| description | ioc | process |
|---|
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-white\MedTile.scale-200.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.YourPhone_0.19051.7.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\AppIcon.targetsize-36_contrast-black.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Java\jre-1.8\legal\javafx\directshow.md | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\desktop-connector-files\js\nls\da-dk\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdVL_MAK-ul-oob.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\AppxBlockMap.xml | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\1113_20x20x32.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files\WindowsApps\Microsoft.StorePurchaseApp_11811.1001.18.0_x64__8wekyb3d8bbwe\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-black\EmptyCalendarSearch.scale-125.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19071.19011.0_x64__8wekyb3d8bbwe\Assets\FileExtension.targetsize-336.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\generic-rhp-app\images\themes\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_MAK_AE-ppd.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\scan-files\js\nls\ko-kr\ui-strings.js | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\Dictionaries\en_GB\license.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\nls\ca-es\ui-strings.js | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-white\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1906.1972.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.contrast-black_scale-200.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\contrast-black\SmallTile.scale-100.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\Images\PrintAndShare\Glyph_0xe7d6.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files\Common Files\microsoft shared\ink\pt-BR\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Common Files\System\msadc\adcvbs.inc | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer-select\js\nls\zh-tw\ui-strings.js | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\DSCResources\de-DE\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\Microsoft.Entertainment.winmd | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\VoiceCommands.xml | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SKY\SKY.ELM | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Java\jdk-1.8\jre\Welcome.html | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Office16\OneNote\prnms006.inf | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Windows Defender\es-ES\MpAsDesc.dll.mui | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\WindowsPowerShell\Modules\Pester\3.4.0\Functions\Assertions\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.MixedReality.Portal_2000.19081.1301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\MixedRealityPortalSplashScreen.scale-125_contrast-black.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.1907.2471.0_x64__8wekyb3d8bbwe\Assets\ScreenSketchSquare44x44Logo.targetsize-72_contrast-white.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.StorePurchaseApp_11811.1001.18.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\resources.a5043145.pri | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WebpImageExtension_1.0.22753.0_x64__8wekyb3d8bbwe\Assets\contrast-black\SmallTile.scale-200_contrast-black.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\js\nls\ro-ro\ui-strings.js | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-root-bridge-test.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\178.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-white\StoreLogo.scale-150_contrast-white.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.XboxApp_48.49.31001.0_x64__8wekyb3d8bbwe\AppxMetadata\CodeIntegrity.cat | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.XboxApp_48.49.31001.0_x64__8wekyb3d8bbwe\Assets\IDPValueAssets\PCMobileValueProp.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files\Common Files\System\msadc\fr-FR\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Grace-ul-oob.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxBlockMap.xml | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.XboxApp_48.49.31001.0_x64__8wekyb3d8bbwe\_Resources\18.rsrc | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_SplashScreen.scale-200.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\ExchangeMediumTile.scale-200.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\de-de\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\generic-rhp-app\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\40.jpg | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.targetsize-32_altform-unplated.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Wallet_2.4.18324.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.12548.0_x64__8wekyb3d8bbwe\SlowMotionEditor\UserControls\SuperSlowMotionCheckbox.xbf | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription5-pl.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.GetHelp_10.1706.13331.0_x64__8wekyb3d8bbwe\Assets\tinytile.targetsize-24_altform-unplated_contrast-black.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.MixedReality.Portal_2000.19081.1301.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\MixedRealityPortalSplashScreen.scale-100.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\nls\zh-tw\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Trial-pl.xrm-ms | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File created | C:\Program Files\WindowsApps\Microsoft.Services.Store.Engagement_10.0.18101.0_x64__8wekyb3d8bbwe\akira_readme.txt | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WebMediaExtensions_1.0.20875.0_x64__8wekyb3d8bbwe\DecoderAppService.winmd | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\back-arrow-disabled.svg | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\Windows Media Player\fr-FR\WMPMediaSharing.dll.mui | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\63.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.YourPhone_0.19051.7.0_x64__8wekyb3d8bbwe\Assets\contrast-white\MicrosoftLogo.png | dc5a18d375d86d7974786896182bf828734a24331905cf7663ff9b202cd41c9b.bin.exe |
