| description | ioc | process |
|---|
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.YourPhone_0.19051.7.0_x64__8wekyb3d8bbwe\Assets\AppTiles\AppIcon.targetsize-40_altform-unplated.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19071.19011.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppList.targetsize-96_altform-unplated_contrast-white.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_2019.19071.12548.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosMedTile.contrast-white_scale-125.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\Assets\Images\SkypeWideTile.scale-200_contrast-white.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WebpImageExtension_1.0.22753.0_x64__8wekyb3d8bbwe\Assets\SplashScreen.scale-400.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\add-account\images\themes\dark\illustrations_retina.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\c822cd574d6b3b17ed3e1b9f6febb5be.arika | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\OSFINTL.DLL | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.1907.2471.0_x64__8wekyb3d8bbwe\Assets\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1906.2182.0_x64__8wekyb3d8bbwe\Assets\complete.contrast-black.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\MapsAppList.targetsize-20_altform-unplated.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.34.28001.0_x64__8wekyb3d8bbwe\Assets\GameBar_AppList.targetsize-24_altform-unplated.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\css\main-selector.css | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\nls\nb-no\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\as80.xsl | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.12548.0_x64__8wekyb3d8bbwe\Assets\TagAlbumDefinitions\8C918D9A-F447-4EBD-BD45-29F1D9209FC9.json | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\activity-badge\images\bell_empty.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\js\nls\pt-br\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\WindowsPowerShell\Modules\Pester\3.4.0\Functions\It.ps1 | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WebMediaExtensions_1.0.20875.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\MedTile.scale-125_contrast-black.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.GetHelp_10.1706.13331.0_x64__8wekyb3d8bbwe\Assets\MediumTile.scale-200_contrast-black.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.12548.0_x64__8wekyb3d8bbwe\Assets\ShareProvider_CopyLink24x24.scale-200.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\ReactAssets\assets\node_modules\reactxp-experimental-navigation\NavigationExperimental\assets\back-icon.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\Sounds\SpeedLimitViolationAlert.wav | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\task-handler\js\nls\es-es\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\WindowsPowerShell\Modules\Pester\3.4.0\Functions\Assertions\BeLessThan.ps1 | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.19071.19011.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppList.scale-125_contrast-white.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1906.2182.0_x64__8wekyb3d8bbwe\Assets\StopwatchWideTile.contrast-white_scale-200.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsFeedbackHub_1.1907.3152.0_x64__8wekyb3d8bbwe\Assets\InsiderHubAppList.targetsize-40.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\cloud_icon.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\js\nls\de-de\ui-strings.js | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Getstarted_8.2.22942.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-256_altform-unplated_contrast-white.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\contrast-black\OneNoteNotebookSmallTile.scale-400.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2018.826.98.0_x64__8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraAppList.targetsize-80_altform-lightunplated.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\OutlookMailBadge.scale-125.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsFeedbackHub_1.1907.3152.0_x64__8wekyb3d8bbwe\Assets\InsiderHubAppList.targetsize-16_contrast-black.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsPowerShell\Modules\Pester\3.4.0\Functions\Assertions\Should.Tests.ps1 | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\add-account\images\themes\dark\illustrations.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\Download_on_the_App_Store_Badge_en_135x40.svg | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACETXT.DLL | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppList.targetsize-24_altform-unplated_contrast-black.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1906.2182.0_x64__8wekyb3d8bbwe\Assets\AlarmsAppList.contrast-black_targetsize-16.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins3d\prcr.x3d | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\da-dk\ui-strings.js | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\task-handler\js\nls\nb-no\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription4-pl.xrm-ms | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSO.DLL | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\Personal2019R_Retail-ppd.xrm-ms | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\manifests\BuiltinAccessibilityChecker.xml | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\HxA-Advanced-Dark.scale-300.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\ExchangeLargeTile.scale-400.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Common Files\System\Ole DB\it-IT\sqlxmlx.rll.mui | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\en-gb\jsaddins\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\OneNoteSectionGroupMedTile.scale-150.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.12548.0_x64__8wekyb3d8bbwe\Assets\PhotosAppList.scale-200.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_2019.807.41.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\HxCalendarBadge.scale-100.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\js\nls\sk-sk\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\O365EduCloudEDUR_SubTrial-pl.xrm-ms | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\themes\dark\s_listview_18.svg | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\jscripts\wefgallerywinrt.js | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\MapsAppList.targetsize-24.png | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_comment_18.svg | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
| File created | C:\Program Files\Windows Media Player\ja-JP\akira_readme.txt | cf4d656f5c5d93c21b4957ed26322191afad3e2f9f29d7d33f27bfc2c35713c0.bin.exe |
