d073c2540a262dadd12923045cb5772e2e8ae77d918d9a9e0c80e1443e3a2097

Analysis

max time kernel
148s
max time network
149s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
16-05-2024 18:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4c8d93b1b5f7ff9ec64497d7e67d7888_JaffaCakes118.html
Size

105KB
MD5

4c8d93b1b5f7ff9ec64497d7e67d7888
SHA1

09fa5e9382c0eecbd7d01243e25f8703b9574c5e
SHA256

d073c2540a262dadd12923045cb5772e2e8ae77d918d9a9e0c80e1443e3a2097
SHA512

02760e3cc31949bb2a5b0ab1b96a9bf0e22e9ba7577b249af26739793f73ee5c2ca97b5ed85214fb54a8ed648768c061d144ecd3c40e10386d66a8af8e0f2482
SSDEEP

3072:AgJXyhGIxqc3nwDzC7cmYV1KdYSbJfrTlVp5Pp/iqmjqbQ3vVB6cLZ:RJCpA67cAdG

Score

6^/10

motw phishing

Malware Config

Signatures

Mark of the Web detected: This indicates that the page was originally saved or cloned. 19 IoCs

phishing motw

Processes:

flow	ioc
39	https://r01.ru/
39	https://r01.ru/
40	https://r01.ru/
40	https://r01.ru/
96	https://r01.ru/
45	https://r01.ru/
45	https://r01.ru/
45	https://r01.ru/
46	https://r01.ru/
46	https://r01.ru/
97	https://r01.ru/
203	https://r01.ru/
204	https://r01.ru/
44	https://r01.ru/
44	https://r01.ru/
117	https://r01.ru/
43	https://r01.ru/
43	https://r01.ru/
118	https://r01.ru/

Modifies Internet Explorer settings 1 TTPs 64 IoCs

adware spyware

Modify Registry

T1112

Processes:

iexplore.exeIEXPLORE.EXE

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "233"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "233"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "115"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "331"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "407"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422047423"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000014816dc9c5f2e84ca875959166c4ca170000000002000000000010660000000100002000000093e5677f1d0fcd6915842fe33b7ab4e96b07c560b3b27c34342b34a3e895f85e000000000e800000000200002000000098b96a565a69ca93024f1d723b4084c4886b58e78eba8aedf2b0b023022e12ba20000000d922c5931bfd09ef13fb82105f6b737015285371dd7490f632cefa9fa06eb79a400000001b6678b241e7ab7da088bbff58a3a2a0216917f91de66c17d611cf0312c72d409aee1a7d9e2f8f7cde36e028a34891e9e498f0aa280e83dc0b0b38aa7b513a7e	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "331"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "233"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "325"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "325"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10598"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "325"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconPath = "C:\\Users\\Admin\\AppData\\LocalLow\\Microsoft\\Internet Explorer\\Services\\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "407"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 60b9464fc2a7da01	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0"	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

iexplore.exe

pid process

2180 iexplore.exe
Suspicious use of SetWindowsHookEx 6 IoCs

Processes:

iexplore.exeIEXPLORE.EXE

pid process

2180 iexplore.exe
2180 iexplore.exe
1136 IEXPLORE.EXE
1136 IEXPLORE.EXE
1136 IEXPLORE.EXE
1136 IEXPLORE.EXE

pid	process
2180	iexplore.exe

pid	process
2180	iexplore.exe
2180	iexplore.exe
1136	IEXPLORE.EXE
1136	IEXPLORE.EXE
1136	IEXPLORE.EXE
1136	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

Processes:

iexplore.exe

description	pid	process	target process
PID 2180 wrote to memory of 1136	2180	iexplore.exe	IEXPLORE.EXE
PID 2180 wrote to memory of 1136	2180	iexplore.exe	IEXPLORE.EXE
PID 2180 wrote to memory of 1136	2180	iexplore.exe	IEXPLORE.EXE
PID 2180 wrote to memory of 1136	2180	iexplore.exe	IEXPLORE.EXE

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4c8d93b1b5f7ff9ec64497d7e67d7888_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2180

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1136

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize
1KB

MD5
f4cf43768f928b60fb50245aa2ba197d

SHA1
3e0b011b6299fdf46abb2234197465a8c1eec0b3

SHA256
7fb836a3bc5b532f165b3aebfbe605b22acdd379db34939f47456864efebec13

SHA512
003ee0a6f517bbb47398fa6371979797d6810714adb234da3db3dd06c7509f39331adeb1947a2282a3692536f36f622764356cadd4fd0d952b18dd332338b666

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90
Filesize
979B

MD5
0e57294ed75d5737182607e95e369e00

SHA1
ce97c7ede67ff772d0fec9e86b60e8fc3c9af708

SHA256
316de0e1b5f70f35db62a1eae0574273a7a6ca8e556ea306dc2c117d87670aa1

SHA512
6d2f2907a96507b343fcdea6e305c413dca3edea0971f14301f60b85083cbb7016d7ec3c2ce8226f453cc03c02d77d149260c3eb8cb503c94a277af5c9b438f4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
Filesize
252B

MD5
8d7992ff89c19f640d7e18b80dd93e13

SHA1
1191bee79951da6fdcdc777c5ad3c649dbbbcd92

SHA256
8caad2f308bbe253f767497e8339ffeb120daeca2e61204ebb26c32195ce2c3c

SHA512
7dc3d0bdee81a337787da6699fe30c77b78e86505c54d3acf65288abf9a9ca686818c6256a40bce19f83ab88162eac1266c75d1fc8492aa114c3cd535c28e092

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
143bdfe25863504b49756b734e83f28a

SHA1
ac587220cdf99282f9529994ee5c4568627daa1e

SHA256
6d74845e904af808843df6b464dcfb4b5f3da1f4a7edca54ba9a94eedc8c4fd4

SHA512
02e6c8734a6ce7e888cef5dbf3435636154f88da72b82d78c4f37022017a43210d5fd29e857ea905fefd04e4b589241301409061d849520278554b5decb70f7d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
7bdcedd226fcdc86d22aa302506c57cc

SHA1
87e5d1de32de8b7b76d57ae7fe0334dc89040316

SHA256
6875b084062a305806f18e13af80741880ee9965d1cc9350f6e5482412d0354a

SHA512
5629e295ffb673d2f36c3fdba1f30f008cf40417b0e96aec99e53778ab97157814525ea192e5c8eaa235b5a8967984a7ea6182925863d95fd260df33a8bfa9b6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
df7abe9a5a42fa7dd3f2a57cff9e8769

SHA1
7be64646e4c39d323a78fa4cccedbb2570d70317

SHA256
b716d84012e450fb47106d31b1895108922c416d7c77747d319853d135edf1e3

SHA512
6cc6f700734ad0992ad78bc5350e374d447ba7a3b4ecde36fee3b2c451c8f92bf219010aee99c0322822cab9b4ecf88753fafe9a7247e9e229eed2f70d3065ad

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
b5680bcf0c03a3afa7b192b6df4fd48d

SHA1
49508fda0a1a9ed7afc868c2ba051c2e47bff57a

SHA256
fa1c97bfd8786a8b32e402ba18fe54d7eb7518b2a5eb4ef93302ad31e99e3dbb

SHA512
f8b52a6816e5f4fae39afd889ad857296ba13538ec5cad7723aad2b27636dd4441655b8d622fbcb16712d91e5a246c8261eacea4e99471e8da65c78727092bf0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
27f657c329f17fb0806dda6a6143444a

SHA1
6f38b63ef38539d51163b326d87d5277460ca009

SHA256
86999e9331bf69074b786a0f1348a419470fb3f8cd3a0eaf9549cba909ec2a6c

SHA512
d82835f00790ead5597d167371f7bacd022689d3839f48481de8cdc80376d569f29e04760b91b0eba4f8a4e46e559199463c995e175e895d47a96d09e0bbf95b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
94f61b2384445505b46e89e36e3ba707

SHA1
efda959827052c0341d44a333d2728aa5c5bdeb2

SHA256
4304104b85e51b77d86098d213c93224a2aa4a8b038548871f67ff977d08125c

SHA512
ff1345d6673966137439afc76b5e3a933a016c4b916b08d032e5e62f07131ff3e9566e9ea1721a81b0802290af908f2e9c5254230fbf586e1964621179fac311

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
80f2f9fd5e438def254b90514f97fc7c

SHA1
a19a2b8d90952b82566ad2e060b3e8d2faaae7f0

SHA256
4841aee91ad055039fc97d7127b0169db1c8e67b4093e1a43181b5da3e50f1b8

SHA512
f1ebaf5ba95282da5459051829180d8c50c5a2616a13b429d6713f34b2abc145343a05d868ff0ec56b6f81989d24fccb08cbef37f12e6ee70de1b1f91d6e9281

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
acd17f17e992bad835af5c8b8cf191c9

SHA1
0c3ca3802f2a9a87b0e83e2c8d7231eb1c918567

SHA256
2a3dc9dd9184b661f34cd6dc855f427f5ea62917035d1a9a06fd79cb4cfcea56

SHA512
9f68ca4a2acd53ec09c08c1565d795a5791ab9ffb1acc79d557d9507df0972746d762726a66a2f884079635018046acd94008d9a962e1b0d398c15dc2ac2752e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
5f21a05f73996eaad045b0f97caf6747

SHA1
56dbd8f85ff11b34c67feaebb5fbedfcaa6d57b4

SHA256
7f3588593131cf0b0fe7ab2f8808d0b47a8dbb70ced6024be547c1da35460837

SHA512
737ec9202921fd564c8f04a4919ecda63e23517d535e6345fb5a9a24dad0f0f235a610e13a51e6527044b9f8076052cd9b09952b4551fcf923258159f88bdf20

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
e22f5474e754143c786fb64db677fbff

SHA1
5500fe4c009c02f7ffc9daff844d156184be6d1a

SHA256
b93a16411bf1383dd10e10d3983274ea5bb4fa4b8bfb72f8b5797eaa966ad5cd

SHA512
149aa34bedfe4084719deb93813f5951c1214ebd8c5ce593c8e37180039d32b8dc83cc7dfe738b084a013d590eb204eb4aa32030ffe6553200dd54f7706a468e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
abbe17b6d578d81f1c5774599c6b5305

SHA1
68d0a1c654ad0a9767a6f1be326b0306ac3ff0d1

SHA256
c51ff0b2c989cabc4ff23312f66437e1c97a235c68563e4dab6c4849dcee8b39

SHA512
84a71f399032a50ddec142cd72bde92c6ca0db12a1495849ade84fb2fe76a0094797ed1303c64d824601627e10f8214a855c0d36e4848e71c8b04a3c6da5403e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
a670a14df989d2fda0e3297ed36380ef

SHA1
ce1ee252973f24c84a0289594cfb1b5bcc38fbf9

SHA256
d6d3c3ef5abe4be2786493332c1570416a5a25844daa91d145ddd2342e7dd17b

SHA512
b70d13cd12b568b11aeb2a1f5b415a20114b139b60eb100efa025763a706263be2a05767bf8ba684b0bf1e059bb8196deeeb45fda549de9a47b2d757a0f9f34a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
99d132bbed0ddda44ede479af896a4f3

SHA1
9df7385b370cf0d6d20edf408734d9802b6b95fa

SHA256
64d7d265714ceca57d3553d7e862059d158f08429b5dc0c5df668fd224e5d594

SHA512
e1acd60404b05833b158c2d9d9ed594aaa2409a7b2ccded871cd6b98c6fbcd0c7f3c4e7b081490a08fe25b49a8debfb2a9b699b6d665348abee03f5b4461b3b0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
172962194ea1601da149a4693d49d7ee

SHA1
b6684b34ab323c66b9c8d23fb64b1326aad87282

SHA256
ae2b692e6d723769ddba43ff1dacda949cedcc2a88f462b28b0f6221918cbab0

SHA512
6e570495ccd2a38984adcc0b6e4e3aa380c802741124bc7aa41d2dadfcaafba9fa53892177b28516f94008c6a0f519144a44283c75b7d8b5eb9864d3ea23c394

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
98ec77bf8c01d109ffa51f3c8bb2d715

SHA1
d949e6037e1630caa84b5895ca4132b152006255

SHA256
a34050c7743e434f3b0eb237d84a143027553631dcbd1d17ecf64b304b588be3

SHA512
6fe6d2f17b66e12ee21857b13db5f44d221f5a4bac0c010adbfeebd16303492ff6a2998a6dc407cf8646c83509e387f640f40e63efb1749f587b99613a1f68ba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
ce2d0960dc0c8c6174d10d0c3e753a9c

SHA1
ab452501b059ff0a1f69664ee6a42b5cb4f3ad8c

SHA256
8f216b9c7c47796f2608ad36cd81d15bc8bb88774a7ea44469e71b128a5c71a2

SHA512
a1d3bfb94dde89a3cedd842fbdd1e62fc664606c63e367abceb39fe31c96ddb872998c4aebc9696fe382ea9d0308e45573fa015fc1b7798955229b07dff4a328

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
c8adae8b9a4ac14846e59f020a291768

SHA1
38512146ba0d82bfc036773a014eac613dbae337

SHA256
16f3bacfea5d8ae6c3f832c98b4da963546b78460bd3cf8b8d5145f47afcfd5c

SHA512
1712c80fcb9380ac0c552e7df0c356261f9cedbc558ef55de9eda4c34067cafb38eca7d02b1f12c13a5ccccce12783ac779798a6308fbc253ae656f92b47fbea

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
92ff7d4ee9fafa3bbcafd2503f26fbaf

SHA1
6a7b0b4049d6098a64e3c7310ac8554defccdfa7

SHA256
cdcd36d6a0139a5784147adcb229f4a1617a2f3c08d04db8f815442f2d472294

SHA512
cad78576d3601f9c6437997897dc47076c7568a016bd5bf49df49710cd5ac38286be32de5134cd6e92eb250dffd86e38f2921410b636fc511742960883e1044d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
20d22f93dc145a3fe3549c815d528471

SHA1
4e61f07579e69dfb84033c2455fc7fc2050f97e4

SHA256
0fa095fff090e5b2898c213c2e9614cb1ab3e7ff24004012eee3b830a72280f2

SHA512
a45bdf756e88a3126edb0eec4f711209508d288328bf4c1c00dc9253f08afb254c8235edbec78be0f002e4c612a28594e2dcd4505ace66153741d967a68f8622

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize
344B

MD5
16ee042035a8fa038045233081e9241e

SHA1
c90ae41723d096d3895baf87be0b9e81fa8f1fdb

SHA256
e540621be55676a80caa13cb4e4977c82cbbc68080a283a7c55727dfd8627ee7

SHA512
1d4f0f0993e821e2a3fb4e3750d6cd1ba8c69dc43cf977899f72f6c1cf69230b111b6310919d6e6c30157a785bd17a2465d8e0a0b82cb9862b1065a036e0e7c5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize
482B

MD5
7819d65990b0136f7d20c2ef0344dbb0

SHA1
fdbb9cb7912c4b500977831c4d328ff47cc7e6c8

SHA256
5c0f40dbb6aa4f37a80e9b86d63c3b4116aa6e47c785497d8aa917f0739e79f3

SHA512
fe7129716c3c283a89413508cfa6c0c4d0920c41fbb8208ddd85cd28f3ba7df0fd2dfb97ee03c86ec9df0302449a81ce94c5099a1d6f6c963178350be7ce9d7f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize
482B

MD5
59a447cfaa49957453d732065c4d31a5

SHA1
dc8b3c26839cdb194a5c98b52df18a4eed726b44

SHA256
9f013c18ea37ed3585657d4e4772db88809e76dd0b0a6158dc726e79ecdd0cd4

SHA512
b50dcc8b7132accf0a587deaa0d8c1e58f2d11b332a29bd3ea8cc363ed71bb90c331f271101899db4dbe3fab9db3aa6ee0c37dfdaa42bb4755011c18d72b126e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize
482B

MD5
a199c9ab5ac680aad30a22ac306e791e

SHA1
a1e91e716cd0b953019abbb4361e9ea6d48b7aaf

SHA256
52e086e175fd60e613499348bac0b2afa9cbddba285ce3dbf43e1ac08e8f5adb

SHA512
cdb608d42dbaeff3535c0499fb5ee9298455e24f1a0043bce138f6b2472105e204c1a18753fd01de51d3156a30b2621b1663dc24ae8273817de12a5cab0adbb0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90
Filesize
480B

MD5
0af62927c302f11105bc0da83778b3b7

SHA1
a857e25847b0852ef35f5c768f8069bebdff6e33

SHA256
711a0b5efcec8957220cbff9b644523efe8d712f8d7153dfbdc649a849b31720

SHA512
5233f1496eb79043f9ccdb96a64ad1be9540ad2cac95c175c406933d26f335d4defd66586406f51994aeb48340c829d20cda6a1654d4dbfb0139ebd1d377f737

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90
Filesize
480B

MD5
1f4efdcc2c9bc96e2e6769a1d9750588

SHA1
58360b12a4d298c418e3ea5a1a091f8c85ecd554

SHA256
8e9b2af2f0fc6eef1fd2ca77b92ad0687669b3bf30acba451f92cf41c5744927

SHA512
4b88adf171784804557c9750e39f5b91bf713144153a257c64862e23cca47f3123e3ae31ece591e6fb25d887839a86545ccf129ce5cb265eabe92fe3860c1338

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
Filesize
242B

MD5
b376d3b9f8110e4c00c8cfcd8740d088

SHA1
586f60d81dae39caef8639df67174162c6e69b52

SHA256
cfc1caa2c43f682775383b54ca95abb7be4f506c48692909c36e033f7d77349a

SHA512
babdc8cc01b81d7a4f8e85c587c442a7aae712296838f685b6be50f2e3c1921de18db491200029006afeddca27b30ee15c89e2bee44c5d94f1b1b1d6d981b684

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
Filesize
242B

MD5
9d9fd589087a5f9928e1b1d9361fef33

SHA1
0255a41f0e3f90d2790572889af25f716de9891e

SHA256
bb6c15afc3cccdae77a0e558474301b6721334c2f11e40f9552f83ba8d4edd42

SHA512
047d4f92e0f8e31d61cceccc59e11c4e9224f125ec601de42db63b0053bf937ae135af2325ba60bcfc0534a2b8536b69c1e1af6dc707b0e23bb35056ca7a9f09

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
Filesize
242B

MD5
d972a656c6e34eb59f9f6f08ce8e6bd1

SHA1
46485036fcd90d0c157bc1c2661346b9e4ad69d2

SHA256
a5ebfada408d10b5e54fc0534bef305df05e3b0c3fbe7c034d73f91d64ab1a40

SHA512
d4257d2eefe336d830abcff732165fd658107007f831ad4390befc718665267e8563559df61f63852e99112b5e9f36ebf004c207f455e6e18f04f1040d64b204

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
Filesize
4KB

MD5
da597791be3b6e732f0bc8b20e38ee62

SHA1
1125c45d285c360542027d7554a5c442288974de

SHA256
5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

SHA512
d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
13B

MD5
c1ddea3ef6bbef3e7060a1a9ad89e4c5

SHA1
35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

SHA256
b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

SHA512
6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
229B

MD5
81a84b85076cd11ba2bf273a4b86dea6

SHA1
ee529d0cd5c87c44d576eb95d5be1480cf1bd5cc

SHA256
7bfc0b6eb2c21e1f4e29a2e2a8fdf8c0f3bc4a6a4361c73c5199bf8a160dd466

SHA512
59b365eec6d3913d440caa57f5bf15f3e10d5ee2fd0ccf5e07555b2789c3a2d45c6d8b915574a5c85a3c0ac6f1f5aeff0f34559f617a87a64849731bd26a5fc9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
16KB

MD5
84c947db77dcfc79cd1538230cf07cd9

SHA1
5ff416a41f91b3e155dc79793d2f9f2f95987b5e

SHA256
8923e88c98359f946c820307df4818a5f12d9280751287b43c590496f57b1890

SHA512
aaa05efb4dff136be1b6785b555bb40a3f17a0adf7932bc8ade5cc505d51adf54ecfa7a5c44ac075d62ce785cceb0fe729fe48e03ed2488df3c9ff81f6446ede

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
990B

MD5
16230fa0f33945ba8f0a5a9d17b04e33

SHA1
09072cd7bfeded5600181141b17e1b0222de2c37

SHA256
76b563bd5b138d3cd66538fb571b6e7d88f904f44354eff7652f9b88911434ec

SHA512
e4d0b013ddfa6f4da21298f7d6bdaaabcbe12a3ed502f37cfaf71a98b38dc26cc10bb12fd3a6aa7a06baa9386be697004bfb0ae07ba89d427aebc41f10ef96fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
990B

MD5
34d22d3e8a9f72e8c3d03dbb1b32d730

SHA1
38ca35728d185ed6eeb713d7e6a47566454b508b

SHA256
87babd59a6a08d582fc9f5553ce56db238f6277071c3e126f9838b493cd3c1de

SHA512
0cc46aacfa6a655fd6079fa836e392a3a62815a54f9c49b76a285bf5a1da1b77a6b85e42ec1e2ce9342a6f33b1bb690f727ae0c5702567806c6118d123288978

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
990B

MD5
d2be7c16cdd4ca666b08a97f5c7941ed

SHA1
cf8a1d5ab593e5b33c03b0a97c5bb559249f03bd

SHA256
4db0e665e8089f9e68c2d2d0706e3fd3ff22d985a843023bea837d467a110803

SHA512
c959b10ba3b2684a23a6bb465c84d7f062bc967f67fea3d501debcfca3c357d29c2bb16e5c30a00fc65b1ae4032aac113315bc4e0333ad74fb10629beef8d5ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
990B

MD5
1798cc0cb318f990a84ca584c7db509c

SHA1
e3ea9dc0eae9860655930823d16a349e83bf998d

SHA256
ba40b007f697c352278a4d627c990e9f5ce6c215686986d3d810e5c8dd6f6429

SHA512
da6601ba9c69b0cb73eff2807ad03082ad294d039d28164bd90a3839d67f4ca1ba17b244471bb5719caa373e25cde8dc44368efed722753d3b2a9481d78a23e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\DJX0WMHS\www.youtube[1].xml
Filesize
990B

MD5
6150085c781d90f63a061dd0e8f9a222

SHA1
7377c0d0c52badae16a191deaacc4343f6b0e47b

SHA256
36f1ea102ddbdadfd7a70156cdd6df161cfe7f39ca3dfe2b4c42b3b4bfdfc4c8

SHA512
8be9e68ff1c08dc4a50e81b579c96bd586db51ccd68e16a753037a24db2c8554cb0bad69bb560f19da3e9ffb8ea69decfce607639c7c07f0ee11722d4a4e1205

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WBA4ONA4\twentyfourteen[1].htm
Filesize
13KB

MD5
7ef64b3be61dc28efc5fa9c8f01fc7e7

SHA1
bbbbcbb68de787ddfe8441ac3af8977f85a9cbb9

SHA256
c224fa97bbe7a8d420763b9abb51147f3d15758de62ba46bd4554afeb00fc42b

SHA512
32413693c385ca1fde133fc995001c990107acf4a1ec438c3a3e9d19f1d392cb8c936d94093045b05e98020341d411b1b4834c07cc25ee35541022803eae0ef1

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar7F2.tmp
Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit