hxxps://drive[.]google[.]com/file/d/1rdP_Ff-NFRtELN554qVgssYc5QSDAa64/view

Analysis

max time kernel
71s
max time network
74s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
18-04-2024 18:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://drive.google.com/file/d/1rdP_Ff-NFRtELN554qVgssYc5QSDAa64/view

Score

7^/10

pyinstaller

Malware Config

Signatures

Executes dropped EXE 1 IoCs

Processes:

PDF_Generador.exe

pid process

4348 PDF_Generador.exe

Loads dropped DLL 16 IoCs

Processes:

PDF_Generador.exe

pid	process
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe
4348	PDF_Generador.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs

Web Service
T1102

Processes:

flow ioc

14 drive.google.com
17 drive.google.com

flow	ioc
14	drive.google.com
17	drive.google.com

Detects Pyinstaller 1 IoCs

pyinstaller

Processes:

resource	yara_rule
C:\Users\Admin\Downloads\Generador de PDF\PDF_Generador.exe	pyinstaller

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

Processes:

AcroRd32.exe

description	ioc	process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

Processes:

chrome.exe

description	ioc	process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

Processes:

AcroRd32.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-4092317236-2027488869-1227795436-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	AcroRd32.exe

Modifies data under HKEY_USERS 2 IoCs

Processes:

chrome.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133579373439689259"	chrome.exe

Modifies registry class 1 IoCs

Processes:

chrome.exe

description ioc process

Key created \REGISTRY\USER\S-1-5-21-4092317236-2027488869-1227795436-1000_Classes\Local Settings chrome.exe
Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

chrome.exe

pid process

3412 chrome.exe
3412 chrome.exe
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 3 IoCs

Processes:

chrome.exe

pid process

3412 chrome.exe
3412 chrome.exe
3412 chrome.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-4092317236-2027488869-1227795436-1000_Classes\Local Settings	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

Processes:

chrome.exe7zG.exe

description	pid	process
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeRestorePrivilege	1988	7zG.exe
Token: 35	1988	7zG.exe
Token: SeSecurityPrivilege	1988	7zG.exe
Token: SeSecurityPrivilege	1988	7zG.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe

Suspicious use of FindShellTrayWindow 39 IoCs

Processes:

chrome.exe7zG.exeAcroRd32.exe

pid	process
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
1988	7zG.exe
3032	AcroRd32.exe

Suspicious use of SendNotifyMessage 24 IoCs

Processes:

chrome.exe

pid	process
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

3032 AcroRd32.exe
3032 AcroRd32.exe
3032 AcroRd32.exe
3032 AcroRd32.exe

pid	process
3032	AcroRd32.exe
3032	AcroRd32.exe
3032	AcroRd32.exe
3032	AcroRd32.exe

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

chrome.exe

description	pid	process	target process
PID 3412 wrote to memory of 3232	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3232	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3264	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3484	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 3484	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe
PID 3412 wrote to memory of 2512	3412	chrome.exe	chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/file/d/1rdP_Ff-NFRtELN554qVgssYc5QSDAa64/view
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3412

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xdc,0x108,0x7ff90afeab58,0x7ff90afeab68,0x7ff90afeab78
2⤵
PID:3232

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1684 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:2
2⤵
PID:3264

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1916 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:8
2⤵
PID:3484

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1752 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:8
2⤵
PID:2512

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2948 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:1
2⤵
PID:1712

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:1
2⤵
PID:1624

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4312 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:1
2⤵
PID:5028

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4972 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:8
2⤵
PID:4128

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4720 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:8
2⤵
PID:4796

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4584 --field-trial-handle=1996,i,5194525856284218269,11585904352741149921,131072 /prefetch:8
2⤵
PID:2548

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:780

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3940

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\Generador de PDF\" -spe -an -ai#7zMap30430:94:7zEvent960
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
PID:1988

C:\Users\Admin\Downloads\Generador de PDF\PDF_Generador.exe
"C:\Users\Admin\Downloads\Generador de PDF\PDF_Generador.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
PID:4348

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\Generador de PDF\PDFs\loopiest_Summary.pdf"
1⤵
- Checks processor information in registry
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
PID:3032

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
2⤵
PID:1940

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=DFD7F65346AA3EE18C815EE5455BF24B --mojo-platform-channel-handle=1760 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
3⤵
PID:4292

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=0FE554D8818BE787148740119C637757 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=0FE554D8818BE787148740119C637757 --renderer-client-id=2 --mojo-platform-channel-handle=1780 --allow-no-sandbox-job /prefetch:1
3⤵
PID:3256

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=8A7EC6ECBF3D1DF9DFE56397E151260E --mojo-platform-channel-handle=2308 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
3⤵
PID:2556

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=FE04EBA31C7EBF7643BCC57968569C16 --mojo-platform-channel-handle=2324 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
3⤵
PID:3064

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=C006D7F7B51DCE3DA3595BA1D470DF56 --mojo-platform-channel-handle=2012 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
3⤵
PID:968

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

T1102

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
Filesize
288B

MD5
e476fcb13d4571dedbacb464917ce682

SHA1
645e953a849cc7c48622f7c204419520cd5730fc

SHA256
9f36770435e5496987f7f3466281e4e5649bdf152518fd846f2aff12d95fce9d

SHA512
8446c208ed039432ead826b10abea7aa9e2ca4640a8a33753225a80d8135ff0626e25938f66513359528fa6e5ac1ed111bc56ca3f328edc346dc6a0fedd4f3a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
Filesize
1KB

MD5
0786522d6584d97817bf17c53514e22a

SHA1
2ffefbe700d8217e6c269305cd11a67de20c702e

SHA256
658b515f21c31129abb5f7dedbd21974453b040409e81eb330cc707916fc533a

SHA512
281823e2c16bec7fc5923d810a94aeafa0d76df5128d6d11fa1c3f8fd85621e9d08afb23053d59c15ab6b92d7eac00c8dad754c1921584aea26754cfa43c6933

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Filesize
7KB

MD5
2354d5a271ba8a449910f021439ceb08

SHA1
a0a2baa023161afa3a35bbb957c6ec821973a295

SHA256
a9291068734822a14fe8872c31880f2b40d57b5ce664711ae9d8b2c9f2c9c543

SHA512
96dee667c2230c427c7d167f907325b9b0f5c32a0005845a20a4be0a073ef1a5ce473adab4cc01abb6a1ab08a6d680c5cae571a32cd34d4c53a4fa0eaf227266

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Filesize
7KB

MD5
02d1bb3c9c5db083c151c1fac714fde7

SHA1
e48e7c6bb2d87f4f2d9b8b0c5f0682e2bc1666f9

SHA256
ab1139646b3eb1872de7e7de4b79227755e661ecc97c2a208d282478a2ad1f16

SHA512
4b8928f2931b9abc0da59884828bb883d7de428445511b6ab83aed1e1936aa6c9a86e84fcafe7133657aa9da9c400958b74316997a4f979b51bd4a83eb816dcf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
Filesize
127KB

MD5
c4ad6ed236de3a015b3696dac6834b3c

SHA1
7cadedaa7465c2663507104570f66986c90de837

SHA256
279773703f8c2d3598d9d0538eff4875c66dee4327bcfb590750a47e526179a1

SHA512
4562594e9a1887605ef9e1c09d5988b3d81d57a3b9fdd85b702ebb7255b58961e40a6d813fb7eb09b5fae5fada4db29f803ee406a4a96fa08e46b15a6bd5dfab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
Filesize
127KB

MD5
4d43b6b8859eda6389334854d2301bf1

SHA1
31111e6c5e6fb7387d9d963442ca45b3e557dc44

SHA256
ef3de7e833fb0f8fd3bd593e6bbd1f822787fa6764a7f6d07ea83a1c575b646c

SHA512
9e444d0c4fca58458f621ab30f9d53069af6da049a407e2851085ddab17c6fb295ae36ca42e15797ad5d3eb954f05201324d05fb7d9b89d1eb3dbb029201eb56

Download Submit
C:\Users\Admin\Downloads\Generador de PDF.zip.crdownload
Filesize
19.1MB

MD5
c4559ce7a038a05470884ada7af1105c

SHA1
d7813737e493884d8d957638d5cb9b77c4edf9ce

SHA256
b973fc64fb8e9ffb59ed14d00143c19f17c84bc731407ec71143be91242657d6

SHA512
5327908bc62ae44b5a715132b3389f2f43d21582c22c2ccc67dad7d13768d5f332de7dec15811447740a8bf3cb7f52fad7038a677d56e14b043766eae3f13d40

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\PDF_Generador.exe
Filesize
2.4MB

MD5
1708062997826c66fbf488c329edc8f7

SHA1
907a0f3ae77f8e27aec2017ad462cf5d102465de

SHA256
56a49f5c6d947c6fa9c085e42214a1a218849fc0ee3561dc826d55b07720f2f0

SHA512
ea3d91fb8659b3a7603ec401bf8eec54438c5471bb01b15c3543e3dda3649e148557b783bdee9cba5ea8d7b70bc4365a58d7eca3ee0dc5583a3c22d5ad57041c

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\PDFs\loopiest_Summary.pdf
Filesize
3KB

MD5
2fcbdb40d04760dcde33894a6419b9dd

SHA1
c00ddb146c759b5218cb4b03416db71ee7811a55

SHA256
dd56a12699d85b58db20333ec0fdb8135f81a2f41db9d8780b909797832608df

SHA512
0a45313c71b21f320ad3bb2d1fd0bf94ab4b6f947604cff49a794f3f81731b4b82802cfda3f106aac0c2dfd37029698ca4d2d449ff9c5e64d02c235bd197ddc6

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\VCRUNTIME140.dll
Filesize
106KB

MD5
4585a96cc4eef6aafd5e27ea09147dc6

SHA1
489cfff1b19abbec98fda26ac8958005e88dd0cb

SHA256
a8f950b4357ec12cfccddc9094cca56a3d5244b95e09ea6e9a746489f2d58736

SHA512
d78260c66331fe3029d2cc1b41a5d002ec651f2e3bbf55076d65839b5e3c6297955afd4d9ab8951fbdc9f929dbc65eb18b14b59bce1f2994318564eb4920f286

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_bz2.pyd
Filesize
82KB

MD5
c7ce973f261f698e3db148ccad057c96

SHA1
59809fd48e8597a73211c5df64c7292c5d120a10

SHA256
02d772c03704fe243c8de2672c210a5804d075c1f75e738d6130a173d08dfcde

SHA512
a924750b1825747a622eef93331fd764d824c954297e37e8dc93a450c11aa7ab3ad7c3b823b11656b86e64de3cd5d409fda15db472488dfaa4bb50341f0b29d1

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_decimal.pyd
Filesize
247KB

MD5
21c73e7e0d7dad7a1fe728e3b80ce073

SHA1
7b363af01e83c05d0ea75299b39c31d948bbfe01

SHA256
a28c543976aa4b6d37da6f94a280d72124b429f458d0d57b7dbcf71b4bea8f73

SHA512
0357102bffc2ec2bc6ff4d9956d6b8e77ed8558402609e558f1c1ebc1baca6aeaa5220a7781a69b783a54f3e76362d1f74d817e4ee22aac16c7f8c86b6122390

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_hashlib.pyd
Filesize
63KB

MD5
f495d1897a1b52a2b15c20dcecb84b47

SHA1
8cb65590a8815bda58c86613b6386b5982d9ec3f

SHA256
e47e76d70d508b62924fe480f30e615b12fdd7745c0aac68a2cddabd07b692ae

SHA512
725d408892887bebd5bcf040a0ecc6a4e4b608815b9dea5b6f7b95c812715f82079896df33b0830c9f787ffe149b8182e529bb1f78aadd89df264cf8853ee4c4

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_lzma.pyd
Filesize
155KB

MD5
4e2239ece266230ecb231b306adde070

SHA1
e807a078b71c660db10a27315e761872ffd01443

SHA256
34130d8abe27586ee315262d69af4e27429b7eab1f3131ea375c2bb62cf094be

SHA512
86e6a1eab3529e600dd5caab6103e34b0f618d67322a5ecf1b80839faa028150c492a5cf865a2292cc8584fba008955da81a50b92301583424401d249c5f1401

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_queue.pyd
Filesize
31KB

MD5
6e00e0821bb519333ccfd4e61a83cb38

SHA1
3550a41bb2ea54f456940c4d1940acab36815949

SHA256
2ad02d49691a629f038f48fcdee46a07c4fcc2cb0620086e7b09ac11915ae6b7

SHA512
c3f8332c10b58f30e292676b48ecf1860c5ef9546367b87e90789f960c91eae4d462dd3ee9cb14f603b9086e81b6701aab56da5b635b22db1e758ed0a983e562

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_socket.pyd
Filesize
81KB

MD5
899380b2d48df53414b974e11bb711e3

SHA1
f1d11f7e970a7cd476e739243f8f197fcb3ad590

SHA256
b38e66e6ee413e5955ef03d619cadd40fca8be035b43093d2342b6f3739e883e

SHA512
7426ca5e7a404b9628e2966dae544f3e8310c697145567b361825dc0b5c6cd87f2caf567def8cd19e73d68643f2f38c08ff4ff0bb0a459c853f241b8fdf40024

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_ssl.pyd
Filesize
173KB

MD5
9b4e74fd1de0f8a197e4aa1e16749186

SHA1
833179b49eb27c9474b5189f59ed7ecf0e6dc9ea

SHA256
a4ce52a9e0daddbbe7a539d1a7eda787494f2173ddcc92a3faf43b7cf597452b

SHA512
ae72b39cb47a859d07a1ee3e73de655678fe809c5c17ffd90797b5985924ddb47ceb5ebe896e50216fb445526c4cbb95e276e5f3810035b50e4604363eb61cd4

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_uuid.pyd
Filesize
24KB

MD5
3c8737723a903b08d5d718336900fd8c

SHA1
2ad2d0d50f6b52291e59503222b665b1823b0838

SHA256
bb418e91e543c998d11f9e65fd2a4899b09407ff386e059a88fe2a16aed2556b

SHA512
1d974ec1c96e884f30f4925cc9a03fb5af78687a267dec0d1582b5d7561d251fb733cf733e0cc00faee86f0fef6f73d36a348f3461c6d34b0238a75f69320d10

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\_wmi.pyd
Filesize
35KB

MD5
ee33f4c8d17d17ad62925e85097b0109

SHA1
8c4a03531cf3dbfe6f378fdab9699d51e7888796

SHA256
79adca5037d9145309d3bd19f7a26f7bb7da716ee86e01073c6f2a9681e33dad

SHA512
60b0705a371ad2985db54a91f0e904eea502108663ea3c3fb18ed54671be1932f4f03e8e3fd687a857a5e3500545377b036276c69e821a7d6116b327f5b3d5c1

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\base_library.zip
Filesize
1.3MB

MD5
3909f1a45b16c6c6ef797032de7e3b61

SHA1
5a243f6c8db11bf401aeac69f4c2a0c6cd63b3a8

SHA256
56cce68da6a7ebd11aab4b4a4e6a164647b42b29ae57656532c530d1e22e5b44

SHA512
647e343eb9732150c0fd12c7142a960ede969b41d5a567940e89636f021f0c0b3249b6cfc99c732190085bcae7aa077f8ac52c8e7fe7817d48a34489f0cd5148

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\charset_normalizer\md.cp312-win_amd64.pyd
Filesize
10KB

MD5
d9e0217a89d9b9d1d778f7e197e0c191

SHA1
ec692661fcc0b89e0c3bde1773a6168d285b4f0d

SHA256
ecf12e2c0a00c0ed4e2343ea956d78eed55e5a36ba49773633b2dfe7b04335c0

SHA512
3b788ac88c1f2d682c1721c61d223a529697c7e43280686b914467b3b39e7d6debaff4c0e2f42e9dddb28b522f37cb5a3011e91c66d911609c63509f9228133d

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\charset_normalizer\md__mypyc.cp312-win_amd64.pyd
Filesize
120KB

MD5
bf9a9da1cf3c98346002648c3eae6dcf

SHA1
db16c09fdc1722631a7a9c465bfe173d94eb5d8b

SHA256
4107b1d6f11d842074a9f21323290bbe97e8eed4aa778fbc348ee09cc4fa4637

SHA512
7371407d12e632fc8fb031393838d36e6a1fe1e978ced36ff750d84e183cde6dd20f75074f4597742c9f8d6f87af12794c589d596a81b920c6c62ee2ba2e5654

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\essential_generators\markov_textgen.json
Filesize
44.2MB

MD5
6457b7b124729eba4df851fd684818e8

SHA1
ee4cb1832b1739fbde22dec31505f90efc4d15a3

SHA256
ae29ffa5bf4a2dfaeeff503fcaf44389a66e8e1ed77a2760c8c2de69c85f9bbf

SHA512
c4b9310fe69a2697e8a4ed08053d0a9dc771a7b08b3059294d6e9c49aa0e77756bd3a4e3b69324200bab3100219ea57028c3f2a19e9ce26303c2971a72d9e62e

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\essential_generators\markov_wordgen.json
Filesize
1.5MB

MD5
f0f72c69ed04d49cdfdc3e14cc933f05

SHA1
7c852b43fb18c5a23b5c0a318aa66b7124cc2df5

SHA256
c063a1da3470116af4bcd246c9c89123bd68ee013dbe3c80bc873d1d90f4ffe9

SHA512
a6afc5680e38981a00abb8db78d0b1f79699d2b995a81ea166b842f7c96b24326f33bfd1ae9f88b3d3cbff0dcf659c41d1894852bc018cc01dc98ae95b7f7b7a

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\libcrypto-3.dll
Filesize
4.9MB

MD5
51e8a5281c2092e45d8c97fbdbf39560

SHA1
c499c810ed83aaadce3b267807e593ec6b121211

SHA256
2a234b5aa20c3faecf725bbb54fb33f3d94543f78fa7045408e905593e49960a

SHA512
98b91719b0975cb38d3b3c7b6f820d184ef1b64d38ad8515be0b8b07730e2272376b9e51631fe9efd9b8a1709fea214cf3f77b34eeb9fd282eb09e395120e7cb

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\libssl-3.dll
Filesize
771KB

MD5
bfc834bb2310ddf01be9ad9cff7c2a41

SHA1
fb1d601b4fcb29ff1b13b0d2ed7119bd0472205c

SHA256
41ad1a04ca27a7959579e87fbbda87c93099616a64a0e66260c983381c5570d1

SHA512
6af473c7c0997f2847ebe7cee8ef67cd682dee41720d4f268964330b449ba71398fda8954524f9a97cc4cdf9893b8bdc7a1cf40e9e45a73f4f35a37f31c6a9c3

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\python312.dll
Filesize
6.6MB

MD5
5c5602cda7ab8418420f223366fff5db

SHA1
52f81ee0aef9b6906f7751fd2bbd4953e3f3b798

SHA256
e7890e38256f04ee0b55ac5276bbf3ac61392c3a3ce150bb5497b709803e17ce

SHA512
51c3b4f29781bb52c137ddb356e1bc5a37f3a25f0ed7d89416b14ed994121f884cb3e40ccdbb211a8989e3bd137b8df8b28e232f98de8f35b03965cfce4b424f

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\random_word\config.yml
Filesize
178B

MD5
fbf5971908118e07ed04d6b57c398c38

SHA1
5e65e06dd18c68ec0848eeb4195007265c2d3ce9

SHA256
0dad3532eec09966908988b39906548742f13f4e098d7ac9cd2fce7cd104edab

SHA512
6f832711aed3c8a6d216b4d87bff09ea74e70b453fcf998d458c411f927ec83940e076085aa6b7cf41a4216c784da3494ca4940d10206a4c2b80a7817a205798

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\random_word\database\words.json
Filesize
6.5MB

MD5
94bc8dd8bad062720e6bbb6db1a93cc7

SHA1
8e32aa026f251c4654b7e1b8006bc895ae3be9b9

SHA256
332b79374436f3af98a712121f0103d25cd43eb1813aa5616e301ee8f099f2c1

SHA512
8552e752c929993ac426248c62115cd04b9a2a95657f5428a6d9b97f6c9a1ad585ba5f41534ab65d58eb06cf323cd518f925d321a77bec1bbfb7d6dc946e9bd1

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\select.pyd
Filesize
30KB

MD5
bffff83a000baf559f3eb2b599a1b7e8

SHA1
7f9238bda6d0c7cc5399c6b6ab3b42d21053f467

SHA256
bc71fbdfd1441d62dd86d33ff41b35dc3cc34875f625d885c58c8dc000064dab

SHA512
3c0ba0cf356a727066ae0d0d6523440a882aafb3ebdf70117993effd61395deebf179948f8c7f5222d59d1ed748c71d9d53782e16bd2f2eccc296f2f8b4fc948

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\unicodedata.pyd
Filesize
1.1MB

MD5
a1388676824ce6347d31d6c6a7a1d1b5

SHA1
27dd45a5c9b7e61bb894f13193212c6d5668085b

SHA256
2480a78815f619a631210e577e733c9bafecb7f608042e979423c5850ee390ff

SHA512
26ea1b33f14f08bb91027e0d35ac03f6203b4dfeee602bb592c5292ab089b27ff6922da2804a9e8a28e47d4351b32cf93445d894f00b4ad6e2d0c35c6c7f1d89

Download Submit
C:\Users\Admin\Downloads\Generador de PDF\_internal\yaml\_yaml.cp312-win_amd64.pyd
Filesize
217KB

MD5
55b11a967b77c25af37bd020db5fb3fe

SHA1
9449ace86d400d031833db471b6cf3a641de6457

SHA256
087881df55b9fe1d90bd11f89b6c9516dfd20ac330e40f97dbcc188b0cb034e6

SHA512
7bba1567792899108a26913c0e2114ee0ac92f88a4b821b9cedad6be47518fdea1e1999a25049f18869b0fed28fcdd8e69a11e865c16557509e4e2101930fcd3

Download Submit
\??\pipe\crashpad_3412_NGGIEDAMRMJDNWMV
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit