2e4fcfb86520591d624ff45aea588e5e22a8941284fce76ed7cf72b785f4c73c

Analysis

max time kernel
143s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
27/07/2024, 01:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

flappybird.exe
Size

25.7MB
MD5

800a2264c12fe87fef54a44299cde19e
SHA1

33c1dbcccf87ee56e7a371d8a4692e9dbdf8aa2f
SHA256

bcd1107a16f0e39707fd7fdc0ea50a29a5809f65874def5d72eafcadfb417ee3
SHA512

bacc9c6f222dc7e98765f165bdf9fd9274717aedca176d7bad3d107e7b0264b62d412445f447ffdaaba0e3d4efbb704cb195c6f41df33789a3dacb632248330c
SSDEEP

786432:y1JUmn7ErUzRN2j6+s7LWB75zuOOoz1JS5dgE/Sr:mTn7ESN2qHWB75i2RI5d36r

Score

7^/10

Malware Config

Signatures

Loads dropped DLL 64 IoCs

pid	Process
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
1440	flappybird.exe
2192	engine.exe
2192	engine.exe
2192	engine.exe
2192	engine.exe

Checks SCSI registry key(s) 3 TTPs 4 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000	flappybird.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags	flappybird.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000	flappybird.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags	flappybird.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	3688	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	3688	AUDIODG.EXE

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1440	flappybird.exe

Suspicious use of WriteProcessMemory 8 IoCs

description	pid	Process	procid_target
PID 1484 wrote to memory of 1440	1484	flappybird.exe	87
PID 1484 wrote to memory of 1440	1484	flappybird.exe	87
PID 1440 wrote to memory of 3572	1440	flappybird.exe	88
PID 1440 wrote to memory of 3572	1440	flappybird.exe	88
PID 3572 wrote to memory of 3976	3572	cmd.exe	90
PID 3572 wrote to memory of 3976	3572	cmd.exe	90
PID 3976 wrote to memory of 2192	3976	engine.exe	92
PID 3976 wrote to memory of 2192	3976	engine.exe	92

C:\Users\Admin\AppData\Local\Temp\flappybird.exe
"C:\Users\Admin\AppData\Local\Temp\flappybird.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:1484
- C:\Users\Admin\AppData\Local\Temp\flappybird.exe
  "C:\Users\Admin\AppData\Local\Temp\flappybird.exe"
  2⤵
  - Loads dropped DLL
  - Checks SCSI registry key(s)
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:1440
- - C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c "engine"
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3572
  - - C:\Users\Admin\AppData\Local\Temp\engine.exe
      engine
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3976
    - - C:\Users\Admin\AppData\Local\Temp\engine.exe
        
        engine
        5⤵
        Loads dropped DLL
        
        PID:2192

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4c8 0x31c
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3688

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\_MEI14842\SDL2_image.dll

Filesize
122KB

MD5
b8d249a5e394b4e6a954c557af1b80e6

SHA1
b03bb9d09447114a018110bfb91d56ef8d5ec3bb

SHA256
1e364af75fee0c83506fbdfd4d5b0e386c4e9c6a33ddbddac61ddb131e360194

SHA512
2f2e248c3963711f1a9f5d8baea5b8527d1df1748cd7e33bf898a380ae748f7a65629438711ff9a5343e64762ec0b5dc478cdf19fbf7111dac9d11a8427e0007

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\SDL2_mixer.dll

Filesize
285KB

MD5
201aa86dc9349396b83eed4c15abe764

SHA1
1a239c479e275aa7be93c5372b2d35e98d8d8cec

SHA256
2a0fc5e9f72c2eaec3240cb82b7594a58ccda609485981f256b94d0a4dd8d6f8

SHA512
bb2cd185d1d936ceca3cc20372c98a1b1542288ad5523ff8b823fb5e842205656ec2f615f076929c69987c7468245a452238b509d37109c9bec26be5f638f3b7

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\SDL2_ttf.dll

Filesize
1.5MB

MD5
f187dfdccc102436e27704dc572a2c16

SHA1
be4d499e66b8c4eb92480e4f520ccd8eaaa39b04

SHA256
fcdfabdfce868eb33f7514025ff59c1bb6c418f1bcd6ace2300a9cd4053e1d63

SHA512
75002d96153dfd2bfdd6291f842fb553695ef3997012dae0b9a537c95c3f3a83b844a8d1162faefcddf9e1807f3db23b1a10c2789c95dd5f6fad2286bae91afb

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\VCRUNTIME140.dll

Filesize
94KB

MD5
11d9ac94e8cb17bd23dea89f8e757f18

SHA1
d4fb80a512486821ad320c4fd67abcae63005158

SHA256
e1d6f78a72836ea120bd27a33ae89cbdc3f3ca7d9d0231aaa3aac91996d2fa4e

SHA512
aa6afd6bea27f554e3646152d8c4f96f7bcaaa4933f8b7c04346e410f93f23cfa6d29362fd5d51ccbb8b6223e094cd89e351f072ad0517553703f5bf9de28778

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_asyncio.pyd

Filesize
59KB

MD5
6c2a86342ade2fac9454b83a49d17694

SHA1
52946875ad946e4a170072f38e28e10f6037fab9

SHA256
cf0edfd508d11bffb63d1b104b6099e0f14ea0fada762f88364e7163f2185f06

SHA512
48d8eb8d20d041df37c4a6f243056607754046ed5f497260751270b42e9eea6f22fb1fb62d015e841d0263534f50bf6c812a6ade0e8bb0a0f79226bc64d05c75

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_bz2.pyd

Filesize
78KB

MD5
b45e82a398713163216984f2feba88f6

SHA1
eaaf4b91db6f67d7c57c2711f4e968ce0fe5d839

SHA256
4c2649dc69a8874b91646723aacb84c565efeaa4277c46392055bca9a10497a8

SHA512
b9c4f22dc4b52815c407ab94d18a7f2e1e4f2250aecdb2e75119150e69b006ed69f3000622ec63eabcf0886b7f56ffdb154e0bf57d8f7f45c3b1dd5c18b84ec8

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_ctypes.pyd

Filesize
117KB

MD5
79f339753dc8954b8eb45fe70910937e

SHA1
3ad1bf9872dc779f32795988eb85c81fe47b3dd4

SHA256
35cdd122679041ebef264de5626b7805f3f66c8ae6cc451b8bc520be647fa007

SHA512
21e567e813180ed0480c4b21be3e2e67974d8d787e663275be054cee0a3f5161fc39034704dbd25f1412feb021d6a21b300a32d1747dee072820be81b9d9b753

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_decimal.pyd

Filesize
241KB

MD5
1cdd7239fc63b7c8a2e2bc0a08d9ea76

SHA1
85ef6f43ba1343b30a223c48442a8b4f5254d5b0

SHA256
384993b2b8cfcbf155e63f0ee2383a9f9483de92ab73736ff84590a0c4ca2690

SHA512
ba4e19e122f83d477cc4be5e0dea184dafba2f438a587dd4f0ef038abd40cb9cdc1986ee69c34bac3af9cf2347bea137feea3b82e02cca1a7720d735cea7acda

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_hashlib.pyd

Filesize
57KB

MD5
cfb9e0a73a6c9d6d35c2594e52e15234

SHA1
b86042c96f2ce6d8a239b7d426f298a23df8b3b9

SHA256
50daeb3985302a8d85ce8167b0bf08b9da43e7d51ceae50e8e1cdfb0edf218c6

SHA512
22a5fd139d88c0eee7241c5597d8dbbf2b78841565d0ed0df62383ab50fde04b13a203bddef03530f8609f5117869ed06894a572f7655224285823385d7492d2

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_lzma.pyd

Filesize
149KB

MD5
5a77a1e70e054431236adb9e46f40582

SHA1
be4a8d1618d3ad11cfdb6a366625b37c27f4611a

SHA256
f125a885c10e1be4b12d988d6c19128890e7add75baa935fe1354721aa2dea3e

SHA512
3c14297a1400a93d1a01c7f8b4463bfd6be062ec08daaf5eb7fcbcde7f4fa40ae06e016ff0de16cb03b987c263876f2f437705adc66244d3ee58f23d6bf7f635

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_multiprocessing.pyd

Filesize
29KB

MD5
fce357f864a558c03ed17755f87d0e30

SHA1
b74ecb2bee03a8ff209f52f652c011f28d5ae4d0

SHA256
000486aaac9dd21e88b3dc65fd854dd83519b1fbcc224a70530bc3ec8cbd1a5d

SHA512
564dea2bf3410011a76ca5ea376dba3ec9b2d03fd25248824f6c956fa5ea061c1a9ee6f6b65b021ea5bf9cc5e3ab9c6fcf4779446b920891a2c0979bbc57d58b

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_overlapped.pyd

Filesize
44KB

MD5
5bfe7d9e1877fdde718bb84b67d8be68

SHA1
ebc7389ccca80d92d7b891815843e4c7d066cd51

SHA256
fe5666c1c8215cd2773744c815fb4a3b2f52f64cf0dde25d458441da22bf5568

SHA512
9fbf4c77784677957b8ade962cc0730ef6cfa865c14c712fd2a978903596a92e359a5234095b2a23d9e4daf7abb4029cd855b91cba696fde448668ccf4a1efea

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_queue.pyd

Filesize
26KB

MD5
c9ee37e9f3bffd296ade10a27c7e5b50

SHA1
b7eee121b2918b6c0997d4889cff13025af4f676

SHA256
9ecec72c5fe3c83c122043cad8ceb80d239d99d03b8ea665490bbced183ce42a

SHA512
c63bb1b5d84d027439af29c4827fa801df3a2f3d5854c7c79789cad3f5f7561eb2a7406c6f599d2ac553bc31969dc3fa9eef8648bed7282fbc5dc3fb3ba4307f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_socket.pyd

Filesize
72KB

MD5
5dd51579fa9b6a06336854889562bec0

SHA1
99c0ed0a15ed450279b01d95b75c162628c9be1d

SHA256
3669e56e99ae3a944fbe7845f0be05aea96a603717e883d56a27dc356f8c2f2c

SHA512
7aa6c6587890ae8c3f9a5e97ebde689243ac5b9abb9b1e887f29c53eef99a53e4b4ec100c03e1c043e2f0d330e7af444c3ca886c9a5e338c2ea42aaacae09f3e

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_ssl.pyd

Filesize
152KB

MD5
11c5008e0ba2caa8adf7452f0aaafd1e

SHA1
764b33b749e3da9e716b8a853b63b2f7711fcc7c

SHA256
bf63f44951f14c9d0c890415d013276498d6d59e53811bbe2fa16825710bea14

SHA512
fceb022d8694bce6504d6b64de4596e2b8252fc2427ee66300e37bcff297579cc7d32a8cb8f847408eaa716cb053e20d53e93fbd945e3f60d58214e6a969c9dd

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\_uuid.pyd

Filesize
20KB

MD5
aeead50876ddb63cb8e882989041d7da

SHA1
c9bf23227ced84d39bd33665444de3e9064315c6

SHA256
c74aaeec487457139b47c0ab56e01922bfae6debef562800e5b9b6baf1ec9d6a

SHA512
74c8fe6cfd67e1984a2df9bd998ae363519de16b5840cabba01660154fbeac92e2c773ecc2884d531362e8a0b739673c44f450c1bea05ca33eef58a8e61bc2ca

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\base_library.zip

Filesize
858KB

MD5
2fd88199d5993da7fa5ec9200996e414

SHA1
5e1d447c3da8ef116cdb1ae122b383896533e899

SHA256
7ff1e753594cc6c2b2e08fc83a41b82e9a82815a4e68c6f04988a29f190769ac

SHA512
7e3139a69c33d2cd88cceb00a988ec681093f23ffc94ca72014af47244bdc9c1e63870fe4c6373b1ac4787e84d197cd23f8c761a36bedfe2a021a2d846fb02b0

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\freetype.dll

Filesize
639KB

MD5
236f879a5dd26dc7c118d43396444b1c

SHA1
5ed3e4e084471cf8600fb5e8c54e11a254914278

SHA256
1c487392d6d06970ba3c7b52705881f1fb069f607243499276c2f0c033c7df6f

SHA512
cc9326bf1ae8bf574a4715158eba889d7f0d5e3818e6f57395740a4b593567204d6eef95b6e99d2717128c3bffa34a8031c213ff3f2a05741e1eaf3ca07f2254

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libcrypto-1_1.dll

Filesize
3.3MB

MD5
63c4f445b6998e63a1414f5765c18217

SHA1
8c1ac1b4290b122e62f706f7434517077974f40e

SHA256
664c3e52f914e351bb8a66ce2465ee0d40acab1d2a6b3167ae6acf6f1d1724d2

SHA512
aa7bdb3c5bc8aeefbad70d785f2468acbb88ef6e6cac175da765647030734453a2836f9658dc7ce33f6fff0de85cb701c825ef5c04018d79fa1953c8ef946afd

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libffi-7.dll

Filesize
32KB

MD5
eef7981412be8ea459064d3090f4b3aa

SHA1
c60da4830ce27afc234b3c3014c583f7f0a5a925

SHA256
f60dd9f2fcbd495674dfc1555effb710eb081fc7d4cae5fa58c438ab50405081

SHA512
dc9ff4202f74a13ca9949a123dff4c0223da969f49e9348feaf93da4470f7be82cfa1d392566eaaa836d77dde7193fed15a8395509f72a0e9f97c66c0a096016

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libjpeg-9.dll

Filesize
238KB

MD5
c540308d4a8e6289c40753fdd3e1c960

SHA1
1b84170212ca51970f794c967465ca7e84000d0e

SHA256
3a224af540c96574800f5e9acf64b2cdfb9060e727919ec14fbd187a9b5bfe69

SHA512
1dadc6b92de9af998f83faf216d2ab6483b2dea7cdea3387ac846e924adbf624f36f8093daf5cee6010fea7f3556a5e2fcac494dbc87b5a55ce564c9cd76f92b

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libmodplug-1.dll

Filesize
259KB

MD5
ead020db018b03e63a64ebff14c77909

SHA1
89bb59ae2b3b8ec56416440642076ae7b977080e

SHA256
0c1a9032812ec4c20003a997423e67b71ecb5e59d62cdc18a5bf591176a9010e

SHA512
c4742d657e5598c606ceff29c0abb19c588ba7976a7c4bff1df80a3109fe7df25e7d0dace962ec3962a94d2715a4848f2acc997a0552bf8d893ff6e7a78857e5

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libogg-0.dll

Filesize
25KB

MD5
307ef797fc1af567101afba8f6ce6a8c

SHA1
0023f520f874a0c3eb3dc1fe8df73e71bde5f228

SHA256
57abc4f6a9accdd08bf9a2b022a66640cc626a5bd4dac6c7c4f06a5df61ee1fe

SHA512
5b0b6049844c6fef0cd2b6b1267130bb6e4c17b26afc898cfc17499ef05e79096cd705007a74578f11a218786119be37289290c5c47541090d7b9dea2908688e

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libopus-0.dll

Filesize
359KB

MD5
e1adac219ec78b7b2ac9999d8c2e1c94

SHA1
6910ec9351bee5c355587e42bbb2d75a65ffc0cf

SHA256
771cae79410f7fcc4f993a105a18c4ed9e8cbddd6f807a42228d95f575808806

SHA512
da1912243491227168e23fb92def056b229f9f1d8c35ae122e1a0474b0be84ceb7167b138f2ee5fffd812b80c6aca719250aca6b25931585e224e27384f4cc67

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libopusfile-0.dll

Filesize
45KB

MD5
245498839af5a75cd034190fe805d478

SHA1
d164c38fd9690b8649afaef7c048f4aabb51dba8

SHA256
ccaaca81810bd2d1cab4692b4253a639f8d5516996db0e24d881efd3efdcc6a4

SHA512
4181dea590cbc7a9e06729b79201aa29e8349408cb922de8d4cda555fc099b3e10fee4f5a9ddf1a22eaec8f5ede12f9d6e37ed7ad0486beb12b7330cca51a79e

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libpng16-16.dll

Filesize
206KB

MD5
3a26cd3f92436747d2285dcef1fae67f

SHA1
e3d1403be06beb32fc8dc7e8a58c31e18b586a70

SHA256
e688b4a4d18f4b6ccc99c6ca4980f51218cb825610775192d9b60b2f05eff2d5

SHA512
73d651f063246723807d837811ead30e3faca8cb0581603f264c28fea1b2bdb6d874a73c1288c7770e95463786d6945b065d4ca1cf553e08220aea4e78a6f37f

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libssl-1_1.dll

Filesize
678KB

MD5
bd857f444ebbf147a8fcd1215efe79fc

SHA1
1550e0d241c27f41c63f197b1bd669591a20c15b

SHA256
b7c0e42c1a60a2a062b899c8d4ebd0c50ef956177ba21785ce07c517c143aeaf

SHA512
2b85c1521edeadf7e118610d6546fafbbad43c288a7f0f9d38d97c4423a541dfac686634cde956812916830fbb4aad8351a23d95cd490c4a5c0f628244d30f0a

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libtiff-5.dll

Filesize
422KB

MD5
7d40a697ca6f21a8f09468b9fce565ad

SHA1
dc3b7f7fc0d9056af370e06f1451a65e77ff07f7

SHA256
ebfe97ac5ef26b94945af3db5ffd110a4b8e92dc02559bf81ccb33f0d5ebce95

SHA512
5a195e3123f7f17d92b7eca46b9afa1ea600623ad6929ac29197447bb4d474a068fd5f61fca6731a60514125d3b0b2cafe1ff6be3a0161251a366355b660d61a

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\libwebp-7.dll

Filesize
437KB

MD5
2c5aca898ff88eb2c9028bbeefebbd1e

SHA1
7a0048674ef614bebe6cc83b1228d670372076c9

SHA256
9a53563b6058f70f2725029b7dd2fe96f869c20e8090031cd303e994dfe07b50

SHA512
46fe8b151e3a13ab506c4fc8a9f3f0f47b21f64f37097a4f1f573b547443ed23e7b2f489807c1623fbc41015f7da11665d88690d8cd0ddd61aa53789586c5a13

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\portmidi.dll

Filesize
41KB

MD5
df538704b8cd0b40096f009fd5d1b767

SHA1
d2399fbb69d237d43624e987445694ec7e0b8615

SHA256
c9f8d9043ac1570b10f104f2d00aec791f56261c84ee40773be73d0a3822e013

SHA512
408de3e99bc1bfb5b10e58ae621c0f9276530913ff26256135fe44ce78016de274cbe4c3e967457eb71870aad34dfeb362058afcebfa2d9e64f05604ab1517d4

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pyexpat.pyd

Filesize
187KB

MD5
983d8e003e772e9c078faad820d14436

SHA1
1c90ad33dc4fecbdeb21f35ca748aa0094601c07

SHA256
e2146bed9720eb94388532551444f434d3195310fa7bd117253e7df81a8e187e

SHA512
e7f0fd841c41f313c1782331c0f0aa35e1d8ba42475d502d08c3598a3aaefd400179c19613941cdfad724eca067dd1b2f4c2f1e8a1d6f70eeb29f7b2213e6500

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\SDL2.dll

Filesize
2.4MB

MD5
83c5ff24eae3b9038d74ad91dc884e32

SHA1
81bf9f8109d73604768bf5310f1f70af62b72e43

SHA256
520d0459b91efa32fbccf9027a9ca1fc5aae657e679ce8e90f179f9cf5afd279

SHA512
38ff01891ad5093d0e4f222c5ab703a540514271bf3b94fb65f910193262af722adb9d4f4d2bd6a54c090a7d631d8c98497b7d78bd21359fdea756ff3ac63689

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\base.cp310-win_amd64.pyd

Filesize
30KB

MD5
3641ae21addaa067e1ad6974a814b8cd

SHA1
6bfd8cf921fb1963f17c8f6071aedd248fd0f89a

SHA256
6574e07e44fc04f693ce7053d7ee49f13831cd5caa990c06011327977f2b8792

SHA512
abbcf707160e4fab8597befd9860ca97c9562892ab5d701ca19e396d3c10096398849abe417b0501b8d86a7d899352ac87803efd5584e7af6422f92f783eade9

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\bufferproxy.cp310-win_amd64.pyd

Filesize
18KB

MD5
7ce490ed65c4f4abbc691ee29e6970e5

SHA1
31ab7c89da93b2456e9158b2eb2fe2f562a023ad

SHA256
4aafe39d10bdffa8d9cdad6cd981a25c1af83cc925b20f6ad76cdf118b4003ef

SHA512
d0a8b57fdb4360b9c674719427c4d378c5b4ae5f57a2495f4dd6583c4ea2f6eec319959e2852fc024426a7831af7fae872651edeaf44fb40b967beae8cb11c96

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\color.cp310-win_amd64.pyd

Filesize
34KB

MD5
d623a2b631e1e0273b60f43f53211d88

SHA1
49c556e2796883504441f60e98427200aff34e7b

SHA256
ffdd32dd59c08e5709562d47d403459fc909cc37569021ad57d8d195efa35bb2

SHA512
828bb7a87751a162e167d641b2804b4d242ad958ba8d248095b3c24df7860fcf4d694d0579f5a59c669ea042115315a3a84b69832f4a07cad9624a2bd9be376e

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\constants.cp310-win_amd64.pyd

Filesize
49KB

MD5
4a57c5831f5bc55bcea63f7ddd2296ab

SHA1
a6824027ed3512a36b7665daa67b7eacd6163693

SHA256
0cf94dfb905d459f1cc1d7cce32358b9f94a334a6db85c258043944746a7df4a

SHA512
5e5174ad80f8c1017b7e223fd5b788a66e11d4c3b7e8af0222f739a806d76684200a2305a8cfd44392775710796536980777f886340e04b1c9bd36d357262575

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\rect.cp310-win_amd64.pyd

Filesize
45KB

MD5
02e978d55d11f766a96e95ccba15baa4

SHA1
fd18a97ae1ffd1b7c5c39725ce20f9803205bac2

SHA256
0b7b947de2a5dea0160108b6a997f99c7ab656624a589ec662baed64496fbc4c

SHA512
10b2feba54a239975f19d5a422f7887a876232213f826c10c0bd5cd0872ac277dc1865bd5d3314e30142ca35ac79664237ded4fc8581848565cafe5ad693624d

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\rwobject.cp310-win_amd64.pyd

Filesize
19KB

MD5
61e12d2968fa1a009825e25edc070241

SHA1
409ecb07d49bdeef12d1896f3e76f21f4ff020ad

SHA256
8e6e551240e7effd10b1d6de9e6cd09ecfe5d5fa8e0df70a9031de783ab0d846

SHA512
7e70066a9535fc32a1b5a877efc453734d48f5f6b2dcebf45e35f3018edc92811d4b7debe9e83ce856458ade366293ad9a371e3824b5a52c1793f34d4637c090

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\pygame\surflock.cp310-win_amd64.pyd

Filesize
13KB

MD5
fb8532766f5d41a46ace94538b6a3161

SHA1
4da0bef5a053cc0f57e8d37446594583545f805d

SHA256
883533f5fee9e3df7748b4ed76d4c7f4bba8944e96ad27c18aa0c9253c80dd8b

SHA512
94d44b8864f7338d3705106cf6ef3f4b19e8832dde56f8e4c5a129945f1399f2e67070cc65ec776b69f5f03c2d0e0d996dd856fd0d8cbd114076e427f4d07725

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\python3.dll

Filesize
60KB

MD5
a5471f05fd616b0f8e582211ea470a15

SHA1
cb5f8bf048dc4fc58f80bdfd2e04570dbef4730e

SHA256
8d5e09791b8b251676e16bdd66a7118d88b10b66ad80a87d5897fadbefb91790

SHA512
e87d06778201615b129dcf4e8b4059399128276eb87102b5c3a64b6e92714f6b0d5bde5df4413cc1b66d33a77d7a3912eaa1035f73565dbfd62280d09d46abff

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\python310.dll

Filesize
4.2MB

MD5
384349987b60775d6fc3a6d202c3e1bd

SHA1
701cb80c55f859ad4a31c53aa744a00d61e467e5

SHA256
f281c2e252ed59dd96726dbb2de529a2b07b818e9cc3799d1ffa9883e3028ed8

SHA512
6bf3ef9f08f4fc07461b6ea8d9822568ad0a0f211e471b990f62c6713adb7b6be28b90f206a4ec0673b92bae99597d1c7785381e486f6091265c7df85ff0f9b5

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\select.pyd

Filesize
25KB

MD5
78d421a4e6b06b5561c45b9a5c6f86b1

SHA1
c70747d3f2d26a92a0fe0b353f1d1d01693929ac

SHA256
f1694ce82da997faa89a9d22d469bfc94abb0f2063a69ec9b953bc085c2cb823

SHA512
83e02963c9726a40cd4608b69b4cdf697e41c9eedfb2d48f3c02c91500e212e7e0ab03e6b3f70f42e16e734e572593f27b016b901c8aa75f674b6e0fbb735012

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\unicodedata.pyd

Filesize
1.1MB

MD5
a40ff441b1b612b3b9f30f28fa3c680d

SHA1
42a309992bdbb68004e2b6b60b450e964276a8fc

SHA256
9b22d93f4db077a70a1d85ffc503980903f1a88e262068dd79c6190ec7a31b08

SHA512
5f9142b16ed7ffc0e5b17d6a4257d7249a21061fe5e928d3cde75265c2b87b723b2e7bd3109c30d2c8f83913134445e8672c98c187073368c244a476ac46c3ef

Download Submit
C:\Users\Admin\AppData\Local\Temp\_MEI14842\zlib1.dll

Filesize
106KB

MD5
5eac41b641e813f2a887c25e7c87a02e

SHA1
ec3f6cf88711ef8cfb3cc439cb75471a2bb9e1b5

SHA256
b1f58a17f3bfd55523e7bef685acf5b32d1c2a6f25abdcd442681266fd26ab08

SHA512
cad34a495f1d67c4d79ed88c5c52cf9f2d724a1748ee92518b8ece4e8f2fe1d443dfe93fb9dba8959c0e44c7973af41eb1471507ab8a5b1200a25d75287d5de5

Download Submit
memory/1440-172-0x0000000062E80000-0x0000000062EA4000-memory.dmp

Filesize
144KB

Download
memory/1440-169-0x00007FFA7EC30000-0x00007FFA7EE9C000-memory.dmp

Filesize
2.4MB

Download
memory/1440-171-0x0000000068B40000-0x0000000068B7C000-memory.dmp

Filesize
240KB

Download
memory/1440-170-0x000000006A880000-0x000000006A8A7000-memory.dmp

Filesize
156KB

Download