bf9f383bd10ca183ccf932eb42f55b47403164b21cf17df3efd9508db38d3960

Resubmissions

08/05/2024, 18:47

240508-xe74fahf4y 7

08/05/2024, 18:39

240508-xamlyabh63 7

Analysis

max time kernel
62s
max time network
18s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
08/05/2024, 18:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

WLmouseGM_V0109.exe
Size

32.4MB
MD5

3830f5ff021af01765d23d4fac6daa98
SHA1

66648cc19bf8e0275b347af7d52aaff270a26fe7
SHA256

bf9f383bd10ca183ccf932eb42f55b47403164b21cf17df3efd9508db38d3960
SHA512

23d8a92ea2b0540bfb2d8d7c61292fce05ef2c6d88099d143032913e18b0d4b5d4054bc4c4c40002bc889429b83fce9ccdfbeef608b73c4a14a3500f762cb6e9
SSDEEP

786432:TZ7RLKhz6x7f2l84Pa2KERgulK2WJDqENHE+tkZn14ZIjxjukzyKbynM:VR5df2l8ua2dRcDqENk2A+k0QuM

Score

7^/10

discovery

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
2068	WLmouse.exe

Loads dropped DLL 11 IoCs

pid	Process
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2192	WLmouseGM_V0109.exe
2068	WLmouse.exe
2068	WLmouse.exe
2068	WLmouse.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Control\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\profile_add_down.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\profile_import_normal.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\profile_set_disable.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\Control\combox_250_normal.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Control\screen_normal.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\DeviceSetInfoDialog.xml	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\XML\CustomControlXML\DeviceProfile.xml	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\up_disabled.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\key_wheel_down.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\SDK\x86\vista\osConfLib.dll	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\device_ico\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\device_ico\unknow_device_normal.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\profile_export_down.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\.idea\workspace.xml	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\profile_editname_hot.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\profile_sub_down.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\up_normal.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\up_top_disabled.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\up_top_pushed.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\device_ico\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\profile_import_disable.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\Control\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\key_left_normal.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\up_top_disabled.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\power\WiFi.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\Control\combox_screen_hot.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Control\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\XML\Menus\sortlist.xml	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\common\OFF_down.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Control\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\up_top_normal.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\purple_hot.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\power\powered.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\sysbtn\ScreenTab_hot.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Control\kogei.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\down_bottom_over.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\XML\Menus\macro_action_menu.xml	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\Cursor\pen.ico	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\orange_normal1.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\XML\CustomControlXML\DpiSetControl.xml	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\common\device_ico\ms_device_selected.png	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\macro\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\macro\stop_normal.png	WLmouseGM_V0109.exe
File created	C:\Program Files (x86)\WLmouse\Skin\ms\DPI\[email protected]	WLmouseGM_V0109.exe
File opened for modification	C:\Program Files (x86)\WLmouse\Skin\ms\key_wheel_normal.png	WLmouseGM_V0109.exe

Drops file in Windows directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\Debug\WIA\wiatrace.log	mspaint.exe
File created	C:\Windows\Fonts\MiSans-Regular.ttf	WLmouseGM_V0109.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2068	WLmouse.exe

Suspicious use of SendNotifyMessage 1 IoCs

pid	Process
2068	WLmouse.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
1704	mspaint.exe
1704	mspaint.exe
1704	mspaint.exe
1704	mspaint.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2192 wrote to memory of 2068	2192	WLmouseGM_V0109.exe	29
PID 2192 wrote to memory of 2068	2192	WLmouseGM_V0109.exe	29
PID 2192 wrote to memory of 2068	2192	WLmouseGM_V0109.exe	29
PID 2192 wrote to memory of 2068	2192	WLmouseGM_V0109.exe	29

C:\Users\Admin\AppData\Local\Temp\WLmouseGM_V0109.exe
"C:\Users\Admin\AppData\Local\Temp\WLmouseGM_V0109.exe"
1⤵
- Loads dropped DLL
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious use of WriteProcessMemory
PID:2192
- C:\Program Files (x86)\WLmouse\WLmouse.exe
  "C:\Program Files (x86)\WLmouse\WLmouse.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SendNotifyMessage
  PID:2068

C:\Windows\explorer.exe
"C:\Windows\explorer.exe"
1⤵
PID:2832

C:\Windows\system32\mspaint.exe
"C:\Windows\system32\mspaint.exe" "C:\Users\Admin\Pictures\CompressExport.emf"
1⤵
- Drops file in Windows directory
- Suspicious use of SetWindowsHookEx
PID:1704

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\WLmouse\DefaultData\AudioFile.json

Filesize
551B

MD5
e5ec2b4d40c00ac0f7dc0916d6c0b54a

SHA1
541ac1075c6ce634949be408a59f039778906316

SHA256
3b64d0b41d1de97d25b68b92cf9d8cc76159e1e191f748512f97e8eebd508c67

SHA512
f327d57bec51b8c5b98415bfaff4eb9138a3edc796b0a22799d33bfdb519bce9e92d651b2e975ab7350a87b6901a33dde2ff85ae5f9085c30e8e70d3ba7ad908

Download Submit
C:\Program Files (x86)\WLmouse\DefaultData\Language.config

Filesize
363B

MD5
b09db6fdcd5ace5c1d8d1d4403c4374c

SHA1
c17783b5b9e010045c11af7040bc4c953c227148

SHA256
c79b7151d83ec693725a93da5e656f9bf875e7f0bf7e9dba0a43bb2cfbb1499a

SHA512
d2d4f470f26947edbdcde1f401612c3c8c4bcfe2b266e0501d17ba5eb57a4ba8b47269560340d33e4ee433fa5234155da67b20ba5eaed7c7c6bef5f2f9ded359

Download Submit
C:\Program Files (x86)\WLmouse\DefaultData\ShootData_2.Shoot

Filesize
12KB

MD5
5d4264006a1ea73c1b757fae6231a5b1

SHA1
08e4b9318e1811a737da98399d7628508469021b

SHA256
86de8b16a69904dd7e1498c8bbef4cf8dfc81668d1d658c38bc54c1d015200f0

SHA512
c7b4b5c89ae85606cc4fde83f7f585d87cdd3910bb8a7de708f39079677b91cc2df7478cdc45abab289ff2d5a8ddf52c7f97e127133165aa9c0353c3750cc4a2

Download Submit
C:\Program Files (x86)\WLmouse\DefaultData\default_light.json

Filesize
7KB

MD5
0e4b23756a8e91df8ecb04c54ed55c2e

SHA1
54ff4abcc81e4d80c831b07d207e54c84a038d9a

SHA256
e13b30d0ac8c264dcd86228dc1412df382e73c530a3ca27c423e6618d0850a57

SHA512
9c7806930ca373063a036504b44513d92d46deef7d4b2737d8580f878c299cf53b3d9f9466e30b0be3649de000df640eadce196c84a0dc56167680ac056df199

Download Submit
C:\Program Files (x86)\WLmouse\DefaultData\mouse.Json

Filesize
11KB

MD5
00728ade33695126dfa7b4595cf0d5b4

SHA1
903480481ec703f44a4af5360cd2edef1fa819f6

SHA256
d6e2500e91e6250f4ceb1b67bac7fb7701bbc5cb7c8b3e8c9c816dd18e8d3cc4

SHA512
bca872a628e83f2be171352c4b5996adc719d32b56e5af4386998d7d9d324eac88b37d3cded2bf9f2c49cdd9fe35a206f14db9512c04674623d5203b6ea85b08

Download Submit
C:\Program Files (x86)\WLmouse\DuiLib.dll

Filesize
1.5MB

MD5
c5f786f40704dbcf8cc4fac8fa9be367

SHA1
fe981a98a81cbcee94c28e68997da765214350f4

SHA256
9a9ccc43a64136d1e4c7bde22725f1b24860892f1491443e890963d7b3c6312a

SHA512
22b88281de2ad906b80fa8285d14e5784ce18557759fe0be13cc91c4e88d611c2318013b73807867e7bc6a86d76bc0ba5e774d6bbe8c09182bca9d60fe6d7386

Download Submit
C:\Program Files (x86)\WLmouse\Font\MiSans-Regular.ttf

Filesize
7.6MB

MD5
e7cd9863ae4f5a0939ce7b053eaf3a34

SHA1
27b06dd7a75f402206f68abf302f8f7fb0f2d25c

SHA256
7172aa1b5c703780ee12df3fe4c50481dde01f3b125a045a398000a88d032ae5

SHA512
c7a2a0968f0d9d5501b3ec00b5cf2a5d769b8db785da8c6a100484f3235d056ccb7e3c368963d314f0f344dcd5f8776386be155d6f1879a34aec696f182f8f8a

Download Submit
C:\Program Files (x86)\WLmouse\HookDLL.dll

Filesize
44KB

MD5
1fd575a0b0ff4e5648f6552eaa6dd10b

SHA1
38c63be2d74fdf8fbe002ea513e2f4d42a40f908

SHA256
9ab5e1ccff616db6e9a7d571b1d932953abadf85a489194827aee8326e436b12

SHA512
c6586e43fa3d0c9be6b7fa7a5c69032af8789f861d4ee6b3de7e019ee54e7f9a392dfcd70c52e7cf30608093c60e8aa6fab46b481b4204323febef6102f5656e

Download Submit
C:\Program Files (x86)\WLmouse\Skin\common\device_ico\soft_mp_device_selected.png

