56483a6e46b565c3eba1fc4e5ca9160464d2495f9eae7529f5a173e117566326

Analysis

max time kernel
138s
max time network
137s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
08/04/2024, 16:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e7da90881b5249e713a785a8324cb806_JaffaCakes118.html
Size

22KB
MD5

e7da90881b5249e713a785a8324cb806
SHA1

52de539fbbe26f36e6d82b702dc5aa8942c194ba
SHA256

56483a6e46b565c3eba1fc4e5ca9160464d2495f9eae7529f5a173e117566326
SHA512

9b275c58a6110ab3c69d1ded651d29c2d29c6a542ff7405534a219e2ac5d4ad056adcc014e632000354e1553a776dbe0452eec37b4b7d83ccb7b2b2714339b85
SSDEEP

384:F8an/WWmhnflvP5LEfqiSiDfQ3anVc17GKAWROVa8wNdxSIw8wnAwskkUgVLRd:F8an/WWmhnflvP5LEL7DfQ0qMKAzauOd

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 60 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\ = "147"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000009b106788dea7af4d98683a8983feb7c6000000000200000000001066000000010000200000003ed2c537a51c4e60a2986992eb02c68e84ab4c86a1641beed2eabff2eabff4f2000000000e80000000020000200000008ed6845e8b38b68d90fe06303a08a03562a93507cb69f5e9ef8ca4de337bb7ff200000006c7bea05ef60a2f126f2f27efea120de7eca00da4efe64f1fb509df28249ebde400000006ec031b71ea027b56549b5a9fadacc4bb624130feb6762d64e11b52aa7c642468d2281bdc9ce28b42c99afb41f5c96d4c16f30b9db6e1b04b64f82f7fe7b02cc	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\Total = "147"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\line.me	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "24"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "171"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\Total = "174"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\Total = "14"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\social-plugins.line.me	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\line.me\Total = "24"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\Total = "0"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\ = "0"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "34"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\Total = "10"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\line.me\NumberOfSubdomains = "1"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\NumberOfSubdomains = "1"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\ = "14"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 506a8b99ce89da01	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "198"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\ = "174"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "418754068"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\social-plugins.line.me\ = "24"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "38"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\avgle.com\ = "10"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{84F3CEC1-F5C1-11EE-9DE9-520ACD40185F} = "0"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2944	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2944	iexplore.exe
2944	iexplore.exe
2900	IEXPLORE.EXE
2900	IEXPLORE.EXE
2900	IEXPLORE.EXE
2900	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2944 wrote to memory of 2900	2944	iexplore.exe	28
PID 2944 wrote to memory of 2900	2944	iexplore.exe	28
PID 2944 wrote to memory of 2900	2944	iexplore.exe	28
PID 2944 wrote to memory of 2900	2944	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e7da90881b5249e713a785a8324cb806_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2944
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

Filesize
1KB

MD5
221ac00c84f2fb5894620063c52b080a

SHA1
67cce23a9d03f8a5003a9a94837ec2e8f1f9dbe1

SHA256
d2a39225561881356984779a8733be5fbe7da927ca9701d352ba1b287f8acd1b

SHA512
bef42a8f6e3a957b953759411829aa74f8decff8d4d77f01087d8deb62a089c5b01a5dd61da9c89ee6bb19f44fe3ece2825e0345762f32bbf1f81e33b40b292a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27

Filesize
1KB

MD5
e744b211753f45b387e00af2aae69c6b

SHA1
23beb8357e158d3a162524b96495f293853b8147

SHA256
bfde85cbb4f9503779c19c8ed8a463e2782028fed2ee0726cc55018856baed9e

SHA512
c4ccacdfe546522ca8be841b535005f688d250a2d9a68011d5181bf07ae6466785c3dd0c647c6930ed7627d65ca928e4397fd61ae46331b41a110ba76b3962bb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

