bf04b000526d93bd241e930b4070c96c494d36940d1ad020b873a9d28e3ea26a

Analysis

max time kernel
100s
max time network
101s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
14/08/2024, 17:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Mine Blocks 2.0.8_rc1.exe
Size

7.7MB
MD5

511371eb60f656d1ad8db97988da019a
SHA1

0d21867a59d879cf1bdd66ba018a691a71c0e243
SHA256

bf04b000526d93bd241e930b4070c96c494d36940d1ad020b873a9d28e3ea26a
SHA512

52266f4d4894feb08d20e1e19177eee1b907dae71bf1f079d68091048425c83095bf898e5103c1eab49b84d2dd97a8a43a2cd8357321513476ddf7dd319fe5fd
SSDEEP

98304:8qqk6OBQlKeWN/+dydTYGZAa3fL1fYJqFDbyr6Q0JqLne0hKkRQC9IeVVwl1eIU/:16O6lKek/LNmofL1fYJql66K

Score

1^/10

Malware Config

Signatures

Checks processor information in registry 2 TTPs 12 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2412658365-3084825385-3340777666-1000_Classes\Local Settings	firefox.exe

NTFS ADS 1 IoCs

description	ioc	Process
File created	C:\Users\Admin\Downloads\test.zip:Zone.Identifier	firefox.exe

Suspicious use of AdjustPrivilegeToken 5 IoCs

description	pid	Process
Token: SeDebugPrivilege	3136	firefox.exe
Token: SeDebugPrivilege	3136	firefox.exe
Token: SeDebugPrivilege	3136	firefox.exe
Token: 33	5284	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	5284	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe

Suspicious use of SetWindowsHookEx 5 IoCs

pid	Process
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
3136	firefox.exe
808	Mine Blocks 2.0.8_rc1.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3436 wrote to memory of 3136	3436	firefox.exe	94
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 4432	3136	firefox.exe	95
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96
PID 3136 wrote to memory of 1792	3136	firefox.exe	96

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Users\Admin\AppData\Local\Temp\Mine Blocks 2.0.8_rc1.exe
"C:\Users\Admin\AppData\Local\Temp\Mine Blocks 2.0.8_rc1.exe"
1⤵
PID:1828

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:3436
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe"
  2⤵
  - Checks processor information in registry
  - Modifies registry class
  - NTFS ADS
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SendNotifyMessage
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:3136
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1984 -parentBuildID 20240401114208 -prefsHandle 1912 -prefMapHandle 1904 -prefsLen 23680 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {421367c6-c8cf-46eb-8416-b3a6bcf204f7} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" gpu
    3⤵
    PID:4432
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2396 -parentBuildID 20240401114208 -prefsHandle 2372 -prefMapHandle 2360 -prefsLen 23716 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ae6a1ac2-b203-41ea-9f13-2cb20f3ada08} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" socket
    3⤵
    - Checks processor information in registry
    PID:1792
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3000 -childID 1 -isForBrowser -prefsHandle 2988 -prefMapHandle 3392 -prefsLen 23857 -prefMapSize 244658 -jsInitHandle 1236 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d486be38-f519-4071-beb3-8acb08f2162b} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" tab
    3⤵
    PID:1764
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3896 -childID 2 -isForBrowser -prefsHandle 3888 -prefMapHandle 3884 -prefsLen 29090 -prefMapSize 244658 -jsInitHandle 1236 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1ba2ee81-83ce-4c44-baa8-2efb2ca1cc13} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" tab
    3⤵
    PID:3984
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4604 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 4652 -prefMapHandle 4648 -prefsLen 29090 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e0c7edd0-0713-4ff9-b121-b8aa1226b6ff} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" utility
    3⤵
    - Checks processor information in registry
    PID:3500
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5260 -childID 3 -isForBrowser -prefsHandle 5244 -prefMapHandle 5248 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 1236 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3a097244-59ce-4d4d-a693-69c976c9ce46} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" tab
    3⤵
    PID:5688
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5456 -childID 4 -isForBrowser -prefsHandle 5376 -prefMapHandle 5380 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 1236 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fea33156-fd51-4770-9e24-81c2ac9c38a0} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" tab
    3⤵
    PID:5700
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5572 -childID 5 -isForBrowser -prefsHandle 5652 -prefMapHandle 5648 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 1236 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {09c8f06b-5cf1-4790-a974-3a1234823886} 3136 "\\.\pipe\gecko-crash-server-pipe.3136" tab
    3⤵
    PID:5712

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5584

C:\Users\Admin\Desktop\test\Mine Blocks 2.0.8_rc1.exe
"C:\Users\Admin\Desktop\test\Mine Blocks 2.0.8_rc1.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:808

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x48c 0x498
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:5284

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\activity-stream.discovery_stream.json

Filesize
35KB

MD5
4f3c4b9358fc21858a5a238a7ff5fee5

SHA1
813515c098e0cbff91543a53e488758863e86431

SHA256
4147e30743546b6127c122f6a5d1f9a9ff4e8be8ae245154993b786332cde53a

SHA512
f5a39985fb8c4b8a628034a4d8e999860ed480f87d73fc6e65ac31e8131ec68a1470d5761de9cfaab258cbfa13762b8f05e20b0c1ed63ce0066c7f291798ea7c

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\cache2\entries\E449899591A9BC91DFBA673EC0589B51E541A88B

Filesize
13KB

MD5
4b389a115e450a303c46129a4af8641f

SHA1
b0b31063bbc57ae59376870c27e9a01a21cef705

SHA256
0c49e977482c0c405cb6a736fed51fda90db3547b2d42b454fb32bb53b6ca2f9

SHA512
eb5c49ebf75367aff3cbd92ee84781898517fb2ae6b203ac4bc82c62abda1d4da56bdaa718e2f648b984ffc0cef28dd89ccd87edc134893f72d2af7c8286c9ec

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon

Filesize
479KB

MD5
09372174e83dbbf696ee732fd2e875bb

SHA1
ba360186ba650a769f9303f48b7200fb5eaccee1

SHA256
c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f

SHA512
b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1

Filesize
13.8MB

MD5
0a8747a2ac9ac08ae9508f36c6d75692

SHA1
b287a96fd6cc12433adb42193dfe06111c38eaf0

SHA256
32d544baf2facc893057a1d97db33207e642f0dacf235d8500a0b5eff934ce03

SHA512
59521f8c61236641b3299ab460c58c8f5f26fa67e828de853c2cf372f9614d58b9f541aae325b1600ec4f3a47953caacb8122b0dfce7481acfec81045735947d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\AlternateServices.bin

Filesize
11KB

MD5
d07cb91858eafb9429f7a3dd1263cc2f

SHA1
828d92e30c2deeb95a69e6890144a6f9793f9d7b

SHA256
d4b1120ed7d320648b04031c6a2420b5af1aba326030aa57547bb34532733860

SHA512
7514831d6f4ec5e5f9429ddad0f48c0d98a86b3410d09f702aa90c824425303e653a2c07460b20239dc0e73f3fa200261d68f930b455b26d0141f8576fa3dd01

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\AlternateServices.bin

Filesize
8KB

MD5
94b6211422a1620bff5769e01ed84737

SHA1
35dfe7f75e0ea1293bbbbd0e0981638f3ed685b7

SHA256
aa4e651ef587f54518306506d301230fdf3c2d61e1af57fa930a2ca83bcbf709

SHA512
176d249e4a19946a70e9ccd7d0b51ab21b1f46d35d033fa6c7e6fae47a8e7d916d9eba4dd5164fea43698bfac71e6a7ccbbd31b8d8297a85cc5905bebbed53c4

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\db\data.safe.tmp

Filesize
5KB

MD5
b9cdc5a67ee4ba78704ee0772a59673c

SHA1
fede7f42209186278565b737bd54ca887a197106

SHA256
4780a847e507b0f535c21f1e27c7dcfd7a5a30a3909c711b8c4b131447c53393

SHA512
5aa59c469b9f0d1d3d68cb86c34e8954cb6322a861ad96b9f847d9d623f554eab4f4acc1e5009068a19659bb60210308b920186137c1438ddf42efb891e22c33

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\db\data.safe.tmp

Filesize
14KB

MD5
a10b893434d64044dc228429a8e662ab

SHA1
d3e445de1c085f3079c52a729f20a4e43bc63cbf

SHA256
62d024736e90c539971b5c58085a266c6fe87fe0b3ae246af383cca0326af3b3

SHA512
2f1c70016a3ca0b92d7f78f09ed2ae9370134bfbb7a4b64dfc3cfdac50534153015f3be5c8338d6ac4525c8b50572df06c1810dbb43ffff6cebd04495680c739

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\db\data.safe.tmp

Filesize
14KB

MD5
c81c845fc6a860954016b9a3ee9b08e7

SHA1
c4c4d8c396b9cee242d7fc8fc25d6ec1120de777

SHA256
c754dc321368adf50d371f972fa475ea0b53e6ec615d1aaf3c6b12a35a3b973a

SHA512
2cc8e9fc41ed01a18a266997e2ca6d9b3dcd45170fd941298f3bfaf319a55696421f1e2c97630c44e05a6800a02f901c9587494b10bfe3f10f6db7a5f4f623e6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\pending_pings\08618e46-376b-4018-9820-651f0029cf83

Filesize
982B

MD5
a36e8d77297ce37b1e18ff99af4f4343

SHA1
6fb0b837828585c3129a3649a9dc0cba21288c80

SHA256
4a047ee62d74eace2cd84f779d89988d33accf33426666bf482b4bcef73a4e50

SHA512
f1714f2c3cfff9e26d83893963b870f69a99ce1eab576829f10c71124395e4ce36048e6d055dd7cfbcb5f2bc6b5d2ff513c4de953997e668927ad5886d57b1c3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\pending_pings\26569b51-a8b4-4534-9f11-fd9ae54a00ef

Filesize
797B

MD5
5c8c00618afb463f174380639fbc6f78

SHA1
4d27c2f7e8d40f8b0524862f516757aecb7be0d7

SHA256
55a8e061ceb8adb55f454be57d40475e35afccef0343072415b1ed7b82979d9a

SHA512
022ee7c533683f8c5fedd430cfd52ecc1f494a8947a62ff492bc0f987153ab1ace8ed2f2556fdaba4f700c659e66f405b3b42f841b37e24d35124600a9607448

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\pending_pings\6caa9d32-9ba4-44b4-813d-84f7c804f7e7

Filesize
26KB

MD5
a55f8f819327ec7209a0558801676a0f

SHA1
ea7c20d5074998c597251318c16e5dabfb576342

SHA256
aebfdadec1d9eb37a83a90223f960ef1c3c34ff32a635e6c649082a3bf315164

SHA512
3dd6a61f2ab523220a81f00abe91881865a59abadd697b57ab35f5b23d8ea724b35e511be3e67328237160b5a92106df59c97da3ad71b8d32c20ab8dcac95cd6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\datareporting\glean\pending_pings\80c2e438-c08f-4d30-929b-eb6978f79936

Filesize
671B

MD5
6342d35da300530763913111d7e5ff79

SHA1
7467bbe5c7a4ceb64466b4a47ab1bcd139b7ae22

SHA256
faa43b6c85db5e2d551e68c154f1c532ab56437c39972e571447a99eabe7ba90

SHA512
09f578242ffb505a3e29c1ce9ccbe6197ebcb2aeffee45333311209b8ca74155640b188c71c77a78ca95110670c8cc47622684b7a5f9f8f31ca72c0e6ffd2d2f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll

Filesize
1.1MB

MD5
842039753bf41fa5e11b3a1383061a87

SHA1
3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153

SHA256
d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c

SHA512
d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info

Filesize
116B

MD5
2a461e9eb87fd1955cea740a3444ee7a

SHA1
b10755914c713f5a4677494dbe8a686ed458c3c5

SHA256
4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc

SHA512
34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\gmp-widevinecdm\4.10.2710.0\manifest.json

Filesize
372B

MD5
bf957ad58b55f64219ab3f793e374316

SHA1
a11adc9d7f2c28e04d9b35e23b7616d0527118a1

SHA256
bbab6ca07edbed72a966835c7907b3e60c7aa3d48ddea847e5076bd05f4b1eda

SHA512
79c179b56e4893fb729b225818ab4b95a50b69666ac41d17aad0b37ab0ca8cd9f0848cbc3c5d9e69e4640a8b261d7ced592eae9bcb0e0b63c05a56e7c477f44e

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\gmp-widevinecdm\4.10.2710.0\widevinecdm.dll

Filesize
17.8MB

MD5
daf7ef3acccab478aaa7d6dc1c60f865

SHA1
f8246162b97ce4a945feced27b6ea114366ff2ad

SHA256
bc40c7821dcd3fea9923c6912ab1183a942c11b7690cfd79ed148ded0228777e

SHA512
5840a45cfdb12c005e117608b1e5d946e1b2e76443ed39ba940d7f56de4babeab09bee7e64b903eb82bb37624c0a0ef19e9b59fbe2ce2f0e0b1c7a6015a63f75

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\prefs-1.js

Filesize
13KB

MD5
39c67952334c52eaaed7e6b4870d7f5f

SHA1
4ee9ad350c00556e2b19662628030fbb0d4e428c

SHA256
b064bafd4b41fb53e1d3360a4aca8f4d45be86d33fa46dd7a663b0b3ea5f730f

SHA512
de685d7bea33073ff9773b000d7cfad99e88486402c5ff30cf3cea568e668b0ba80cb7b7dda18855697e375bad9caee2f97c8ac188e21d6533147a24ca5979ec

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\prefs-1.js

Filesize
15KB

MD5
7749fd04aad7b3b67ef31ff076f3ef87

SHA1
2ebb83b60b0747e4df58a5e7b9fc8ea38adb2130

SHA256
b15816e8526b059cbd2342a187eae1799a7783b3ac8e58ba72e669dcd0306d16

SHA512
eb2e6f8214578879eccc47d0d224b9c7864d42e6b43590141b19f9571459ba9b333252c582b99d06da422d3387a7d55e38db657ead4ebaebcbe3ab689f79f7a6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\prefs-1.js

Filesize
14KB

MD5
51b8a4074b06f70116f682adeb25f49c

SHA1
156b18bc23e703225aee0b6a4ad8ec2019c3cc2c

SHA256
13c5a1153bb86aa988e50791440a59cdb8c7e02f4b5cabfa797276a0956e207c

SHA512
38f986eb019d5860b4db86c05dc51858de53339292c9f4ac449cc95ea9bd03409e0e0963df1b95354be0153da7f96ab6071e8f87654442f24a94deeb41a21262

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\prefs-1.js

Filesize
16KB

MD5
eeae6040c4eb16b7152078273b62d437

SHA1
ee46789f6bf58e2085c28d082cd9eaafefebfa51

SHA256
31d0600155e85f6eceba32a2eddeb201d6155f7997e416cb95786c31b37fdd03

SHA512
449e321a00fdb6ff3fe5d15f194ac450c14d62ee11d9b8a0d9d2fe46bc602ef510e25e987db29a7d262a6fc31734cbbeed35df8b934ca2777a9193c3f9ff80c4

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\prefs-1.js

Filesize
11KB

MD5
f57c8e75eb040abd6d4edb2cdd2bc78c

SHA1
b8df9664a77c840b35c6e0f9bbc0ea494d27f732

SHA256
66b9b403d6e1836dc636cec1eb892b9c5dfa508dfb02f444693b0af285d08b6e

SHA512
02f44faec71d9068ac4de0b2efec2c4a6716d293316cf09f523c6f855bf758f94863ce53744c21a8b0a12b33691f0fd7afe2afbef13cc6b1941417f7373f608b

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
1.4MB

MD5
0994259656933ddf3ed096b43d5b6cff

SHA1
0876a0c286e993a68de3a7b3aeea010cf54cf7f5

SHA256
4bcf35c52a3745cbe30bcc9bc80182a03eca79a248a388adb414ac9b97015187

SHA512
76b265102e930a3a001a266d6e46ad7cbd9731dec63c3422cb0c02e3281dd4a804ec176b935167290c0bed7117476e267093a28dad55a33bb368bb573fd90f8f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
1.6MB

MD5
22d97df67834b7097efc790a6b52ed68

SHA1
7c4f5de83ac806f60c752142797c979635ff7b95

SHA256
b4e101f70ee9e95db9188f65279c01b1343fcf8ae68914d2d5e982864662e9cc

SHA512
1a3835a44ed2c4303116248c9df9febb79c483ccfaec14e8f2406dbd736816c9448e26e7a91c380d94e43e5e30951d578bd32d4d2201a10d796862b24644d6cb

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
1.6MB

MD5
9dea79f56e1712890a843cdf43bcb571

SHA1
1f369f03a3e999fb89e461ef75e60bc15aaf2a89

SHA256
d415829b9079fd202542564c311f07424b9e27b0c8fc606c3dc28d6e23345456

SHA512
cf31c5369247de8587624f866662b154218ca9131c17ec1fdd53845db39951e99b612f8d3349400092116ccc27d37f2e69159f1621fe6730fba93a2655ce3b99

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\c5dqhm7h.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
2.2MB

MD5
a7253af09c2b002e68b5e482018cf89c

SHA1
b739bffcaee6f2ae8b9e73bf0bbb2019f36e13a2

SHA256
b3600cb0296cc54f128f08f52e33c29cf20d1ebc1fa7756fcabd404ea64d8ee1

SHA512
8388f81acde768060ccfe406caa31458c32ded6cebd1cd2587cb6f5b1cb4ba9e3b0db1b480cad476c4b506d54c6f9cadec2b886783856ac8ac4dc8db5fa152e6

Download Submit
C:\Users\Admin\Desktop\BlockCompress.ocx

Filesize
362KB

MD5
7770f9a7e113b490b467f07b4d8c14be

SHA1
e48ad59f43d6469bc2e5d76c45147438afd2da62

SHA256
62aac07bd17edc3dccbe77f775648ecc561eb9109bc033f71c3da9e219939e57

SHA512
b7d799d6116d99afdbc699489d77d79dd9eeaac85fbb38fc4820861c4ccc9cc0b27a8607aa165662a894e83ad55d530f9e92718a82893577ceb76d7dae49ed8d

Download Submit
C:\Users\Admin\Desktop\ConnectReset.snd

Filesize
234KB

MD5
8ce2e923b900d2ab99dc179f3162da79

SHA1
21550b105a007ddd6b36e9e9dc6d7a31ad06ce4d

SHA256
7859cea824a633352d25511163f4acf63b4162116b2376255c0b0a924e4a1096

SHA512
f3beb6dd1ab47dc425dade6dbe00a74e4c589af45f12fb7810b875ba9fdbd21c65dc6b0bd1fe77e7994113faccc4df0772f015c8d6ad6c3b044a1dcf36aa0991

Download Submit
C:\Users\Admin\Desktop\DisconnectRepair.inf

Filesize
309KB

MD5
7ecbdcea9bcc7bf9360eca61752198c7

SHA1
2722e2dd5b32757f7dce0c0e77e1e8c8e6ac3322

SHA256
77fa7201c213f9926b3f305d0e222e7a4daa0c8a9963ac0e6abe9777a9028999

SHA512
9aa5d2775d411b143838b5cdc179458c1535af607dc68e685cba1bf2d00641db34085bffa736d9f38a2dde8f6dddd06b5418594fa88470b6cadc3c21e47910a0

Download Submit
C:\Users\Admin\Desktop\EnterNew.dxf

Filesize
288KB

MD5
c6a9467f2abbaa0ffc6d88e87670e9e4

SHA1
90d958decf6993402dee70e45d809b960f6ad583

SHA256
b4c3c471ddaebb6dc5a0fc147fe98ed4de8ae82bceb9aa232de3f038f9ddc619

SHA512
b994452efac205cb2b370da0b4771c3dbcfc4a1db608ba95b75e9f520c2de9434127db028cef2488c16ce6e1140b3b99cb51203a545c63bbd61db617717b22c0

Download Submit
C:\Users\Admin\Desktop\ExpandFormat.mht

Filesize
266KB

MD5
819e059198c9b1cb64cb154ff1d6c222

SHA1
52aa2620cad3a527b7033b864f8b6eddce7b8f6c

SHA256
f7eee4849c65c206782db4a27fdb09bc3b08e67334ebfd76422b04c131546cab

SHA512
12914bb795a8de745c1d1e202b24bd994289fa228ac45d964b59edd473d0551d894a8114d5a6e8a7de10fb68bbd18bb38606610f969f729c0db061c86f7682ca

Download Submit
C:\Users\Admin\Desktop\GrantLock.dxf

Filesize
181KB

MD5
1b8f36c0f3c86abea4289758c9d09ad2

SHA1
7a7153adbe60eb9d6ab2b9f29ff9af28f03dbca9

SHA256
6f495f5d0b6ec1847578b1e127fbb6d69f0a6c1dfab258664ae9ce7f960e8d07

SHA512
ea8e29d7dfe929855856f3eb4aa7173a8d7648dd6da4522a0194c942dbf2dec2cd0aa3d01613650b68e79ca6811acc922f6b41439dfcf780eade212f857e441b

Download Submit
C:\Users\Admin\Desktop\MergeGet.docx

Filesize
277KB

MD5
b3ad1b5af5ed593a384ed6c186649476

SHA1
067a74231c0e1dd7215f18bd6c2b86aee7c82b23

SHA256
d77bfb97b32a4a7832ffe805bc4f051147d51380016ad409466287152300d4c8

SHA512
59df5d2872a80c6344cea47ca9b027c0c42f606f07aef412cb22b810180ca7c083ff0c445a0521026540e6e47a72f84f3bf38d7f5c7b5ea0a0d5d987bc1caf4c

Download Submit
C:\Users\Admin\Desktop\MergeGrant.vb

Filesize
138KB

MD5
2574d00420f2f6205a607c17f30be4e8

SHA1
8ceb736704225721b4126d53aa385132c948eb74

SHA256
2f21041817d2a7602d298c2d2411a3c370e29c6636ef77a97bf5530330f76a0d

SHA512
9fbcc2ae791efcf67ed4adcd584ff19e726da0c729e309a68a59158a2e9bbd654b8cda35faa1919d4183ef49e9b1336fa0f50f9a892a0b5786cc50eb2b8667a8

Download Submit
C:\Users\Admin\Desktop\NewCopy.xlsx

Filesize
10KB

MD5
e9033375cef51e28faefc3961c7c4380

SHA1
723b31eb3b935c772cacd1a892520ce0dc13d1a9

SHA256
a5d543b89a86e33361e6ad73a98f96486cdf2fec1ddeafaaf13b36d1ad3cf368

SHA512
cd66bee00859f3f967a16cb5828630a5f618c72cb87ead91917166e8390bac3be48278b0ffe79e00c5bb49e9e05614bfcb25a36ac2035acda728a1117944ca30

Download Submit
C:\Users\Admin\Desktop\ProtectCompress.001

Filesize
501KB

MD5
52f8d8dfcf6e001e7796e1690f0de0db

SHA1
4f890db9a40afc7c8b03ba6534684208ae88fc53

SHA256
585f77b3218d4e1e1f8b967bea733521303371aa9d5dfd8a94eca56a8201de84

SHA512
ecd54a87103e041a432ab4bb057a23dacc8747997fdf8216131744dd4e7d3527f5daa28e8e2edd1cb3843ba18da16bb1050ed343f9fa962d6cd606a17d656354

Download Submit
C:\Users\Admin\Desktop\ProtectConvert.docx

Filesize
298KB

MD5
0ef77d2302978d2608b9e24d17ef3007

SHA1
94a8b69062fd1db8c02e28bf63fd99b09f823059

SHA256
2be00817daccdae3e3be1543ec1ad4306f91db5ee615b14dfd620459adbca50d

SHA512
d13877d3ac63a72585eb1b97e4471fc87ae56229595a5642ccdb4222d2a8bc1de4ec9a1388b557e3af2fd5400d53c7db46c8a84c0adcf5a6421fb4519e642a1c

Download Submit
C:\Users\Admin\Desktop\ReadExpand.emz

Filesize
256KB

MD5
6f97adaa8cdaefb5864b2ce09c272e5f

SHA1
87f179d83b046b7ae13833a79999f005e0331993

SHA256
4c63f7445a0143cff5a53464b6e7455e1bfda0695308761c96d8455c79e324ff

SHA512
032bbafa42b268ec22d1831df3757effb46c82a3b83289ab9eeed56891de9dafc5c8b1e45f28aab0b005c427256609bdfd4948dd8aaaa5e49e8c1da18e0b5c7e

Download Submit
C:\Users\Admin\Desktop\RedoGrant.zip

Filesize
160KB

MD5
7e682be2f16455cfa728875bc4680989

SHA1
9ce49386dc96001275c64e7d2ffe0dd4010085d2

SHA256
4f2baec478426d216aa0e15d9be4d7abca274021c8e70f98a4f8196e0edb43a3

SHA512
ae9db12e668181b360b4a242ce63055c89b60f25b0c88b58279d2a47f1fb21786bc9da2727d217bf905cf43b5db52dba46695333e04c44377b2f6cb0fec2fa57

Download Submit
C:\Users\Admin\Desktop\RemoveConvertFrom.wma

Filesize
224KB

MD5
6465a2289b814c98aff4dbcbb7c5e324

SHA1
16e49cecc845194aeae469fd66170b0c65a3089e

SHA256
d5d4588a4a0ad44c20a6412ec7e02c9266cc147107e8b5c36c76483707ef0729

SHA512
ad50923dbd3fa2aabbc7eecf0b6492c47e7eec337c283b2d23ea25dc808d9bc2ac487b2adec1ec0ab02723de68b5c09ff38ea7bf1bda76542ec5c6e924b4c20a

Download Submit
C:\Users\Admin\Desktop\ResolveCopy.ppsm

Filesize
192KB

MD5
12b5414941228bf0b08f2b96ef1f0d98

SHA1
d2d99dd99d769dc283ac9f6323771e1759b91a86

SHA256
cc625e09be6c97435ad5108d22a70c18ed5473a615976cddbf88d76a3759f254

SHA512
532b087f9f940130cd4e3a54f34dbee3a39815be4ba2845b81ac42f6dcc39974152f8a735834c97e8ad722ced98167510f5051f974b729fec1c94b6d7a7129cf

Download Submit
C:\Users\Admin\Desktop\ResolveFind.xlsx

Filesize
9KB

MD5
2e0380f8057df2af3f6813b63c33fe08

SHA1
3a5ff50b07154cc62ca5301f3ba219b2c0f63a10

SHA256
022d8be3f1cbe7dec23b4544beabdf853f5f023ba887fd6b792cb2af85aac828

SHA512
a89ec5caa57f2fd9704b648f6ba02fb230ea2b69b1ec860a27ea18d47ad9c646d4ae1a65f49dd0d44cdf1f511f2d738f8838a70d31da161f80e2f5ad575f10f1

Download Submit
C:\Users\Admin\Desktop\RestartGet.jpg

Filesize
352KB

MD5
015ecfa2d618e513d77e08ad64c5b67f

SHA1
4288fcd8b267969ed55165ee6fd4ab0fac584eb2

SHA256
164fbe3cc20eb4db4e60cdcdbafaedfd961bfc5c273cb7bda3d5db3034b04adc

SHA512
e1f55b9b2d820e2b55bbadb08b7493aeb13cd461b3ec8b5bd6a138b2508f3eb4664591e100401df902e5ebe1e4040597d64d3d02c9e5377c4e920fca795f0190

Download Submit
C:\Users\Admin\Desktop\SaveRequest.mht

Filesize
202KB

MD5
e446826464c51619c5de2842f9e8e4fb

SHA1
a6abac34ebdca3d67972c7c247f5d5094f37e1cd

SHA256
3739be4cc447c0ea6173573cdc0d1b50042a5eb03dfea379b9b20df8dfb37dfa

SHA512
945dafa6a144b0abca1f9ba0cbaff497e9189c50c2fc7f05a31be04afef63fd8087bdcfa867626af4eacc2f3cbad2e11de9d0aeffed2f6d4cce20614e2311809

Download Submit
C:\Users\Admin\Desktop\SetConvertTo.m4a

Filesize
245KB

MD5
c6021793f89da08c189233cc19432cb1

SHA1
232d450b481daa16aaf74d51f967dce8bdc6aa98

SHA256
760dd0e607a6a160ba36350f0bc6099a5e578d94bcb78d2852c2710b61395c7d

SHA512
c6e806129f60d1547accb3d44d63b5d827bd8ffc98d91d573d5ce6f805fc9d66f638dc0998d020190bea47856c0c623614f5320d2716670335c7652d83c2a15f

Download Submit
C:\Users\Admin\Desktop\SkipCompress.ods

Filesize
170KB

MD5
b6ea6f402c697f3a32e0cee9ee274502

SHA1
d2a07628218733dc2041ffec9302cdc0fbc0c27c

SHA256
47eefda6ebb3e1a4e33132bed5dccc4a220ec69f4f78ad965d4fe9c1024e97cb

SHA512
9216f8b668a9cb30ecb6758f0b3c1fb9b25fd79b560a36f817d3d2f46f869fceebdd30d88336f99dd41b2513b6b8092f8ff79d71bb53d501d96ce3efbc9c6ee0

Download Submit
C:\Users\Admin\Desktop\SubmitOpen.mpe

Filesize
128KB

MD5
8933378bef955c345858a3f380b7c9e5

SHA1
bb7ad738a1c90660aadf158f434c3dd5ae93473b

SHA256
59aea0ef292157073a0496849b48f1fb64142ce759d4a5d1b30fdb5191a9a9e8

SHA512
140a386c94e4015050e583f8206dbf0c34c97e221f48d4424242207b07d40b37ebdd0ffea7018e3282f1449846e9881c8aa7075669fede85715c5740e0b0a8e5

Download Submit
C:\Users\Admin\Desktop\SwitchSelect.emz

Filesize
149KB

MD5
93bf693e4002896b8d91670c3b791175

SHA1
cf86907a6a5c3f00126b7ec07ef77f1330da4601

SHA256
cdaf296d476867064e0a531cae29c2446f5ec1d6c7bcfb614704e6c7b00fbbe5

SHA512
a375faa3a04e8eb7b126b0d8e62644760f1abc9e1f96cb1c04c8b96227d771336d8658f65c4e61d374189cf6ef8acf3d4e0bfa7a7df441bda2dd1a31c5299096

Download Submit
C:\Users\Admin\Desktop\TraceDisconnect.WTV

Filesize
320KB

MD5
9943d5104eb9bbe30f3e631fe9b552c1

SHA1
08b3710b10e54617840fc98cb856f4e894780d84

SHA256
57ecc7a6eea5e0440bbb71df65a285cae9c06b8b9ae9864548e9dedf0fb0c566

SHA512
db222a343daeca664b283a6c85a4f7f33be3dbbb7c88f234b30dd537cbff77c0d5e9c96ffa54b338d0e047130e81f5f7f8d0157f0a070dd2ac74095ec5e89c9b

Download Submit
C:\Users\Admin\Desktop\WaitSuspend.M2V

Filesize
213KB

MD5
20b59561f302693c9648802cc1ba0046

SHA1
04d84b12625b01a2a667828a4b1a63415e6a5129

SHA256
3e05b230ca1f99a7a363204429e08c4300f31966d49168780b2e3e07afb663e7

SHA512
e7f0db06776f5fb26e8425ee4d16791e0ea13ba0480ae5563a96dce04288192db09e096fa1f7a32a7481b8adafbee901fa1b2494886f2c5c31c686009002b433

Download Submit
C:\Users\Admin\Desktop\WatchExpand.avi

Filesize
330KB

MD5
2f194539f75a9894909ada7acf485143

SHA1
4a52ea6972716de014e22b1f9f0f9021b76033ba

SHA256
cf01c3340ebd917bf66c947ca88375020121035e3f0f252bf55c06a99554df35

SHA512
5a2ab3c24344e1b92b801b3880c2920769f62ac774235303f4438007cc42ae041b9d53d5afced6aa3e58df6a314ea110c27e2f999f698f9ae6fdb10bc9115f96

Download Submit
C:\Users\Admin\Desktop\WatchSave.pptm

Filesize
341KB

MD5
9d4009bf07cc222f22db690e9ee393e2

SHA1
1383e1f375e7ca7a1332d8f8bbfd8da48ab7ca03

SHA256
2018911464a991ef776dbd1ae2b74901eb5d6b1722db213e595ea389c66ef482

SHA512
9f9d3b07cf52aa55c2c17533ede49a709b351fce7f51567bffd1d1ec53c64bbfdc521aa2d4ea0de32db0cee2d470171ee9d3907cb58ecc596d951e28838db6ff

Download Submit
C:\Users\Admin\Desktop\test\Mine Blocks 2.0.8_rc1.exe.donotrun

Filesize
7.7MB

MD5
511371eb60f656d1ad8db97988da019a

SHA1
0d21867a59d879cf1bdd66ba018a691a71c0e243

SHA256
bf04b000526d93bd241e930b4070c96c494d36940d1ad020b873a9d28e3ea26a

SHA512
52266f4d4894feb08d20e1e19177eee1b907dae71bf1f079d68091048425c83095bf898e5103c1eab49b84d2dd97a8a43a2cd8357321513476ddf7dd319fe5fd

Download Submit
C:\Users\Admin\Downloads\test.x56TadEU.zip.part

Filesize
7.8MB

MD5
76ea7f42bb182bc2233e776378c7e07c

SHA1
06ccf6f90c9704dec98f38b9e5b41439aee844e1

SHA256
407bcc92944533f011c70f9f4d8f7657279ed8be47d28a66270a44c1e21306d3

SHA512
5fd0bab2830e7af376d8ff0f8c38524eca9f8561983b19de5751c11dab1618cb000d514d43fa99e15d57dabee51405a6e544189be6f2d0f68326290a65a75220

Download Submit
C:\Users\Public\Desktop\Acrobat Reader DC.lnk

Filesize
2KB

MD5
782cf97cd3dccf80f7edc6faa7503055

SHA1
699b62807a07be1dc0f21143b71fb79372b90519

SHA256
441728534db63fed2d0935696141dda6febd2e585828b4d3deff71c1fa5ef75f

SHA512
3b61dc3f00be7a794517d71053330b27b2c351b71b3f1d4cec13b679252225fc9a9755dce0d954f7c3f60dfa0b26f077742a55746a829f16cf59034037c77543

Download Submit
C:\Users\Public\Desktop\Firefox.lnk

Filesize
1000B

MD5
45a48e061cb93ec1417ebd9f13a442bb

SHA1
cfae7fc99a75e0bb104fb0daa472c8545fe379fd

SHA256
6c39ae902c654216cdd6808cbdcc3fcfda9f03fa5aa3c4ef62066dd32749051d

SHA512
0ddf412f487c6b9b5e0c9d600e9588297f31029299fc80b76245e7f519e9b4b582740b4dacad0dd897186d90c2b7d63c7de93590fc0402d528c0a07558f2b737

Download Submit
C:\Users\Public\Desktop\Google Chrome.lnk

Filesize
2KB

MD5
ff3fb12f07277798f0efcd55ad88afad

SHA1
8a4574e474516ba0bbac55f290cd0891c77867cf

SHA256
9cf3de3e75eb07ed457a6b047bf42152b0b3e46d93a829bad2c828d36c32cfe6

SHA512
53441b6d79a9d56140e50eed4f4d95fbcc2ba08d231562b95ed57d2ae13e15ddfa0c6211fa7fed190ca2d3324ce67ebe67a8814d1d3dd600d5275ec5c033f5f3

Download Submit
C:\Users\Public\Desktop\Microsoft Edge.lnk

Filesize
2KB

MD5
862a7fea06b27f16c6dbdfaa91a5574c

SHA1
244fad51f176fca43349bf65373fd0866e132205

SHA256
2568e49033e1fdfcdeaa891726e65352c9ee9813c2b59e55f63f718f81d9f0f8

SHA512
dc2da0620e8ed7aa59183785b95512972580a4e9ee1aaa441a5680240c27d727150d0b014e5b521b23802c90b5aadd3c6559f1614087c6c5a7f994ac1fd3b76f

Download Submit
C:\Users\Public\Desktop\VLC media player.lnk

Filesize
923B

MD5
79ed587dccd1b619e4d35d682660c5de

SHA1
b48b22f0939c9c73e5c685ded7bc3106567d5004

SHA256
e6833cb665e6290631f3915d92c8df251d9ca7c1ac13e1845bf444aa2bff0089

SHA512
f777a7b453dce28d5df55fe3fcbbe366fe9a027619f311f1b0bac7447daaac3eaf14a703ba86bfed7318f9aef86c5fbe37a8df607a9b2ae6b10f1475fac469d4

Download Submit