hxxps://drive[.]google[.]com/file/d/1LEQNlNjFsiHtaA7PFllRpieYBhPyJZBV/view?usp=sharing

Analysis

max time kernel
132s
max time network
127s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
14-08-2024 00:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://drive.google.com/file/d/1LEQNlNjFsiHtaA7PFllRpieYBhPyJZBV/view?usp=sharing

Score

7^/10

discovery

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
2908	VsGuy.exe

Loads dropped DLL 7 IoCs

pid	Process
2908	VsGuy.exe
2908	VsGuy.exe
2908	VsGuy.exe
2908	VsGuy.exe
2908	VsGuy.exe
2908	VsGuy.exe
2908	VsGuy.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs

Web Service

T1102

flow	ioc
4	drive.google.com
8	drive.google.com

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1194130065-3471212556-1656947724-1000_Classes\Local Settings	msedge.exe

Suspicious behavior: EnumeratesProcesses 12 IoCs

pid	Process
836	msedge.exe
836	msedge.exe
4672	msedge.exe
4672	msedge.exe
5092	identity_helper.exe
5092	identity_helper.exe
5608	msedge.exe
5608	msedge.exe
3100	msedge.exe
3100	msedge.exe
3100	msedge.exe
3100	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs

pid	Process
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeRestorePrivilege	6024	7zG.exe
Token: 35	6024	7zG.exe
Token: SeSecurityPrivilege	6024	7zG.exe
Token: SeSecurityPrivilege	6024	7zG.exe
Token: 33	5188	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	5188	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 60 IoCs

pid	Process
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
6024	7zG.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe
4672	msedge.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2908	VsGuy.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4672 wrote to memory of 1036	4672	msedge.exe	84
PID 4672 wrote to memory of 1036	4672	msedge.exe	84
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 3856	4672	msedge.exe	85
PID 4672 wrote to memory of 836	4672	msedge.exe	86
PID 4672 wrote to memory of 836	4672	msedge.exe	86
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87
PID 4672 wrote to memory of 2368	4672	msedge.exe	87

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://drive.google.com/file/d/1LEQNlNjFsiHtaA7PFllRpieYBhPyJZBV/view?usp=sharing
1⤵
- Enumerates system info in registry
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4672
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd627446f8,0x7ffd62744708,0x7ffd62744718
  2⤵
  PID:1036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2128 /prefetch:2
  2⤵
  PID:3856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2216 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:836
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2744 /prefetch:8
  2⤵
  PID:2368
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1
  2⤵
  PID:3272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3380 /prefetch:1
  2⤵
  PID:1336
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
  2⤵
  PID:4216
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5264 /prefetch:1
  2⤵
  PID:3916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6104 /prefetch:8
  2⤵
  PID:1668
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6112 /prefetch:1
  2⤵
  PID:4120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6580 /prefetch:1
  2⤵
  PID:4304
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6616 /prefetch:1
  2⤵
  PID:2924
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7016 /prefetch:8
  2⤵
  PID:2908
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7016 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5092
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5208 /prefetch:1
  2⤵
  PID:5228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6108 /prefetch:1
  2⤵
  PID:5236
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5672 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5608
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,3996571252455935333,1143067554885483039,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2676 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3100

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1632

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2956

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5796

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\anniversary mod\" -spe -an -ai#7zMap19889:92:7zEvent14462
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
PID:6024

C:\Users\Admin\Downloads\anniversary mod\VsGuy.exe
"C:\Users\Admin\Downloads\anniversary mod\VsGuy.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:2908

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4fc 0x2d0
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:5188

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
ecf7ca53c80b5245e35839009d12f866

SHA1
a7af77cf31d410708ebd35a232a80bddfb0615bb

SHA256
882a513b71b26210ff251769b82b2c5d59a932f96d9ce606ca2fab6530a13687

SHA512
706722bd22ce27d854036b1b16e6a3cdb36284b66edc76238a79c2e11cee7d1307b121c898ad832eb1af73e4f08d991d64dc0bff529896ffb4ebe9b3dc381696

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
4dd2754d1bea40445984d65abee82b21

SHA1
4b6a5658bae9a784a370a115fbb4a12e92bd3390

SHA256
183b8e82a0deaa83d04736553671cedb738adc909f483b3c5f822a0e6be7477d

SHA512
92d44ee372ad33f892b921efa6cabc78e91025e89f05a22830763217826fa98d51d55711f85c8970ac58abf9adc6c85cc40878032cd6d2589ab226cd099f99e1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
408B

MD5
e6c013fccaf2953dfbc5b9cdc7782ba5

SHA1
03ee73b040c66334214653999592703c3f3b3cc9

SHA256
29938026347c6368da5e6e3f4cd16f3331c35144d55cac21cf76bed5b8c2a5b3

SHA512
7adb43fc749ce8e76a05fb598a17edd93436c20c096063992da6ac2ce5c7ea7ea9899e3681e5cdf57d9b857d6574afeb02d00057c35c619f68f5089e7350bf44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
476570a1740e8fdf44d44906c861b384

SHA1
ff7590fdb13466a97792d1162b066764579da183

SHA256
a5e404f685a3393aab1a47d141280eafd3cf82463245b1bde9b4614d0c6d6671

SHA512
76b2f28e411a8ccbd0d18091c829727e92fbb04b1fb059a54598edd1ea998e32f8b7ef577fdfe454b220473a102ce09454be1c0468ea2a91fde011889f1b14f1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
979307002fb14bda6ff6b5bfdf0d392f

SHA1
9cd2e9ffb87d1753235e998a61e3c5ce5f66d3ad

SHA256
80bfcd2e0c97bc916bd413be64365c19557ead390a78be6bdef06e58511b4587

SHA512
859c7302e9c018048bf8e75d98cb08d4fecc5bfefb105fdf98ec4fbb2c0dc6911b90cd95c85a706767dd561289918a4c6fc1ca3f800150e8ae0dfd38525db136

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
a034b781108cbbd5161ad2a52d050a10

SHA1
7a8b413b92626a007861e48b0fad6e078693227c

SHA256
2a22863d98d9a1e1bc7b65e11eb535e67318cf1c66e77a650c7985eb7d4f0d87

SHA512
a80207ac8ad7e01d147501a3123e0bdfffd3e14cd20bbc5a7ecb5396a72ccd97313531d86fb8ec74c0507c0e3d8c83b8bd64fcfebcbd7ff7489e5071a8d36367

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
1160da74a081a31ceee9a46a207c49ba

SHA1
def39006e96964a3d482575203a006bc3267ccc3

SHA256
f21e843de1b3dd4a309b938a0c99dcb8bb4fa2758a298988cd747de214c6d214

SHA512
679f12cbfb0ead25084755dc4091a7950bfee183d481134f1aa77b9968b321f091b62b6542685c2e0722ed45fa2a8342820f518f52fd250bb1d20be1ed6c6dd1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
50ea5788023f2b8dca735ee1f5142b58

SHA1
2abec0208a003764a8e5376538e609147019f857

SHA256
22e592efd31422e0ac6c25763749f3b5c700d66ca81ab2108e55f80355a58d1f

SHA512
03e83a34360678ea160a3f48c1a28e09c2031ea258c2649d53b296820e5bd95a3bff8758b85e2e644500522753f853fff86f771c8454d39f6a4cf31097c21b7e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\e113f7a6-dd35-4762-8439-f69278f91bdb.tmp

Filesize
11KB

MD5
58dd29f49b2ad475f85cbba61f8b16e0

SHA1
ba50e8a6eee6561fafa691c82bb9374a45a222ff

SHA256
4825707e379cc8326f46f59fdf6eb383cee2b2ed4b78a6217c4f7d70782beb02

SHA512
0cce1a6d16b6e260cacf4df336153817eff5f0b46fd91a345baf8e13d1bb0f56732315d6a3c354b9341b6a8c1f24f6910cc59c6157051257b4de58096a2eb001

Download Submit
C:\Users\Admin\Downloads\anniversary mod\VsGuy.exe

Filesize
28.8MB

MD5
105b136fc400340e0bc5070f9b256b3a

SHA1
1a61aa09a44c7c62f23daafd7aea46124819d024

SHA256
de5b8beb35ce8d0130f93473b27213687855cf01e31f65b727e316a16add1c4e

SHA512
d180a293b5fb54cb564c6cc7fab37504dcd1b166cf015960bfbc8dae745b4802d968bb48b50b2511e23194f93c03b575fd597e1fb10d14d0954d0833b4735cea

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\fonts\DIGILF__.TTF

Filesize
31KB

MD5
31eae64f32dc2930482d48feb18b3559

SHA1
34a651dd2915fa85426bc13abf1e94e38af1144e

SHA256
0db356f2f1064baf515e53155213387307ea935ec6da53a918972c63ddf71dd0

SHA512
42e58f2092655a9c6e4f7cac7db8b23b3d34d7a9266394932a5444b917d7a784d32a247d37b5bc5a22de5ec3a00b7fbef8a0392c15eb3714164899e33c24dd45

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\fonts\options.ttf

Filesize
51KB

MD5
04e986e3ccdc13161f96c47d85d49928

SHA1
6274b3781463cb25d791dfe6e6c467bad2cb8f5a

SHA256
3e30ea15862d3dcdf231a0da01fa2d9d65f4c40251cef2640961a88fc8daf46e

SHA512
40cdba034e1967ffc19e69ac9621715745940a17cd1b3b6debce0d21a1088f7a7985a79db2be215fd3dcb08d3c2c9d5a1bec3f463345f24fcb6a63c055b9f94d

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\fonts\pixel.otf

Filesize
14KB

MD5
889440572bfdc4aaeacfa630366d08b0

SHA1
4c8791f8d0a052a021e88d5090d313e3d645c14c

SHA256
17a0ff7b43c6437182a521b8c4638b439e7baa7b4735e2945fb1174eea7483aa

SHA512
900610103839addfd7265b12a0efc8dfb00f4a426f65a32c5449a93da30087d3bf27913fb856fd780a1714fc5f032992f76ead0981d8065ead388670caf747f7

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\fonts\vcr.ttf

Filesize
74KB

MD5
5fcd6c657ffa8a6791632c705f0944ea

SHA1
6843782cf331dc53b5913c15bf3ee67ceef83705

SHA256
01918d86cb163a715dcb97165b997256734dfcc9f550beeb7c142fa4a064cf1c

SHA512
482682d8a4c9fb7e43fd683bea94f63353f6139a24dbfb581c03dc5d0d36d76297a0c9c89786984390114a0e938ac921bd581ef319fa46a356b19cc31b80671e

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\bg.png

Filesize
190KB

MD5
b0735507d7445af2bc59eff8cdfbbb20

SHA1
af18588a7d67cf230ddbd921a21c694574b5ff0e

SHA256
9c771339a9f03e6285238efd0ceaad51aa238b9c9441ec8ebccb463f5a044f7c

SHA512
1678a8be253fc5aa1fa911249775e016fe984f25b1c87252e97a18b814e87e4e10d94d6a14f06868cbf0474822d297d400329a43f1dd7f050a5ce26eba1933df

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\creditsbg.png

Filesize
2KB

MD5
cab8c9bd558a93ac9345d0e63c87bf5a

SHA1
fefe60dfbde7ca0b6a600fd60d70325aad145a68

SHA256
f2e4293a9eb8cff765c36f001eb09c606ebf15cf302898cbfbe4768ca5a80b1f

SHA512
c988ca44b602a4574efb9bd1b6f5ee94cc2515becc1a94ed5aa7531351a622ec907acd139bbc1fdbc6c7f0cd102e8a1ce7ea2c82898a066814bb427ffa8d07e8

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\creditsbggrey.png

Filesize
1KB

MD5
548b368ea2bb9d6230717858f7cdd896

SHA1
b3c3988c2d594dc1ad23f14cd35c7e24ae31069c

SHA256
c2118e12e9f42108234ac4fe01b1100b10f29cca91cfcdddeddcf87a007a1c79

SHA512
96d9126aab1aa03ac5c5422151a5f5a434b704207bcee133a7519a42593ebd354e133b705377f8ce87110794f07fe1c9ad89f90e75f05de3b879d6ab982ba38c

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\freeplay.png

Filesize
9KB

MD5
18bc9edd928b37439a97cf90c54d1503

SHA1
4173709811a71074fbe9a407c269cb10d95de647

SHA256
631926d3acb5f261ee46220f3b8400a6ae822f467ec6497016e8611fa6752e75

SHA512
84a6470ccc1d462a406ef556e191e4027df5c47049efba8a9f1671e9a4677ba00d9600021358e5ae69fe22ae0f3b166d8e72e31054d97abfe84696e3d11c6bc8

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\freeplay.xml

Filesize
4KB

MD5
50febf865361bdef329a3ddc8961c456

SHA1
53456e4e3d7cdc354800837abea0a2f0a16990e8

SHA256
1396a82784e93b9963058a585f18490fb50f7cb93af08c2121ce4781e3f90e4c

SHA512
89fa6d78cc2cd4c754818e29e0b57bd900205052ae59125664d46b643cc7ff0032951d2e05564b874cfa54535bfc099640040320b3cf79a86aaeac00ec1ae359

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\freeplaybg.png

Filesize
3KB

MD5
15bae5016a1d7ebeb416aef8d6313ba8

SHA1
bcae1568727b4cfdc4024cd8af011542ee4f5258

SHA256
6a96fb6f600c7333b98e1fe8a6df03d9a40e74df108a15b9dddaeacb428ce377

SHA512
db3ac2823d83bd7268b43805357008a077c981dac1b95c4cfb927a3a342377ba2ca62f19cf987cc905ca97228362bf043750430f24304a46c0afb26022fc415b

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\freeplaybggrey.png

Filesize
2KB

MD5
5b549b6c9d974d1277fdfb105bed3e99

SHA1
ca9bedc5fba21b4d8002ae1cc196db7b2210ca2d

SHA256
90a5f1d61e3e59e26d41cb97f54f643da468049b5084db5508d3fee850e013aa

SHA512
896a8eca4cd345ea5ceb661b35ed6df881b3404f26a8acf9caadfcbe82d8e74015db652bd5b91bd30b515ac8dae78101fdf8b4325ca2a6f317101aaf2cd7f895

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\grid.png

Filesize
1009B

MD5
d95ccd09eac5398b18c3c8db26d61183

SHA1
1e8d6dc00a71e0a92037963862c1c6c8a8e3d5a7

SHA256
7de170b189f2268fa8407cd878c50915a5ae534edb3ad47e816cf1215921dcf3

SHA512
77b6cf53dee596a742eb87379186cea624bf4faedbf5dbbcfdc7e7a6fd4e6adecfb863de7a5812a202ace3e3b28aa34cfd81b8536cbda0a7762ff8c77c338a1c

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\lettabox.png

Filesize
705B

MD5
45a708fd5f04b4c1db7b7a5a6766ef7b

SHA1
2ffb4efab5290d5012363ee0113b4b46009b38d6

SHA256
a13ae42ebb3a18ed76a3bccaa41792783decd378c3d13134249a5be33d7ae1ac

SHA512
baf5aa25453d2920dcc1073787057e120631f4f81eea037acaee0b0013918b0241c04e5274657b0fc86f3aec480b710fe65487d74e8984a79cff9f59c11d881b

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\optionsbg.png

Filesize
2KB

MD5
02fd1cb17552a87213043c0d7f537764

SHA1
8aa4008ca07b6545d21e21ccb239a533221fb870

SHA256
dfbbffb28beb3bc1f68e1651c3e1c9489146c513c120524d6bfc524933b5d1da

SHA512
c0cf98c3e76ea9108fddc6cb7544d2b3a85f7f663d0b7ac9d279f1cfffb98104082ade0784a5132fe3983ffb307822aea5a16c35c3ec5a79c7f09f54c7651272

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\optionsbggrey.png

Filesize
2KB

MD5
4180680b21741efbe1241b78b21a764a

SHA1
2d4db20850b2951a84fac419d684b7df3c953de6

SHA256
f5c870ad1b3b36eebd29f93359a98ef4192dc89ca861ee9498ac33decc22df56

SHA512
ecd585e5c9db756ae40e30a61e4fbc3760446369ad0cf8bba18bc59abcc000fb9ed0b444250a1a341981861b41b381845a4294b14cd37b3bb41b4265d5fa8274

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\story.png

Filesize
10KB

MD5
1c379e71509571d73accc15aafb5f4e7

SHA1
51e3959f53137e1135bccfae15ef8da17d567c16

SHA256
d96e08273189c8af17a7cbdb6e8ea321af904675f5289a9d9793a0d2cc1693d0

SHA512
3989160d31fe3aa6dd0f8a37742f50ae34a346902e5c2d2fc5128c37040339fa5edb670d841280136b9c83ab2c2aa4580fe731d74ef91681f51608fee1a55a8f

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\story.xml

Filesize
6KB

MD5
cda25cd64537353bc3a7c52cf27f7d00

SHA1
887a9e619ac1d40c877e1d0d693bbd6cfad6f865

SHA256
bf15e27fcfe7ea485063cff6fd5f7d331648773b6c88fdd31e1cb3c25041351b

SHA512
79c54c4212962c9c92ba6088cd7672aecea23e11f75da97809d25f1fb9ebf2c383be443ca0b28b5a2497dc02775a024c65e9f005acc039c69ffcbdf706adbe17

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\storybg.png

Filesize
1KB

MD5
3a6e84b352fe5373f4a95914c0b34b5e

SHA1
3ff756f1b7bb1ba8cd3dd97f976076ab8a6db328

SHA256
6f0f87c748032274e8bf08fe245dee057502bfef5b8c5ccd7b91a21de3865ce7

SHA512
c5deee40f8634bd4246556742b19ce9050b525a9afc32dd314fd7a8ebf70f885849eca500e8d164f986aa7bf2a58e35e1dbbb56921a9519463c92c3505c5ee13

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\main\storybggrey.png

Filesize
1KB

MD5
e023d83a74bc27cb7867f92df0772be2

SHA1
543ff156f43faa83c19e0401c0b8883a834f6cc4

SHA256
c4fd68b2d3b66787238ce067416feac72bf9c35b0bbb112aa13cf63ee85888ee

SHA512
799ea4f8a1a597a02dee8d0feaca563ce55e3e20dcd6d440188a0fd0739e23e5aec8ab27398b9563e701d553da072a025d1966ca8f4c0ad4281117ad61368ac3

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\title\VHS.png

Filesize
6.3MB

MD5
ea598e9567f8ed5223826ffe33da710e

SHA1
9497d4080bfaf5ee256c0ddaf60752cf4279a889

SHA256
dfe5b169683e16e8b3d8ee86a15fabb159d4e79c2454357d7b34041e7cee5f4e

SHA512
0ad80c13f32d2afa8ac6bf85a2fd81b46a1d6ccbacbc309e80260c97f758dd18f546fd6c0348aaf9252a5c54358567685beea56b00a06f9f231e750fdeb6996a

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\title\VHS.xml

Filesize
1KB

MD5
7bf955fb90007313afcf84dc19bfc158

SHA1
6a23eac536329ce16d8eec1b942ae53cdaf79ce4

SHA256
092b734c70249079e401c75bc2382a0e69088775a959d75fa8c6738b2807c19d

SHA512
64e83e7855ed46fe3be47e2a6a63d5bc1e0b1a33dc546acd77180b4db2ae771b61e38e9f182e50cc594ef5bd77f3d670fa94df020ff5883b1514a768f67b2cc6

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\title\logobump.png

Filesize
2.2MB

MD5
6a00a1e98f04bae92fc04141f1204c4e

SHA1
73934a4bafd2e0bbea5443deecf1492094f6268c

SHA256
b82f2dea73195c770fb02e318a37518ca36173f010cc33f32e63cca86c6058e0

SHA512
ddb60561a4b51dfda8858c1d47f6223e3bca20132bb00fbbef665417e2ce49a71f06430976d8ab1999b5aa42b6c3aa5d912ec7f41a3bc2117246ac18aac30463

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\title\logobump.xml

Filesize
939B

MD5
de3593d544aa6929cc803debc2c3b4df

SHA1
c3fdf25120b4b91efe787fb075e9990612569b39

SHA256
c361ee19e569fd5e2ebe17b0734adb24c97bdb9576c960dd30487a3f0c48acd8

SHA512
093d7b170b9f88bf211bac3a10a79d59644f0ef5bd0aeae25dfe5e9359d4224502e2264e492a0abfe11c3f0b8c014da4f07152d7b531da792346b625b6b39326

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\images\menu\title\ourp.png

Filesize
3KB

MD5
bcd50a8566d61d76fb0aaae4fb39b484

SHA1
4a1914558c9ebd13dfc968636dff5ab9a30767c3

SHA256
d1f1ab5b0e75390d99b96ebc6ce31181d8496bf5c0c0d120aacc7c67ced79aef

SHA512
cb2ea70e0420e421d3e5a1d9630d8eb5d8899bd1b6227dfc0f1e88d39ae22313c24cd64afee0bb016956fb713d872128ce2e7269cd43aa0e9139cc37cfc4675c

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\music\freakyMenu.ogg

Filesize
6.4MB

MD5
197a5fffb27534ad99ec6fcbc6f1db8a

SHA1
a2725426bd38ebc5b3b6772e23e965fefa3cdf0a

SHA256
0a3e9d381c274aa999f3795bbb3473f182cfc3746acd7daaafb12b550cabbf73

SHA512
b4646cddf8c5e3aa4e0cd3b25a5656c5231a208e57605734a7d98a4dd094543f0f51bd4344321040be516082764785ed7110bba0a77ee5eacefd2f148119149c

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\music\title.ogg

Filesize
1.0MB

MD5
d73cac5c09904d71cc57aae0f1f52222

SHA1
32331d10a04e97af8eadfaaed9c0e73d71466c63

SHA256
6e42b6572394d73abb9b210718a9f2902c10edf0dee772e27aa4bdc4673c212f

SHA512
6b6b344f8997c4f158534ee51a2b0d214c547c4e9f521b6d0f38d1dc0710ab026daa7024bfb1010e86aeb937549122c4efda685294444cc7befda60eb13bae99

Download Submit
C:\Users\Admin\Downloads\anniversary mod\assets\shared\sounds\confirmMenu.ogg

Filesize
39KB

MD5
06f440b557742a6fc4af489576945dbe

SHA1
49dec4afc40a760e3db3b90ac8e41c6922792a55

SHA256
c48b49038c013e7dc92256d055556fa6132363159a29e0ab8211f1441a4ea8e6

SHA512
b00cfb4d1bd85cb49aee89641b167c76fafe555ec33cdd0f28e65423b6c1a9997c1f7bb8611197fb9ab2928ccd2abaf09d654a402b0934088d7114f039890b41

Download Submit
C:\Users\Admin\Downloads\anniversary mod\libvlc.dll

Filesize
186KB

MD5
12301645d2d72c0f480f2a6a65bc706e

SHA1
d9350fdedc5c3c311cea7f5087cecf24c1793ba4

SHA256
a2625d21b2cbca52ae5a9799e375529c715dba797a5646adf62f1c0289dbfb68

SHA512
fc856a3badd2479d2e30cb77b97d46db60946e2b15cd90425f85ebd877c67ab4752035b7c6f969f8188ef6a7206d2199ac11fb6c2746a758e2a7f640fe73a700

Download Submit
C:\Users\Admin\Downloads\anniversary mod\libvlccore.dll

Filesize
2.7MB

MD5
aac32e4706549600893a52a84799fc42

SHA1
7766d2173214b3a80c5950ba4803e8db632caabd

SHA256
89daaa0a56f88f19141ceff0d21b5358c1052ac59ebf9f12c76d31f646ca654b

SHA512
f2a6aae77b4cd9b965e0185e5b843bf004ee8db86ad71dc7c0a50b9c9ee3317f9c69a378ddb420e4aa43a831d4b7396c7c1d6f4347f66bf9a2eba1f615aace84

Download Submit
C:\Users\Admin\Downloads\anniversary mod\lime.ndll

Filesize
7.8MB

MD5
6c67c22ad521272106353fedf657af76

SHA1
fd567905f5db4fff05e21b17181d0a46a5afbcc7

SHA256
8645cfe0dd51ec2637eb7dd541670294b1fd30473318ef09e382cde212decbb2

SHA512
7aad31acbec58388ea1c5266c0ca79691b115c62b531ff41988e4c7dbe8e7726d8a43beb3cef68dfe7fe94547cd6ed7b561f9a0b739696ea78b5f55bdb5c7768

Download Submit
C:\Users\Admin\Downloads\anniversary mod\manifest\default.json

Filesize
85KB

MD5
dee422a49f9ccca9a20b2b983bb8c031

SHA1
e5566ae2ac7ef441375c5a5ef24fc105c75864b4

SHA256
76f14ede4a74ddea04b7b9d81b9cd8f5616d59c5f3e010894bac8e4a3d9e9d72

SHA512
f04fb8a86601e3bc5aa17f529f4abffc437ab4fc91a68787823f080915252c42a5c1d789205127f7836c8ce02059710d567bfebd86f2f9fcb29f649227d11f64

Download Submit
C:\Users\Admin\Downloads\anniversary mod\manifest\videos.json

Filesize
178B

MD5
e0d8076a36a8567be9095f014a442767

SHA1
ec88746da37b16d2068f4c6eaef02d114c7a744a

SHA256
12293b882da686d722e29fd59b20b698aa4a2d3fcedb6539a1ba6c7cb457bacc

SHA512
8cfc0483d842878983d076de8430f03d8043e3bd87cf7c020003d07312e88f4df88a737f7442b1602e7f85a75e84b2d9f819e64717eb47ea4ef01a58ce7eac2d

Download Submit
C:\Users\Admin\Downloads\anniversary mod\manifest\week_assets.json

Filesize
498B

MD5
185c11c9cb2ce200acac04a8863fa294

SHA1
6c83982f7921b33510bb03fbe9baf3af8b801e8d

SHA256
4e753c3e395fb2439522dc21f8d3b91227ce0216f9571e6cf4042af72651b9e9

SHA512
e4eed9f951cc75d6749b35341bd5c2ccfef4c689389f5b57cfedbe451bfdd2dfd735e0c181839310881e8695d4d04ee7d7f0879ba1d8a59f63d8f0f5230e0999

Download Submit
C:\Users\Admin\Downloads\anniversary mod\modsList.txt

Filesize
36B

MD5
29cd8dc72065dcb3f267e167306c2e2c

SHA1
0cb98b38eed59c7ef52af0cb867ec8630280136a

SHA256
daaa1137b2da01f036a14ac378a7edd41ce6eee18d7a9ea0d661c263730fec82

SHA512
76f735ff9b648c1deca19a98fc2927bd9ec9ad6e4355dba764dec858b65c6b5a7abd091e2964a13f5354928a6b306b861573272c8e3ac72bdf4a82e33a4011cf

Download Submit
C:\Users\Admin\Downloads\anniversary mod\mods\aNOPAUSE\fonts\f.otf

Filesize
30KB

MD5
0dfa5947c02c35bcece0e9e03b3ab0f4

SHA1
28042719036756add090bcf581d18b964cc4a03f

SHA256
242b5450bc9f4132f88094bb906e6c907fe28e59a9f0dac55e5ad22d501d1d3e

SHA512
ea7fb3a926a6f4e0b5ce05f1def85124085c21e387dec27825a15a74f5708546b32013a9092201d2991fa0290bd451b46490d64269e036859b5cb8e4b7393233

Download Submit
C:\Users\Admin\Downloads\anniversary mod\mods\bAFTERMIDNIGHT\events\blackfadeout.txt

Filesize
120B

MD5
7bf4389d19d0a3440da2f85e1832f9e5

SHA1
9ab6531353f8a6835976ae661a5f5bb6cb49e6af

SHA256
933845b26ee81457bae37023f5bea8fa1e07a1140035146281b49aa79fc3149e

SHA512
bf9930808ccc4da29786457bf408106fce267f9efcfa8e7b1cc88e5e1e88f1cc6b90b5687c1e16789719ecf4a0acdaa65f7380e8314c3e39795e2dc7ff9a874f

Download Submit
C:\Users\Admin\Downloads\anniversary mod\mods\bAFTERMIDNIGHT\images\bgs\walking\hill.png

Filesize
973KB

MD5
785dce32348ec6f127bca8536d7bc768

SHA1
9b69cecf02f7dd8a63bea83fd8a6422eebc267a7

SHA256
fac63c09a72cfd45c1f6b771fd707979385958fecfcd7f69e7e9c9cd87ec8d55

SHA512
4523543a38535271dbf01f0693756df65f81e6e683befbef044f3cb72c4cc875561944b91f30b3c5553aeb5a5b9d2a69fb0009b91051d2a66246259c627abdab

Download Submit
C:\Users\Admin\Downloads\anniversary mod\mods\bAFTERMIDNIGHT\pack.json

Filesize
186B

MD5
1a6d3e84c5b556d8c7f5ceebdf06887b

SHA1
37bec9ecd46c36df9d3b7339fdc4f983bb9156cb

SHA256
2394723cf264c0411335bd4f605dceaa71861f7918d369b635ef4fba6b0e3fcc

SHA512
51203248a0214d0cb60653b3a9f598ac90f0b254d74b0bfa8b99401b43421dd04c28c88f36391239ed68170597bb93dc689a85e43bf97f11e590237bcf375958

Download Submit
C:\Users\Admin\Downloads\anniversary mod\mods\bAFTERMIDNIGHT\pack.png

Filesize
2KB

MD5
94206f51c1330ab26ac1749c0686f6c5

SHA1
57781ad1e1d301701fb547aa2356b329337c0781

SHA256
451f70e35e56e88278a8c381695a5ac5cf24901a23724e0e57f1f04173e9401d

SHA512
e739b0d6920d73d557c11ad0776d53fd5cae008071a72c2a4dc8ed32b9d485e93509f14c9ca55bd8fb83834a8907e7fe3f724269474a9350004c47ac7c421aea

Download Submit
C:\Users\Admin\Downloads\anniversary mod\plugins\keystore\libmemory_keystore_plugin.dll

Filesize
41KB

MD5
40435b0c9c87a2f033cb19c12c4b8ed5

SHA1
78c05f158a78024502eb35c7e61417d1f34d09da

SHA256
65ccddea960f04c6a35ee1ea6ddd419300d593f9770fda209b6971dc5170f78c

SHA512
0cd9a4cd2e88a4d50f97e2249c948e1ec0df03f2405806ceff9ec42bb1f44c9a307318f06d4f352fe0e7395937c82d987bbde9a856e030d856f1fd62fe904e17

Download Submit
C:\Users\Admin\Downloads\anniversary mod\plugins\logger\libconsole_logger_plugin.dll

Filesize
62KB

MD5
9c220656a2f5e62bbbf294b4baaa62f1

SHA1
fc239def41f58de759f4f3049790d3cba4f7b554

SHA256
9d3c531559ceb247332cb7a910edf7f5ff721dec0b4f381de940749becc17829

SHA512
3a7c81de3d2f2529fd2ba183ce09e787d152612806bd12b8159494e8657c5b9cb4d4e0e14e08157684dbb4198253f33c06602214fa31895427eb8623ee5ef53e

Download Submit
C:\Users\Admin\Downloads\anniversary mod\plugins\logger\libfile_logger_plugin.dll

Filesize
65KB

MD5
30b95d8d25d88a6b8d79a0f9a1936a02

SHA1
6ed7f04353c3ddc085cc81272ab6078d4bec401d

SHA256
a57bc8c6cb677f1b7dd2a6964079b3ffc6676a0a4d5fbb69b773514b53aa447c

SHA512
570735fd6aac893868271aca06b71e5037fcd82b987d73ee9987661d18183a30a12cf0dda0b1a768604fed66680fbd11292b047e5d7771d37035f4931039db54

Download Submit
C:\Users\Admin\Downloads\anniversary mod\plugins\plugins.dat

Filesize
307KB

MD5
87522a2d84634d3020d17e6d2c7a67e5

SHA1
9d291e82329ad9ed6369695720e3cc3a2d6aef4a

SHA256
06f2699056b0fcfdc6e7bf4437d25852f0e1d2b6a9313a81e9f03f40e639912d

SHA512
e7d943a70190e6cc0c52dae5106afa42725dcec49f9030b88f6639a4fb9a7ff45f10d7b9b984315bf0a7761b2276dfb7a40ea2b70032fb4d223b8a1ba0798c20

Download Submit
memory/2908-2147-0x00007FFD4E8C0000-0x00007FFD4EB76000-memory.dmp

Filesize
2.7MB

Download
memory/2908-2184-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2151-0x00007FFD4D870000-0x00007FFD4D881000-memory.dmp

Filesize
68KB

Download
memory/2908-2150-0x00007FFD4D890000-0x00007FFD4D8A7000-memory.dmp

Filesize
92KB

Download
memory/2908-2149-0x00007FFD4D8B0000-0x00007FFD4D8C8000-memory.dmp

Filesize
96KB

Download
memory/2908-2146-0x00007FFD4EB80000-0x00007FFD4EBB4000-memory.dmp

Filesize
208KB

Download
memory/2908-2215-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2225-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2235-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2251-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2259-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2265-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download
memory/2908-2148-0x000002221A010000-0x000002221A80F000-memory.dmp

Filesize
8.0MB

Download