infinitylock | d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d

Analysis

max time kernel
135s
max time network
148s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
26-07-2024 06:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
Size

211KB
MD5

55b90acb757d550412fab9af5c91ebb2
SHA1

dddfbc92fa340e39c31f80bacc4c2bf9822e6d1e
SHA256

d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d
SHA512

390ce54be7afa798b7f46793ae6b824765ba335536c7e0c76ebeff0df67a82fa1e6e2cd411cb300975449792b99093a07e5da522acc7c670af3db07a68d89d19
SSDEEP

1536:YoCFfC303p22fkZrRQpnqjoi7l832fbu9ZXILwVENbM:rCVC303p22sZrRQpnviB832Du9WMON

Score

10^/10

infinitylock discovery ransomware

Malware Config

Signatures

InfinityLock Ransomware
Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.
ransomware infinitylock

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\ResiliencyLinks\Locales\es.pak.DATA.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\Download_on_the_App_Store_Badge_nl_135x40.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\images\file_info.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\PackageManagement.psd1.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_folder-focus_32.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\activity-badge\js\plugin.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\combinepdf\images\themes\dark\rhp_world_icon.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sign-services-auth\js\nls\sk-sk\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\ResiliencyLinks\Trust Protection Lists\Mu\LICENSE.DATA.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\d3dcompiler_47.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\aic_file_icons_retina_thumb.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\pages-app\js\nls\da-dk\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\ja\Microsoft.PackageManagement.MetaProvider.PowerShell.resources.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\add-account\js\nls\en-ae\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\aicuc\images\rhp_world_icon_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\combinepdf\js\nls\root\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\js\nls\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\js\nls\en-il\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Trust Protection Lists\Mu\Cryptomining.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\js\nls\hr-hr\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\reviews\js\nls\pl-pl\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_fillandsign_18.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\digsig\js\nls\da-dk\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Tracker\reviews_super.gif.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\aicuc\js\nls\it-it\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\js\nls\zh-cn\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\uss-search\js\nls\ko-kr\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.36.371\goopdateres_hi.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeUpdate_bk\1.3.187.41\msedgeupdateres_zh-CN.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sign-services-auth\js\nls\zh-tw\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\DSCResources\MSFT_PackageManagement\MSFT_PackageManagement.psm1.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Locales\or.pak.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\AdobeHunspellPlugin.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\reviews\js\selector.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Locales\kn.pak.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\es-419_get.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\send-for-sign\js\nls\eu-es\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\uss-search\js\nls\ru-ru\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\remove.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\activity-badge\js\nls\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\aicuc\js\nls\nb-no\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_filterselected-dark-down_32.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\fss\js\nls\nl-nl\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Locales\da.pak.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\reviews\images\cstm_brand_preview.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\themes\dark\icons_ie8.gif.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\Dummy.aff.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\ccloud_retina.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\css\main-selector.css.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer-select\js\nls\hu-hu\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AGMGPUOptIn.ini.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\illustrations.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\app\dev\nls\nb-no\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\msedgewebview2.exe.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\ResiliencyLinks\Trust Protection Lists\Mu\Cryptomining.DATA.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\large_trefoil_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\Localized_images\fi-fi\PlayStore_icon.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\send-for-sign\js\nls\uk-ua\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\js\tool\plugin.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\Microsoft.PackageManagement.dll.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\js\nls\pl-pl\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\js\plugin.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\js\selector.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_organize_18.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	4160	d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe

C:\Users\Admin\AppData\Local\Temp\d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe
"C:\Users\Admin\AppData\Local\Temp\d95346fbf8efff1632c5605245fea66478eb6296fcf3e9529eb67491f28efd5d.exe"
1⤵
- Drops file in Program Files directory
- System Location Discovery: System Language Discovery
- Checks processor information in registry
- Suspicious use of AdjustPrivilegeToken
PID:4160

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\icudtl.dat.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
16B

MD5
cb8fc121a50c760eb1458e35aa1ae9d6

SHA1
df3cb6510653f70cb6d1a1fc6d98cca6572a35c2

SHA256
a1627438a0808dc4ca3f0ce07b9a204085572abe3c9c46a0c1e88c93a6175f99

SHA512
e29921fa38f22dbc9a80ca58bea0b615e570d31f6d4037f055eb9e70ffbf700bcdd01bb34a2a0c63df581b2800df44bc25d5d1c9671be46a2458c6b5f117869b

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_remove_18.svg.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
720B

MD5
62c4e8ed4d0c10812f0d3b7f3df8bfd0

SHA1
c61ff14b2c616e01adbfc55a6eadf4113c0b54d8

SHA256
d6dcf063ab34fdcbb7a7d0ce2e8eaac4d3ef6667fcc29030d18a55ea92e88743

SHA512
f12e92321e6faa782f734871d3cd68c8f43381a7d63f2e53563015143ad9f562788c8f7535a1577fe7044c39bcaca1d38c84a129e814b354bb527aa09822e10f

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\images\example_icons.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
688B

MD5
d5a4a4895251cf5b31faa61e69f950bc

SHA1
e57f5f14b2e0e76d117316b37db50273d064853a

SHA256
581d01bb983586308c8b7dbb7057452479807d67aeacf804632dad1e3258cc92

SHA512
206c247e404bd4a62d5d0578d04c85527e493497396acb737d6a7c57ab96f64d9d2fee55c74a7ee76e961b82f82390221e3f83065ac3d48d68c581218b23999b

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\images\example_icons2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
1KB

MD5
d5e5fb405c58300f3fa9cc508b3bc97a

SHA1
f4f32f0692c4451aa912bc8cdc9e0b53f76bb704

SHA256
c610ed7e6dace4f37ba4ba91b574a738d5ef4aabf5aaa4fa9f10c24efc300082

SHA512
058b17adfc2b3f37f0e45211a0c9ad51b7ea1132213b6f4d1ed7b32808603c934cdc0d99fae2d94b1a2586c207ed093ab34b14922953c9e70fa664e2fcaec3e0

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\rhp_world_icon.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
448B

MD5
bafeed1df99de71a7841a10e8310fcd5

SHA1
f9169d469267e410d7fba9fa90808b15b5ba0e97

SHA256
0d2cab2b155a4d500f722dde99307c613f07beea9ebc4212f26f0c9cf5f4e789

SHA512
d3f09a7b72c953a4e0c913220ba7605ed56083081d0dca862d51e6f9c634aceda08dc10235f2de1dad292ae1da45f2164747c86604a0e819f9340221c802e561

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\rhp_world_icon_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
624B

MD5
33a82e4c4291e08bb0ee554557c13c8e

SHA1
1d2c3754f774f5aa45f88b02b410b8a89433a8f2

SHA256
c2e760891dbc4304462882c66a9a42e35e198369e3fec5ffa41bde73b2c8a5c1

SHA512
f3aab0535e9f93d8cf40eeb955db3feff4390338edaffb1b4f2eb4e5bba862061ca1fb9a308c6be961be0a5c0c31283fb743107a3dc6f1d26bca28fb01b48552

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\rhp_world_icon_hover.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
400B

MD5
92495995c2dff24c096276e9fadc19e0

SHA1
970a0ebf463cc04b9f6716aa2eb76b6b447c980c

SHA256
d342aaf864f56f29c16f58e20932268817a8fc09125a7ede90d1ce0b24590575

SHA512
7b713f2d3b1764f3d70e537b5fd2eb9c1efd64c679dcf7b292ac8a6b85de86cabd7c7253416254fbefbfb873eaea43961e8303d8827834c9f2ea53695f690455

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\rhp_world_icon_hover_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
560B

MD5
66f305166b210b0ff7a20cf91ca909a6

SHA1
e15d8f6eeca9affef318335badf4c199edc66e1f

SHA256
1a95311baaa961e38574b194e2dd07a2c13f5f657145aedbf9d0450a2a264416

SHA512
fe769c1901cbe242e4aa3233355a87291543c85b6525ccb022ed69edf56aabf1b4129ab1e125ccedc1b58eb58e92487a3d1e8588c59d1c29a2e5fc010e3bbd64

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\themes\dark\rhp_world_icon.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
400B

MD5
54b0662de843539ead62b19beaf0b7a2

SHA1
2383e46092dc350d5cd41d35363123398a357580

SHA256
7b70706000d80a94e6be2a4f6a37d2350cd1eaf2f66cd7b3db843662b880910b

SHA512
d0f73041c5de614620d64ec7e7681fc577448243cf1fe3411dc66078c4749696d0c46b83f78b0e6a9835ed4b3453cdf1ed8c92d9b5531ba7c8595f558de195c4

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\themes\dark\rhp_world_icon_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
560B

MD5
b01e9fed56752f67b3ceb6376b29b788

SHA1
09f90dc2ff19f0b51d1bd25bde6f46bd73d54ec7

SHA256
2ec85995b6a5c75d8cbec014af9dc8cefad58bed13271379cfcb808303cf4971

SHA512
3579c2d4dee7558479fa8e0a58b02db05e58b354cfa01390d8019a6dead35dce5c075e0a49d32104dafb8471de55993d0563c7752a39207e8019e64e58931df5

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\themes\dark\rhp_world_icon_hover.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
400B

MD5
c550bb141510a50f8738702dc1dc764a

SHA1
9fee7c42f59c8db3f9ffaaa085111c435bc022a0

SHA256
d94f77bdbaddbe592d8315eda7d8eadbae205044d24badf0d285c143caae9ced

SHA512
d0e4cba8a4132ae62add0b0b1f13c7c0ed8ba3033496dead18641c6e6e65f01c6bc85cf9dfb8ee3e23b51e5f5d85c0e3bb6b809a80e3ef7ff286e0da590ef34c

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\exportpdfupsell-app\images\themes\dark\rhp_world_icon_hover_2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
560B

MD5
def209e374a7ca7f2cd5acef15394550

SHA1
70f08f471edfc6f0eb7c4fac457835a0eb4ca361

SHA256
54e34b21847feeb8e568b0602f3bd812bfa1b6f29d196467c1c915e2cc2b06e7

SHA512
3d260ea581ce28762ce69f8f62fe981757048d39a6c86dcda2436b36c53a7e972620b8c879b1485e264ffae0b7681416c4db339c58570a85bebfd951a87bab53

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\icons.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
7KB

MD5
a884c4e0f972793ea38cf6b5b2f0901b

SHA1
6b2aff85360eb71d1a81ae336c7efa215e574615

SHA256
75fdee64b8cd3490e350e7829d0e4b9be60da681793c2ba52c16bd5314d99351

SHA512
cb831407d79896a1f4e72af36c7cfaf1832cfcda1283442cbd06d570355f03a4adf6b787e866cb7301b5de15bbc07e14eeaf01c0bb7cff02150ef4a7fefe3e67

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\icons_ie8.gif.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
7KB

MD5
79741b8bb59bb67386ec67dbd5d24254

SHA1
14e75b310366902f5240fde11bd52de0ebbb3043

SHA256
fc2fc343a6bda34378211e5ad77e6b6b54cb09e7124dc116ccf402ab16e85b1f

SHA512
6c74b654a1ecc0f28cf49fd873e7dad6409174ae3eedb68e24d83ca0477a78f274ec684410dd6e06c9be1753d15c473b97c4413a68be08774a575b04e1ecf42a

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\icons_retina.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
15KB

MD5
61773fcb311da92118472633f4d46844

SHA1
74ad0e2804ccddc4f34268fbd16a3d5e2fb85d52

SHA256
ad3dcff429cff7f1cb7774563d4f0da2ccc3cba81c4e0b8b15bc56c9debc5f81

SHA512
262f97dd9a436f032db4d9ee53a1de1b424834787db1b8d026a80e4e2f3bc39fc1380b588ba0b65675ca14b26abd32d7f6df950093147fc453822ee5451cc6b9

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\new_icons.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
8KB

MD5
1e5f74819c68c9f5158d70eec7aba830

SHA1
f00f1f63dcf6159c04493f7d4f3bf35e68330209

SHA256
2d9912774d456a9871d5dfc5c905bacc828a37bf1969ea097439ca13b5e64320

SHA512
3d05e77e64ffb4d803d7e949eaf44ef374442da1d29f9a6e503e087f3e3a5d598a7dbc0fe825e92fc4b49500a6f24096bb6a700989a1a5e1dc5aceb5329ba692

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\new_icons_retina.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
17KB

MD5
3557a3a86a969133434ee8f493dfe810

SHA1
ff6d313215aebf15f5044da79ea24e0c50cd2d58

SHA256
40b89e8f9c12882d106d4696e7ce63395ebaffb8d44e7dda563abea0d52fa019

SHA512
c1fc950cd21b83ae0a10f0e8c882431e088c647ef4e3e928f8539f306230541cc156538374b9fbc1c9769e4d68209f3b8044f0cf73afe26915192bd725d88d68

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\bg_pattern_RHP.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
192B

MD5
023c653cce5083c926178693956cef5c

SHA1
adb7a220feda4da12bcd677b4991cbc5ed074bc6

SHA256
94452dd9b9b36d97c6de67607ae29451e8046f2b2b652d5fbc3a33d622a1b1d1

SHA512
1ce56d84b1bc46bb29238a395f640a739d26333be84a2d07a555e620dcc272175a790d8c1c72d9d655fb2f74e97fa1d8d461b580446f0d828e3ed2c9458a00a8

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\bg_patterns_header.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
704B

MD5
0fb71d983ce6831bbecc418d5135424c

SHA1
5f811452a6a1b2852f5b395ef2b0cb536fc5219d

SHA256
4077368a7d0703a0509049b997f6e0ae51916a2c5f39a7c053c6e33057f5df11

SHA512
31e12335cdbe83ac66f94cff644fded5aded73820932520696eb8b36507cecae4299ec86e35b75401fb6f0caa69cb0330b2692fa6a1fa940d641b72f8776bfb7

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\illustrations.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
8KB

MD5
09378e5feae8589c04a43386600c5a74

SHA1
049c399f4fe24895d29e503924929f5175807ccc

SHA256
44684c7a5ee591abf77ed5631b992534bd1495a63956042b1bfc28538834d166

SHA512
77ed329b75d6a06bca069f577b72216621f0af8937eddfa385e855d3da30c5bd70fb7aa8e8550747b5ffd15516d498fe35560252fab65e4048a00e3bbb3c2789

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-files\images\illustrations_retina.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
19KB

MD5
9500c26bf32594c5aeb64534dc3ee7af

SHA1
7e759b89ea0651b10a9ffd725941018f33d54cad

SHA256
e1c7d2984d5666d1549c2f415ae9ab9fc939f990a595f8df814c560f65d2bfd6

SHA512
057f8470b4c7203fc13c43d1f3f54fe76d00702899c71796d37798191b4f2cb81e27d339a92c51a2ac9ebacc076c70004fc286896f931bc3b4359100224ecdaa

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\ob-preview\js\nls\en-gb\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
832B

MD5
141cbf82b72f42d7a046b5cbd5bc1128

SHA1
0d63ef1469ce51fb35a2f5807968320466671d95

SHA256
ad2cfc54393a7b259c88afea7d641640d5f70a2bde58e504166480da81e0cd6c

SHA512
7dd7348041d09830392fae0070ae352746932d9e30574c38ae985c615785bbee3ed16a4284f8b544639070e974ddc14595644f53cbe1e24334d422743602288d

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
1KB

MD5
7433848641ce96e6c2c5dfce7e814bf6

SHA1
f43387c65dbf83d5617fc5efbb47baa8c60c4a51

SHA256
c1dceab6662a74ec29a333d7f940a8bba568eb0749c759024be57bc011ab8b13

SHA512
780a0075bba7379b9da3b650408acb824b66761074099e0db0f9324318de12b214d30d8d3e59fa312e0e32a6bcc0c308519745f93b9ef2a1a12ce3f21814a684

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\js\nls\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
1KB

MD5
2288a063b25fd3d3189cdd8b5aa84dec

SHA1
0062b38071c6c62f98fce82293061e1668f9e4b7

SHA256
ced68ee2f86e5546e9661e8f2c59ee9d3604d9dae318cc03a47d63fc18f96795

SHA512
cca99339eccbd037c37e1e648f616226bdfe8160d8c48f89bcd28226a695abe603f81cfac4ec7efb8f1078080e12fa88d51e59f8e992319100720f5cf2f79866

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\task-handler\css\main.css.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
816B

MD5
16c93c7e80790302af5917ae3ea31760

SHA1
f41b0b528a5dda0c80c804d519fc1d46070d974d

SHA256
c9e2c5957ee8703f7e4dba7d458edd2fc6a6463a14a7a959d00956d532f5abda

SHA512
21e338c7b47f5244ef0713fabff9a866a1b358e1a60bf6b5ebe02e450a13c4241a0c7ee925357df7e4d23f58fb237f44f542aa75a77035e4ed2626f656340240

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\bun.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
2KB

MD5
268f7f86366c136aaaf8ca26738ec4eb

SHA1
56099375d0918a4312376981cefe4fefda1cd3ef

SHA256
38f1847f1998a577bc68814824172dba07df143985f5b63cb4746404fb852af5

SHA512
0f306fa915f200ed1f7b309db7ae816cf5f6973e077fd5f62847f20e0eed26d16459e33ab147dd8a72c642cb0662d3c398b7b429753c9e3c77362903248bc2fd

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\cstm_brand_preview.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
2KB

MD5
d460b5bf3416927aefee479bfdaa419a

SHA1
cba47c4693b9c09b4eb1b44f2655eee4e12e3fba

SHA256
bf959a7fbb5daa8c03de390a2ec37833c76e081a76d37087c72a689ab5ef5344

SHA512
b7c5352389bdc14190e7ce801261b0b0dcab4b02b41878ffd5b0d97eef1e374f27b34eb549fe7c6d18e2839ec438f49ce64fac4f23fcae79b08913e91d77c1a3

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\cstm_brand_preview2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
4KB

MD5
08bf9e5819578d02e1ab2c3f98211add

SHA1
5465a115e17d13a5694d070d8cfc7dcdf27bcc49

SHA256
7196d72d54bed4d31dde7f484be04f6e69d07796d76e02939b45c326e60fca50

SHA512
f0037217cc02d018630fdbef24f4e1cde24a2c519ad91c2dcc24d77ba1bec03adf00050de8af54164bae3b9b4e9e39b829837df99baccda99472d631c9f27d07

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\dd_arrow_small.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
304B

MD5
ed79e7ab7575917a4583b90d10b5e104

SHA1
850ee43b2322d61fa380b3dcef869f3c8ff1ecdd

SHA256
f05031bdda3f8d5b1209531e9a0b404c27af154ce06691c60afcd1ee40939d75

SHA512
aba0570ab431bf44837631190ce08b277c2058ad176a6cac7cc25fc09c06090f360fdba2f066f595d932a7fd053fb94b068d93cef55d953ada309a424b396a19

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\dd_arrow_small2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
400B

MD5
781c93f7e7ea85af46bdc1797ebca692

SHA1
5786f8e0e2156e39520208f137577370f53ad229

SHA256
5d95a7200e5c7bbbb5857c566edbf6502cc51e9c11c6f610413dccd77eed51da

SHA512
29a55803dfa0fffb7132ac2b8eef7358893d0078ba75a537a84732f90985e5af8d10b05b4c694c4e791c1be17eb3610ad09483b7e026f6653eb561204457eaf1

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\nub.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
1008B

MD5
8ed1e6b2efaa357de14d7204d450b733

SHA1
99d99a10261e95684e00a0e7080d0860921eda7a

SHA256
2b150d04111ed8925339508569898bd0d8efcf2b1c49e945fecd0bcfb9185e9b

SHA512
c9984e598e5e89712255d818bfb98b3ae5905dbc4024be1cd27e508808d3ea411174781f0325d556189230ce639ff76c7767e357aeb76ec722c4f2d429fb2cdd

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\share_icons.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
1KB

MD5
f2eeff9e9b1378f4ce2302e3509f8b51

SHA1
60b14b59a8351f51a21d3296acdae1e33376907f

SHA256
d1b42feb5e8e0ff9224c78c207bcc173a31df0c21a42877ae14b24bca355aaa7

SHA512
3af14a4993de6158345b0dd4807111d73b9c691569f9d51736108fdaf78ca78326b0f303be5ce2c73c6e303af44558f55247ee09f61d560cb2edc720d2946d11

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\share_icons2x.png.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
2KB

MD5
f0015a37413245a0db05fe0cb03a57c0

SHA1
6520f8c30a4f5488b35f6eebf907fc6a57147245

SHA256
b174928dc005c69de4533017a6dd9128f538cabe53f7c915c7fdbed6b746fe75

SHA512
243f88dbb6c1d9ce38e741f9917e57c330647aec47d15de352de5e380c6d95ba6a831b0853fd4b1c10a1e6bd225666362acd39ff990069b2309f520006ce3a56

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\viewer\nls\nl-nl\ui-strings.js.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
848B

MD5
2e67898598ecc7efed3631248d2cc5ba

SHA1
7bcc25e6e8be9df118e2d99db5ec12dafa744510

SHA256
46a120c6b859926552cfca0d08bd4a6c986f99dc9acfe3e01fc844b402c3c22e

SHA512
3b5891977e39712a5a5fc439583bfc678cb2698c54f97827e9e10ff8fdb95512e2299844b22e9d441d42b6f13ae5a379f86e91695aa6c9f883dcd3b4af48a801

Download Submit
C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\LanguageNames2\DisplayLanguageNames.en_US_POSIX.txt.21DD39F8999D360514EA1FBBA1736684F02D8BB679D279A6AE9AA43807288EE2

Filesize
32KB

MD5
296b809a800548ebb821cb8fbaf48c12

SHA1
e26f1f0046eeaf77ebe21eec4d23640db5bb4873

SHA256
8febe3ebdd23b42dd937d673c64d8a5c26a2c8bb62dce104a624be00ffaa682c

SHA512
eee11fce989b3b387879b445f4ed99dc110d4891cf74007f078646ca12555025e7a9a5b8d04290e96947c2dd46a74543c58d9b82ddea5fd86489073952ff24c0

Download Submit
memory/4160-4-0x00000000052B0000-0x0000000005342000-memory.dmp

Filesize
584KB

Download
memory/4160-0-0x00000000743CE000-0x00000000743CF000-memory.dmp

Filesize
4KB

Download
memory/4160-5-0x0000000005440000-0x000000000544A000-memory.dmp

Filesize
40KB

Download
memory/4160-6-0x0000000005500000-0x0000000005556000-memory.dmp

Filesize
344KB

Download
memory/4160-7-0x00000000743C0000-0x0000000074B70000-memory.dmp

Filesize
7.7MB

Download
memory/4160-3-0x0000000005860000-0x0000000005E04000-memory.dmp

Filesize
5.6MB

Download
memory/4160-2-0x0000000005210000-0x00000000052AC000-memory.dmp

Filesize
624KB

Download
memory/4160-1-0x00000000007D0000-0x000000000080C000-memory.dmp

Filesize
240KB

Download
memory/4160-2734-0x00000000743CE000-0x00000000743CF000-memory.dmp

Filesize
4KB

Download
memory/4160-2739-0x00000000743C0000-0x0000000074B70000-memory.dmp

Filesize
7.7MB

Download
memory/4160-3401-0x0000000006800000-0x0000000006866000-memory.dmp

Filesize
408KB

Download
memory/4160-3402-0x00000000743C0000-0x0000000074B70000-memory.dmp

Filesize
7.7MB

Download
memory/4160-3403-0x00000000743C0000-0x0000000074B70000-memory.dmp

Filesize
7.7MB

Download