Filesize
1KB

MD5
cd8bccbcab7fbb93e0547d2dfd44676e

SHA1
92d8b99fb2eb7a831834148d0a65c3d1c35b5a8e

SHA256
97eaede0214d3cd5d28a42f6f5f7686756e16cd21430bdc8cf56fb82eb383128

SHA512
3f4eb9056b7e5ab00364cba2775c518d07a364f77b5fb27f2725a00d042d698a63c4a19adbab66f6bb70d5b9bd379c0d484334d8eac2f7e7e33feb39f2c31134

Download Submit
C:\Program Files (x86)\WLmouse\Skin\common\device_ico\[email protected]

Filesize
1KB

MD5
21330e4582cc7e420d8529816bab22d7

SHA1
44b94206659a3282bac3bb9feba8e7f36ea0a642

SHA256
8d932cd29ced8240e9ab379b9ee3a91179a824012550caee04ada94f89acb8f4

SHA512
0686f0e907b6b284df687f2cbdc7aa1b4a1661b40bc42d30eeeb634224c16f7e405c3b577fd8b25423302596a60927bb94c94670f981e73105c30594f6e1bd23

Download Submit
C:\Program Files (x86)\WLmouse\opencv_world320.dll

Filesize
32.8MB

MD5
07220e8cd7c52c44ed9e7fce22093bce

SHA1
1af9cb70609744cb74b249d70333690694fee4d5

SHA256
7426a67e2c486b8eca586ef7b3ee0b11e28031a81771baa55036d3e683db76c1

SHA512
1ca784c6522766705372c9703dda9e83a4aa3adf8e34dc46023991a3254fbe1d8b4eb7204896b21d34525f3d2811a7aece6a8e3621156bba7c65fb9e0929d75e

Download Submit
C:\Program Files (x86)\WLmouse\skin\Control\button_normal.png

Filesize
4KB

MD5
32c212cb65c631821b22869239ce63f2

SHA1
c9ceac24c15186047299739830a652f9d19e849d

SHA256
6abc01f0dd64f65e11030554416e874451ed0937b85fdcffc034e2a8e44b7ce1

SHA512
0627901860889622353ecda2dda8b5f0daaa5a57387e9754b6bb464b2664613fbfb49949fbce23350cdd490699a762a6473887fca7097af518d8854a20cc3dee

Download Submit
C:\Program Files (x86)\WLmouse\skin\Control\combox_profile_normal.png

Filesize
3KB

MD5
c900fabb0ee5691092700359c9b3ca03

SHA1
909c77a1c9d64decc20c6e5512927dba9761495c

SHA256
95953456bcd30df3f778032a834123b425044bd75a2ab1553b9c1741c77694b2

SHA512
af74f308414a8a0d445aac484e093f2ce368d2c5e24c35f308274ca115de20b2d53d1e99d1139762bc083285e21faece7a3d0af4049b0870393464338670c53a

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\DeviceOption.xml

Filesize
1KB

MD5
12e22c84d91413fa9240f133ac1ef363

SHA1
f3df6e8827c8776d60cda9527c9b48eb2a28782b

SHA256
2bce1400b650049f502818bae71b7023e9b5e76458add4b7f4513872b10d63ec

SHA512
259402734e6be768fbe66158e442f27be3097f2873f6f454dc8deaf1815a8603b9ed2aeb44b060ef27dc0031e5823b992dfbbab3b5eed93fe3ac1a5fc3cd857f

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\DeviceProfile.xml

Filesize
8KB

MD5
c5828bfbd678a6ee63d0d759a51e9d6c

SHA1
d319e512c47dc9513aedbb3fcbc74573f2bc33c0

SHA256
2e8b8a1e61ebb637bf463563d94cdd174bc56ee6308b94393c285fc26858302f

SHA512
3f4c40369aec1a941ca782e7c95048603f516b8a19ae7f26ac33e33041f536813839c6ddce19949026aaffd411c0c67402dc443831fb4b62a736bb76af734cd7

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\KeySetControl.xml

Filesize
18KB

MD5
4454af9e49ff2cd62d3cc006c02fc346

SHA1
cf51e4ed441a6455b93501a8aace7b740500fc85

SHA256
72e815ca2ca6df1126bf70a8b8394d996888f76342275c943ff37af1efddcd17

SHA512
ac40e35a18084979ac47dc1e681da4c4ddf695da165ca6f20fb726c25fd46708ebcd0374de09a76393bd2fefdf9e0d62f159289a6ba0bd7c209542d181dd2236

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\LightControl.xml

Filesize
17KB

MD5
b6e7ae3c54c28813028073c8e6b74c09

SHA1
bfcc58fa963445eb4c22d669895b6078229cabc3

SHA256
414bdf4a3d06ebad36f1d3aed605776825668e96558c25ea6315169c03fcbe42

SHA512
88ce6ef6de589e68a8969d0bb46c075681c3500f12f52ae08fd5af632fc934273e035e2b511c648956429faf4c30721a7c96e7cedf75064f3666b8519a88659f

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\MacroControl.xml

Filesize
13KB

MD5
d23d075462969dd0b7937151702be9e8

SHA1
be99e3485572cb8c1928b758cd82374355d941fd

SHA256
e092b4d1066991b5e3cebd8609ba7cfb8526110eba863f57e52d81d37c337828

SHA512
69f46156daaf7869bd8e5235d4bef13584995a5a122035d29cbfbc4fc927c1cdbbb0dc26ba9c03ddaacd96a2316060d134a48f2bd449fd39bdd0919b6f6dc9ea

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\MpDevicePower.xml

Filesize
2KB

MD5
70141b02c7ac0663ae9941666ef6885d

SHA1
179cdf25c9cc7306595e1f1ba9f5eef0f98e3da8

SHA256
63edc0523a51e58b87a4e2eaee822d6a455ef1924259707e4f511ede89d15e40

SHA512
d9b47a89787ef172923110e7151076349014b0340104810df041a31da63ccf41f8add53c03b6ebbbb65ea253f070865b11164d9e7b66ac5ecff4f33a1062e243

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\CustomControlXML\ShootControl.xml

Filesize
9KB

MD5
40f8919436c73318a0d5917545037426

SHA1
0f0dff084c72b4ce0669fd71cf9fe8f46ff0b24c

SHA256
56e7e538a60944970b187807e96c98168a5590c2178a4a760b6ed65a102edc89

SHA512
3143e92cfcbcde148d3ded5418ebc46845cb3bea7c26fc1b8219e34e236f83b777a0b35aeb9d2e5c0b49783b905dc9d1f2b599bf50b0dff40d61698878aadb2e

Download Submit
C:\Program Files (x86)\WLmouse\skin\XML\DeviceXml\mousedevice.xml

Filesize
61KB

MD5
028b68c7350e92a3556c7ae93aa9ef70

SHA1
e5ab9c842ef7d938c1666b1234538955f51cfa3c

SHA256
9b0e8a940bb8de757cdd03a677e60a2cdb3f1f6c6fbb942fcf5531efe07d4958

SHA512
955ae3aa35e74811a824fcb2da74333996796112d8181f281f24979d8f36028c205f9059c62b782252792143e3ad4a757e93c78e67409a282ca85d7d576a2d3b

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_add_normal.png

Filesize
1KB

MD5
c94fff880ffd65dfa1123868afd4f23b

SHA1
8314aebcc3632f810d3396f18d59bcb1967e6c55

SHA256
d1ffa0ab3cf7f14c43400a8b7447db7acca3c20f5f3de927e3d40737726103d6

SHA512
051bf075cb2e70d6e5c4d1cb68b128b921929a32976a4f0467e2ca75b219619daa9a8721d595ac857a2a460587158a8c67e05f0112fcb35f6f3b170f1242a6c8

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_copy_normal.png

Filesize
2KB

MD5
1523c9bbeba604adc28b449729e5c2e3

SHA1
d93a842b2e35a235b0dff070d15c41f298fbf164

SHA256
a24539cd01f2058810edefa08dfa99f549bceab72de086d0a4688f19e2b70e93

SHA512
034008ada3cd36367ed4b960fbc07ce3bc5b368239ee7fd40bd41e0a83fcf23c0e1e58402e6860cad865c7302a6bd571aa90e5bd7e327cfe73cc85712adfab2c

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_export_normal.png

Filesize
2KB

MD5
4df928bf77191046b4b9c241d4bc33f9

SHA1
5b891e409ed85963fe0f6d6241bed8f533a96acd

SHA256
8ce4d27ddb467fbb006309b74dbc5f2a51fdec0e664fbfb0badfda32bc00372e

SHA512
ad3e17cb0526fbccc59fc110239ed46775279bac255b03d28a366b7d899e00afbaac92fd797df8189331dab777c9c023847f7eb6b625f55f4e4fd651c97915ad

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_import_normal.png

Filesize
2KB

MD5
485516b349caba0f151fdd4d8ee54cd2

SHA1
d7687492d479a5f45a0fdb262d7cd53037de03f6

SHA256
656d22c7b56e29c69a26ac99fdc472e750012899bedca331d920810bbaef932d

SHA512
6d139d12b5e2cbbfe03577dcb1f283f1b1d28015bd4fc17ceef3fe2f70e2c958a4daba13ed6e5d7a366f57923f870524c180b0564b41a11455cd3e6c04e6b076

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_reset_normal.png

Filesize
2KB

MD5
e3457f86f45f89aee7ff960038c8606b

SHA1
34ae2992d7652132cb4b48e69e9f434fc21785c1

SHA256
26ea0a6db74e3ac67f131f49fdd27208d38f991aea1db37702a6845fc5896503

SHA512
c53c4017876a5f25773dcf0811366c09afc3d39174a5c6dc480c28c892d3668a8516c2b1c7a62863833f6924f04c37a5b5b4639572187190781fce6e88f7a93e

Download Submit
C:\Program Files (x86)\WLmouse\skin\common\profile_sub_normal.png

Filesize
2KB

MD5
48f9f4d26079ae60264db33c9fd95bb0

SHA1
07eb551f52d932831c2a215d10a0bc0dd672e654

SHA256
94739fa7cdfb9f71962ee76e797b3181fdea16fdb4f438011dd2366c365e11b9

SHA512
efc86c8d4ad40ffb2f80f19625d2986e3d8b20c3a67fa9dbf1cb0561009776b8eeaec38de1bd9eab3782ee90cbe0f4b9e506b2133c3c75687a7ebe8f33e22458

Download Submit
C:\Program Files (x86)\WLmouse\skin\control\dpi_normal.png

Filesize
3KB

MD5
c625889910de1f0e54a2f23210f4b14f

SHA1
3f52146b1209ed906a90c95f432219e4cf336718

SHA256
956d7df944787450f1c6067eded5b7cac50cddac273190ad445c26c08d17a4f8

SHA512
36b9d02504186bf03be4b52afb60aa11a3d79e89f3340f96d89ffb59f6eb4dce2409e8cb16ac04c3b6099d5208d18225952169410491ee6e1a738de6e7f699ef

Download Submit
C:\Program Files (x86)\WLmouse\skin\control\macro_normal.png

Filesize
3KB

MD5
27dc09a461ce3145ddfe43717df41271

SHA1
6b86703d1b6967a3e068558c60bb2cae044a8a21

SHA256
0a288a698bf67e0fac4f95de3c45f9ea5b8141a72c05a5ade4f056a149b9b7b6

SHA512
d2a8e560a0a417486b126b7df051f87c711cb8713c2ec5de4b25f303928ed5132597ec28956f736eabcba3012968510156fb180c2cf57daca5bece67bb251610

Download Submit
C:\Program Files (x86)\WLmouse\skin\control\main_down.png

Filesize
3KB

MD5
55d5dce8f084ce4c87f1b753e6d3fad4

SHA1
6053cbd9399e0bd9e4cf9dbcd889397a806ad023

SHA256
7bcefe1403ba5a8c9fda997b9b9ca6f807458200adf1f769b60c460141943d3b

SHA512
130b16a1bbaf8a47f0527f6ffa68b6015a4c1999eb89a4b3114e7075140c4619fa7255a0db4f54adf31f44cf1476086cf374588307b7c2fc9dbbfdbe4cd23285

Download Submit
C:\Program Files (x86)\WLmouse\skin\control\screen_normal.png

Filesize
4KB

MD5
d5c665ea356a2ac49334157180e4a30e

SHA1
58a79037b7d1795803caf551cfb8797a6e007277

SHA256
b5bb030c0edbcf3a087a82c14382ba9a9e5ed1d8ae4a303669d597877ae02e82

SHA512
f80bfee75c52a86e45731e3495eeae20dd552c2d56f8ae2a68c690aeb1805b2c03ebd7ffec896658bb66faa71fd5042da1fd6d05781155c40fdea54123d13c3d

Download Submit
C:\Program Files (x86)\WLmouse\skin\lan_cn.xml

Filesize
36KB

MD5
3a2dafb2c1ec64dc99d95116aea312b6

SHA1
4fd8e1426b01a2484552352de12f3403dbac1c95

SHA256
8a724abce5a60a8dbd2c8233453065cb9567aa6118ad0359509a5f4e91063925

SHA512
52e4a44a71862796b036526c66201d6b6d25284f54a433eb8d2b9feb600b611f7ac61925808456030820cf125b7306e9d71bfdd6c38c84ea60f004018cd1c598

Download Submit
C:\Program Files (x86)\WLmouse\skin\lan_en.xml

Filesize
36KB

MD5
bdc8342fd9523fb561861797766a3b1a

SHA1
4fbc3d230b8fe1257f7908b34a60d09e44b68bba

SHA256
3ee29d9b93f78117f1778ccb7662cf2ab554353ab916ff868b33528a0d81a482

SHA512
3f7764de665cd4a81835bcde270a19bc6a0bad1da003b126e09ca4b20e3eb46a840dc1939f7ae79f43343e37abea6391b0fdaa8986e8181fc914829917f7c070

Download Submit
C:\Program Files (x86)\WLmouse\skin\main.xml

Filesize
28KB

MD5
e96151d9a3ad8f8b79eb87ca86b5ba2d

SHA1
9d5fd3d88c47bdf0b94499469796b4d0d7ea6599

SHA256
3db89f6d1bee41626cc2ba4b91dfc62f3875fe81751254f2f1f43c90047e7f1d

SHA512
406e7f7761000a55a104345e82cd37bbf73ef618c712d01e18e1ab445499fea9d79eeb38c7315207fe4a1df45fa089434fa983a0ba7f8db6d99f89f382b57edd

