Overview

overview

7

Static

static

3

0262065334...18.exe

windows7-x64

7

0262065334...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ib.dll

windows7-x64

3

$PLUGINSDI...ib.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$R0.dll

windows7-x64

1

$R0.dll

windows10-2004-x64

1

$R2/NSIS.L...2_.exe

windows7-x64

1

$R2/NSIS.L...2_.exe

windows10-2004-x64

1

$SYSDIR/DWSHK80.dll

windows7-x64

1

$SYSDIR/DWSHK80.dll

windows10-2004-x64

1

$SYSDIR/MSVBVM60.dll

windows7-x64

1

$SYSDIR/MSVBVM60.dll

windows10-2004-x64

1

$SYSDIR/VB6KO.dll

windows7-x64

1

$SYSDIR/VB6KO.dll

windows10-2004-x64

1

$SYSDIR/dwsbc80.dll

windows7-x64

1

$SYSDIR/dwsbc80.dll

windows10-2004-x64

1

$SYSDIR/dw...80.dll

windows7-x64

1

$SYSDIR/dw...80.dll

windows10-2004-x64

1

UrlUpdate.exe

windows7-x64

7

UrlUpdate.exe

windows10-2004-x64

7

efbbar.dll

windows7-x64

1

efbbar.dll

windows10-2004-x64

1

efsbar.dll

windows7-x64

1

efsbar.dll

windows10-2004-x64

1

iewindow.exe

windows7-x64

1

iewindow.exe

windows10-2004-x64

1

nnlogon.exe

windows7-x64

1

nnlogon.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    127s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 03:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    02620653340ad8d2a425b5e5f8af258f_JaffaCakes118.exe

  • Size

    1.5MB

  • MD5

    02620653340ad8d2a425b5e5f8af258f

  • SHA1

    94f8d4cc9ec4615cfd4a790549e23870f7c8f7a8

  • SHA256

    577a7ec9e58665b9b840ce9618e2d330c065dc9a7d7b2109f52e392b77e839c4

  • SHA512

    cbf3d33fde12a9d2347550a4a462d1d604fea3b72ffc60ccd51234241b8f1f79ee7923c00b4c762204b473411f082726c2daa950736ada322b8f6baf4c9cb6d3

  • SSDEEP

    24576:V2xjlqM8GzLDG8tTo2Rig30oPQ1xTufJLckEY/fudN9GQcCeIRLhlAB2lX:ErqYzGRoqChcC/fkGQwIRLhlKS

Score
7/10
adwarediscoverystealer

Malware Config

Signatures

  • Executes dropped EXE 7 IoCs
  • Loads dropped DLL 37 IoCs
  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Installs/modifies Browser Helper Object 2 TTPs 5 IoCs

    BHOs are DLL modules which act as plugins for Internet Explorer.

    stealeradware
  • Drops file in System32 directory 9 IoCs
  • Drops file in Program Files directory 39 IoCs
  • Launches sc.exe 1 IoCs

    Sc.exe is a Windows utlilty to control services on the system.

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies Internet Explorer settings 1 TTPs 17 IoCs
    adwarespyware
  • Modifies data under HKEY_USERS 42 IoCs
  • Modifies registry class 64 IoCs
  • Suspicious behavior: EnumeratesProcesses 5 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\02620653340ad8d2a425b5e5f8af258f_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\02620653340ad8d2a425b5e5f8af258f_JaffaCakes118.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in System32 directory
    • Drops file in Program Files directory
    • Modifies registry class
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\urld.exe
      "C:\Program Files (x86)\netimo\Common Shared\URLHelper\urld.exe" http://search.netimo.net/gmtoolbar/log/m_install_counter.php?pcode=ezsearch&isinstall=1
      2⤵
      • Executes dropped EXE
      • Loads dropped DLL
      • Suspicious use of SetWindowsHookEx
      PID:2576
    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.exe
      "C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.exe" -i
      2⤵
      • Executes dropped EXE
      • Loads dropped DLL
      • Drops file in Program Files directory
      PID:2460
    • C:\Windows\SysWOW64\sc.exe
      "sc" start efinderservice
      2⤵
      • Launches sc.exe
      PID:2064
  • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.exe
    "C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.exe"
    1⤵
    • Executes dropped EXE
    • Loads dropped DLL
    • Drops file in Program Files directory
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of WriteProcessMemory
    PID:1880
    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\UrlUpdate.exe
      "C:\Program Files (x86)\netimo\Common Shared\URLHelper\UrlUpdate.exe"
      2⤵
      • Executes dropped EXE
      • Loads dropped DLL
      • Drops file in Program Files directory
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1532
      • C:\Program Files (x86)\netimo\Common Shared\URLHelper\urlupdate1.exe
        "C:\Program Files (x86)\netimo\Common Shared\URLHelper\urlupdate1.exe"
        3⤵
        • Executes dropped EXE
        • Loads dropped DLL
        • Drops file in System32 directory
        • Drops file in Program Files directory
        • Modifies data under HKEY_USERS
        • Suspicious behavior: EnumeratesProcesses
        • Suspicious use of SetWindowsHookEx
        • Suspicious use of WriteProcessMemory
        PID:2700
        • C:\Program Files (x86)\netimo\Common Shared\URLHelper\ntmurl.exe
          "C:\Program Files (x86)\netimo\Common Shared\URLHelper\ntmurl.exe" install scope addressbar
          4⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Installs/modifies Browser Helper Object
          • Drops file in System32 directory
          • Drops file in Program Files directory
          • Modifies Internet Explorer settings
          • Modifies data under HKEY_USERS
          • Suspicious use of SetWindowsHookEx
          • Suspicious use of WriteProcessMemory
          PID:1812
          • C:\Windows\SysWOW64\regsvr32.exe
            regsvr32.exe /s "C:\Program Files (x86)\netimo\Common Shared\URLHelper\ntmurl.dll"
            5⤵
            • Loads dropped DLL
            • Modifies registry class
            PID:1816
          • C:\Windows\SysWOW64\regsvr32.exe
            regsvr32.exe /s "C:\Program Files (x86)\netimo\Common Shared\URLHelper\efsbar.dll"
            5⤵
            • Loads dropped DLL
            • Modifies registry class
            PID:1088
          • C:\Windows\SysWOW64\REG.exe
            REG IMPORT "C:\Program Files (x86)\netimo\Common Shared\URLHelper\sbinstall.reg"
            5⤵
            • Installs/modifies Browser Helper Object
            • Modifies Internet Explorer settings
            PID:2160
          • C:\Windows\SysWOW64\REG.exe
            REG IMPORT "C:\Program Files (x86)\netimo\Common Shared\URLHelper\sbinstall.reg"
            5⤵
            • Modifies Internet Explorer settings
            PID:1224
          • C:\Windows\SysWOW64\REG.exe
            REG IMPORT "C:\Program Files (x86)\netimo\Common Shared\URLHelper\bbuninstall.reg"
            5⤵
              PID:1656
            • C:\Program Files (x86)\netimo\Common Shared\URLHelper\iewindow.exe
              "C:\Program Files (x86)\netimo\Common Shared\URLHelper\iewindow.exe"
              5⤵
              • Executes dropped EXE
              • Loads dropped DLL
              • Drops file in Program Files directory
              • Suspicious use of SetWindowsHookEx
              PID:1364

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\UrlUpdate.exe
      Filesize

      152KB

      MD5

      df4c70adfe3ee8e7d0a7d396754681ea

      SHA1

      86d6bc8e6961a01aa689909d678512e0e3bc202c

      SHA256

      94a6a81ad5c12aec33d7274e43ed8197cd476bb9680724995631fd971e8a3d86

      SHA512

      94e8fa6c92cbb30320b2067158549e6079be66489c4a2c8008ec7675d9135cddd477137b3c08fe7e7a41d2da6fcc3732d9ae10e8bc47226108938249fa33fa4e

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\autoup.ini
      Filesize

      755B

      MD5

      f82cc945d023cf65d884252c34e87c50

      SHA1

      a08ce4b8cfc06d7f5c43c9156735b84b0a5a687f

      SHA256

      c4cd6af1a5603a37a6bd63a0c3eed36b3f348688f783d5512ea40cbdcc18788b

      SHA512

      8f88125981213df738282bd5da48446f9715264b888e8bc5fa6677120b2b8abf44ad5b5639fa7aa785a84d709a73ca00b8779ed97cd609d4db1883dbf8deab65

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\autoup.ini
      Filesize

      755B

      MD5

      648739c9101a1c11b1153b9209fd3132

      SHA1

      f5f58cc445299cceaf3270f92db08b8159102e4b

      SHA256

      e281556eaa532e57cadf88c7e618711b99025280b80e0aedfe8f47629ba00782

      SHA512

      240a3c7429946648c633706678d07a1cf16637c1b293ea5671ff630865f7cfcb0ba445cc590db11e8c567be5302b802a06e5993528324abbeee7f0d9e30e6087

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\bbuninstall.reg
      Filesize

      442B

      MD5

      d1b9ce8ba9d227e61b8200e837a791da

      SHA1

      5ae250f8c2191376d9a07d80c356cedf976a7575

      SHA256

      3f0c9bf08a9cdcdb96c2401271dc2bf0316adc6d4b01dde12c0d9da32594690d

      SHA512

      265d60be34fa0457e7a7073ccfacf7748b8bddf003589cc53e6e9f2d055a0b442fe21521b78d2e2321faeab7f401eeca7d7f32b3ba65c8d64fdaa521b243965c

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\bhocfg.ini
      Filesize

      10KB

      MD5

      8eb1f202b12256dc732a17590d7d508e

      SHA1

      8b032c6f45112d2aa3e72bcdfbcbd00144418e54

      SHA256

      d865151fc6bd08ae20c1252b197b658fc293a5183ec1f294a05d305c714070f5

      SHA512

      3ef8dfae492a5dd2887e7ea2e41a879322cdce86f8ee97e3438a47164c39d11349559c18e8bb27017f6ede0c4c5c69dfe05bb870657468f2faa9431de105f7bd

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\bhocode.ini
      Filesize

      27B

      MD5

      90f148367abbd9f6304f2cf05b91a490

      SHA1

      e63b00e3e7d337e26639205c25c1028426b3dbef

      SHA256

      bb31532a370f3325aeb125720cd1f1cf3834a3d07e8dbf963f3bccb7649da7a0

      SHA512

      e5cba1708ae8fabe42c4687f043e67354b45a06eca583e489f87228a33df1edaa311fcfdb1e44b8aa225f3ac1927f99eec39f89ae5623dc8eadb0bdd683a2a8d

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\efsbar.dll
      Filesize

      149KB

      MD5

      26eccc32791911ccdfe0aec05f733cf8

      SHA1

      cf0ffd6ee73c6dcb7cd52f4a863b6a5e44c29cbd

      SHA256

      b4f5d03f1649f2631e122dba48a18e3ee705d073ce5800bda90730d0ad6a35c1

      SHA512

      6841d08827476416bdc8ee2a224c0f2aaa8827acc32a78e1ecd3fecd796fadc2fc4aaf78af11f9e14a6ffcbc70bf7205c482f34a36ec07d3cc412d45d62cdf35

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nautoup.log
      Filesize

      273B

      MD5

      281deaa01673d9dccd3cd19c226ce8e4

      SHA1

      3034975e5acc8fc124e9919618e4be29c869947e

      SHA256

      91ed182ce1290abd4cad092f4d372c69f19e15e66f5650c7b8904d16dd132e55

      SHA512

      91df3d4b3e519bec88df4fb60486d75a3ede77ef6c2bf9fa6c1ae704640cd69197b41a7e733beb9059a7cf7c36bae718826062ff37e96e5fe9f4e8d6e441ebb9

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.ini
      Filesize

      362B

      MD5

      3352808839a5d78e7ba644eee3baee26

      SHA1

      74e8e0558fac4fa9b4b6edb4cd965c3a48611493

      SHA256

      b5f551b88b1c76f9b54ccec5f3c19e4f91ea1705320dccbcb1f75d5a9c5cc9b9

      SHA512

      c3ac39b6b4feccb4da905cf79c40e00d332fcb420759d089eba13baa13fa6e70569e2ad24656648523557b8c5542cdef57ac71d18a5d233899b34b6c8d9bca93

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.log
      Filesize

      990B

      MD5

      87f6a3cf5b4d8991170215f3a9adefd5

      SHA1

      c7f65e9991ed6ffdc7ddf941e6cd615789a1d42a

      SHA256

      d764f04b4ac9b03db8a689e5efa7dffa3ae057070a553e03406eea1753e9a457

      SHA512

      1d89eb79a5bdfbfad347a58b423a88cadddb1ecd2df896c49710bf77056b0d6456d6d81bab3e971ea9b4dec786d56480610c49eeb780492db48e9a625a4fefd9

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.log
      Filesize

      353B

      MD5

      ab080d6bc38d3d9cab6560ed747ca2e9

      SHA1

      7e45199e3faba50c99ea2064a35eb65374797f37

      SHA256

      e5255dd862b8023bdd148ac70caf375e875f7b650c94555fa49f9598d2517d50

      SHA512

      cf997fefa7119c5b65695d11ce2c4c15ff8bbf1db823db6a6ddc0e12a9409687818b07e941a89af3efd45e2e3bf438e79e0ff9670f02b94fb24b97e8c3592238

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\sbinstall.reg
      Filesize

      830B

      MD5

      99efeac3859992432d0973cbac6e9b30

      SHA1

      6f987006f2fe72031084bb86e18ed2f7ba4807e6

      SHA256

      a89c9dcc2775d7b98f177fd55c553e5b00d1800a59322e1e1e854a79620868ae

      SHA512

      42c441aade296c8acce5d424b919e14476d0da84a552dba118c7487415540020687fe290849214dc8067fdbc35a7a6002cd687faf048d7d2e495fd476b3788e3

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\sbinstall.reg
      Filesize

      324B

      MD5

      058f2758bb8063271a5c5c6257ea9cd2

      SHA1

      6928513ee55a2a32871c08f1a3aa890c6147b074

      SHA256

      2e58e8a351d814537317d27c339272ec69e611daa63c7df80a3dc8666096fc98

      SHA512

      0bc4a847b8aaf00f596ef97a9942882a224397b5af52628417695724d4b9dec07547f48003c902493e71832c1622305736d7119e5a278822ab55cfccef1df1a7

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\sslaunch.DLL
      Filesize

      60KB

      MD5

      412706c54d6ed78c5cd624dc55ef293f

      SHA1

      a4edb4fe218916ed2294458e7829ed608d6eb4f0

      SHA256

      572b99582027ac31ea036ddb8066bb4118e7c44ab98125a35f863cc710a4ebcf

      SHA512

      1e8fb64759f17223f93260ce27d6e877ff8f704391703457e52925582d88b1b094f824708157aa336291cefff478041986a223ee5ffc03af1b6c9563512bc6c2

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\tags.mdb
      Filesize

      232KB

      MD5

      3ac1ce53d6450a4aa9683ae8eab5ac24

      SHA1

      4545172c62a377517f34854a75da48c1810fd0e7

      SHA256

      6235600b6b2d2dfb892a7b746f5dfaab8dc824cb603f4006fc860dff7cfb6514

      SHA512

      135853d29d2ce1f5bb676dfe7677f91e118b1dec580ee859c90199d6171dc055bcffc8b82edc836d71f6088eea21848c57721e2879a1e93add4016d5b31c39a0

      Download Submit

    • C:\Program Files (x86)\netimo\Common Shared\URLHelper\tagstemp.mdb
      Filesize

      184KB

      MD5

      499943ab2d6a704f9d7dbb8ec1aeed61

      SHA1

      f98e08c95e7229e3e32d587e061c8548e0e4d411

      SHA256

      504890d04367979ba23222b15892df6b75f140fde436219bb4d49ac5e949597a

      SHA512

      c4c7d8ec105fc77e6e109fb1e6aed317a41b794b2c87d55d84e23e74fb4fca546f8e95b590fdedbfbd3295f0ee08bb6cca2f8979022ced29e62a6851f26b2d3d

      Download Submit

    • C:\Windows\SysWOW64\vb6ko.dll
      Filesize

      99KB

      MD5

      84742b5754690ed667372be561cf518d

      SHA1

      ef97aa43f804f447498568fc33704800b91a7381

      SHA256

      52b64e2bfc9ee0b807f2095726ace9e911bcd907054ac15686a4e7d2fd4dc751

      SHA512

      72ac19a3665a01519dac2ad43eb6178a66ad7f4e167f2a882cbca242978f8debe3e15d0e210c3b0391590699999f33a1fd5de4ca6559ff894b4e6cb4ac1415a0

      Download Submit

    • C:\nautoup.log
      Filesize

      160B

      MD5

      a3f15fb605bd7885c66a4181e4b9e661

      SHA1

      6c1f8c5286f1d6bc33754ad2b96b92861e39c956

      SHA256

      79f16ef1a13262e965d6490902a74dee9d9818dde39c6c3ef159443816e2e8a5

      SHA512

      9c0302647a03d5e0be2b0cec4e585f9ae714d971d55057e28eeada0ce3011f19c4de555d7e204e815988a908d49fb2e5b4bac2d662cd7c7bf3219da9ec9c7a51

      Download Submit

    • \Program Files (x86)\netimo\Common Shared\URLHelper\iewindow.exe
      Filesize

      405KB

      MD5

      c586e5bf4514ad24b6a0002e13d6452b

      SHA1

      6d22ea2e2ae087864c0f91a602cf5b588c54126e

      SHA256

      813be8eb3e53948faa20f051023fa132fd564e977c7932d130f5ea7a19c0d5dd

      SHA512

      a917390bda68c91f82764eb93ea5d9ce9d330fda9fe24b6956ee16312f342bf4213e0c8f737d83feb8bbf70f82df41d2c7720d4cbaa92982a9584987ea2327e1

      Download Submit

    • \Program Files (x86)\netimo\Common Shared\URLHelper\nnlogon.exe
      Filesize

      68KB

      MD5

      4f8ec9279ce71a9feafd811a2a0fe8fc

      SHA1

      8c5e103eeb3dec74297b41739a28eb0c1b4d0478

      SHA256

      8a730e05ec59ca9c2bea7b950b7178c5174da28d0843ba1f3f10b47e352b219d

      SHA512

      61c0b531b0530afba51138bc8d876a715e059fa716652b9155bead099c1e6dea9a972f219bc593d6e0ef4d7bc849a9108cb6cd99eb72e61d8d0f45e3199908c9

      Download Submit

    • \Program Files (x86)\netimo\Common Shared\URLHelper\ntmurl.dll
      Filesize

      173KB

      MD5

      ed9849f48772d4ec5e908d734c00c961

      SHA1

      b0a0f33eceefcdc18da32a67297637610fe9054c

      SHA256

      8899425303feb63b583a562189f50458d16c805f1d363a61fdee0444833ab644

      SHA512

      3ce061c449c6379fa0f7178280b69aea3ebeb97fec24eb54984fc78f1fd1d8fa66be8a3347a07982bfae566feb93b28da662061cee8ddee5cfa6f34811ae3190

      Download Submit

    • \Program Files (x86)\netimo\Common Shared\URLHelper\ntmurl.exe
      Filesize

      221KB

      MD5

      4776b67e6c7f6bcd3d713b84fbe08f65

      SHA1

      a42a88fd3510b160f3ced8434b524281cb99f6d6

      SHA256

      1bedf458f12e8cb8347197fe992661532c2bb5d517065c3f2c5bf000483a1bf1

      SHA512

      9e0aa04c87e8b5d79c90b4821c0ab8dad2821ecfe40a72c2a93046873841af86e5d78f3759fec5ce329c68c2d3bb77f049a8249685a0594ef541a07a2182cbb5

      Download Submit

    • \Program Files (x86)\netimo\Common Shared\URLHelper\urld.exe
      Filesize

      24KB

      MD5

      7976109acc6cdb26f4a547d8c6dfd883

      SHA1

      a44f84119c307ff84c2af9e36e4c997c9477eacc

      SHA256

      c9d815568b137badd66801375fa45a84059b54091e6b41736168d5e8ff014924

      SHA512

      57a906fc649c13dab773c2f09d5945b2b56a3a26a8df2c922fa120175b7115076dda11b9367101e3853758be478b61bdfd46457735522e73f68ae7a5de39833f

      Download Submit

    • \Users\Admin\AppData\Local\Temp\nso1EF7.tmp\TypeLib.dll
      Filesize

      3KB

      MD5

      56abaa41368ddf53d01421760f9d72f4

      SHA1

      68a4e41d46366e8116bdfeba34d94b628fc6fb45

      SHA256

      75c206fba2ec5d344ca514e6451d8892f939f15e8afc1c132bbc9eca886ed1de

      SHA512

      98aaee865ee756f6193fb89f35aaf019953c597f92f0e6d3f4a8ead27d5c09f8ac9d39b547a655f2eb4ce6b8867b4e12a20f43749bce3bc2a5f7e668378649d9

      Download Submit

    • \Users\Admin\AppData\Local\Temp\nso1EF7.tmp\nsExec.dll
      Filesize

      6KB

      MD5

      acc2b699edfea5bf5aae45aba3a41e96

      SHA1

      d2accf4d494e43ceb2cff69abe4dd17147d29cc2

      SHA256

      168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e

      SHA512

      e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe

      Download Submit

    • \Windows\SysWOW64\DWSHK80.OCX
      Filesize

      200KB

      MD5

      956041a95acf9738b712c71c55672094

      SHA1

      84959e2c0b07d631de4f71da32e1c3c301285e68

      SHA256

      8413fe7000baca9e7a2fdef33922d17d97ef9d16799444b945b3c73fee953c6b

      SHA512

      c93085f6e4159e3a75e9167e036214930a3ec3960d5eb3e0812f164a841f60b1c3454bcc7a2227b7d0e80c303db11d322a1e6862d643a614c32e4d6b1798b298

      Download Submit

    • \Windows\SysWOW64\dwsbc80.OCX
      Filesize

      167KB

      MD5

      456b24a38b8e2d2f3303e0b4d05cc929

      SHA1

      3c981bbac31706cc9189605959f9eba7acbb17a7

      SHA256

      242934d4d92948817dd00eec4e8592f7044f5bfc7b2ad2603c826c5cea7b09e5

      SHA512

      4476f50a9ade47c848f882b56758111d39a79e61ac62cebf09c8b8d7baaaa77767c11da6e6732caa383b372d0d8a49be116e111299f637e2ea722fa5fd978385

      Download Submit

    • \Windows\SysWOW64\dwshengine80.dll
      Filesize

      137KB

      MD5

      df901a23e6da0cad1981f0a7c13fbf24

      SHA1

      78f8f8e857e5ce4dce9fdc6658b5780b07167df7

      SHA256

      a8ab488c1ffeed943a68ce7f72fa2eb1b9b21b62c01fbd405a93906a4b357621

      SHA512

      1d530caccd728006b1c169a9684044b45384ff4caca02f95c26e15339c4bcfad00f70a85b9f3b6d6d84aed242536ecea454636688e33fa6c6558f67378fc8228

      Download Submit