Filesize
724B

MD5
ac89a852c2aaa3d389b2d2dd312ad367

SHA1
8f421dd6493c61dbda6b839e2debb7b50a20c930

SHA256
0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

SHA512
c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

Filesize
724B

MD5
8202a1cd02e7d69597995cabbe881a12

SHA1
8858d9d934b7aa9330ee73de6c476acf19929ff6

SHA256
58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

SHA512
97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

Filesize
410B

MD5
07770db8c55ee36001c863f8a7831634

SHA1
bb1a9fbd1932d7bccbeda4905e2007cbb33a1407

SHA256
4d40289d7b285b0720c11637a0ea4a10f27d283e8bd3fb8f835ae5501d5fc249

SHA512
c8cf22cd79ac4967d87186889cf2cb9ea9906d3e878aaf5fd14046bb1cb18fef03e9389e8aa2ee264376d5e22cc997477f027b17998882825860bb9bda6d9704

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

Filesize
410B

MD5
abff7f9d68017e9d0b66b2629d18ae0e

SHA1
43081fcee0307f07a3b165f44a10acae411182c6

SHA256
5145309232e286395e81572a0a25f061f6343afaccde11c0f165850b3e71cfce

SHA512
a8fecb3f95f91922d42297a952e66c0eab0e358c7734ef5ae89eb8ea8a3f722f1443d6b485f836ba953d26440ce3bdc9cfbe393cc6a9555d4609a7051e756ada

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
252B

MD5
f2f850dbbfad89701c71f97864b4d001

SHA1
b22ee76acc1db3bf65266834b2efaefcb1f7d770

SHA256
350887d7fe1fb1dec656b9d4a0e094242d17ee866ca90f505537db087ef37e3e

SHA512
a2a2ddad629d35b23ae288977a1f053ca4533257420ae9cf026f130252370fdfaf7a95988cd2e47f671b62ae5afe4eceebbd5adeb47fcfca6b2aa63d52282392

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27

Filesize
408B

MD5
b33343006fe8f85064138e7f77fbfe5b

SHA1
94531e1e22049fa9df797a5edac6b821325d6b94

SHA256
3eb40502e991fbea24dae701c4c7c0e35fd60c600d593fea802f5857c74f30e8

SHA512
2873c910558261af1ef6007d1d906ad71b3ee495b8c29ff00ce2fd688be802fcd93ad8b5481b09c5c726cb5c84a27084c2d97ced735422d63f48c84038f2d701

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
db20c3ad14533d726afafe750977e09f

SHA1
fa579639d99813b547dd638d3ee4f2ba0aa46a89

SHA256
7948cf28998b8df5fd644d6abf7f58f964e489a22fcf345d7521df0565410bfd

SHA512
036f682ba365757354b3c73638d04a1dd7540c1c756d4e4e54234b66315f029c3722dc713ce5775fecbc3cd846549a73cdd3ef2ca1c3e180733601970c42a3f5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a6564900306002eff83095e7adf11ab2

SHA1
5070633d5d2f9e986fc793838bda20cdf5494575

SHA256
f1d426929ea2064cf6fa6d4dfc2f4b3a7bd0cd99fbad855f8ff0989509e504ee

SHA512
5095a1f6089c3d8ab699da20de7e48665345b09945cbe6495cd0259999507e86725b8e5845e6922d52fd6c95884d1dc12513ec456f6bdc2232e2848905521265

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1bc09ac2f7b346aee0aada8c3d725734

SHA1
b73ff0ce834464f8fff779815bf44b6e16839dad

SHA256
8c3d772f8d606579e2fe043577ac5f6c239ca928115538220e8c4b2f4ddf92fa

SHA512
91638ad6b965b01bde5635d27cfb1c78c47cb77a7b3f5dc9ee5ef6b5b47b4c3376323f31f180ab43c58a791933f15b8be57e418d5f30a03ab0a9188674218b5d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
32dd7360f5d5be3d47e3a761f74e74f2

SHA1
8c4ed758449b6fbcbfa91b7f9402df1bf9aa3bd4

SHA256
544ddc0dbfb439d13c3b63f73bc64aff31518186631824248649e4b2257d4426

SHA512
e34562c534ff85e4d6cf32faadd05c3700a3e0b2b3da58db06fb84d21b5c852b8c758c938e55b886a315c7cce80b29335676dab736f9871dac0fca16089e810d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ce69e907fcda4a415a621fe5bac11275

SHA1
85640f9a101a158280d022d20eed4ca696051f4b

SHA256
028bfb94ad91abe833cc0b466c6f9ec27d3acbc0d8f72e5b4feab60ecfd62b9f

SHA512
5279776856e549ca2fa39d7a1f0e65e1a995677fa97b99336407801a667f6e97149ac7800a82cfbba5aae4a611cb4637bfbad83100abac7d3340c4ca09ede152

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a8602070a1d1aabce54229c1bb063986

SHA1
da4fd328290c0d9740757f4b5b24d6fd4fe21f4c

SHA256
77397aa8c6044d53532c691ff2a9503f625db842a8f2b39aa65f084c042ab5d9

SHA512
5866f2fc5551e221f3c49892b4a02a2a4d7b0f1573ccd9223da3540eaae391f864eaa4afa40c56cf3cbdc12f9c18d05da13f02bbd757933a86981857b381c3ab

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
08825830ae79331c6fe933cc40d25acb

SHA1
efcf67d71abb71a1594e204bb7cf48eec81ff3b0

SHA256
53d6c1dfebe68c6c396b343e1d22b8ce2983724ecc246e1341180ab9abc20d31

SHA512
e0e1610c81ad4a39bdb3e7d1b585e4c1e83a22cce04a96f4e7a3594e1ec7ed0a31726571f5ecaf9be1d8af4b6694317fa10edde950a26970e33797c462b9ed91

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
328874f3685c6090e6effbbd8099dc9d

SHA1
599be5da392312a00f63c85e601f39c880d68ed4

SHA256
f45fc7810d9c6aeb66ff5321ecdca60576c36dfaf805f179f41071979e0bbe19

SHA512
618d106cd7e8e8eab098df37c380655a9b7a5732f8378b9cea5aa91f99bc7f0260fad7d22c9f673b59f8be5ce8293ee9159321ffe8566d80b87d60c19ee40ce2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
192b58e0d5cd6521c05afb1b7c951b28

SHA1
64af7774b359c91a721a0741045c9407099418c1

SHA256
c270ad659378d221eb19d8fab96c637ac7a927cd643a4807ca222a20a9954778

SHA512
90764b26253432e4566f2c68ffd5b49c8005a96e46359f7514de23b9f05c5863fb9ea488df724d8ec69c89e8470d90d9c413dc3f85067840f2be966117215c0c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
85046f4741ac22e9a05e08e33bc66ea1

SHA1
4be755e9b3832e1b949b7421b1bedbdad0bcfe0f

SHA256
cbd6b64784cdace696b6e8618623a3d91b5997b6e32ff600b6b2f9f688d9aa60

SHA512
5927858c4c996f5f9621c418bc86fff864911d21d0699699d6c7bb71f0f5c9e6090161ccd4e064b13f6b97d0e1129e443444bdb015e18183cf768687e341ec17

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
86cb6e73df0406a33e8b4cb447d3e6a0

SHA1
a872b4cecef3f56497fe16f0eba6f5fdbbe89fc9

SHA256
7c51964a6d4cc04deb7102f8ba2c16ebbd46c18c91bc2a88a8c744511d97dea6

SHA512
bb068759bf4a3794979131e6fc061739a886d037a2b4f8091223a73985f01260736794766f6eabab812d56b36513bd1971f3fae937a435a1e480077179b4f037

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
00906b719c03b8884bd3e25bd764989c

SHA1
865f58ae22660e28c2db66325daf2514fff86320

SHA256
21d19bcdd122c6333997333bdf05ad952f5a2e7e09e5cba362eb47ad1de4e1bd

SHA512
c32209d205522d14be05cac4f4fea5d206b30d8f5f5a4d64c1586c2c254c415fab5880f13c07f6f32243f3a12618e055869bf49cc84c550af0152b61b6cbb2dd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
acabb3ea657b44c39a39f07bb21209cd

SHA1
286c13b7c6f722d6bf35f6cef95b27968fe0f286

SHA256
a9de018b14c357d14e859a3b469fdc49b90989d53a8793f655402b85d0d1de83

SHA512
b107b9320c70ce7467f9fcbdc432e73fffbec95c8091b22dd0ea06f1fe30c46af332cd6c3624cc6b553c57fbca3c511ae7ec5f3b261f7ba850c1554ea8e406a8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
03e3c9355f8f12e28c729bea642cefc0

SHA1
43d6fb25710e7a101e4f5e40bb9cea29551556ab

SHA256
b48600c6aab79f518dc97e8866f57b58bdb65340a1740f0cadf9126940487a02

SHA512
530c117dd3ee511459e897f483006696ae64dc87b56aced0c821fc343fa568a5f892c92a57fff756f6b04b014d1c4b925cfb6b4c55b3954c976beefc2d05db82

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5fedb48f030703b0672eac01f02181cf

SHA1
07f2095db7b5a0168516acc0fc2b52dab9a845f8

SHA256
eb22318bc125de6e4bc354c8a85c4cadffda21e30362a090cd88610d27e872c7

SHA512
9c4350e21063d5b1b27b34beb80b9ca80752c48b79b9acc4c2863f72a8ad1b12b205e62b9d954ce9b6b587e83acd75065874bd975ac7f39b1699e7ef45eec7ee

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6ec2a92a7130c5a3d6528bdf289ae468

SHA1
0ec969eaaaea5b5c03d63c112c7b1e8539ed26ec

SHA256
9188537eaf3b4357b90939af5ac63563862ac421685f4b7fc50997017c98143b

SHA512
ec01dc66071b9ae403111c0c5cc4ac77441947495419f312597a60918c320c44b88f4ba2b665aa3663a6e34b1ca0cffd643371e9a45cbacc520402c6f2c1b9cb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b21ae3a7be68b8171eeea342fa2c3aee

SHA1
4388670248aecdb9ef65ba364895659f0e794e04

SHA256
d7e2a1b35bd327f2c00cc45b19ba1eb6745f00ad4a44cc39333a345090f026a8

SHA512
27b1b4deb3bd1c0e5758b5b52d1752829dff3a6ab95b024489316ca525a65233ece9965a376bad42373638f0590e9dc3fbab64558295f1ab00bae9d622622125

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c96d19fd0f26d4f91a5d084adf34590a

SHA1
425851092489cd258320fe65dca7a210c88ad7f6

SHA256
ee9a8cefbf7ceba11cc37ce1c70c56e28c5c35273d16975f823ad1ef078e74e3

SHA512
f92bdb02da3ce1814b2e054872ae39ea03ffc12c8ce4b1e42909f5a97431231f19144110e7625fc0375f2154b3a557a308a482ade52ea627ca08e3d411d9dc00

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8eab3a18d0a9b079417dfcf8976af566

SHA1
86aa62ff2c114668807f2ad14a20889ae5e4e875

SHA256
711241b26751180957b6a1545aa145893515db4dd1e20993589244b82ba85f18

SHA512
4c7844a94f4af5fdddec9939494051b0a8f707c8ebcc52decdf85f26982131bb6cd178b8fda3cb383ad61596c604c257bcded1a9f069fb69eea9098dc6757cb2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
40701cafc775371bef686bde110f6484

SHA1
71373a16fb271f6fb8653512089ad7bb20c0059a

SHA256
013c8d042b2e3229149e968d2c93a75569f9ceba692f5cc2bed146fa988bf312

SHA512
0de56c83f53b9c1ec2336b21cbfc5f184c6049b104f0fdb61e5e078a3587cde4fa60546f58e92c643b589355b7f6a53c4f962ce74f849963a2190f49797bb684

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cb69b4081cd4a7890efc64dbd3f9993f

SHA1
7d4c86a3d2b465b032da03102e0c0aa03b4c5475

SHA256
c4e9a8fb8d7cfb9f83962362a8bf5429c8cb1aa2d2956b14eb1441e3577b8016

SHA512
09cc7e5bfb1aeecdd567a53b399948f9b4fcbdb0be65c68a725feae4032ea9aa163a92b4c836c985e968c4860271fa472217d2b47a953026d15875382b8c6de5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a74d72bdcade3bb22216a2d824419f97

SHA1
aaada7f13a754751eeef1132f666536c4b320413

SHA256
6da1580e29bd9063c7698fd42e415f19692568a8820fbbce0bd6439828595b2d

SHA512
3685f3a77e271b190b774da6ca4656f5c074a234ec480210cc9b45ee75cd0dd74cb0ef8868ef1d3726da87856dfd213cc10a487886b2c1b17fef6440d9b63405

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ec2ea4632092b1272ba13fe402c73c32

SHA1
1b092f59b9ed5d703ca7cd18052c29e5fac6ff9d

SHA256
b835ba0b41e9e90504ab294499404001bec6dc97d846e592c3839e521b9361bd

SHA512
219d603782c459d181bc02566e4d5dae0944f59a9d57cfaaca5bcf7e7fe70ee578195bf858d277d3f21b0545838eb6e0c4e8169b46b769ef8cd24c9feb1e2152

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
79f7267dbf9d2c0560a4aca191e835b4

SHA1
aa1d67cf32b7d1266b67468f6885bd26819ac5dc

SHA256
38e3550b3851f220b4c81936d3fc9b4b31b5be633a9c20efd3339841cb413d5f

SHA512
c59f36fab0844e4c4c1cb0e1f5ac1d98d8f4a02ad9993f9167ac03cc1eaa27681936e385aaccab7de271b94ad4b246d1d34ccf0a502c227ef123c208bdf074c4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4fc97940cc349cb4f4c79c90976c0a72

SHA1
176a9b1e6eaeab4dde9839ce7d3b63225604b384

SHA256
be4d0940c636ea275d4db0c41c1a2f60eddb692f3c91bd0338bb556ef504bbb6

SHA512
142e43b27e4f13d6f8f23d928c3a4b3fa41ecec20d58b976bf5eb6ec4432ae0f15bf631a134b6dcfc9df0cf307961173b73081afc8eb08447bce3c4dbc5bffc7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bb8e106be5c0839f8281a66527b08695

SHA1
7a105fc9136101930a7981a53a1715f7d6a4829b

SHA256
2ec4a42aa5f0483b3a53af7a923e31820ddcc2eb36f0484494788e93c94f08eb

SHA512
1934fa73a7f41756954b73a2b3b3ac54db8a3a0f25455144b02ffa689b6c986aeb1106b4c933e877d461eda2d434c2aeea1db2d5246db5001fcaf38a3c670666

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6029d9668a3412387322f09f7d004a33

SHA1
c1bc4ebf2182fe72149fa1d2f2ff4e1193f41e28

SHA256
bfa23ce6d73bff829c69e01f1c91a9841a83503f2801e2205203f19b0a6046df

SHA512
6e82c456e26574994baf51eca44e5381c776fc55578a7bb963905a79920bebef34c8eb29e4403b68f6b3d4868b5bf24d7614542e77e1062e0b163718a2463886

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

Filesize
392B

MD5
90434104cc8c1f728899b8d8ad3e1287

SHA1
beb2dbbc6304ad00c2bfccaf8a0f69f340413565

SHA256
0f067577b32a332b9d1720744ea49620609132a0314287d855dac20552a99c09

SHA512
f3aa1beda2390e651a078f01c31a568de773d96f4dcfa0c308d5dbc5c16d06412b055898f66724d1a1534f88b624cf99fe437a6da22b51f3fa45025b6e8cbc62

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
242B

MD5
cec2ad7963009c6e6845288aed262444

SHA1
884826d81cea1d553dd18c7c1bdeb070278fa430

SHA256
b20309b4676c01bb565a6c5fc4dc6acbeced5e238a3dc7a57631fb2b5c284aaf

SHA512
7aa3d13ee67d639450f9912990baf5ab6965b1d6eea0c26252679f5460f8cf204eb270ad872515b75a2c2573a63983cd304d27e67cc17f010dc24d06ca662dcc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\0XKK4EW4\social-plugins.line[1].xml

Filesize
98B

MD5
e6e2af80243c02bf2682a8714a257fd6

SHA1
6e519130cbb9405f90a023ccb6da21f9ae6175d5

SHA256
77331e950bf2edb4bd92fa667aea2116722ac415770da013c1bbc13a043ef550

SHA512
916c0909a00826cb0245af5c793ab3c5f7c291b416ea06ae611883abb2aad56da97aadf13c32807669352d3e91336e18c51d4d72ee1e0202fec87162b833831a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GO6I9DUG\avgle[1].xml

Filesize
84B

MD5
0d9ef2d0f0f6ed95dc1853c28d410f13

SHA1
406ac8cdacc627cd07a7c1a025dadb93eecc3729

SHA256
ab8f80e7ca7879729012c035d2d3fd8f256a5d90b88866f7d50feea57c3e9a3d

SHA512
10fc5218f16a68e460351277f4fecc931bcf6f8a4fbcc86cb4465ea89903c004340cc27328f9cc3201613019d1786f7f3dd0cededd485f72a79176eaa76d848d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GO6I9DUG\avgle[1].xml

Filesize
402B

MD5
544ae1aed87c249e89d484f2c81ea939

SHA1
939c96920ed8200f91903d5b7276a438500de2f3

SHA256
042b721c349ee7cd968df1247abea99d2e4a4d3779c5bd3b5765f53d3ec9e9d0

SHA512
e91d18be505d0d5c4d167ca975978f522782e7e0b6d5af427cace301daa0cfb1fe751487458d176132f54e7286974c655c117265343e5397b3cf04fb9dc05d4d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\jads2[1].js

Filesize
3KB

MD5
bc8141c4650030c41f6a98026b12ce80

SHA1
af5618f7e467a207d4c64627be580283ab5640cd

SHA256
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

SHA512
70fc6246b67dd18b92661c9562020cc9256a9f2aa500017bc79e71b9528251dc241505b58efe58174e0268d6cd44a2158c25f5cb6217ea25a6ea73f58e99ca86

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\analytics[1].js

Filesize
51KB

MD5
575b5480531da4d14e7453e2016fe0bc

SHA1
e5c5f3134fe29e60b591c87ea85951f0aea36ee1

SHA256
de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

SHA512
174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\e[1].js

Filesize
2KB

MD5
20c4317df06918eb01577871257848eb

SHA1
4bab2a2fe08919be4bb1f231f56f3a9158792b24

SHA256
a9578b7b9a921eb03bdca64107746a4c4511797f86c3fa5a06f5c765fda9aee5

SHA512
1e761b9881f225ac067b0087a49a82b8245825c513cd18463e62bc964e5f53b51c4d7ebe210d83ea8ef7dc19722dc76d0154fed3f6df255d5b5408be1ccca5bb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab1103.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar1107.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar120C.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit