hxxps://freethevbucks[.]com/

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
21/04/2024, 19:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://freethevbucks.com/

Score

9^/10

bootkit discovery evasion persistence ransomware

Malware Config

Signatures

Renames multiple (94) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware
Downloads MZ/PE file

Modifies Windows Firewall 2 TTPs 6 IoCs

evasion

Windows Service

T1543.003

Disable or Modify System Firewall

T1562.004

pid	Process
6912	Netsh.exe
4708	Netsh.exe
6988	Netsh.exe
5856	Netsh.exe
952	Netsh.exe
6956	Netsh.exe

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-1132431369-515282257-1998160155-1000\Control Panel\International\Geo\Nation	GLP_installer_900223150_market.exe

Executes dropped EXE 4 IoCs

pid	Process
6924	GLP_installer_900223150_market.exe
5576	Market.exe
1348	Tinst.exe
6124	QMEmulatorService.exe

Loads dropped DLL 5 IoCs

pid	Process
6924	GLP_installer_900223150_market.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Enumerates connected drives 3 TTPs 3 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\F:	QMEmulatorService.exe
File opened (read-only)	\??\F:	GLP_installer_900223150_market.exe
File opened (read-only)	\??\F:	Tinst.exe

Writes to the Master Boot Record (MBR) 1 TTPs 2 IoCs

Bootkits write to the MBR to gain persistence at a level below the operating system.

bootkit persistence

Bootkit

T1542.003

description	ioc	Process
File opened for modification	\??\PhysicalDrive0	GLP_installer_900223150_market.exe
File opened for modification	\??\PhysicalDrive0	QMEmulatorService.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\DeskUpdate\GlobalMgr.db	QMEmulatorService.exe
File opened for modification	C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\DeskUpdate\GlobalMgr.db	QMEmulatorService.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\img\logo.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\webctrl\loading\3.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\31.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\3.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\QQApplet\Resources\assets\scripts\syntax_adjust_regenerator_runtime.js	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\api-ms-win-core-sysinfo-l1-1-0.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\button\restore_down.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\Menu\menu_cutling.gft	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\hover\1.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\uires\window\max_normal.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\hardwarecheck\transition2.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\79.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\locale\tr.pak	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\TGVoiceBuddy\I18N\config-tr.xml	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\52.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\76.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\gmesdk.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\api-ms-win-crt-runtime-l1-1-0.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\AERequire\warning.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\hardwarecheck\button\unfold_normal.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\1.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\54.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\59.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\79.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\module\component-hooks.52445fe5.js	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\module\lib-syzs-login-sdk-utils.8f561e97.js	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\swiftshader\libGLESv2.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\button\ae_disconnect_server_down.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\button\retry_normal.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\Menu\menu_arrow_down.gft	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\hover\28.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\CheckButton\checkbutton_checkedPushedTexture.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\hover\2.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\28.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\static\media\battlePass.6c1d0bb1.TTF	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\TGVoiceBuddy\Xtml\TGVoiceBuddy.xml	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\UDT.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\module\page-preview.15c2ff27.js	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\42.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\21.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\cef_extensions.pak	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\QMEmulatorService.exe	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\webctrl\loading\5.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\webctrl\MultiTab\tab_button_bkg_normal_pushed.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\static\media\wx-logined.dc457fa5.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\api-ms-win-crt-private-l1-1-0.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\button\close_nor.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\button\reload_down.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\89.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\hardwarecheck\animation\transition3.apng	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\hover\35.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\QQApplet\api-ms-win-core-interlocked-l1-1-0.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\api-ms-win-crt-locale-l1-1-0.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\oversea\normal\17.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\webctrl\loading\0.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\libcrypto-1_1.dll	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\module\lib-syzs-login-sdk-v2.1ae335d2.js.LICENSE.txt	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\pages\syzsweb\module\lib-waterbear.3aef87b6.js	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\I18N\1066\GFStringBundle.xml	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\ScrollBar\scrollbar_bar_highlight.gft	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\normal\69.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\webctrl\loading\21.png	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\I18N\1042\GFStringBundle.xml	Tinst.exe
File created	\??\c:\program files\txgameassistant\appmarket\AppMarket\Res\tvoice_entry\hover\20.png	Tinst.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 8 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\.DEFAULT\SOFTWARE	QMEmulatorService.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Tencent	QMEmulatorService.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Tencent\MobileGamePC	QMEmulatorService.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Tencent\MobileGamePC\sf = "F:\\Temp\\TxGameDownload\\MobileGamePCShared"	QMEmulatorService.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133582031313770032"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Key created	\REGISTRY\USER\.DEFAULT\SOFTWARE\Tencent\MobileGamePC	QMEmulatorService.exe

Modifies registry class 21 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\syzs.apk\Shell\Open\Command	GLP_installer_900223150_market.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\Shell\Open	GLP_installer_900223150_market.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\ = "TMGAProtocol"	Tinst.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\shell\open\command\ = "\"C:\\Program Files\\TxGameAssistant\\AppMarket\\AppMarket.exe\" \"%1\""	Tinst.exe
Key created	\REGISTRY\MACHINE\Software\Classes\syzs.apk\DefalutIcon	GLP_installer_900223150_market.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk	GLP_installer_900223150_market.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant	Tinst.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\URL Protocol = "C:\\Program Files\\TxGameAssistant\\AppMarket\\AppMarket.exe"	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\DefaultIcon	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\Shell	GLP_installer_900223150_market.exe
Key created	\REGISTRY\USER\S-1-5-21-1132431369-515282257-1998160155-1000_Classes\.apk	GLP_installer_900223150_market.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1132431369-515282257-1998160155-1000_Classes\.apk\ = "syzs.apk"	GLP_installer_900223150_market.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\Shell\Open\Command\ = "C:\\Program Files\\TxGameAssistant\\AppMarket\\AppMarket.exe -localpkg %1 -from localapk"	GLP_installer_900223150_market.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1132431369-515282257-1998160155-1000\{F862258B-33D5-4320-8F53-F847B3426DB7}	chrome.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\DefaultIcon\DefaultIcon = "C:\\Program Files\\TxGameAssistant\\AppMarket\\AppMarket.exe,1"	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\shell\open	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\shell\open\command	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\TencentMobileGameAssistant\shell	Tinst.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\DefalutIcon	GLP_installer_900223150_market.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\DefalutIcon\ = "C:\\Program Files\\TxGameAssistant\\AppMarket\\apk.ico"	GLP_installer_900223150_market.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\syzs.apk\Shell\Open\Command	GLP_installer_900223150_market.exe

Suspicious behavior: EnumeratesProcesses 12 IoCs

pid	Process
2280	chrome.exe
2280	chrome.exe
6924	GLP_installer_900223150_market.exe
6924	GLP_installer_900223150_market.exe
3076	chrome.exe
3076	chrome.exe
1348	Tinst.exe
1348	Tinst.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe
6124	QMEmulatorService.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 30 IoCs

pid	Process
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe
Token: SeShutdownPrivilege	2280	chrome.exe
Token: SeCreatePagefilePrivilege	2280	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
2280	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe
3076	chrome.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
6924	GLP_installer_900223150_market.exe
5576	Market.exe
1348	Tinst.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2280 wrote to memory of 1460	2280	chrome.exe	86
PID 2280 wrote to memory of 1460	2280	chrome.exe	86
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 3064	2280	chrome.exe	87
PID 2280 wrote to memory of 848	2280	chrome.exe	88
PID 2280 wrote to memory of 848	2280	chrome.exe	88
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89
PID 2280 wrote to memory of 1408	2280	chrome.exe	89

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://freethevbucks.com/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb7c94ab58,0x7ffb7c94ab68,0x7ffb7c94ab78
  2⤵
  PID:1460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1600 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:2
  2⤵
  PID:3064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2200 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:1408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3040 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:3320
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3056 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:912
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4488 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:2580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4668 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:4440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4956 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:1444
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4520 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:2312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5088 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:4508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5408 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5592 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5628 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5608 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5888 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6056 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6072 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6680 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5844
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=7104 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7252 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:6060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=7400 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:5128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=7560 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:5504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6008 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:1932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5944 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5140
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6544 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7244 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7936 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:5788
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7444 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:6152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5308 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:6620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6888 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:6836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7512 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:5296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=8000 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:1
  2⤵
  PID:6948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7212 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:6520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7032 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7072 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:4920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4364 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:6776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5380 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:1348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4296 --field-trial-handle=1872,i,10515399940756570649,11794062131123348885,131072 /prefetch:8
  2⤵
  PID:3720
- C:\Users\Admin\Downloads\GLP_installer_900223150_market.exe
  "C:\Users\Admin\Downloads\GLP_installer_900223150_market.exe"
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates connected drives
  - Writes to the Master Boot Record (MBR)
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious use of SetWindowsHookEx
  PID:6924
- - C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Market.exe
    "C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Market.exe"
    3⤵
    - Executes dropped EXE
    - Suspicious use of SetWindowsHookEx
    PID:5576
- - C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\Tinst.exe
    "C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\Tinst.exe"
    3⤵
    - Executes dropped EXE
    - Enumerates connected drives
    - Drops file in Program Files directory
    - Modifies registry class
    - Suspicious behavior: EnumeratesProcesses
    - Suspicious use of SetWindowsHookEx
    PID:1348
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="AppMarket" dir=in program="c:\program files\txgameassistant\appmarket\AppMarket.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:6912
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="TInst" dir=in program="c:\program files\txgameassistant\appmarket\TInst.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:4708
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="bugreport" dir=in program="c:\program files\txgameassistant\appmarket\bugreport.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:6988
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="QQExternal" dir=in program="c:\program files\txgameassistant\appmarket\QQExternal.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:5856
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="GameDownload" dir=in program="c:\program files\txgameassistant\appmarket\GameDownload.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:952
  - - C:\Windows\SysWOW64\Netsh.exe
      "C:\Windows\system32\Netsh.exe" advfirewall firewall add rule name="TUpdate" dir=in program="c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe" action=allow
      4⤵
      Modifies Windows Firewall
      PID:6956

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4716

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xfc,0x128,0x7ffb7c94ab58,0x7ffb7c94ab68,0x7ffb7c94ab78
  2⤵
  PID:696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1700 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:2
  2⤵
  PID:6876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1924 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:1504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2280 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:4520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3028 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:1
  2⤵
  PID:1928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3036 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:1
  2⤵
  PID:1964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3600 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:1
  2⤵
  PID:7096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4452 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4620 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:3468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4820 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:3548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4920 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:5308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4476 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:3740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5008 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:1
  2⤵
  PID:6388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3472 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:1
  2⤵
  PID:5972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4980 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:4928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5048 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:5544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4244 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  - Modifies registry class
  PID:216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5152 --field-trial-handle=1904,i,15255802332156375853,15168376388945361700,131072 /prefetch:8
  2⤵
  PID:5276

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4532

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x434 0x150
1⤵
PID:3588

C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
"C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
- Writes to the Master Boot Record (MBR)
- Drops file in System32 directory
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
PID:6124

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

T1543

Windows Service

T1543.003

Pre-OS Boot

T1542

Bootkit

T1542.003

Privilege Escalation

Create or Modify System Process

T1543

Windows Service

T1543.003

Defense Evasion

Impair Defenses

T1562

Disable or Modify System Firewall

T1562.004

Pre-OS Boot

T1542

Bootkit

T1542.003

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe

Filesize
6.4MB

MD5
b32964b1f283ce35a96e14fdf8f8f6fa

SHA1
5cf288aba9cfecea125bda66d2359a7266169404

SHA256
6068aea2fcf490fe6e2125a1eb50b7059424b6d3da5394bf4ab3245ba2f25cf3

SHA512
8856c6275f0f68e1eb203b925ad98267718f35673938ebd8f1ae1604467f2bddbc290d06f40631fc56eb7389a05029312c5750616789cf57b4621c8435ce2f7a

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\StringState.xml

Filesize
183B

MD5
bba8d8127e3eb9e91679885c5f42a8f8

SHA1
b7583827b29251253eb476d8553b78b8ec111725

SHA256
aee0cacdf2eb6d8f5a0168a0756f1834c21632cb5238fcb366763e93b7c5d011

SHA512
931d257f9a689e0fefaad5c7d3699fb998716638c03aa501575d9ad9dffff0d2bce3f485ac3dcbfa868380fda0bdbff84ac3a1e110c1ab0734f585c1a1dd5cd5

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-en.xml

Filesize
268B

MD5
1f8732c2fffb83b09abae916afa417ea

SHA1
26102b442325fcdc3e7f72f0855f03d353f2a55f

SHA256
e97f7ada887eb751c6e6927ab57b04f5121fd7c14eb266c45954abb72833327c

SHA512
1ac6c7ccf50e69489c8e7fbd8d825d1a5e9e32d9e8764bd54de58efc0def5fa0c935097aed921c8cc89638e02154962ab9e8265e10843e3aa0a3e8cbfb7f6491

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-id.xml

Filesize
269B

MD5
80c5d8008844619df82e2d5ad65b5da8

SHA1
03bfb95bcac5f2b52de056deb089e6495e7f9b30

SHA256
76994bea62ad8c19e2ac0c193d05f87b2acfd7a4387c5adfbc24cd5e2d3da29c

SHA512
d3ac11a03843383cb3496fe963df3665e879a5ef28a359bcbff3640ac084137aeb30d9bdf937c651762e6ba09d45b5722c4019290ba8e16d3f9f4a1f96548fcf

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-ko.xml

Filesize
269B

MD5
b96fa0a7ce5d7baf6467d17db4112338

SHA1
06ffdb34e6aabe8e52d9f5c44c56b611700abe75

SHA256
17e9689057e15cf5a4e51a4db9cf97524a07f3ce7acc2c9c1ced8dfab6fdc048

SHA512
5cb997230ec2552e881dd32f2732d5ce4920b2f56f58e54bb0cfe840bbce3973094958ed2a0f77110f2f6eff265091ad4a2ad6a3c3d48467611482ebee5f6100

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-pt.xml

Filesize
269B

MD5
051a004b05cb01bc4c7fa92ff498d390

SHA1
215c2f4dc6ab14fad406dfc287f7e134e783c5bb

SHA256
a418aac47f73420d812b9947229e9bab36b991629a3dd9a5f6c4649e8b02c955

SHA512
7d2f70e8e54199c8c0bbc784a65022a1239af6adb8498ee676ae1e2114692b273211b45bede99123a339e05d92f132d05d1b86f86ad5f4aa39408e4911d4003d

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-ru.xml

Filesize
269B

MD5
0910e48c7ef6ee3cacba63d19b1d81f4

SHA1
b9cf52f8ab64a5ac5095cd70a4c8d24873a486e4

SHA256
f15fd6d344c1f926c818b18104a463e345c74a17dfda688c4d6af3a8ce8eafba

SHA512
025437e36dc8f783afea950805b8cbc931677322985b98310fe86d9e1c96844193b9aa4bffa291d033e9e3513070a619695e037074cc48dc29fb961973aa7d0f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-th.xml

Filesize
269B

MD5
a737838e3c93e95f1f8555c83e19bdf8

SHA1
01a3c3427c5badbc38ab065913a0f1ecba81aed4

SHA256
a6d47646219f993a45eb8cb1b33625cfb357b1c2ecb69ec165fc6d62b91949ad

SHA512
1e2dcfc4a01a43f16c9f5f89fe372b31b0e4f35ed4d2f7670c9edf2fd55feaebc96a409b47bf02a9e5485a5b05b11878cfb4132a73ef024797de54d11620a877

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-tr.xml

Filesize
269B

MD5
d27fbebb5f581b0c9960d4cdaa093cbd

SHA1
aa6238139cc6a48b83f226667806e4ac009d31ac

SHA256
7f28d495375253347d1d947fb12a9d25082309b8288dd7af058f4cddb427245e

SHA512
e79fce5afe37b7d44dcb7b1aada2f5f07209723dd71c5e4195658f125b18d2c4be23123079e30f8a12a0bf5c52717b701d01bd892e8ce0579060da4080c70d92

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\I18N\config-vi.xml

Filesize
269B

MD5
a3cc17103e2f161042fa24dee1ebd243

SHA1
1e03ad708bc7b3c9878f367a4241bc9d83c02079

SHA256
6c071064476b4bed118072014abf8075046dd5fc2afd9b0c9527b3c2722bfc8b

SHA512
e4f71f4f2c6814a6ef50ce6260f22024a670c0768114ed048de38e1db62c8c3e105cd1f7f204f7dae03256ec5ee54d09b190a5f2cc1e851a61deb4a44890e0f0

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\AERequire\feedback_down.png

Filesize
123B

MD5
db1e630f6a2edbcbd4d6351de1e23178

SHA1
c4a9444c25207fca2f66108dea4d3e00af2f7f44

SHA256
766afb00a71210fd8a97331dc936aeb3bf5832da4011e0faf3de111479618604

SHA512
23732bf4a2c530fbd5bf3f85593b33ac0ce47cd45369f7772299613b301a5b2099baa47f63268e823f7ed8d87458980c4ca262aa5148a59bb6f14442e4fd7d52

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\close_down.png

Filesize
135B

MD5
ac8663eeb86f730ba61ea1eb7a305517

SHA1
ed84d55fba2870b06a05a0366c1bcea5a18a1d32

SHA256
3ad5369cf8b5e7c371c161dc222da9339da443d6f0d19192a75654a540211800

SHA512
00d3fc94e8a243b35a4317b32e0c8b98a7c68bce54eed73341247bfacdb3c20f5194edad99ac14c7e3664fb5bc54f574d87346557812d1a53f53337712644a78

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\close_hover.png

Filesize
134B

MD5
f63b0bcdefce2dc6c560ee6dafc8305f

SHA1
e01d7b5a99798e1b46d96a14daba6173cb51f428

SHA256
a04f3175fd7d6d26bf58c0dde03b6f6e8c9edee5c0eebf6aedaafde6a6b968aa

SHA512
1164aae024122600225649640079c49191b679d16b469ffadf806c9d0de1482032b235ec1ccfcde8b618393399b09c8115c20b45ccc9a0d68d7b2e2884f62ef8

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\close_normal.png

Filesize
135B

MD5
58d267466f6716c513d8867d361e42d3

SHA1
f1257787f3748c9298cf43ab435d2088b1e9fcaa

SHA256
bb7e6b43a8d86aee131a31d84ebf71f592b89f45f9ec26b194406f90510c54c9

SHA512
cd967beb40ebc0bf54630041296ed9cabe23472775474d6af5a350a1e39cccbb72d3cd38757115c7a86ee40d89975d076b4fcc3248639241b73cfb4345a1076f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\max_down.png

Filesize
111B

MD5
069a5181128070af374b7eacd0f1a9f2

SHA1
e08c6e8ff34edcb59bb3e067f3297b0cf29fc203

SHA256
28d44de3a3ed3039324730883b5ee7f36ecd77c351f0dd470f0addd3c90d7c46

SHA512
dee9c6bd584aba5049daed7e845f49d7485d311a0f8a431376a2ba09a802b9f24b1f9c6fd25fda250e76ad7998b72fb792e542a0a885c7c0a72ce87d08144a89

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\max_hover.png

Filesize
110B

MD5
19f33a66c1bbd4e8b1fc2208ebe8738e

SHA1
2a944bc87758f87877795716576594002bee0920

SHA256
8862c6c91917a10615bd4ef11d1afcdc4f5c03cd498b15be1f00c6c7fd9e704d

SHA512
92d4ceeb4500e5f183f3df4a1a8501945b16a8eff9f68273e89dc6d20711dc9931fca6153bc5c239d0f273aee43ebf2a824f5d9aaed25d1fad62fad2171197a3

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\max_normal.png

Filesize
111B

MD5
3979eb2a7f4f11cf739af806e55dcf24

SHA1
aea935b02b9eee4a6787ab40d1b66d06ba479827

SHA256
495df5662da43a916eef4451f046526697b518c796d529d7a4afa0c4f62adf0b

SHA512
2ef413d624c7d74daadb7e403aa34724597f395ffdb21cad5f65b38dceb44574e570cc8ff01885cba9212b1f4e8b1b9c114a45b3aaa5544f5890953823031485

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\min_down.png

Filesize
110B

MD5
ef106171918eb3ea4a60ee955f851fbb

SHA1
45052d56ee73fecba4816f4ebfb23e5c4a114fa4

SHA256
0651b1f15c33c959064acac84021bb92739dd0c36d59a4d37cd6e738257255b2

SHA512
67fd33d62ab89a37478b829449b3eb795fbed37c3e38e8dd33801a28d7ab9a8460f688747d1f48e5ddbcfed514cbb808517e1c035e00a66a6c3625711a5bae82

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\min_hover.png

Filesize
109B

MD5
a8963c9a7d5f4e262cff6d6a3b7063aa

SHA1
de2d4494bd44a8cf8f81944bf1966083102448af

SHA256
4909bf144b1e5641ca945ed9046f46d5c6eb3d01f43581a575df826399e6097d

SHA512
ddb78a911e297e84e67c5f3bc37034c27e7c8ca629da610d9b11df44f15fb40344024b4b847d1130df31107c406f694ac73daddf10e350d3ed93bd4f54260c9e

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\min_normal.png

Filesize
110B

MD5
19ab5e38c56c0859b8d18c1bb84903d6

SHA1
081319712069f6446a1ef792a287cb72845b4b37

SHA256
bbd72095f035e68f319040b538d7af46e23c7222d5ecaba6404a1c96d647cd71

SHA512
8c111d80ef37480ae7775c1fede09552708dab51b42c3481b658ea3a6640c555737b30fb50e64bbcb42cb412750d078f0f0e2b84b59f485c2427e81aaa640d56

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Res\button\retry_down.png

Filesize
112B

MD5
f0d939af0ddafaf08f9e4bf980796515

SHA1
ab2a9c979f419e342f7b0240cc29eb2ff092ac3e

SHA256
0b86dd63dc5087e6e5eaee29e08f32f866586f608263fb900262b065c28043fb

SHA512
cc8319c323d07cad1efaeedb362a644446c61688d0e897ecca305f6e460cda98817b002e4866c67b3f3c4bf49a7c48cd3e1b7378d798ce5afa9d1f20dcf56ba5

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\TBSCoreConfig.xml

Filesize
260B

MD5
12748b15d251c4708df86cbf00544929

SHA1
132f82c4570045b92e25f8e68e34c4a6a03605cf

SHA256
605161e8a540fc3c50381b7f25baad5bb5ea4a6ebd3efef31c41c4b8075615cd

SHA512
0fba6314e5664ec88251abcc292d40a31327dd0ff0ef9f7d9dd292964c4d90a7378999a21c49278d6fc655885b3a499026f7ea6fcb45a8c2fdbb45b04871ef4c

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\Theme.xml

Filesize
9KB

MD5
f340d3ff3bda959d8966bfbf56d34d8c

SHA1
2bb7e187be9f74fdc42e11e5e4e7abf52a1caf48

SHA256
1690526c13ed1ba0a8a3b811eb6358a09e145a2161a7fa0028c346388f866184

SHA512
a2c6d48bd95d16b1dc90c265202f74e02683448ba8ca203f74ab04b1e3957a0f7c694770ce107bfa3f8f5239290ffcc3331a37f00062bfbed3b616ee6c0d46a1

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\TypeDef\BasicTypeDef.xml

Filesize
965B

MD5
d1683ebfa9a9885a5319a11018ab795e

SHA1
bb581cb096504b8c502853acbf20a239028e1577

SHA256
2d34f1afda13d8eebb8fc1232f280214b27fa77196dd29a72bf175c44c5b3a1c

SHA512
1db13bc2272d34761154c822e3a717dbc46870e6428ce306e915e589c7b9194d9d320e5674cb1d2b1435f8f64908d20a38f785f69569ce699eade454e9288145

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\TypeDef\ExtraTypeDef.xml

Filesize
83KB

MD5
9725b213ac7129d7ea32be460cd85e41

SHA1
2d020148c5ab4d4cb523cca56d17cc255511e7b9

SHA256
ba32bf96a3ba1ddd301399160398319378386e229937b7fea8c2daf2fc3e01e1

SHA512
d8951bd3f79175274e309137bd6c69ce22e120c4379ca742033984e3f591740eb59c1ede24addc691f2d0aeaa337cbf1e3dd4554f89e2b13bfa861e996f6ddac

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\TypeDef\TBSCoreTypeDef.xml

Filesize
380B

MD5
98fa6d64788dce991ee9d308e58cc4e9

SHA1
5fa038f6cca6c3e4fc4f1e48673194c2bcb95e97

SHA256
0954e5e36d0f11e6cd6088b421844b21405c569565dfcdc1431ec849279ad56a

SHA512
71ea6c7f0154674a0e0b65b16ecce681f891e615b7f443117bd0bf4f69ea2e7f6e45fd1e964b2d9b54f4d0e19067b0174c4473ce52e93add74df02aaa3563401

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\common.xml

Filesize
9KB

MD5
c771097a1d490053e97638198f2f02d8

SHA1
f2d060f6e91688425e56e4b4f846f4ba4425f0ba

SHA256
175760389e292e7bbdc8ba697551dee44d9e3727e54df1d50a6bbbb3db6d503c

SHA512
28a70542fa4a2e1d6d434512bf46c92297a96266c40d46e54ce7e00a80bce438165d705e1828385dce434f59360b0e7135134e09da27eb4d72a5bbc7e26fc54d

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\AppMarket\gf-config.xml

Filesize
450B

MD5
f7b1bcf930a68845930ac056877658e1

SHA1
2b97e403cfe29f39f0b908404d293af077c47a3f

SHA256
9ce36b7d7b85d4c1b23b773cf78eb7c688ea3f0abe00a2bdbec30b6f9994b384

SHA512
bc5be9f320607a89d3c84c2c481cf12c046f132cbbcf0753a32aee94d0b3c3ac7f60eb13f21c218487461fb927645f2771d6457abb19ace1266865dc6e1e85f3

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\GF186\TUninstall.exe

Filesize
4.8MB

MD5
456b7f7a9706c0acfe82bb7ae88c3406

SHA1
264ea2a57626a314e8bdd5b6d923e7ee1329904a

SHA256
a53ab0e94c7c763b1dee2761d4fd66b38fc13c5a2b5906797146446e22d09866

SHA512
b8ae70f7e163254663efb667625fd8e9d3195e55a442eee290a221c988bc2657a49738309b67f07116a53a6ba678d25b62181b1fa6b9e7686830916d86c2f6bb

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe

Filesize
236KB

MD5
09edb5a9bf963d0020e7fdfda2d79c34

SHA1
f83bffeb58ec8b16340ff84ac25235252687b52c

SHA256
2a49f8f46f90097824952e58ed65cb4c76957d00e86a9c5d329e9e74bef1cf6e

SHA512
01d7af03cfe7fdb2a8ee8b9488c9e71518c4f09f11d10b3595498caf87cb6e709f2ccffc25d3ed7b71ec3eefef751d83a555c8265d18debc95e3d85fb1d6a10f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\TGVoiceBuddy\I18N\1028\StringBundle.xml

Filesize
1KB

MD5
ddfc333a5cf6c05dc44f45bcd729a42e

SHA1
cc452db43266b5cd6576af59c2393945d79b6aa3

SHA256
d1cf9e7d5c67d1fd4c12fb317813f4c4ad1d4a94d992d3758b0ca30d7ee513d2

SHA512
4988792ab971496a822615e2665f9c0653c02846a782af410e6b981f162b8e968426ade697ba835d357f5dfdfc62dd1041f6c25db2e5f240e0fac6c8b6c0fadc

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\aisee.html.old

Filesize
821KB

MD5
1d6aa4f0c1db1675696b845a1b0cb766

SHA1
e95212c56868fcab76b2ee9b3b8a93a9f5db83f4

SHA256
1d9a5ae40789be23effc6cfbdcbde2b07d442533370924240731e58484d7cf66

SHA512
57723570de8be3cef7d8a6470bfec40700615dda3febde73116b1073aaabaa33fa95ae8fb1ed7586cb47b4c512a85cc6b9c4041774218f56ebed3dc4148dc3f9

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\css\yunGameExitModel-6c103740.css.old

Filesize
2KB

MD5
5f74194a68213f713c8ea5b7dd723290

SHA1
4180649a737062633d565ef307d14542ea3fb4c4

SHA256
87d2d2efe41cbf51fe3bb18492e2818916336d43f8b021fed97863e5f14bc232

SHA512
6845b701b27b3967912fa57c815c430aef74cd91aa8ab1dbe0f0d87b749580d1dc6ea38ad34442219d636ba61d54fe79261184e73d6fe3d93f795e5488868a84

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\liveplayer.html.old

Filesize
3KB

MD5
00aa757ab13bc8b6b2910b0ae8533cf3

SHA1
f3bec91cc669e05527c7ac9094155e466c8cc721

SHA256
28d9fb50468ceb55f01cd44153aec920038589349e86097a9e5f61d534fe77fc

SHA512
a3fd92ad920ab61fc49e296d90d47d947fcab41b529961fa371afb4eb12bcb02f449c1d152ea3bb872d4ce96bb8c86f64366372406a7754df972e139b083f032

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\module\lib-syzs-login-sdk-v2.ac53bf12.js.LICENSE.txt

Filesize
808B

MD5
783f14fa45b10e088e68f98251448010

SHA1
cd522246a57b87ba54b1b6b92174b9091f70e983

SHA256
0d8f66cd4afb566cb5b7e1540c68f43b939d3eba12ace290f18abc4f4cb53ed0

SHA512
b7c82962cb44702c31572d8d4057561649bf47fe553441f54a9527c14f5b4f0fd747bc346e0ebd108879a9482f5afc3cf73229ac52143c5914139e108b8b58d3

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\recognizationMobileError.html

Filesize
80KB

MD5
f9057c1192a7f5b1d180816137f0e730

SHA1
9b4795815e73d7f3ff9949ecb8d22a42deb66315

SHA256
4f29fdcc65a006e9de11ecf94a82288ca73850271ca908214cbf1a167fe9127e

SHA512
c1bffb4a7aa116bddb502f6e8875674a76fc8a7f44cbad1bbb56c0b66c4f89e2e021033381059449dcfc0261744f7fb86cefb4a4699568c7e8ba1781aee37eaf

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\img\playzy-tip.png.old

Filesize
16KB

MD5
37a81c422383949c82ef3c87b87caf1c

SHA1
e1cc6af8c16d83eb2b7f0c3d68a989a569b2e45a

SHA256
266d447260366b3952638a4b579096bafcd4ce6b1eb36ea87de4040c595f42bf

SHA512
2bb80be95be71fbcf449111cc049cb70527ac5b3c082474fe69d3bc793603bd7a7796c4b4cb949dee95ae8749f1ccda0450dc45eb711b785ea45d250ee8cd8d6

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\libs\beacon_web.4.5.1.min.js.old

Filesize
73KB

MD5
59a39f95b189baa9b0d372ee20ab78ad

SHA1
1c7efdf40b467df9cf44c3ddde8797f0651d3df4

SHA256
022c34380f513aef1011bfade4f6d42aab457cc1656b93e0d1d7b30a4aefcf62

SHA512
f25dc8744bb5fd121b289ed5df4de424b0f39b70dce0964c1e684d883474023ac316c7969eaf655831f4312a6df0cdd4c1b70141171da0a171661e1c2e4ac4f6

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\libs\jquery-3.6.0.min.js.old

Filesize
159KB

MD5
1881464337728d17657b7c23c6d0ee02

SHA1
bfc5c3542c7b6f8e1fc28db3d1a0defe79ae539e

SHA256
1f20afe2298cb15bcefafbcaa7ac8f5d7253b7e47ea52601f6f4ca3ea62fbb3c

SHA512
701b7bb16b6e496f96cb037da0581d0c6f4d7d1c7e6e4d80217899faf24c34909ed90c83b649f4677dc543ea327ecd7d63feff5d6189d34632358275631fa1f1

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\libs\wx_sdk.js.old

Filesize
3KB

MD5
b319838dc55fa679d5ec38c671796b2d

SHA1
fe8f2bdc12b8d2a3371ca6ff02549f5a8fee0e7c

SHA256
a42306a21a0faa17b36e78a4f25503cf58f161082db4babc587ac2d15f8f7742

SHA512
5252192021fd2e1a97a9863d4403a827b0906c9ac677deb638fa49685d9dccc7fe8736ca589018205a08808b8bca7353c43b136dc6c8358c52314726c2235be0

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\libs\wxsdk.MD.old

Filesize
302B

MD5
8f021e0c7e6a699810382aa7b95d38cc

SHA1
11311156a5d230a07253b825ef594f994050258d

SHA256
4c8c5aa8d5fcd32db82cf6caf18ca52c144b5b559298ec6e4fd527c12d7fd9ec

SHA512
2e532d62780eca764c4fa8238dd09724b188d27fcacd04fa5cec8b647a264bd79770e0fab67eb7644528a21683379ca3e179d43fca420064a802a8cc5e12e950

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\Close.224ea384.png.old

Filesize
441B

MD5
224ea384d24029ce8ca8c0e44803bb88

SHA1
432ca47e034a0c6096528e69f93fce022989b7af

SHA256
f535ecab5f2bf5d797da60caee9438d097389f91c49fbf2a8414f97fc326b6dd

SHA512
f4f0343be8bbc983a434f0b3f3085073cacbad3fa0896c97f4d53094206b0049ed81e6eaba334aa84aef8b029a288839974e8f410889bc8a1c7b666abc05e4d9

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\Close_hover.374e4045.png.old

Filesize
389B

MD5
374e40458924d7ef173d117fdf71a844

SHA1
920eb76babe7004cde1cb0b7bf70df8ea1c15c54

SHA256
92164990579dd866f0882e7679f78df8eaf3006346ae7cb3ae8fe8e4ac86b054

SHA512
bec29a1764469821ce6d49668b7123403f904d28b6c0d2a8278eb8bd1cae96175292fde613dac157fda32df6c34c5e1c3a0c699641e499c8d3748c0632efab4b

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\DINMedium.ttf.old

Filesize
43KB

MD5
902d51bb5dfdc3a3b8c11af3cc56f901

SHA1
14df878f65df7447c14e690f1041da6968d4c4b9

SHA256
39cddb576e0e62f6b9f9553dac9be7a5d41565907546f3c30e5af49cc62ad832

SHA512
6be27b65fd5b50f78b07d5d91215ab094216e81b06a11541045f406b95ec4c512165484707b652ae8b07ec1610e73a9cc77a4dcc39d43c4fdc6f01678c591969

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\FontsFree-Net-D-DINCondensed-Bold.ttf.old

Filesize
38KB

MD5
5846f45b4c6987e591316047f0840020

SHA1
a241a05ce8c9e8102af34050527e233365dfe732

SHA256
954d998202722eadeb5d1174457d25723f2add665f0448d2f23e8c42fe344002

SHA512
0cfbca843fa5e7ef498ea3561775aac5d8affc657a547c399eb03c8956f339c2174b9cf1a1195490de6b53e5375ca1ce4f25828057085db476cc67a3f0389b63

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\GP.cad24f18.svg.old

Filesize
18KB

MD5
cad24f189ae96628318a697e7b37305d

SHA1
9a2db8961a31a37cb4797874829bfe95fdd8b00e

SHA256
c21264af4db3b76c28b6f74d6ff10f6d69342faf0033f18911fb6a85e1e240f7

SHA512
f81c711b141c4a4d7e49097708c94ed33947795067f2cd95b273496aeb4c8142b5eef6f64ae7146e3323cca4f8e84fb4089d8b6a67019c1d473999be7483c398

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\Logo.339f6000.svg.old

Filesize
8KB

MD5
339f6000254daedc8773ae6efcc89acb

SHA1
91b0e63eff58249d4ae4c6ddf56aef19c4ef087d

SHA256
e3e59e4b32af5cda6073e7c39b77ae1e0fc0405fba4323813644cb5ed2f5a0af

SHA512
6ce330b2e67b2b07cc45dfaa306c6725a6c1aa1a66d6652b2ff088a4cd46d42632f46ca235de59f217eb6ba3e811f10181f86c50926a2d8cf1c2eccc86bf7b90

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\SourceHanSansCN-Normal.ttf.old

Filesize
7.8MB

MD5
1def9981faa460e4e4529d4656f28ff8

SHA1
1b9c02984a79104c455f25835d75a70825a885b3

SHA256
cd1c5b9c6740c570ab7289402d1af2f39437c5e095e83baf81c74d80e56a75ba

SHA512
cb6f798014b05bbe8f822063d309df9d1539232919346e1ed521cc5b9441b26917b61cd6ef51af638a11da8012f1fc2877449977153d1166fceddd61d6ec20ce

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\TENGXZTB.ttf.old

Filesize
2KB

MD5
b02e269889ca9a96bff1afeab2b3eb86

SHA1
b47ac993cef945659fb9e8b2d75186eaa7b5780f

SHA256
9e8b81fce344100ba628b33aaaf4e797998211e770e2e82985cbe2f5673538d6

SHA512
7e079c9139902e50b6f4e68840d268d05996d7a741c0dbf6d30c2ecf1c84e5bc53b4b06e1dd75b93136ceb2c8de9163d6806aab6aac6f7f161871d4002cf05c3

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\WelfareIcon.bb215fa8.png.old

Filesize
16KB

MD5
bb215fa807270e76f1b10875419994f8

SHA1
fc7449af0833fded4f50a662f48205319c4674d6

SHA256
b5f03327bd8ce54057730f4241b3eb12609f27c3376f24c18958e44b5c6d1329

SHA512
341c2cdf93fc7545d7eb652e3441192ee999df5061684b5ed6384428806d2d660809d221c8401c7df5140e249abbbd22aaa37f0f53d931a4e18573ab9ec8ff42

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\about-logo-oversea.1db3cb82.png.old

Filesize
54KB

MD5
1db3cb826f48df2106114a6afd3a4e4a

SHA1
e4fe155f291af39f509aff9f42ab115690159108

SHA256
2131c1444334e92a949c668c768e9f13a10ceb153a421ce15f71aa6f538ebc3a

SHA512
14689f7f1eea5c5a96bd19cdcb1ed8f03905b5515146c8271e0a66e9ab04b67e6ff1f9d51115e58c7d7d910d8b695dc9a97d6153d3cd70bf8badeace67d1bfdc

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\about-logo-uptodown.f4b36feb.png.old

Filesize
23KB

MD5
f4b36feb94fcf2dff1c704c05ebc9865

SHA1
946e0a8be7651959fe19f9c34e63934c40c48e17

SHA256
7dea199c961b22190fb00f27a30a6393a7457668d0303b7a982abc8b8af99edb

SHA512
bcd1d8b36b9e2aa9c99f57db92d91775c43cc41f553ab5786cb27e013a2b69617f4b5b2f86fedec14e0675c27036d6e1a6b3e4d7fe0d9364ce41db453fd264bc

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\about-logo.37448401.png.old

Filesize
14KB

MD5
37448401493d55bf36cab8a2cb988561

SHA1
0b734bcda25744769c1349465a230e039ed9a34c

SHA256
b4ec90ac64403b00799d8d4ec872c5e2c45ad74597ffc4587de2f6550df43fbf

SHA512
68bee5298e26ae244f060a2c76a998ad5b62cb8526ddc979879cd396d29ade09f1a28580552b5cedb525aaeb4a92f72a4ce34b60b9a4574ed54b9666a6fa9bce

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\aboutBg.c2ec7658.png.old

Filesize
72KB

MD5
c2ec7658a58a6befbc5dbe99a7ec31cf

SHA1
15ff3e5c77f430f894c766c66f8663edc66902da

SHA256
f46308e39efabb1df8216c12abd9fcd982372f741d609c19ab17070cf27d1746

SHA512
b87dacdf8b1f928784d4eeda964a6907c88cba3d105e18785af52919455ef579e4ab525076993499200d12109d98f5a4f57d98d4ad6d3eb82a092c536ad67108

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\ajax-loader.c5cd7f53.gif.old

Filesize
4KB

MD5
c5cd7f5300576ab4c88202b42f6ded62

SHA1
7a1aa43614396382bb15e5fde574d9cdcd21698f

SHA256
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b

SHA512
f0d7ada22a3eb3b2758198a71472fb240c74ce4ca09028076e23690c70b2339c6b2a40f9158dd71c52d953ef27bbcc0105b061bdc74fbb0ad0b304c7c6a04a38

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\android.03fe0024.png.old

Filesize
18KB

MD5
03fe002464016d9ef2bb8cacabe08ba7

SHA1
315d7c6caa6b85be2b394436d171f66743cfc114

SHA256
3f623c66ba79b46c29cd687e2176ba8c14654cb837373826d30c1ad74fe731c0

SHA512
2e470b27cc28dc0ea1ed7dc9a609e2f113a63cb5690a8df7963fc853a7e5d8a03f9656671e96300d31188433fdbb630a1ce8e5d41e3664efe88a4c58a1eef81a

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\background.2f301ae6.png.old

Filesize
8KB

MD5
2f301ae6176f39b0bfa7d295ab15a005

SHA1
bac9a8324c7cb531100e8334447e6fdd2f542016

SHA256
398c7d9731e7ca31bb2321d1a2d4b94dc756624a370e5077a98e62cfcdad9b14

SHA512
994578788290215518488dff1b7989ddf75d723facd5655b926883c17598600ab1b81e52b7acf22be2f425f3d598c185d5f00823febd5edc61145d3484fb46b5

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\battlePass.6c1d0bb1.TTF.old

Filesize
1.3MB

MD5
6c1d0bb14fbebcc2c6ccc6c9dd21d97f

SHA1
3fdc7436086bb15718f0cfc99f8d16aa029bdcb6

SHA256
00aaeeba5b3887173248f050beeb8bd7c05ec9063dd9d9f2452ffa2132cbc53c

SHA512
f14e19f8f1d4e07ecd84182735400235e41b9942a86b6d0e4d09dc1e1d2b4f56c5abe52052821d0d1d6e22566d17b2f00d383dcc5321824e2d35b0c44db1722b

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg-large.1a662cff.png.old

Filesize
115KB

MD5
1a662cff1d69a71a3aef1f55140d356b

SHA1
399ccdd1f09da09c1172554e0b79753246692628

SHA256
4b7158efb66fc15ad7453392073a9e8b06e15dd3c77b92513e79d98d86f68b1f

SHA512
21fb57eb9df8caa3d71c048c39c7928951c5909eea42f474eff3628bb09f214779ba9604c93cc489c084c0211e5b98cb9a9df1c7a5a4ddd83f673198e4c0dda6

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg.3ea671d3.png.old

Filesize
167KB

MD5
3ea671d3314c837be2470038c5d1a95f

SHA1
a45ec699e606b0b4f4850e9416151aea6a5ad58d

SHA256
8210ecb596defb0467db7fe3dc4300ff48742e8fc81921f134ebe5ed52e531e9

SHA512
ae2487b042a6a5b04d92f887050fc41083bff9362189dde5878b7814460813072757877624610afe2dfb4d5095855930178292fe9e1b6524d01dc007c99afa91

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg.81b1dbdc.png.old

Filesize
94KB

MD5
81b1dbdc26501410a580168f457e6205

SHA1
f35803940af60e1e731375b9d2815cacbff5b766

SHA256
135bddf4cb6e42f0616875b1d519753edde1720adf9b13abe2910db9db917655

SHA512
1ab9a4e5f739adc81ad4a0435431adb423ad15475c06ca96036de61a6e99a14ca4b74397dbfaae83f36e17b6a61a0818d6e42c7e37c4308d7b4ad2193a19f7a2

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg.846d4ca3.png.old

Filesize
978KB

MD5
846d4ca3038fddf01b726a2f4d04f806

SHA1
06b09d8122d02178455f35925d6c3c6274111bc1

SHA256
c365916c4287643bf3c88722adc88dc40ca8e59ea1dd34f4f58b23ac22e6aa63

SHA512
a9b5e01b19d45d4227527f08a209f6c0f455e0b9d0f0b505a3ec0bdc6dd22accd0e90d1d90f0a5b18340dfff97c0e8c151f332a9f270a8b4b2d5cf7382210908

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg_complete_task.321f45c1.png.old

Filesize
14KB

MD5
321f45c1db908621755c98db87db9bc2

SHA1
33fcb9c82716a7181783ef5035f424a23630bdfc

SHA256
4b1119d8b1934648fcecae567a79c0b90ecbc874512a046664d504f09443bdcc

SHA512
91624217e967ae29c876160662c24cea04681faaa6edc40f6193c9324f1e150f3b907bda217c1aca881322194dd098e6ff0fd4aadf5b2f895979792d027f6f80

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg_gradient.2eddd6d2.png.old

Filesize
10KB

MD5
2eddd6d278303fe831ede70a0450171a

SHA1
dd4d6cd7cc3603d11c2c69684611ffa2126570fc

SHA256
2b07e1d82a6134ce498bc15ced4b101d2cf141b8b3a55a9412867b2e2a8f5976

SHA512
21510105f816e389b76bca0f28d6306e1854198097713783176e2fb76d04b578f25f6647af8384d3b21d9c68bc5c0da29a64c270f011fbf3ebf8b37150b902cc

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\bg_incomplete_task.48285349.png.old

Filesize
12KB

MD5
48285349595126daed523546a64a3c22

SHA1
a287e0358127f9d87981f5f807d97c81a1039cd0

SHA256
8ed80645f298cd85f66bbfd2cccfcf1502cf15f05f9828cde6c63851f6b11996

SHA512
2cf426688bf1972e0d1bff8e12981ba8642b1c65080b67977d96a829e403770d5f61bae242d5923efa66e1b45b81f6c851bf3f9d020340d3421e82b01f3fdd6b

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\cdkey1.9fa025f0.png.old

Filesize
4KB

MD5
9fa025f054f4e904fd9958de830d03d6

SHA1
462a39d9d9048279c841904168a862536511972c

SHA256
e3779114edfee021b64f62be5640ae23482914c09b31b4e1af154cab88c9573c

SHA512
f2849d79a7934958251936c6a89fbc35dca525a2b44409c7161ff139c7f02e97844cabe4a32ef981219b1b832243195d1c330bf20c14c4f2514f41fd8923f46b

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\cdkey2.ff9babc0.png.old

Filesize
4KB

MD5
ff9babc0fa823abc0c2c3a1345db0f5c

SHA1
8a33dc2e17f1060faa02ab4a6363a471ee8d8aab

SHA256
26e15bf243bf369595c68af14f68d2072ee41ce99cf148ca72ff45aa493bc1f3

SHA512
3bc5dc3e30261a5ca7d52f7a2e71851b79746032a90b80bba6ed8ce33eaf0bd2dfa5be3a974801d7d76126ce58f96f9c5d8ce5e27611d1590043da9d837f6196

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\checked.05568521.png.old

Filesize
5KB

MD5
055685219fddc93d79f4e4c1abf87721

SHA1
3b3dc06171ad57dfb80ee1de4c21f751d7973f53

SHA256
f1de84602dd322f99138c47603bb6788289fb92b0c471a6c0ab2f34ef012e533

SHA512
e3a25436c9ac81601abce2a40a1964770ff47a0187fa788644247045e4644c1ed23d93cee71ee165496a3cd972c00cf3045c9840433586311ffd69d5cfb01a39

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\default-icon.d631fb1f.png.old

Filesize
10KB

MD5
d631fb1f9f72cf20e77193470f343c7c

SHA1
2e9690acdb2a5b52ee1c5266c161c220b266fa6b

SHA256
0e8db8ae2e31b531d54acdef59279b3d3ca16230ebfb41dfbfa7d7d790cc6905

SHA512
e00b5276811089c0f051243c2057bf03b4ff5087392bfeafa933a59b6e3fff4e553ffb36af2aab27bc953c29eee26fb1acc60be6fa811fb992b3325ee7620267

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\defaultIcon.e78c301e.png.old

Filesize
17KB

MD5
e78c301ecd617da8a85093937423258e

SHA1
2a0432e05fa7d526016a1077a51718fc80a4d061

SHA256
36400e4a9d7f9fa7715ad4033c9d886e7febba1782077b8abd57cba6e3716427

SHA512
f6d00fc24f4364e2936644bd9356be5cc4c614917e297620a82a3fec1041d26e659b367cffc2329024bc7b3b29bdfdfd850966e3b418ac21cf3070340ba1d81b

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\defaultIcon_oversea.a16bcae9.png.old

Filesize
4KB

MD5
a16bcae99f0a1079b8f0981faf8fc71e

SHA1
65230e816fd67a442bba3cfa4119dc2a2be3baf7

SHA256
3d8f64b763a0793bcebc22cf79201e85bf4663794ede991d1c5ce0a7edced67c

SHA512
f0776e1116af5119ee07509ad494cc09ee993558fa2722d3e3e688255c9e70b555cc71653df222f2d3d7e20124b19e42a3df8ca980efc68a61e287e903be7877

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\description-yyb-logo.c4a4b824.svg.old

Filesize
9KB

MD5
c4a4b8243dce83fc395e680dbb1f9e64

SHA1
a0dab4ee176b6c2525c5c27f1647650447ae244c

SHA256
e5b8aa8eb288ddad07d3de21cf779579677b7704d8f74a3f623f6aa2bdfeef1b

SHA512
12969a9066b91ab6aeca838332a8832a455c3511d0f91a2b29ea6f510cd4b529b0ecff3f622e5b37eb1ca0fc8f4389e050f5248fb423f1272d87d4e2e7f85503

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\dot.7a96dfea.png.old

Filesize
6KB

MD5
7a96dfea8357864d3c63cda0a3875862

SHA1
de89315c7b37223280e6c00383144cc58a74bcb7

SHA256
7655a4a2b66c09e7fcec1ca3f544fa19d3e27c9ecfec98f28171504be0cfa77e

SHA512
c6a01afd7776a1cb000a1f3d3bc4fc895215a8f4b73b290f4a2aef8f16c18316fd35561aaaa32d7d23313cb5d80a7de786944a49c282560ce6973588a2c48b72

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\entry-bg.1edd25de.png.old

Filesize
53KB

MD5
1edd25de5f4defe501f810e0f0eaf685

SHA1
b8bfaccdcb3221304a680611222a0e11323e6909

SHA256
f6f27e5cde105db9b33321a6de48aba13bc809a9285d963a02bdc37f86e1af4c

SHA512
61b9473551b4fc2806885cee2dc8c21595b83677b245275916f4dedfa9de8c0201bfa92dcb14dc8c6c6904144b1e40ce9b27a60a6879505f5da9497ffa550e87

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\gift-loading.ae16e16f.webm.old

Filesize
29KB

MD5
ae16e16feac614bcf99706ed40d0e734

SHA1
0f99a0c744d56b6643ac5d774fde1175df85228f

SHA256
cc7714c6ef444133d5ac345d54e09ad7eda0ff7ee59797037f75bf45d677c038

SHA512
379733e0a71de74a0025ab6b1c3d82ee9a13bc1c914466bbdf0988738c54a323f7df2cc224a703fac1f5e42db3ea7d7c9a8b8ef55606b7d2c5c864208b4f771f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\gift_bg_normal.13d51e4a.png.old

Filesize
4KB

MD5
13d51e4a0b8277905e442b1d900df92f

SHA1
c7a1decaf878126e719f622ca792976df26bc1bc

SHA256
18c7c0ba6001ee43b464ecb3554d151fdbdb8eb2c4c9a1fa0772fb0d46ef7d57

SHA512
7c3b875299865a399aee55475186c066eff7857e29c0254e68d3d59bd0fc39041c64571db1055fd21160e6feeb0d949ae32bf50aea3fa6e28c5d52bf410fd5f7

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\gift_bg_vip.0b211d75.png.old

Filesize
7KB

MD5
0b211d759807a65a50e8f257a0f2420e

SHA1
0fac404b29629b85b20fcf4fb3fa7ebf658a8c6b

SHA256
6d83712a89d88b53ebeae370ce10fc85a8fe08e98639b1bc45ea0251ade548aa

SHA512
75c7af5ac59989e72285b8e0ddcc375422088ca7e89c4b2067173248bf9235729568003b45f87f3f112e81f81700d91d648e409ff8dbd8eafcd2eb0712abfeac

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\gp.d1ba99a1.svg.old

Filesize
52KB

MD5
d1ba99a111e4dc36190e276f11895a14

SHA1
e93c50fdef20e18d60d354dca92bcbe468154747

SHA256
d62aa275af6642f9f3e544d80321cc97bf9dc92690566a4bd8c22d9e7e149df9

SHA512
f58554847939749f8e4e20cbee623a16538672575088689800962f47becdb214d18b9bab663a2acd0f03cf3b835b50772cfe279ecf7dbef5765c749361dd02e1

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\guideTips.1c0529b0.png.old

Filesize
154KB

MD5
1c0529b0bd785b4cdba37dda169be707

SHA1
d9b7fdc7c23a8d278222a1bc4481c4c0a955e7b6

SHA256
473aa04a2f6d997093de710493a4487084b6caec0029f1859e8c81adb027198d

SHA512
ff929aeab03f0a53afc28ae5bebfb93199d519447ff963ffce4a229954bf411592a57eedaff4b87ce4a18edf3cdd4cfaa4bb5252d3a8dab088ee648785931a30

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\icon_normal.c6e1e1e3.png.old

Filesize
7KB

MD5
c6e1e1e314c4f61a520bd0b50376977f

SHA1
aa5fe9597f8cd0792b18490c45c00a2d026cf9b0

SHA256
649f982820d9caf4540ffac713cdc8c4d3a31bb12ddc11b6cb075c1052c0de92

SHA512
670f434c6b015d8c154c3e8a89ea756cfb02cfbc7b9f483caa9ac574cc89f700d7f0898bd0778f6feb11fc9c444520a49b4ef77e09599dbe5a65ba57a1bc95b4

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\icon_vip.c3df2d09.png.old

Filesize
9KB

MD5
c3df2d090aa216ba942fe0f20c958ee2

SHA1
6cc19ad7dffdecce1681b1f792f9dfe20ec96d3c

SHA256
024e468cd79a2a77e8ab3b9324dac9d1374ce89c703d7c693c675f417e39821d

SHA512
32f36584fc061d87b567b3bad33ff630887f2e14f4e42062936cb222e30addbddd04d01c32ccd4a67c59bd102821394ad91cd1975e479f2a9fe989c4119c6194

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\liner.9b9d79a5.png.old

Filesize
4KB

MD5
9b9d79a585e51be94bcd58e42d655e89

SHA1
235f1d5f8d8a5bd4f9f2c9f5e3654505d3cd340e

SHA256
df1d1e1693f395313fb9e4eb5c46e67d8c6bfe45386eedcc2626f658992883d9

SHA512
038977f338b521e644d641c1170987679af94977132db476eb986374cd145560c7a2c225c9de99c9d38d713252875fe66525f9e94bc065e77b2b5b69985b04c4

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\loading-oversea.54e4db97.png.old

Filesize
18KB

MD5
54e4db97aa581c72ada118ea8e3116ef

SHA1
2e77533d7d9936ec05b22d42815bace937b71af8

SHA256
064508290665a3110f129d0127e747ae80c59ba2ba995f33083b08160c76f527

SHA512
d4756f629e74c45e6dc0aea84bbefee7c637a5b90ba66c98076aea7199b4e710ef6bf8437a79a98d9a954e37e18b7e30dd82928b01805629c921e2ac0e2b4bdf

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\loading-uptodown.b3670225.png.old

Filesize
22KB

MD5
b36702255ed6173a67d31166dd30e60b

SHA1
ab832cb4c3a77172b91dd9340003804db3ff7ea0

SHA256
6112fce1e01f1f31b841bc1496d1fbdfbc1c2b97be73d15f4c6a0d912e71b70c

SHA512
d595e7387db012d27215b85f64e0f627d7b2f6d3f1c7480dd575d8d98fa3a75c6a4fd3249032abf8546dc6148f42d592ecb3e343df74449b04b0b9ab2704d715

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\loading.60bf42e6.png.old

Filesize
19KB

MD5
60bf42e6f8472eb824f7c215c816f155

SHA1
16eb6612822f18d720593edaffdb4883a0e62e02

SHA256
3f5fa7afd7acc5e3d73de74bf0252d2edcd9864b65da7369263d0a0eeefa1bbd

SHA512
755af12fc80c812973cc14d4cdc3cb79657f8f7c0cec365dc2a0715e0f25c012b07ba86ea783b6a3ef5ca649cc6925ed499bd6ec59a7ec7606026c0296035213

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo-about-edu.f4e07ec5.png.old

Filesize
19KB

MD5
f4e07ec53f000456714d80faafe4adf8

SHA1
52fb187eb1afa18333cc34688d0476e06bc12411

SHA256
a61f72bf2c583974d5b8c76376dfc5cfb8f6d0b229565988a884f43a10583e6a

SHA512
456a78835b2965ac33337789eca67a1eafdff61607f16513cc9945bfa7859a779db53948087232d48d02b67daeed2e12b2fc1c120cc461dfd796c51491dabf95

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo-edu.5be32200.png.old

Filesize
6KB

MD5
5be3220076a14a19f5fde9d25907356e

SHA1
bf0e942b43f981b624b12728883ed6d784fe4bd2

SHA256
e80ffeed1a6779335ca28906da1072849b662223c0f776dae3bc9e4ce1de69f9

SHA512
de49f581a7c3d88add885132bc03da96e51c2ef7ab65eb43919a7bf1350297f42eaebe9f438fc303bffcb3faa47cfcb73c2ad55e221679763122b65bb904e12f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo-oversea.1aa2bd26.png.old

Filesize
35KB

MD5
1aa2bd2627782333c51277d3827b5b22

SHA1
0e0fbefd4cc5d8a229dc7d029cea1fc0bbc4cfda

SHA256
8bbb0cef40176b111c96ac0bd4a3cac0447a730166c8f6c23bdad60ddb1f9697

SHA512
ad2af46ec78a6928b9eef4149362749a9a5b473d4cc1f8821f294cc4e264113c423bbb68faf17f9ce01c68c175bfe25deb1e55761994a1c3a386e54cfcd5aeca

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo-uptodown-simple.b218277c.png

Filesize
10KB

MD5
b218277c112ffe9b6f1f1fe57c064e25

SHA1
d007a13ecfc40d5567706234b9b70206f065182e

SHA256
b2ad11221f75608e311561fc6fd05993e328a3b86e839eba9a80cfa2b522dbf1

SHA512
5650a31d28d8a22925d9e3eff289473258ccea5d18e57489d633a7ec46da3dfa8d6375eaf55e287749c1dae95d7c81e785c40ae1e368eadf2710de3efa61f980

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo.2d57816e.svg.old

Filesize
8KB

MD5
2d57816ed75556725280ac1daac08338

SHA1
1755de38f7533603437ba7fe34d78fcbca423208

SHA256
e5eafc50188ec4bbefc1da8aaccded19820988cd466eebf5dcb2ea2786ea99ac

SHA512
ce26da1df642d4fcb0bd5e1958fcfea5df74f5cafcd64a560a8bc099819a5051d06eb0168761e4b7cbfe5a0b464b2874d145fc50699461ebd15539d2bed6a30f

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo.679094ed.png.old

Filesize
6KB

MD5
679094ed9828e0ccd83b45e21fb19e01

SHA1
319fb461b200fdf75a63160a9edae60581ca6748

SHA256
bb4fb444b33c46d797e4124060175b79ae704390359a4829feb847451536b621

SHA512
c1d7140ab2da5eded8884991fa4fa1c46391795f553b8a0e77accb480fdb1a24264872231a7b74424c3750135c997d37b1252c3a26a8f684c6d7027197013e7a

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo.a0435d4b.png.old

Filesize
901B

MD5
a0435d4b592b6bce4203d7a833047a7c

SHA1
3c71058e8995b04649988741d907d3150ba94daf

SHA256
3b6f429e5209d988a297e288a74c096688c1c1e71daa6217ddbde80de110b29a

SHA512
1d4bfe2207e3c56fb6b0a098c2394cb52e6fd851c71e950d1469c7bb489dc864a2dca93ef4868dcd80e33183acdb0e1607c23364a87a7386a33bdd18e5c47a86

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo_oversea.53b6f88b.png.old

Filesize
8KB

MD5
53b6f88bd4375ece1b5cc9ad14bb42b8

SHA1
820381965071a44fd41327c965a8d8788dfe25ce

SHA256
3bbd6f3853d5556de52e6300ab3cdb839e7f66d2e36a976f1eb7022e6e1e931e

SHA512
09e9bc0af6a3c5aa8e01a7673adb7fd894e066cd0443091d7134d43dd5326a68e9b17a06bbf23b7866947ff5710eacbdc093c164eccc68c179fda86104288637

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\logo_uptodown.1d1ea0f2.png.old

Filesize
4KB

MD5
1d1ea0f2536afe5ca163c6bdebd2901a

SHA1
fce00df759304e57915c53accc9936ef38b06cc5

SHA256
6cf731340cd9e8cb99fa1f6144cafb9b5d282ec0ffba5fd81b5b11bda1267c76

SHA512
abbd3c155d6dc41c3deab2f5264c85486352bfb8c8ce2c4f2bc73bb2015691ab0c15aba4dfc3819930d688871be368117432f0ecb1262fa58be559e08094ccaa

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\modal-tip.f838f7c7.png.old

Filesize
10KB

MD5
f838f7c72f1731b4eb1ec991e0c671b1

SHA1
25b9e6052bb770eb1102c52e584581eea92d1aed

SHA256
9bfdce32cf916a2b220564966ad75b72e52a3320bd73ce42dfcda8b91574bf71

SHA512
f7c40190174426de9241c5d5484bed575fe3cb73af032b1d4630a09f05b2280d4056feb33bcb13694c1d7f13693e9c0aeeeb0a12f84b2b0f81c618e7b8af18b5

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\model_normal.72e6cb29.png.old

Filesize
37KB

MD5
72e6cb29365c8f5f83c18040095cd228

SHA1
8101b1e35664f70126f247934f25ec1cf2075739

SHA256
2db41802f5d6dc78cf35f6c6f75b09cbc9a9f152f01ac9fbc4cb556278b04626

SHA512
a9843525b570ef7b51d28fb5c9624d6d117dd9dc3e88c470d9c0b70b3549890d0151b5a6fc2caccffa188464831ca748ebe309de5da6afacca9b0df39d1b7bae

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\model_vip.44ace2d2.png.old

Filesize
100KB

MD5
44ace2d22c6ad86c0913e3d05c9c3f74

SHA1
08ae15f4c6d299ad765357f8f428ecbcaab0b659

SHA256
7775e50a8fb564c3d17b8e3276d033d3852e52dfede0ab3fb8291a621ead40c9

SHA512
0fe365cfb1f2338078496d77dc958f001003b8cd301574e74969ac5e859e75ba808bd84f7078c7bf59f4245aae20ca7ffcb01d8ccc73f959cead04fbccf4ac54

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\newback_video.9862b89c.webm.old

Filesize
25KB

MD5
9862b89c97560057f2e4783159e5e82e

SHA1
ea2c23d16ef3d6b0345e65e21b49b218d4bee260

SHA256
f362dd87dde5fe132ea6d91b6a382dba788a8bb1667400b50bbb4bb34966fe8f

SHA512
1d7fdfd8ba8565eb674367e5aeb8b25bfb4e2268d2cd99405d76f75261ce10ac74a56b70262f59a8dfea22ebd12f2bdf00ea27571ed32c709237123dc3c0bd17

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\noResult.0220faa8.png.old

Filesize
168KB

MD5
0220faa8381e473a302d60eea06babe1

SHA1
3958ab249d6759942a3dfa1d534055dd7edb5c9e

SHA256
ee91fae5ef6c4d018d01b67a2845e4f2899390f27cb4ed1f38ff700e376beda4

SHA512
5ad4cb4d15050e55da1105425748958cdbf215de8544bdd3d2babede79c780d1e8bbc3d32c1f88efcc2f158d254b62fa4b1c38881792ccd9a25e84957e2053f4

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\page-common-background.43681e74.svg.old

Filesize
5KB

MD5
43681e74ebd51767600d2fc57637b4f1

SHA1
ac9ea81eca17aa1499181e2482aefbd6a77f6ec8

SHA256
4e8c66811f416c7a237d4ea590be4d6c4a6771754a673b06ca792f50871e59bd

SHA512
29770cb3b47b70e359510a56cbf1f532a0bd8d07f4c1bf000b8087854d34a1c0ac0c33b543f5aec40a2cbce748f505ee690ac20218780e28197400066039039a

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\scrollTopSprites.abc41cc5.png.old

Filesize
20KB

MD5
abc41cc5ed9921bfdcd57b13013fe18f

SHA1
2e142b09621abb064be80e33a557c9a1384eb1a5

SHA256
129fd569cc6a8116fcaa5f7512a62c3273d362fda3e9b4e9a78b3eea1337a821

SHA512
bcf0a774ee32a2a344f94c5d49b75f080c93cd49f5aaa29f4f89c31bc4e5de4f3d550413063ad72b2a6ab20379b36d9e5398d241b96d7fcad8623a80aaae467e

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\skeleton.7f8f861c.png.old

Filesize
158KB

MD5
7f8f861c6c2d91f0f49cb26d0a6cfed7

SHA1
b7f004cb202222bee586cc449f0c5a4be246bd6f

SHA256
00a69a3b5ce25a7eedf88bce0619ed8da7607618de85cb7f8f2c132a4a0081bd

SHA512
334d085a2ebb1b2288a75a50f35f0f2bf82cf80ff05d1a61d3a157599373a5dd822d984fde146bb1def856cba4bec55fe585b99d428364dcb85ac2ef55576ef0

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\slick.eot.old

Filesize
2KB

MD5
ced611daf7709cc778da928fec876475

SHA1
2dff0768f4c0a53228761eab917e2c65556042d4

SHA256
06d80cf01250132fd1068701108453feee68854b750d22c344ffc0de395e1dcb

SHA512
715e81b2e85cd3de2c31001a08a84647e4b222c674aa60e3cbe80032043b2d5cec7b364e8cdc24b7fe29e373ad2ca66c2ee5d22b327adc349d576951104c8f51

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\slick.ttf.old

Filesize
1KB

MD5
d41f55a78e6f49a5512878df1737e58a

SHA1
3331eebdd4ba348ef25abe00c39ffbe867d46575

SHA256
37bc99cfdbbc046193a26396787374d00e7b10d3a758a36045c07bd8886360d2

SHA512
29b8e7b7b2f6a81c1e6ccee7c8b816485c6b7b0831a641ec7204b2cc9486b4258f2819a144b122e57f74c3ac13ae41c2cded4154044e5094048e4e74277a88eb

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\slick.woff.old

Filesize
1KB

MD5
b7c9e1e479de3b53f1e4e30ebac2403a

SHA1
af91c12f0f406a4f801aeb3b398768fe41d8f864

SHA256
26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc

SHA512
976f6e9d65859b1a5e3bbd426441e6885d1912f5694f40e2897b10f46b3bd0c7d940f7917a6050d6bb8cdeaaa5e5f0332391d3d398f6c21ce27299dfc7036911

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\title.09b1666e.svg.old

Filesize
8KB

MD5
09b1666e426c82e32b94cb44947d9f6b

SHA1
1f16641097deeccd6b6b5b63dbf9ecdb3070edae

SHA256
459dfea3665da172a442f5973f40f0fd10061e787634866117cb6d5971ef6d84

SHA512
f039eaa233c30b84cbcaf2710ee794d9f7a1cc7e15a47c1be21031d3033db22a173334df7d29baa3a4f81002934ef598d24af13dda2e07b4d07a15ac08633638

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\title.4f8ea11f.png.old

Filesize
86KB

MD5
4f8ea11f15166ff6eca18aafe067355e

SHA1
27bd450402187a135aa417e7a76eec29a3aab65c

SHA256
458bbd7488a244bf0b843c13a16791924f5e3e6fd88b2d470313dad515732d83

SHA512
1d9b84209697e2a6c49125d24e4191264de569e3c9130432bc531e84a884bfecfa74d06899979487aedd751597fb34c4b299f4ff4bf7c560fab53cd22b00c5c1

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\toast-loading.de809d29.gif.old

Filesize
14KB

MD5
de809d29d49e3c49ec37b45fd6512f21

SHA1
04b434b12b92f98905e09b33ba5ef53d8b580ffa

SHA256
b2e70655375661b93b4b76928fdabd83c4bc18f13952419501e8e81e1d70beb4

SHA512
2babaf81eb131456f1de28266d2fa07ae09f36a9aae336ea786ca2dad2b84d51affbff6d68531564328dc39dc57e67fd948d4dccd204a8299a77c8ffc99c8cea

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\video-error.e06059f9.png.old

Filesize
232KB

MD5
e06059f9d6e1242728db97927b0cadda

SHA1
989f3590e32673eb0d33f6bcf032317f798faafe

SHA256
bf8349d7095eb91a6be53e12af5fa8527fe847f268eb1ac0a2183df9c44c9edd

SHA512
ab6a936cecd473d2e8bafa61a48efd6123c6cbe16df58f9bd9b174aa159dee0bac15162e9c3dcb33b4a12d8cb96d4a1d73b8a819d233536193a5a1d0eb9c4eb1

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\wx-auth-tip.cb1fbc2f.png.old

Filesize
49KB

MD5
cb1fbc2ff2ec4248ef2eaee3f2a93e4b

SHA1
92359d458b00f023d99d5663bedfd2a9d6e7d27a

SHA256
2fb903a9b875102c10f8af54894a8d778e6c3907ef36df6343c29266dbdbd51a

SHA512
0d520dd6d2ccb3d2d80642bf556f415a627081ceb0b6166f1b8d8dfe3dd17d01139a4c6cfeac84d6955d85100f4e8a824b4f83af5851f05e330e4fac78d285b2

Download Submit
C:\Program Files\TxGameAssistant\AppMarket\pages\syzsweb\static\media\wx-logined.dc457fa5.png.old

Filesize
10KB

MD5
dc457fa52fc4908ffb82107366a37e3e

SHA1
79615ae081508f146b81a0fd17cd8f01f88f60d5

SHA256
c4917c3bd3b9c202f0e8d118284083e4dccbf960806e115cbbcf624c84c63683

SHA512
38eba7f804940b7cd3fabd9b9627c01f872090c3d6e76ad7c2b7b5c66e6d5dd8417ba8d1955f9ab9a7cb11ef5cb2eaed94227f01c62ef18d58c58a2c60e9ea3b

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Market.exe

Filesize
218.3MB

MD5
1d218714941abf910cf39c6d4f265e7d

SHA1
8b9f1039dc10e194d5b9d3740aadd29064b8ce69

SHA256
d75ed9687dae3353f419e0a1e60735399646fbef19f9daa1bcb337f0f7b14066

SHA512
e4ed6e2e7024349378cd7c36852d18e45520b47ae1792c59544b600d581a5a4ff46f7eb47bc3afe422ffea7948332e16e8026fefe826f8d076efcf31a55dc6d0

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\AppMarket\Res\webctrl\loading\10.png

Filesize
8KB

MD5
74a1a84cf7dcd03933a27e414ea1e354

SHA1
da891deea2b1b8dd1cd15f97dc41abd6cec7c901

SHA256
101ecd4b2fe8076a437a4ce1ed4d5c6f92acd6db0f2bb79db64a40bc8cbabe55

SHA512
5eed2d9c7b426b681703ca1a26671e5dc984de39e6c71b0fc7f8bf0aa27f2154a907a05ce25fae6da25e53220f8a46d31acb7cfccdce33b79acdf9e1a5e5be69

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\TGVoiceBuddy\I18N\1033\GFStringBundle.xml

Filesize
3KB

MD5
fc8ce34f4a62b9303302c1bca236af54

SHA1
98e924ac192dcf6d76a5e9db51252ffeec16e183

SHA256
1568009a2e2b87fd2c80bd1238773e11bb096f7db0165c9cb0124a913dc4bbc2

SHA512
8be121cdf463dd207d436abb758a07f89f83ee73127428fc868eff927c9b14afacf6685bb1e27b681c50eff1eee6f417c403aa4513960c5268a471388f40bbd0

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\TGVoiceBuddy\I18N\1055\GFStringBundle.xml

Filesize
4KB

MD5
57b3a79c8d67544148b4a3a931755da1

SHA1
7f4806fec0ca2cbc41f1344e1717ac4e627b5ab7

SHA256
d6e1a0b5b8be7703ba735fa33d6f95b24d798e965809558dad356933a32f0838

SHA512
b5dfca652097cc27d4539212ea526e2fbd6c3db2b8cd33d07822396f2a3d5358a57d462333e6ed4f668554475f8a478f1c8d438c61f1d6b5179fa6ad87d9831a

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\TGVoiceBuddy\I18N\config-zh_CN.xml

Filesize
268B

MD5
c620fd72f8c0dcdfe1ca656da4321d84

SHA1
84da1abb07d9225e32f1f1cc8dca5e5713f1e2ec

SHA256
581f1f16ec516fcefe8b940bd38f936022616d7c0e0665918981f4769e1dec1d

SHA512
5677644550cbbaf4c136ae04a3ccfb4f4330dc120b561bc0fbc36bc3d311feb58b5a99cc4dddf106720f8e9f0b9f605add92fac5fbfcb07c17ab5b9b40484f03

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\WXFace\WX_default_face.png

Filesize
1KB

MD5
254e845033d51419f8770acf35c931a2

SHA1
9e267cf86c136d738eb13ce9ccebca95234cce63

SHA256
7ca81ae30b2b7e92a40b1fbd30dae53344cac06dfeb633915b6407c8731e4727

SHA512
5dccaa119fc1d7c8cf17bde8201313c2cf00784bd85542ae8f02dd2a46cca748e38c9d94a8d56f4ba9d805bf3d16b2882314bea0f37c22b7be6a2443a5ac0af4

Download Submit
C:\Temp\TxGameDownload\Component\AppMarket\1d218714941abf910cf39c6d4f265e7d\Setup\uires\window\logo-oversea.png

Filesize
2KB

MD5
1af13060d206bd8c2d07035be2c88ce7

SHA1
def54fe95fb4109f41c307d809e27311362e93fa

SHA256
b45cd60fb9b2659f6b177c63abd3a4eb663912fb9531c97f1942baa36bb2d298

SHA512
0bddcc1edf3b87d50235af479297ab16d0f9d7d5bde4d5503c5b4607961f416ec4ca67d24f9f4f454c24152a70673045df66351b2590c11f4d93794c159cb3a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
a251e7d8920ad0ae50087d3903f218d1

SHA1
89a40725b1fec22d61561b2286720638ac0f6625

SHA256
6045f9f01ec3f769a595569f236cec5f057170f13aa5c7f8f01df1cd687725d5

SHA512
0b3c16211e1da01608cab5853c907f5c061d22aad2f83aa990fd5e27b08cca8147c0b0f02af9c91e10b7dd8f9d658360a0d73900b0c101fd2a6758386007bc7c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\2eee46a3-8913-46ea-b218-3f017f94df26.tmp

Filesize
8KB

MD5
8132522391d3070ab134da243305288a

SHA1
e3a3db62ec1d7b073b77f2017b06586fc0248d36

SHA256
6841a6eebcfa9979705d14eb0e6b9c39db20483735bb092a132b65a701138344

SHA512
933cfa5621d8059ae720fdc01896c19e65fd11177a8ad4563a3df9db55833474c28d75e1da39519c7981d9de3c1f8bbaf854971aa108a24d857bc4c45861c08a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
17f0f2f1756cb10922f8de96ce20d80b

SHA1
739487251f7106f78f3744555897110ee495fbbd

SHA256
eeea313b06ad365f014a48aa1614f31fc751d355c0392d83991cafd079a124a5

SHA512
0386eadcaa8523a2b9461a9c9d6a0394f6b14956c5c99f99fc72ab7cb4d54a44499d778773ce811a14168901c7287cca9cc147d0b60ee8e33819e1e221515fb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
4293cd4a914b88656e539c9c42493d11

SHA1
d6d12b22beffe69a9acf7fc0adcbfe524e8afe74

SHA256
a2b04c968395bae2993dac936e6c763ec05ba7842a6201b2d1a607cd53af0c6d

SHA512
da0c4921acf2779f315354a12b4633a0e6eb782bb6257ec21d422afd01ffb620abffbff241a5f092135dc3a119f5d39a6dbc2431ba83dca7acf31882e0ae7588

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
34dfea9305af5da569852c3fa9d09f3e

SHA1
3d3b52d7d5baa41156692b32d336f3159bc22b63

SHA256
b9acd49f8d16da5c65639db3f256f9699912f32ec9b9ad5ac947ff86f1229da2

SHA512
e2f34da8d53cfbe2715384d5d19fbd03f761b9cc3d06a4c21ae17c88010856a4919c88abd76442cdcf438d44b80ee58b23cf4c611c55ee7df10f8f9e45a2b8ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
0ebdbb1503c0c3e873452b9811e82252

SHA1
b627da59cd1450178e2bcc9297a071bcb863316d

SHA256
a401d3a4d3c22848cd50d906c8d391192f654ede95e69d568aa316eef432fa6c

SHA512
8c4d4e002d3122c618e452da8c2a2b8e30308a35172c3ec3b4b5c56a294ea29a6c0d4b791e866f0ed6d9efd50a65374dc4b1d3f0774aa08eef9c46092c911433

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
54KB

MD5
75ca071446a274954b859f8dbccbe3e7

SHA1
34128d5ef1305d8e0c442f91a3d34ef74863960c

SHA256
4f037cd93381acd4b8557b59e056109878f433af79fed59b3c5428e46c2c598b

SHA512
3145c071f8c1f9c12bd68a8dba1bc0ebc6f8900c966ef92abe4d29234d9713000d18b705ffea86168ba43fd7f91607c27068b4666cc28ecadd3742eb61bd54fa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
79KB

MD5
e7837ef48d3c862bbb24ae5611b79942

SHA1
5a9694d01d690923f3a1bfa59d7df030d76dada0

SHA256
af9c54e633d74c779d36193c2bf77c31444c18ce029687c6f5f6cbff20e48daf

SHA512
396e81afe7fca6fa9b888578fbb87b7649a3abda5b4d7b4157967977c0efe2336625b755169211f30609fbce70d2948f61ad88d75a9a8569e15e5d6f55e2fb0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
50KB

MD5
652b1f465f81c5a84af0d772937c7c7b

SHA1
d46961daf782e7f987febe57e347a2c99e563ba2

SHA256
d3695963d2774f7344e07839b983e98be04be164b94019dd29944098a92b5cf6

SHA512
0ae387c7db4ffe444290cbcc23684cba2d6b6a31ad29f621479980027ecb9235e7d092e61bdef130863659b9727de9d3a825666dfa3ea69962c48d6d0a0e9dc7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
54KB

MD5
b746b25a0beb667bfe9ad690002e12b7

SHA1
ea1e22c8108a91260e1a90738c598d67e287ea96

SHA256
2fe555da1e4226bfb1636e22664a963ac5234d0cb30456a42f41803368adfed0

SHA512
e8b821f49e4e25142dce340e60434ee2efd9e3b20f69928b2e99913f2e4ddaccb6c92ee71721bfe7282c167d45b3fc46593514fda6dc12b6ee40a91844bdcb07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
100KB

MD5
46610b7a155202efdba7370116b26150

SHA1
99949b16a1b7e87f8fa3f97de1565dc4f4ad3a3e

SHA256
7143ca9c31351515ee1d7d93098d17060f0a31ef7de7dca56fb69fdd8f1bbe87

SHA512
9315613f1e15982a86529103e53eda62c0f0f92fed7150cd737b1d29f688d19bc3644d31d58cb7d6db5177f9957c69c6a65ed65f01f2b3d9f2515141b88d1dd4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
95KB

MD5
e30f5eb18a62e26a18c4899d154b752a

SHA1
1a62b1a3e5b509420de35173ea043da216d7e5d3

SHA256
8802b55f07ed118fe75d4878377d76719a69d52b696bde3c1e8ea3eae1f0b800

SHA512
90e140e48313a91d445536f11ca4aaaa5307989b83702d3458c5ddd9afc8f2d6c5d8673a6c57d15d8454f0bdd22e026c4e3a526f3a03f678841ee09a30188094

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
139KB

MD5
dac68c0c6977a40a158dcf44e6f963ed

SHA1
e81bdfd6005f2510137395e90f1b10804c2897bb

SHA256
b6d1be3d26849e756f1c23dbcdab357fd806bfb7c49942ef7ddd7c5469ea885f

SHA512
d8535780219e39d502674cd3c49219f98342cf93a7b26adf9a4ac92bfb20b260134f8a4bb60957a077031864de603fb82909b508bfc86fe4872c27537e737e3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
84KB

MD5
3e75ae6a065e7a7bf69d8632fd591c88

SHA1
e71e934dc8caf55a83e9092cf032628b0525608e

SHA256
e25aeea23af3d6feed90b86a6a0473e4bec71a77b812a36b07d668758c40f5dd

SHA512
f36264889da7815aed18eb500de44d3dbbb3f4cd17d21c7af35c13c02698a57ff72748d4e698bd3a4dd2cc4d7618401ec70c08e9a8eebc34786058f2358b3c71

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
6fe18665c5780b7c022276eea5898013

SHA1
82ebf3ba586048c8d8b6d242b07253072469c968

SHA256
f1db0e7dc97a88ccfbaacf8fc3a45deda2744c8303a965ade09dab1445508a5c

SHA512
7b30595a6bc201315251579caeb8551c4711996b3877a2c1336b409943b14d086ae2e2a6a376df395beac63c8549a116c73b07d3ae4b4ab96f85fb8f79e9381c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
c427ad27ce137e0f0b8d360ae709a9d8

SHA1
e9d6544b3897b0f40e2ce6e9757710f73d642053

SHA256
e6cce27dec0ff3d95f9c175a7fc2430f92039b016ff3dae4c558b96e6c55708b

SHA512
4f791d79f906cde667b34ce937586a84ef825b2ff2034ef26bfd7126fcc2cb05d4b6d29e9871d10f07a886ce43bac5a4538e0b6b18df444a5aaea1891e9b187e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
32KB

MD5
e250c366cee8408d0ab4a82e4abeb250

SHA1
4669e32fcce61523fa7988028242c8493399ce99

SHA256
844884f7f40cb73fea57cc106239d7dbdf631849b44fbfe3d413e9fb0b2c119a

SHA512
9baa205ca3a22ea76b93c507d44d06b6360e24242b41bd14956f199162f8b008039ada8509def4f71719e338a114ef8701aedded6a665abf855c8b8ee5132262

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
2bb61dbf7dbe26e7d31a8444dde55e6f

SHA1
e9b29aead6bfdbf1b48c7b55c8c86a58975471f3

SHA256
074c142dffc263ec13a450e94dd1d65e85c2a9e0ebbd71680001a236fcc3e619

SHA512
6fc3182a2fe041b9eb8c4644a2790ade3cb2176e878de1635e219a130c623c40ea2a51b552d771603082cdd7f37e59a06c9c68cedf9783174ca29dcc5c8774c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
152KB

MD5
95d5e36bf242c0682f9c6feee6d16e48

SHA1
c300e96af5c28c25c5c5e42d326deae171d3f32d

SHA256
0481d0d7900efbb2835c14bbe57cae6ef12d3367870f22b4fbf3c396270fd4a0

SHA512
d4a4105afdc4139a7ffb8ac2ee25294869ff7118d015419a3dcfddcd7b15ff8c7a598d1283cd62dcfcbe8cc94a5edfb44d21ef617493bc36cfa76b6badf55b5e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
16KB

MD5
cb8e57386acedcd0ae704c9b46d2eb25

SHA1
f3396b5c8cdc0a21981afa5627bec397a8150195

SHA256
1c059b55ec7615f7ad37ab5346eafec383a4bbdde248c9ee071425a7f24a1d98

SHA512
3672bba37ba4b7d312c6d6a15f6441f2d977341b775756211f2900eeb7e30f60fa20f5b1c89e20f9460c6e82294e16d70e8de843f80289b4529302536aac901e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
f917fa7bed022153a3afbf4918e59e4c

SHA1
ae9a00522370751968b0fc9fe02982571b5e4183

SHA256
9c985d50da5b9b5f22a37dcb3bbc1a857e7bdaae923b346e188830ba8b6dc284

SHA512
41c801664f335e8e397afc291049c926811c1759fc7d04edc2d6cae5572e0e56ab95a73a838c9f32dd59e5ecb9504d4cea034e86cfb470e223b4e5d8c8f2c9e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
14KB

MD5
bcdbd2ebee1d4a2ef00733e2892ffebb

SHA1
1e7765a106ba94f53af681681c92a226e043bb3a

SHA256
a7d58dea92121ddbaeb5e3397525b51f671348bf057082ba0f8e6f9720a2ba93

SHA512
83316d1a05f018e2129f79aa56fd8879ab580c002ec4cacf2bd8de7eeda4a0d7b9718754035a518e40da62861d4f8df8b6fd10bc95ca36f096b652a16769d320

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
7911747f93bc319810e7469ace8ea530

SHA1
3f50e32c4952bc0301d6e36f1390dbb4e72e1c2d

SHA256
701c6c097c0d9fee982b7ce871d1b3d00465d02b4b93388c36070baa4f31c6c1

SHA512
8bf85279a9cc851247b97a69ba0b01812899ac305e2a67a35f7c5ce9e3585d309a678fb73ab45080ccac4053aabed9718297dc230d5f3c57bbc99328867e734e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
17d74a349391f39f4221f70155ae364c

SHA1
37b924a35f5aaaa70db6ad2decdc5e58c4dab49d

SHA256
01ce9f9ed085e38009e15e927e9c94f9a4be9a1b17f773e1f533ef2f62d32fb0

SHA512
4e3734c8965fb0dfd8374332f72f18fe2fce62ca45177ae9922d1652fca9ddd10b24c657cfe6cbc89e58b48ff8f519b2529f78c9fe223270da88cdec7c8bebca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
857B

MD5
67d0e1a00eb1c2a57125b9bffad26353

SHA1
13001ba962c1fa936f9bf69098dc9e3a675ae1f0

SHA256
81790bab501cb311b8720587f8fd2d6776eb82958e5ad6ed4e3b9d0a7899ed3c

SHA512
304169a33d36b9ed7a71e666b5bdbea16c2ada43f543fa2a5f03d340e597eda382bdb277714496208cf88477ff963c14eee888c9f88114d13e7a46fffee28896

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
d4c25a49129b885a05a920be782efe38

SHA1
a85bb738572cef04a54662926dade51af1d9006e

SHA256
8cf7602ba74949e87c32c3a05077ef120ea35b56d3cee9555bc1fba00f5b9f62

SHA512
46606f7866eb7959e1bcf47a86374ad6b1d203a75ada1bf3bad1214f0b62680e905ed300d399ae2ce06ff3af406cb94d8e3a14c9c68b41de9499544641850207

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
80d5ba8ba22155e57c3222a7c28c2917

SHA1
31409fdd08dc0810e0ad26fd90b31c7ce7f84b35

SHA256
fe5aad9858c0753661912ab675e3ce2ac83b2ef2d384d899be44689c969e48a3

SHA512
8843c1e7d3cf68810c21d7512bb3077212a1e7877bdaa91583e64ec79981253864b257761e32d28c1498a91737c3ffea4aa924fec424c62b3e2c529a801710c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
245241bf66b1a03d0271ee60d729396f

SHA1
60885971eb54219ed8836c7e5ddb2fad9a1e0b5a

SHA256
f2764aaf9f192885a74f0ecc3cf0462b21f0f9c488702457be18d30b876f49b2

SHA512
ea8fc93caa561102a706d91cf1911f7c746dc7e55967dfb06ada6728ad51502ab7056fd0af16835849a7a52025ebd3fc98041bd9ed16b1325333414b1e7bc31f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
9a098c43b214dfb934e5901a8583ddc9

SHA1
f6376fd4347ac20441affaf16ea154091c2b0cc4

SHA256
97561822fc9ac942c56ebcc07efeea67c8bedfed929775d63b8dd9fc2545659f

SHA512
23d67db3f4d218dfa39f887badc9526fd9d577f00e6b764614b656c51399fa9c99c51fbca2340dc7d8f840f7a12e1e8f68fdfe8bb7b477527dd23314d16c5599

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b9860c4f896a162e599e0b07c0cc6dac

SHA1
ed76cd87c70589162b3f566bf9b9699ade9747e7

SHA256
7034d9a909e3a16fa00c39c0d68458e561ef68dffadbe063943d7eb3f2923073

SHA512
0eef3462623aafdd147ef2259fdc93a7bdb17ab8846b6bbd4a64f602fe1c2937747f0169eb040379ca5560107b770c2e4ed57046eb48df38585cdbb9740c5626

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
254f99911aa71ff54e1239222beb4c8c

SHA1
341cfd190b065068875840bfe4e4e74a6fbee5bf

SHA256
3424d265f843ea18c3d5920d5290685941459d14782ff1bb6c8741d44f52745a

SHA512
944f9d68c474aa9f4fa017c0367c9b19f2793d6fa5191253abc585a1377ce9ec11b02e659736f2a205ee96c9cee661e6e7aaf51a8a4a387f0fe15e5728b7de3b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
668b0ea9fb28e3a7580e2d4e68d1cb49

SHA1
a782d466e7a72f9cef85a9f92a38d7acfd5e88d4

SHA256
d26dcb49f1b1ed26681a4809da1fc41691383e7ee351f66935adba08da1c5fe8

SHA512
16a0a9be53e9fd1a0abb3681e974357887ef0349cf4d248f9fc05eeb9be9ddab1451c61fd5d48c475986e6279e0a442a812490b32c8b45a46f6eab481b00f7e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
19d0a86015c1b4c56de6416364c56e36

SHA1
85c7afcb1ce9f70c4014c8cf90ca128a026755dd

SHA256
9ed554dfa9e19c327b2e867fde1d881bf7e4dc97e11be02c3b55aff99e92aa71

SHA512
28724cbcf7065bf67ac08227abd9020c194db0c2e037aaba548046cfd05b4bcb23239b344a865454eeea6b1a6b529af3ae8facb05f86994fb347c89ce35c7a55

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
cb3b8ed25ed0d4c777a9efe8a5061c48

SHA1
0971477acb615490285a45decb529ba8c55121cc

SHA256
ebe466d625566d2df9d408591e2280d0ac1edb51f530914ab9fe364a9167a561

SHA512
da257be2bd6c46a70492bf06cda11567681056fd4b3894e67f7aa1d8aa499ebe1ac4e3f21a2e19766d98f233dbefe8c254c2ce463e652fd13225373f0cd29388

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
d84d43840488d2a593e1a3036399ec58

SHA1
f7ac155bb77d78cc10b7790e5c1973ef3bcf6b39

SHA256
45fd75f4e654a695eec86023b9eac5820b5e2737e3e7f587a4334c2fe9ead153

SHA512
eb14c102a01aca0d48a8c1c1745803de6549a71a963be4623452e61ad9eb3ca25fb094bf11433d339a385c663d268b66edfb5e9a85d47a98aa5bb18b0e3e5698

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
44ed535d8c92f5d5ebae9fc0ed01b685

SHA1
a8ff1e3508cc50749ae19fab2a02ec30dfcddbde

SHA256
ec0d04c39234977284193fc294173a03d696a1d72d2a94314205dbbf8820f777

SHA512
157a7351bc5f47716cdd38fac80ae99a6cd9128511b0dbf02a01173133de89c9e7cc29f8f711ade5448583f7217657f102d448959416e2348fe9468e3c5947bc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
b458268428400c948b7978968e313423

SHA1
018a36db59a7462f5b55c3df341e41a3b23a4b20

SHA256
27e8503ed288a0f9d37654fbefcff3b591464f02cd80fe9f60a2ea1e053a5d4d

SHA512
a08c7bbee073e487d9ef05551bfc91a6f65ba02dc7b18a65af4205696e8d2cac7389e49934c4243d333481ac196f47222129896ca46524122f1c55589f364367

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\3d1926b4-f0bf-4c1d-a864-ca4a8ee8a21f\index-dir\the-real-index

Filesize
2KB

MD5
5658faf2d12b87b5077fafb97ca69401

SHA1
b2be4fb48a92819036e41cf4efa364b3d3475ab1

SHA256
52b750ca7e64d464a77c4496a63bdb43adeafb4820c1e7811e9010a791189b12

SHA512
3b4389f71ee094854ffd1328ee485e969afd51d70bee3169bbefa97838f557a26c9678ddc27a9cce5c2300e8d1ebc5adb406119cfef9c9b80203eab1b3a94c84

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\3d1926b4-f0bf-4c1d-a864-ca4a8ee8a21f\index-dir\the-real-index~RFe58c484.TMP

Filesize
48B

MD5
0e50744236c30b41a251a95fcd16ffa4

SHA1
d7ef2f47e5a5870ebbed5c4195abc0e6a7ba1a56

SHA256
2c72dfb31b99e650eb61cd66c04bc500e536a1e0a33d9ef32d6bd01e3583bab8

SHA512
9b1cbd28ce7bc3e72f92ef92df14dd2394eb671caf81d922d844c63763bdf607dcefbb72b19d980e54ea8989daef4e1bea19d64391485f5c18bda3dafe0fb147

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\dfb0c25c-c048-4857-b661-6cc0433641fd\d0f14b31f48bf19c_0

Filesize
2KB

MD5
fd3a9bd0b68f60e5a057492ec45f4856

SHA1
3cd3ea6fa882eccde1a70e9ca90bee2b62b4c6ff

SHA256
a8441c03b1e5fb3c104dda6bc7d9b77bd6c5e306fa81ce6a7223d42d5757c526

SHA512
7558fe0e60b6c452aebb95be2d7de560c94bf57136aadc2de9b135e97464c7c0f9705346d1c1dd30c99fbf822f71eb343f793fa1354ef252c1eda648bf89ce2d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\dfb0c25c-c048-4857-b661-6cc0433641fd\index-dir\the-real-index

Filesize
624B

MD5
24011dbf4bfc5dea55bf9a5f7f82bad2

SHA1
124f941ac71151b9f2b80f929f5788262a9728b3

SHA256
0f351a8a74ecc4446d277e83498b22eb006f5b0e7fff727eb807093b0fab0a1a

SHA512
7466d87c07a8bdb152e7d8ef4d81945ef466e0f33d64815be20d16dcdf438ae8ec668282e73599499acd5fe2e143ea29989d9b8a60be544640fb5be0755a1e9e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\dfb0c25c-c048-4857-b661-6cc0433641fd\index-dir\the-real-index~RFe58c484.TMP

Filesize
48B

MD5
69cfeab6a7b6710b15775f6eaf133fa4

SHA1
f53d9f0dbc7f855d61faac09f7a2759b89bbdc0a

SHA256
5f7a0fff2a3bab653e0a603a8d323e981e655b749c8790975ff977f9c1d4cb1e

SHA512
70f8baa78e9b1083e1c91820338c2870e11e8f54c67da1398afd4dfc74b6970bd1d6a6fff368c0c4103f2c390b9f615049492fccca249fc4a283a7c55cd7b941

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
4b8274a05b80a6cee6160859d183d6db

SHA1
ee633d3f6feb4b93ef2ee20787f9cea6d2de5957

SHA256
6619d168f19133553a2b4a2287eea3d60b3f1ee95ffe6a1fd537ea2802bc9e20

SHA512
718c143dd980f87dd91d6aceda11c649f76defa611036b50fdb48ac1cd6f2089e600ae646d986206bf067dd3f59278301029b432d00c5004c76a50004007c16d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
1fe733ed83e4169c18f81bbaa9b75b3d

SHA1
52225e6cf136d81f01bb708c08474796686c4fd7

SHA256
61f7723e196d25e722e9a8e6a39805fadf2a6df26ed59b5d6a4a82dfd32a3cf9

SHA512
5bfa9880a02450b878158740431319ad76d38a8970abb1528838abd0d2133b2a303d708964a19dc0955114823c701a53eafd8567b84ffd8a2bd0280fdac8124d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
186B

MD5
6b75196e4f319675a15d0536b347bbc3

SHA1
3010dea42097d491b97c09813b4e259bd2586813

SHA256
f63116f2f565c22cb749b3a354633185d2aa95331942a58cff843e240111dd5d

SHA512
e68c3d377339ed62df6a7e3bd4c3ab7d8256f27bc2f05b866190db9255642a2699ea0d11663fac87a8f74c6f0046bfd010e8f4afe5f1ba854028ee0b70bb209f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
c3b154deba5aa18dd0fd033bac171f0b

SHA1
e06b7bf1e336c31fb2df68bf4a52eab79a221246

SHA256
87cb3f58c9dcfe6eb8a21b8bfcd85c7fc9270a2280fa9299db6a01d9ef9c7369

SHA512
f7cbc099641ab994ab712fe1f875795d42af10a65ef4a17968710c6ed7c0610f9ce2a3df28ad61d31deb03eac56477b541bb1f6a140329e81ea6a2e87d4d5103

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe587068.TMP

Filesize
119B

MD5
e1b9c588d6cb57db3662ce4db39b011d

SHA1
a972326e7431a9f93466017e2176d3675deb1a6c

SHA256
5e81e8ff729a0a600455553a5b3c292c50214c30aeba45818a4406832560cc13

SHA512
11425b4280390a6383bc13a38fd6ce52c8aa09e5c9537e4cbc43169d136f6b442915f87620d74379e69f96bfcdfe9200dbcb1afaccfa13c126a80b9080f1d4bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
cb1e9942b34d19bd2cb27071612e760f

SHA1
9278fac867f7c2589685ae572cf2fcc11885ae20

SHA256
08f1d6e5a4c7dfa5181c06ddf6181ca1a7005ef8a912f588f01d31c07d914d1b

SHA512
02f297460ece46c955d365279c759fb9574a16b5449ce4af1d22e9121e15fdd0492b623a5fd01b7c7c8e02ecbfed5e29cca602f039c3a03d74b95428a38af331

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58c0bb.TMP

Filesize
48B

MD5
5736d1c93ce849e4157d6126eab0e6ad

SHA1
525efb38ae251b495cc0a1cfe42514d4313110ac

SHA256
f268c386191a7e96afa1b6ea261603d5b09f3fa719e37c9e725a6287ea008761

SHA512
739862c3ae7b127633e0ac50f2e167eb5c612d3883ea162006aeea73ba36d5123408642ac044395f93fc39878d729495732ce1d3d32d45204fde90bc6259a670

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

Filesize
345B

MD5
03443c2544ad3aa1c25be335cc16c093

SHA1
428adfd7120f09a22fe6db1f120b90e7ef17902f

SHA256
bc954db0f2825ae9b8a8708385f351c0220ce01bbf6dac44c7ea543ec22c5d78

SHA512
4a28ac8eadac46e8ce487be77a00d0fd5c7f9d3de9be2fd77aef3a6ebcf5e649f2d7288bfb66794db3d478e925c728f4a2f2847e10c1291ae8a5b78d5bd6ee6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
1eb0f19e6f682d7122951f7b14fc7199

SHA1
0e2706a0a97406cd431157fcebd22abbfbb0c8d4

SHA256
0bcca89a858e7a89541f814712576f33e748480b22a5ae3b9c47d852b77fa561

SHA512
f79eddf3f9092be163ee695563fe7788cfdecee1c45ac8c7410e1b3a1c7a60d74cbc37248a28d7292c7b536a85f6747694bdf331c16c1ab2aa079112d5fbab07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
022cf2b896c3c0fa890b6403b1d22f50

SHA1
9464ebc1b3ee2f6e752124ecd57a412dfc5ce10d

SHA256
a55936421986da7263b16b037c1540dd1b7c6844caf7abe37159abde4bad3ecd

SHA512
93bf98a07e754b5bae28048ead76f2076a038a6dc6d0c62fa064cf7ef15051466b19f3630388cc524a13e50b917a1564f9ab776c0a38d4e92d1142675306bd47

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Manifest Resources\agimnkijcaahngcdmfeangaknmldooml\Shortcuts Menu Icons\Monochrome\1\512.png

Filesize
10KB

MD5
7f57c509f12aaae2c269646db7fde6e8

SHA1
969d8c0e3d9140f843f36ccf2974b112ad7afc07

SHA256
1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f

SHA512
3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3076_1951430712\Shortcuts Menu Icons\Monochrome\0\512.png

Filesize
2KB

MD5
12a429f9782bcff446dc1089b68d44ee

SHA1
e41e5a1a4f2950a7f2da8be77ca26a66da7093b9

SHA256
e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37

SHA512
1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
009b9a2ee7afbf6dd0b9617fc8f8ecba

SHA1
c97ed0652e731fc412e3b7bdfca2994b7cc206a7

SHA256
de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915

SHA512
6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
250KB

MD5
5acf0f29e14fb78f200cef363e361350

SHA1
9aa7032972adb87445c0d730ec5720f31e8464df

SHA256
bcc73902b9f6127a2c3ac7895658f6fb7e948a981af9f567c4d588d73cee451e

SHA512
301b742b3c0b7236d86d8c532f6407d48a2711a3380b01a653f13235c0dd2b86a1307fd809c534607bfea81d9c7b507c6ebd43c8c497b4dd8e085d3c0ad82d00

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
250KB

MD5
82c7a583049fa02c06e2237d3c281cf3

SHA1
1a58c41ec9e55782ce9a9ed5ff29e2727b42924b

SHA256
a69f3381f3e0d7bacf8ddb5b2c1d06c2a0a32b82623e295ca70b8a90aa7f19a8

SHA512
287f2edf544ef41b55e6cc8cf9bf7d2598abbea9c6315ae36d386ff62a463089040076060096428c5271ca8fcaf9030aca93b5158a628ebe898592273749c8cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
252KB

MD5
fc98cbc94c144b8df711119014429999

SHA1
5d6fdf931100d6f59ac2f4cb15f30c075abe51a3

SHA256
bdf813640866e9f40d7f514925e8cfa7cc67553cd53e86be8a5630d26bc97f12

SHA512
742de93fd3bad07b837a3528507304a381f5d57f2837c85807d33f6efe24d081cbac99c83f0c58da1fac47875c56e7ddd207557f55e151b1149dbaa45119d169

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
250KB

MD5
285e65992374174711c5d34afde4cf0c

SHA1
992a0d179661ea57b2790f0024ca4f419bc78236

SHA256
f0175772b4ca17f65151e09bf79e116b033084ec05aebdfad9da47b6362f7bfa

SHA512
037ef64191c10027804030354da8fd2b0e076293db7192d30783bec5e5b4351ba654715eb14672a25a63ef18e43d3e04fbf225810a8e7ca0cc34cf7bb21fdff2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
252KB

MD5
6345cab58152d3a9c666bc6891b596c1

SHA1
a8810ca4b426252364652884bc63c4ece7a52e0f

SHA256
94fab55ba32baf9e2fe8e6016f8b4760c979f01f1db5e2dac77934530ea57058

SHA512
e1ba3002fe29c500c79e5730b11db03f1610e29fafe514c61a47cc3c0452792adaf92666433c13939903fb825ff6879398f6b8ab9d58363d4a8f5cf638ffdb89

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
93KB

MD5
32e012a67d1b5033a1e7090a35e6472b

SHA1
dcc7674ecdd6d6edf1feda62a13667ef9986b48b

SHA256
7b10e01a5b795967773788f807053e4cc2a611436adbadb06953b3a3803cb962

SHA512
95a64578b3d2ec009722ba5b5a99e48345d05190104af905bcf7f7fa952de7a125985cd8b7091cc3d9b37ffd245467f52f5346934d9ea3f3bbd85fe1555830c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
94KB

MD5
6bdbeb03944d1525a63d8b1425307854

SHA1
93ed5665c2257a0c00ef32e586c9c1e9456cf57f

SHA256
70c5d5796df2e17d0f9636d2025a9f8247ccd475aa987223eee761860653753b

SHA512
ca42a26f5cde2868132f374c518d88337a43fab7ed47dc5c6f4d602a196775c3a3c68b6ac5f3d5e6d5199d244971ac0f17a4a5d0428c2c15be16804f77dbe391

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
98e35074b71b403418ffd5001c1c1227

SHA1
8108cf54dca62abed53da68aa7608466f3672137

SHA256
27fe8a2a01e38c594f86dd96867f93c5b519b7fabd356f735571d697a0524591

SHA512
e6357ff3759b67cb0d80a9388cb201d9d9640da2937aa78a999c42cd45be18cc52c7816fa013117e9458c36df5552a8591c33d3a4ac645ebdf87cd73b336dfc9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit
C:\Users\Admin\AppData\Local\Temp\market_page_17137296570x1101\module\lib-halo-downloader.e9ec24df.js.LICENSE.txt

Filesize
832B

MD5
b23d7a495722fec387cea56b861b816c

SHA1
21d9593760be18f0097dadde05824aa52851a086

SHA256
86701d478c8b5cd2981db0c9715b0c27b1d76e1b0bd10dd7447a35b90cb14728

SHA512
08f2397203a34ceeabdb9581b07dd65e28e3775b4ae13010bee3d4ca8963a996da93018e92d8713e7a4d8f83d573600678677da916f68d1cf9819284c04d99cb

Download Submit
C:\Users\Admin\AppData\Local\Temp\market_page_17137296570x1101\module\lib-halo-utils.776c5c7a.js.LICENSE.txt

Filesize
449B

MD5
bd995e27eac3745ca6d4ad4022fcb917

SHA1
469bf7519e238d7987af6a804a6857f91b9e026f

SHA256
90fdd6754a69086abae5c1d02782ddc4c82d179682b2b66c51a21e4c1edce6a7

SHA512
ef9e1848ed9b58fa6f9bfa711254488dd8c04d76eaf00b6e49c89869a4cce2fabbe9057a72326d166d9fb73946e8b28a6aeebd12395c154aeaabc376a0cd8320

Download Submit
C:\Users\Admin\AppData\Local\Temp\market_page_17137296570x1101\module\reactVendors.6c9e9b36.js.LICENSE.txt

Filesize
1KB

MD5
008037d1673d08e24a5e325889d17d3c

SHA1
a53f9798365405ff49a4ec7200ada0fda816a874

SHA256
65c975feb9646a852151f33fca761891752ebfd24a2268b8eb63120e04191a7e

SHA512
a34a2787dbb6c8e4dcf132c28fe989d11b77b5364ffbb45439ea1d4ed60c02be863a85d1583a74ce7dbedaed48e21582bdfa641c7d6be9f94f9a0d3de43e9e4f

Download Submit
C:\Users\Admin\AppData\Local\Temp\market_page_17137296570x1101\module\yunGameExitModel.fd097226.js

Filesize
263KB

MD5
fd2a71bb696b6a256656cfd37e48364f

SHA1
da0e81c840e26b1ad67ab4fb58eea2502c68312a

SHA256
ee734919a31890d2c588ccbd47d6d8cb6586b165bf150c419f7575cc24915aa9

SHA512
2c47fdebbbcc448c2a63dbd1ee29ca9aae591d20923104c22a1a3f7b77f645d306f6c6867aae6f025cfdd379b526ae0793c33d4e7c137637be505078a95f8580

Download Submit
C:\Users\Admin\AppData\Local\Tencent\TxGameAssistant\TGBDownloader\dr.dll

Filesize
74KB

MD5
2814acbd607ba47bdbcdf6ac3076ee95

SHA1
50ab892071bed2bb2365ca1d4bf5594e71c6b13b

SHA256
5904a7e4d97eeac939662c3638a0e145f64ff3dd0198f895c4bf0337595c6a67

SHA512
34c73014ffc8d38d6dd29f4f84c8f4f9ea971bc131f665f65b277f453504d5efc2d483a792cdea610c5e0544bf3997b132dcdbe37224912c5234c15cdb89d498

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 207142.crdownload

Filesize
3.6MB

MD5
0ac1fd602f5ec2d2231fe311777791e8

SHA1
52ca6ccd121faf4f3aad9e7760ee1a519b323d83

SHA256
bb68113cfaba1def162b8a0df4b1d41b83ea34ce4fd5b23e0a0b75b259b62bfc

SHA512
10fb445ccf904c20b1b3736d02f53bc43a3b9161465c6915c89a06e978be9e988342f40d4c895acbfdabf236fbdbaa87c8470577626cbc2ba1838dba48e57623

Download Submit