize
2KB

MD5
dec3dbcf53fe0e7ea65caf508f62cf1c

SHA1
3fa28d0fe4506a100604dd30603bd97a94e43f94

SHA256
0e1d83caf24d7b0cd1d1ed62a73f086fa29ba9a9fb47b27dfe2c244132ce73b9

SHA512
1dfd676248d831dd29d4efaf43da4e8b660751539ad094c711bb602a60a35203b24d46a2e5e07fe027502e0c026b8fb1a2ff0fdaee3e0dfd58273fc9964a5304

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngdatatype.md

Filesize
1KB

MD5
0c61f1387fd18f6c1b6856be240e9265

SHA1
f43f44b1a2d4f462bdd66547b47cba73652ae651

SHA256
b89a1f922be1c2af2572b1d61bc750bb975b6dffccf534ca64aa22df2140aa41

SHA512
281897e3fa7945b9df058056c4f269a1b2f4377cb56e1be3bee08765e75ebfe87580d33c792ee9b98d2ac6c389be31db1686ea0edb6fe0d3b5ad0cf878101e9b

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngom.md

Filesize
1KB

MD5
f569baed2c12e445ae04de801c23dfa5

SHA1
792cec38e20173257b9c3a9693395199988fdb8f

SHA256
c817153d1e4b60dbb06877ff0ef83280ed9667fcd72dfd712375797a6b9244a0

SHA512
f44cc23955e4e9326a429a14e9d35bb28f96cbda7366117c5ebdf4be07062e095ad0262c1e0565c3c296d19ec6ff3d96a6570a004c733b9b40456fbe58a98662

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\santuario.md

Filesize
11KB

MD5
cf3928861aa4b0c2c2416f558c8e2adb

SHA1
3632aae6b0ea02b4e45cd2221e99c394ccde0b2c

SHA256
9cbee56d2f8c300bd6fcff3f593cacf1ee51a5608d2a56c25e83788b1e664f36

SHA512
773024031944eba8e6efff88f8030ed67c347f173eef774d434ce660918bffa969c7fdfad916a95ca3726630d8532f4b3be2d52a91cbff4cbfcbf03d4f0fbe60

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\thaidict.md

Filesize
1KB

MD5
e857da2510e72f2727ee0c702f42dfdc

SHA1
75e498b4a1a70bf1430994d922da1bb82127ed1e

SHA256
10665959c4dcdd85e1e9006ba0575c882d0fbf63acebfd39f94cdaa4ce7c85d6

SHA512
37c567deeac3708769d450b6a77e4e8952b394ada6b97ab5aa97361fb822cec30017a2050d2a5c4276029d4babe0b8e7be0d193a0e1508c107d031e06b464d2a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\unicode.md

Filesize
2KB

MD5
7b31000ce64c292af061094d6ed1e825

SHA1
d3018c0667caddc192017ec14d947f08bfdb2f43

SHA256
ed6227bb773f5c629b00a02728227578c0bcdd783b756e258bb442e9f4f787ed

SHA512
dafbb9368cc59be216d530ad42a88deee632437befaea9411e6b5161003082d70136f2f70c1ef9f21b9e860dc3079201772ca91b86ec688caa643ed883f4db02

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xalan.md

Filesize
11KB

MD5
96434a44ec4d533dbd15d8479e4775e2

SHA1
2716e88cdadcae1dac8de0f1d85550226da39b96

SHA256
27c009039786019d9f2e92e4a953119318dbdcbc0aaab4110214b4cc96fea739

SHA512
7459127d6d93077dc13a2f8f1f878c2cbd2b5f71ac246d088a594de5645c50493e036f79ca055d741c6209c9feb1701e9854a8b98441e72c90c76cf32b5b5a08

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xerces.md

Filesize
11KB

MD5
c0801e0a6850f61e978ae64b57f1ad72

SHA1
0c23059e57a080ade9dc8017e49dbd142c7e8a51

SHA256
fb75ec52ac4719cc01cb87b9adce4747b0c1aedecd9fac4b7fcb952190ca2e6b

SHA512
34dde33c62cdb9c749870884e7958df26c00348e61cfeb8b564cdd6c16f1e77391de3ff9705854f239321648a7dbf8c4abccc88f694e2f17f3f534d0dfc70fdb

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xmlresolver.md

Filesize
11KB

MD5
6308f8b30ea1a69327305e9e3a1fd481

SHA1
90c41f46e00f649e06568bc25fb556bac2f2241f

SHA256
8573f44f861dfc8f831955908d098b9da2e3ef30c3673ba46ffc0ec819b9e1b4

SHA512
1598bacdb009e21de31294b66f5597ca28c8d032d2dc87ca1df54399223bf3fb623b756773b841e290098c3b266eb5a19877104725f55638e29cc5807ee47abc

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\zlib.md

Filesize
1024B

MD5
3e34b6b36ce4d6d9a084c8eb8d361a00

SHA1
9164a858f2c6cac4c5c2d69a7e85fb7b798a274f

SHA256
bfb1eb7b1c14d015f556e76a04ab60b45e1e0054b3c41721a2c0a3cf6d72be57

SHA512
4a641949863f40adec4a9bc2f24aa8961957368566899a6e8fbcc23de66875074727bc419bca7bf651c1e2d73efd108fbab667a5fdb4d2903859525dcac1c244

Download Submit
C:\Program Files\Microsoft Office\root\Office16\1033\ClientSub2019_eula.txt

Filesize
48B

MD5
0be3bf361ad54676214b5e7a75b52588

SHA1
0a20956265a889c3c01e940d6f985d44f8880f0f

SHA256
9773ac9a74c4de71aee68e00be993139583c5ac4848f8a87bcda0f4f5bcd248d

SHA512
1d4d9cd04647a89ee0331d4c27e443e62c00cb7dd31bb538d488925939df810ab92d91b146473b8d1f76a6608815ae581fee5aeed0effc0f260b2e02de2e5fc2

Download Submit
C:\Users\Admin\AppData\Local\Temp\WindowsUpdate.exe

Filesize
21KB

MD5
fec89e9d2784b4c015fed6f5ae558e08

SHA1
581fd9fb59bd42fbe7bd065cf0e6ff6d4d0daba2

SHA256
489f2546a4ad1e0e0147d1ca2fd8801785689f67fb850171ccbaa6306a152065

SHA512
e3bbf89cc0a955a2819455137e540952c55f417732a596ef314a46d5312b3bed644ac7595f75d3639ebc30e85f0f210dba0ef5b013d1b83bafd2c17a9d685a24

Download Submit
memory/952-43-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-45-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-1-0x0000000075130000-0x00000000758E0000-memory.dmp

Filesize
7.7MB

Download
memory/952-3-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-2-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-137-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-4-0x0000000004AC0000-0x0000000004AF2000-memory.dmp

Filesize
200KB

Download
memory/952-5-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-136-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-135-0x0000000075130000-0x00000000758E0000-memory.dmp

Filesize
7.7MB

Download
memory/952-134-0x0000000005340000-0x000000000534A000-memory.dmp

Filesize
40KB

Download
memory/952-133-0x0000000005130000-0x00000000051C2000-memory.dmp

Filesize
584KB

Download
memory/952-132-0x0000000004B80000-0x0000000005124000-memory.dmp

Filesize
5.6MB

Download
memory/952-131-0x0000000002300000-0x0000000002301000-memory.dmp

Filesize
4KB

Download
memory/952-130-0x0000000004B70000-0x0000000004B80000-memory.dmp

Filesize
64KB

Download
memory/952-69-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-67-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-65-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-63-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-61-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-59-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-57-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-55-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-53-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-51-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-49-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-47-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-138-0x00000000061A0000-0x00000000061AE000-memory.dmp

Filesize
56KB

Download
memory/952-0-0x0000000004A90000-0x0000000004AC2000-memory.dmp

Filesize
200KB

Download
memory/952-41-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-35-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-37-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-39-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-33-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-31-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-29-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-27-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-25-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-23-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-21-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-19-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-17-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-15-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-13-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-11-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-9-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-6-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/952-7-0x0000000004AC0000-0x0000000004AEB000-memory.dmp

Filesize
172KB

Download
memory/3872-620-0x000000001BC10000-0x000000001BC20000-memory.dmp

Filesize
64KB

Download
memory/3872-608-0x00007FFA7CC40000-0x00007FFA7D701000-memory.dmp

Filesize
10.8MB

Download
memory/3872-152-0x000000001BC10000-0x000000001BC20000-memory.dmp

Filesize
64KB

Download
memory/3872-151-0x00007FFA7CC40000-0x00007FFA7D701000-memory.dmp

Filesize
10.8MB

Download
memory/3872-150-0x0000000000E80000-0x0000000000E8C000-memory.dmp

Filesize
48KB

Download