Download Submit
C:\Program Files (x86)\WLmouse\skin\main\NoDeviceLinkBack.png

Filesize
47KB

MD5
78aac96339e8a4d2bdd194f344c8ba49

SHA1
7144756b3962f7315c2a9fa11262ee620216780b

SHA256
3266d5e9bab603788fee7010dc9fd42c37a5fb70e65db22517b4ab62ff6131e6

SHA512
79bf96ab10e256604ee190dbe7268a8aad5f0c8e90fecc830d8357616ebd204eef65f488274a7fdce6ef5a3eb51f1b2394cdcca0baad7f106370dace3a7be5fe

Download Submit
C:\Program Files (x86)\WLmouse\skin\main\background.jpg

Filesize
61KB

MD5
981c7aaab6ce7baa873a86c941de252e

SHA1
9557c80df455a97ac06b3c77975a3f2d44dc39c1

SHA256
1f40702582898d6752106446fbaa2fd394966b260d5600e0ad10ecde41fb757b

SHA512
8800b1295e0e9dacb0d56f449265fccd22b6156f827cab5033e7ec2226404d05ab78100a72f0d4fa0d5e192c59b3b5c6c54b5548ddc84c49999d33e59d2d714b

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\key_back_normal.png

Filesize
1KB

MD5
a902c5562f4a920eb4e9734da8bf8651

SHA1
e3be4e7240e054d5814444578951ca5e53329e50

SHA256
d52975dafa8293ddb854e36eaeaf7a7261f098bd23057eae6b712e1039d2c6d3

SHA512
540af44f852231c21171b79f71d4c3c1ed4c82120733b53caa3fc2b08870a5a45cf348983a9049a2b810da224e10382f2f8bbd95537ff27250fa6d616666e352

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\key_forward_normal.png

Filesize
2KB

MD5
eba787f1ee8930dc140c8fe2a0b5f31b

SHA1
3e68ab7559fdb4e96fa1162e9c76595d8c332b83

SHA256
96f777358bb1bca3dd04ba14a7a14266725d43b1873d9f07b4edff3448696d73

SHA512
9020fa86d9a8b500201df51ebf2a01a1c64277ae0a1f0fdb003a6f3a438cc4794af3f3f924959c6f1a889a95d212c35611a0da5c4da47121e65a053e0226d8bf

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\key_left_normal.png

Filesize
24KB

MD5
a1b915e51ff56bcc3dd0e0e7adc1e965

SHA1
5161ff7698b83348395e94aa2989d9cf2f99ac84

SHA256
7b725ca069915c618fe238f5da229263444f88aa395070baa54ce1a9cb82894c

SHA512
7ce494c6347743729e23be0d18098c065cc4aea94eca69ab78fd96ed4d893f8ebcba0ec70023d8b32a184c24d34c911a96b0dcc13d1f510649cd68efab916a99

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\key_right_normal.png

Filesize
16KB

MD5
3be21fcff4ba2485c2f5d89323e0c40c

SHA1
8048a21522b6d16d0ae76610e7c7e6653531301f

SHA256
adbcdf61150cc02be81351c67a1bdbfd04d579106630080fa5d5931f52f27c38

SHA512
672fd42bf84a736e4546da5dac08c9d03d3c8d64a7adab512532c9bfad7bf8069d369111f5aceb2b65d5c1f939b2842e522c71f0eb5e6184852536127e95f8ea

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\key_wheel_normal.png

Filesize
3KB

MD5
4bbb9c267bc952d72fd37593f60b48fd

SHA1
75eb0ef2d718b30922434eba96e9ac8818be2dc4

SHA256
9fe461ec790d3f8e7b07ea39b195bb498986cc9784114e9936d539edc7e31f6a

SHA512
7c1fddbd69b7c31e033418bc7dc436ec383e1aa429ad29efa58da0dcaa6d903820d7d5a2a9d418b4ce1c6a14747151c66d53a95679eab8c8327bdd25ef39a092

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\mouse.png

Filesize
55KB

MD5
102edca5db6ad8735540889c9f040a9a

SHA1
6c19082ec9e73addf3ac4e1d425b8c91af31ad94

SHA256
4bb6bf40f8a6a10068ec4a857d8553d238a8052dfa01fdda980913800b9a9576

SHA512
5f3fc30afe0c7a579184a5092c2176e8178ec04196f5a2ea610a98f7d5348849d2b3d69fe23b6712e58e1ee99403d328469a602cc4e812cf299cb87b61d232b5

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\regionimage\key_back.bmp

Filesize
4KB

MD5
78e2b26288bee23b7dbd5b33ea75b35b

SHA1
c5ac420d6366e87379651c7e386f2f0ada2ea6f7

SHA256
da91495cc08e243bb8f586b2ef1246450ff95b8cf32b721e9745539621199ebc

SHA512
7a09c4df379e112ead364240b60fa7332b7d937ad06fbc1a1f210af2fcf9c8f2b03dc6821e1a61a48ce6b0aeeb9950eba91161763cd7e0ee923a9b11c20630b1

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\regionimage\key_forward.bmp

Filesize
5KB

MD5
8c143eea8e72c99499fc9e4b23ca7985

SHA1
bdeafe323d32a936752fe31647ee928b9fe05d45

SHA256
80f6d5b7bb44b96790b97abda4ac856fccea605df02878ffb212ac1766890d75

SHA512
5f6ca26dad9a517105d88d0c19706e270ac4da03d5ae2ac2c73052a830ac8db124fd7d4577767f78cef7962af9787a2dfe628b5f1105212463ca6463251e29b1

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\regionimage\key_left.bmp

Filesize
117KB

MD5
00cf860650806b2dbab37f408bc95563

SHA1
e3e4b76b78ce34d23c8ea8fe72f12f3734a74898

SHA256
5dea3927ad6e30bb2f5551840fd168df32cbdbcb74fc63c38e82b2aa693d9803

SHA512
360a7671ec806c1714c1291e035425fba04748bb905816b84261a9ed19c449f2a859c9032dae61bd225ef8db613d3ad8b6168eff508359f720591d9b25b043a4

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\regionimage\key_right.bmp

Filesize
97KB

MD5
37b6bc8eb82848be8f761f374cb78056

SHA1
471f35d00d74fc28b9c7d69fd7c19b768a4a7fa5

SHA256
b43b479e26a3ae09cca6287ea4925e5e5c48518e61f1c0bf6bfbc896bfa808e0

SHA512
314716647f51c0c75623565715ac1cb14a5baa90debab8dc5190129a963330ef9ea38b17d029a9deda435b09a28a1df81e920699ed06d4ac6a467c347da546bf

Download Submit
C:\Program Files (x86)\WLmouse\skin\ms\regionimage\key_wheel.bmp

Filesize
12KB

MD5
2a1acdf87bb1b4b159f2605164734e60

SHA1
668c16fe395dd3ab62a2b5458cafd5e1a1292dcf

SHA256
a43164383b0748f06ff900ca2dafc24daed85476c1004193d4af0e6162a71354

SHA512
d9bc60430fd8636c3be2f37aa35d15d790b0074a953c82165f9a2b033540953f4ffc2b21b7a2e1feb0cfcc9e7c758f4f5f46cde03b1219d04a20f7a3d2bcce08

Download Submit
C:\Program Files (x86)\WLmouse\skin\res.xml

Filesize
344B

MD5
f23e462a8638f95adf503668d009456f

SHA1
3dde82be277e763923cb50044bb0644cbd4b2225

SHA256
5fa985b7ca510683130be3c531c2b67bf9b71c7fbf97644f45adb8ad8baf46e9

SHA512
c390dcc10bb216a1a0dcc3821c1908371cef4e699c32675699134d36537582016f502c49aa54ef1fc2ce0ad3e13e98b5ee973d4174314982e68bb98d9636c725

Download Submit
C:\Program Files (x86)\WLmouse\skin\sysbtn\btn_close_normal.png

Filesize
2KB

MD5
8969734aaaf6fb4ae61ab61d330e50dc

SHA1
9e482439f50e9582e479af558e8826cb927aaf5e

SHA256
209061a656dad35e9cc8cfd074ade455e5e1c76561ee25d8dbed5f8976981ea9

SHA512
c8c03504f3e5aeb62299e6f5fb8e11b3b31a0ec9cbb917929e06085d88192c31c594318bd9f58bde2de9c35143411022ee56419af12fc2c67a6ed72b1c2bb8d4

Download Submit
C:\Program Files (x86)\WLmouse\skin\sysbtn\btn_mini_normal.png

Filesize
2KB

MD5
86634b47f673712d4ae550c34382dade

SHA1
fd15e323a349d8678c36f79279fb7eb3b4916b91

SHA256
5f44f5ecd5244695f6222a59422fa694ea02c34f695e017808a39f9d312361ca

SHA512
0ff9c08dc0d14f5918e6a2e0db967fec0a8030b40205424cc6d0d5922735f6bb252a43d11e47867d8a75623520e5e18bc0e832eac0802abc109f1a4f5dedb9c3

Download Submit
C:\Program Files (x86)\WLmouse\skin\sysbtn\btn_skin_normal.png

Filesize
2KB

MD5
b6d8f3ddbf20d2b53bfd0de708a07fa6

SHA1
a87e4b36bd11de11bebd5c2e8b8476977ca8e948

SHA256
d9f8dc8569cd680179bee157f25199a29e4cb97d50283b72b4872f08953a25e6

SHA512
eb5d4c7f7b4cf87632844abf2b96ed1df2cfacfa5da7e0e01090e9612d83cec07f61acb15599433eefc0ecfbdb2c7cd89acd1cd5b491da5f9b2f7b21fe83b0ce

Download Submit
C:\Users\Admin\AppData\Local\Temp\nso3277.tmp\skin.zip

Filesize
282KB

MD5
affe2bfd6cb2d8983dd7c5471fa491f8

SHA1
852c5675e589d5674d3fe04c9788b5f7f3fb8d9f

SHA256
d7148a83862ca203ec1bd363e3d820714768bbc0ad3283ea1b03588994709997

SHA512
fcb530d730b943c2ed0bd41077f0a1968fa70359d99092df65c281a239d4c0bdfbdffbfd83c1b2cf18c0816d6ed9e040f53a004992afc878f4c9eccf0c234df3

Download Submit
C:\Users\Admin\AppData\Local\WLmouse\mouse\ShootData_2.Shoot

Filesize
13KB

MD5
711f5bb63c9276cc228ee5d06ce12dfd

SHA1
bfa9bb78775c130bc99c1f7b1e31b6311d7bff93

SHA256
45ae9981d9d7b0c2fc1b0142b8a20e3a3ba8be6df4ae241670d53c307b2dfc18

SHA512
fea31aee1396c3e735a499e159ca86e4c375cd398cc9236325953e5fcef3c648d491686c1f5ca894bd2bdfc01b9bc93fd8d1caaa9f7d9dc2df9aeb612bc48d91

Download Submit
\Program Files (x86)\WLmouse\WLmouse.exe

Filesize
3.7MB

MD5
decb6443484a88f8ef8c75b44b940755

SHA1
d21d646ce3936aadd917a8c0452cb0e08fae2d70

SHA256
74bbd98ccb71c95fdeb1c6ba1e9598684269f036c8d55dacfeaef65b12188a50

SHA512
37af9d04ae3a4f37f27c5d3bc67f0352ce17ea559f8e957483774f24d89345d83ae31ac82518ba371cfc8cb62d473cd3d5ba02662e14360429323bdf81e47335

Download Submit
\Users\Admin\AppData\Local\Temp\nso3277.tmp\BgWorker.dll

Filesize
2KB

MD5
33ec04738007e665059cf40bc0f0c22b

SHA1
4196759a922e333d9b17bda5369f14c33cd5e3bc

SHA256
50f735ab8f3473423e6873d628150bbc0777be7b4f6405247cddf22bb00fb6be

SHA512
2318b01f0c2f2f021a618ca3e6e5c24a94df5d00154766b77160203b8b0a177c8581c7b688ffe69be93a69bc7fd06b8a589844d42447f5060fb4bcf94d8a9aef

Download Submit
\Users\Admin\AppData\Local\Temp\nso3277.tmp\System.dll

Filesize
11KB

MD5
bf712f32249029466fa86756f5546950

SHA1
75ac4dc4808ac148ddd78f6b89a51afbd4091c2e

SHA256
7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af

SHA512
13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4

Download Submit
\Users\Admin\AppData\Local\Temp\nso3277.tmp\nsNiuniuSkin.dll

Filesize
896KB

MD5
1834fd72e6a7387749d014a30b53d6ac

SHA1
e6c51f9f578e86e376501fc08f6d80cfe11bdb52

SHA256
148cb136ff5ae9711ddb869b5f22065ee89e13eaf5081ce39c07dbe89ccd97b7

SHA512
c8247a7916c718311a0f458cbb2133d77e3950609bb2c4b9470a9a7725a1d4d595422fb8c3c42f34629fd045675c72b221fee26a5188b9df4a0f3099857ec204

Download Submit
\Users\Admin\AppData\Local\Temp\nso3277.tmp\nsis7zU.dll

Filesize
313KB

MD5
06a47571ac922f82c098622b2f5f6f63

SHA1
8a581c33b7f2029c41edaad55d024fc0d2d7c427

SHA256
e4ab3064f2e094910ae80104ef9d371ccb74ebbeeed592582cf099acd83f5fe9

SHA512
04b3d18042f1faa536e1393179f412a5644d2cf691fbc14970f79df5c0594eeedb0826b495807a3243f27aaa0380423c1f975fe857f32e057309bb3f2a529a83

Download Submit
memory/1704-1458-0x000007FEF59E0000-0x000007FEF5A2C000-memory.dmp

Filesize
304KB

Download
memory/1704-1459-0x000007FEF59E0000-0x000007FEF5A2C000-memory.dmp

Filesize
304KB

Download