2b91ce00e5298ee1758cb4bdf78d1c6d66445876624064b7493ca29f20d608df

Analysis

max time kernel
120s
max time network
107s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
17/08/2024, 16:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f64d1ad6e897f119ee9c31e27b4c9610N.exe
Size

61KB
MD5

f64d1ad6e897f119ee9c31e27b4c9610
SHA1

31fedb6b30ad331ccb473ef2468edbcc5c0a9ce4
SHA256

2b91ce00e5298ee1758cb4bdf78d1c6d66445876624064b7493ca29f20d608df
SHA512

e99fae55c2eecd977cd1e9d8dbd1f25bc4941b4338952c799448cf8e73a6e9be505b4355cdbb6039dbb0e079b4010a5048220a548902694508a84b61120b06e9
SSDEEP

768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQY8BT37CPKKdJJcbQbf1Oti1JGBn:CTW7JJZENTNyQYaTW7JJZENTNyQYe

Score

9^/10

discovery ransomware upx

Malware Config

Signatures

Renames multiple (4724) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware

Executes dropped EXE 2 IoCs

pid	Process
1140	Zombie.exe
3248	_RunTime.xml.exe

UPX packed file 55 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral2/memory/4840-0-0x0000000000400000-0x000000000040A000-memory.dmp	upx
behavioral2/files/0x00090000000233ef-5.dat	upx
behavioral2/files/0x000200000001e55d-17.dat	upx
behavioral2/files/0x000700000002344d-15.dat	upx
behavioral2/files/0x000700000002344e-19.dat	upx
behavioral2/memory/1140-12-0x0000000000400000-0x000000000040A000-memory.dmp	upx
behavioral2/files/0x000800000002344c-10.dat	upx
behavioral2/files/0x000800000002344d-23.dat	upx
behavioral2/files/0x00030000000229a8-27.dat	upx
behavioral2/files/0x00030000000229a9-31.dat	upx
behavioral2/files/0x00030000000229aa-35.dat	upx
behavioral2/files/0x00030000000229ab-39.dat	upx
behavioral2/files/0x00030000000229ac-43.dat	upx
behavioral2/files/0x00030000000229ad-47.dat	upx
behavioral2/files/0x00030000000229ae-51.dat	upx
behavioral2/files/0x0003000000022923-61.dat	upx
behavioral2/files/0x0005000000022927-90.dat	upx
behavioral2/files/0x0004000000022942-84.dat	upx
behavioral2/files/0x0004000000022927-80.dat	upx
behavioral2/files/0x0003000000022944-94.dat	upx
behavioral2/files/0x0003000000022942-74.dat	upx
behavioral2/files/0x000700000002344f-70.dat	upx
behavioral2/files/0x0003000000022927-62.dat	upx
behavioral2/files/0x0003000000022947-112.dat	upx
behavioral2/files/0x0003000000022946-107.dat	upx
behavioral2/files/0x0004000000022944-106.dat	upx
behavioral2/files/0x0004000000022947-131.dat	upx
behavioral2/files/0x000300000002294a-127.dat	upx
behavioral2/files/0x0005000000022948-124.dat	upx
behavioral2/files/0x0006000000022948-135.dat	upx
behavioral2/files/0x000300000002294b-143.dat	upx
behavioral2/files/0x000400000002294a-139.dat	upx
behavioral2/files/0x000400000002294b-154.dat	upx
behavioral2/files/0x000500000002294a-150.dat	upx
behavioral2/files/0x0003000000022950-174.dat	upx
behavioral2/files/0x0003000000022951-175.dat	upx
behavioral2/files/0x000300000002294f-171.dat	upx
behavioral2/files/0x0003000000022952-179.dat	upx
behavioral2/files/0x0003000000022953-183.dat	upx
behavioral2/files/0x0004000000022951-190.dat	upx
behavioral2/files/0x0004000000022953-193.dat	upx
behavioral2/files/0x0003000000022955-197.dat	upx
behavioral2/files/0x0003000000022956-200.dat	upx
behavioral2/files/0x0003000000022957-202.dat	upx
behavioral2/files/0x0004000000022957-213.dat	upx
behavioral2/files/0x0003000000022958-209.dat	upx
behavioral2/files/0x0005000000022957-227.dat	upx
behavioral2/files/0x0004000000022958-221.dat	upx
behavioral2/files/0x000300000002295a-235.dat	upx
behavioral2/files/0x0004000000022959-242.dat	upx
behavioral2/files/0x000400000002295a-246.dat	upx
behavioral2/files/0x0005000000022956-217.dat	upx
behavioral2/files/0x0004000000022956-205.dat	upx
behavioral2/files/0x0005000000022959-250.dat	upx
behavioral2/files/0x000300000001fcd9-4969.dat	upx

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\Zombie.exe	f64d1ad6e897f119ee9c31e27b4c9610N.exe
File opened for modification	C:\Windows\SysWOW64\Zombie.exe	f64d1ad6e897f119ee9c31e27b4c9610N.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\cs\ReachFramework.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\1036\MSO.ACL.tmp	_RunTime.xml.exe
File created	C:\Program Files\Microsoft Office\root\Office16\MSWORD.OLB.tmp	Zombie.exe
File created	C:\Program Files\Java\jre-1.8\lib\deploy\messages_zh_TW.properties.tmp	Zombie.exe
File created	C:\Program Files\Java\jre-1.8\THIRDPARTYLICENSEREADME.txt.tmp	_RunTime.xml.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\OneNoteVL_KMS_Client-ul.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Retail-ul-oob.xrm-ms.tmp	_RunTime.xml.exe
File created	C:\Program Files\Microsoft Office\root\Office16\CSS7DATA0009.DLL.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\msoev.exe.tmp	Zombie.exe
File created	C:\Program Files\Common Files\System\msadc\adcjavas.inc.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Collections.NonGeneric.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\pt-BR\System.Xaml.resources.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\Java\jdk-1.8\legal\javafx\gstreamer.md.tmp	_RunTime.xml.exe
File created	C:\Program Files\Java\jre-1.8\bin\j2pkcs11.dll.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\PGOMESSAGES.XML.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\System.Security.Cryptography.Pkcs.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\ko\System.Xaml.resources.dll.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\POWERPNT_COL.HXC.tmp	Zombie.exe
File created	C:\Program Files\7-Zip\Lang\id.txt.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ink\de-DE\mshwLatin.dll.mui.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Runtime.Serialization.Xml.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\it\ReachFramework.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Java\jre-1.8\legal\jdk\mesa3d.md.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019VL_KMS_Client_AE-ul.xrm-ms.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Office.PowerPivot.ExcelAddIn.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Collections.Specialized.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\cs\System.Windows.Forms.Primitives.resources.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\Java\jdk-1.8\lib\sa-jdi.jar.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Retail-ul-phn.xrm-ms.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\SETLANG_COL.HXC.tmp	Zombie.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ink\zh-CN\tipresx.dll.mui.tmp	Zombie.exe
File created	C:\Program Files\Java\jdk-1.8\jre\bin\sawindbg.dll.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\lib\deploy\splash.gif.tmp	Zombie.exe
File opened for modification	C:\Program Files\Java\jre-1.8\legal\jdk\freebxml.md.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Retail-ul-phn.xrm-ms.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\es\UIAutomationClient.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\Java\jre-1.8\lib\ext\dnsns.jar.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdR_Retail-pl.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\FPA_f7\FA000000007.exe.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremDemoR_BypassTrial365-ppd.xrm-ms.tmp	_RunTime.xml.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\VisioProXC2RVL_MAKC2R-ppd.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\ospintl.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\db2v0801.xsl.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Runtime.InteropServices.JavaScript.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\ko\UIAutomationProvider.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessPipcDemoR_BypassTrial365-ul-oob.xrm-ms.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_SubTrial-ul-oob.xrm-ms.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\es\System.Windows.Forms.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\zh-Hant\PresentationUI.resources.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\Google\Chrome\Application\123.0.6312.123\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.sig.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\jfr.dll.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\Library\SOLVER\SOLVER.XLAM.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\api-ms-win-crt-environment-l1-1-0.dll.tmp	_RunTime.xml.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Text.Json.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Java\jre-1.8\lib\fonts\LucidaTypewriterBold.ttf.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Trial-ul-oob.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\ipsnld.xml.tmp	_RunTime.xml.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.IO.Compression.Brotli.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\zh-Hant\WindowsFormsIntegration.resources.dll.tmp	_RunTime.xml.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Common Files\System\Ole DB\sqlxmlx.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\de\System.Windows.Controls.Ribbon.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\zh-Hant\System.Xaml.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\7-Zip\Lang\vi.txt.tmp	_RunTime.xml.exe

System Location Discovery: System Language Discovery 1 TTPs 3 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	f64d1ad6e897f119ee9c31e27b4c9610N.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Zombie.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	_RunTime.xml.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 4840 wrote to memory of 1140	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	84
PID 4840 wrote to memory of 1140	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	84
PID 4840 wrote to memory of 1140	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	84
PID 4840 wrote to memory of 3248	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	85
PID 4840 wrote to memory of 3248	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	85
PID 4840 wrote to memory of 3248	4840	f64d1ad6e897f119ee9c31e27b4c9610N.exe	85

C:\Users\Admin\AppData\Local\Temp\f64d1ad6e897f119ee9c31e27b4c9610N.exe
"C:\Users\Admin\AppData\Local\Temp\f64d1ad6e897f119ee9c31e27b4c9610N.exe"
1⤵
- Drops file in System32 directory
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:4840
- C:\Windows\SysWOW64\Zombie.exe
  "C:\Windows\system32\Zombie.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:1140
- C:\Users\Admin\AppData\Local\Temp\_RunTime.xml.exe
  "_RunTime.xml.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:3248

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\$Recycle.Bin\S-1-5-21-1302416131-1437503476-2806442725-1000\desktop.ini.exe

Filesize
30KB

MD5
0cab4fa28b6ee1d97cff670f861bca93

SHA1
b765be0b9d2669a21dc7f0b5378f1cc550cee7ea

SHA256
cd914bafb50bfab8695a3c18d5d9cc4d006bed07e1ab969ef4774619853761c4

SHA512
39df65af0914fb51edaf9006722a675039a55eff9bcba07f39c4273caa7cc26f1a37fb1f87a5fe71ef96296dc69bf84a6a34c84b355cc10abb6f97dffa47f936

Download Submit
C:\$Recycle.Bin\S-1-5-21-1302416131-1437503476-2806442725-1000\desktop.ini.exe.tmp

Filesize
62KB

MD5
a449b6d0a4afe2bf0eb4f87d1892b228

SHA1
8dafa41f525b20021259e2390e1d01a113bbd99f

SHA256
6a6f7c6c515c5527fee385a0f41ad364bb6dfbfbd709446264a86844d6cd8b7d

SHA512
780ae4845b6d8c63855475575dc04d777142bab00f731b22bc8716ab651aec0fc573632cc366d86c02027541f827de58f89db0cc10eaceaff9a6ec35be397594

Download Submit
C:\Program Files\7-Zip\7-zip.chm.tmp

Filesize
143KB

MD5
b368dd6f1f80a56ff13f7f591b69f576

SHA1
35f16e96d99d6704546ea67bc25e4b15391b59c5

SHA256
0194f897cefb790f19a19c876ea09a2bb0bfe1f020a43427416f5e9a31b4fb02

SHA512
57a040c32548192f51e5fd08a7c9703b8a9a5fccdd42c7e5c045f30035f1ab1e468733ae1f5fd3c5eb8dd5867e662a32fb07518888fc890680c290a2adcaf8b6

Download Submit
C:\Program Files\7-Zip\7-zip.dll.tmp

Filesize
130KB

MD5
059b0842fc5298129209419e9f3058ac

SHA1
dcfbd18fda95b957cb66da9593c740c77afaebaa

SHA256
f1e118d59cbc28934817fc34b56bb62253ddbd463a29a77689c080648c7a81fd

SHA512
c51c5d92f8b14a6be61e4db1f6637988f6f2f47cd0d766ad28f965231f2eee7b8fa71477b5c3e9b1e1dbcf4fddf5445fe6f536fbf43b8de4748c60f39745e004

Download Submit
C:\Program Files\7-Zip\7-zip32.dll.tmp

Filesize
96KB

MD5
6f1551e7c676e690036d7a342fb15d88

SHA1
c7e79382eb908321a62571be46b94a83aedad4c9

SHA256
a691fece03ff09b80c35b96e02f77c527da145028e44aae8cf04bd7bbdcb93c4

SHA512
4559f27565e6fc5529ff7cb0796cafebcdf68b2fccd48cbcd610fe18184e56aed9c02d1c7afda81360f34a19f7a03cf67926d13f2352cc96f1098ff46f832117

Download Submit
C:\Program Files\7-Zip\7z.dll.tmp

Filesize
1.8MB

MD5
48177611fd4e38ce822a837988f8bb2a

SHA1
20cba9ccd3e06234ad30125ba8ef1e7056031e01

SHA256
521af0b72e9816f4e2c6365cf2a8735b39c24e1d7b7a2516b760afb0c365a95a

SHA512
c21dc4602354de65d3d0fc6b2903c00d9e9d0077bec486ce7f059673d3d4ac46460c229e687a594c877544398e4a5146ba500871acb0a83fbff271eac2134900

Download Submit
C:\Program Files\7-Zip\7z.exe.tmp

Filesize
575KB

MD5
1ac02dcbf9e2c6da0948b33abd8247b9

SHA1
8038076b8a306827348dc4b528f6405c1ec9de7d

SHA256
18cde508d3135e0a19dcf3bdff2f4401c123439c31e3b68f9cfbfe76a0f6d21c

SHA512
b16dd51e0dfd3d10370ad338185a25183fb24ae4adbfe042cee163f0ed2464de5b1ac345f82d1959bb8f199bde64d49af33fb44aa3385cd115614a46182e82a6

Download Submit
C:\Program Files\7-Zip\7z.sfx.tmp

Filesize
240KB

MD5
d78162658f83779d179e57ec0b1ea022

SHA1
733d5b67b24b9c4fb30797ad6b8bbfddfdd05673

SHA256
5f91c7986a628ddea303c074edfef8f7c6551aa7c63eca71465e83cc2c63c203

SHA512
c601e04f97697d1688bed6d76243e417160b96a26f9e03a398c41b9a4da213bfd1e03759d028b553e900c2fc78ec20e4269ea7b4de50cd41f948dd255cb3377b

Download Submit
C:\Program Files\7-Zip\7zCon.sfx.tmp

Filesize
219KB

MD5
c8a2fef656d5aed67b6351840794bc68

SHA1
7a155a9bcb8a7e06b5844ad8442bc99d6b7be007

SHA256
bfb57bf734df1e214700752709e19e0e5919ff7e15016c122584ab9532c72d14

SHA512
42a304666890f08692c46692b9633343899604b0da4de5fcc17fb425daf405c998208491934ef578dde52510f7e970e09739da0368b26c8ce8896a8edb4a50fb

Download Submit
C:\Program Files\7-Zip\7zFM.exe.tmp

Filesize
961KB

MD5
4ed4a1d8062ac656db9be44099cd4b62

SHA1
039d1f6c21efe89ef9daf8bb5fa02f266ed4c255

SHA256
a19c30c7b631971cb53f305e530a51a152104cd9d2bc94bce50c428267176547

SHA512
fcbc073f6d4889dda9a68d31e9badb7129d9ebe5e206b2424f574cc055c2a9c0b9a41279a575fa35cf3273425f1102e1601fbee5b6990745ccb3fea2ba2be0e4

Download Submit
C:\Program Files\7-Zip\7zG.exe.tmp

Filesize
715KB

MD5
fe9b9917aa8d3d621cfe92374a3f2966

SHA1
df2fc0bab2dbb55ed8af950906aa6929d9fe7112

SHA256
f8f4d6150fc9124350173411077dc37d25268f2753783c1f0e5dad53b1323f1f

SHA512
2700e9fb2d409fda7fdc3c20ef1070605e44190a99f9f2f7fa2b7e06aae3898f23f7bace0f18550347e77e9802aaae4d820043ed60385c195f6dbecb39eaa02d

Download Submit
C:\Program Files\7-Zip\Lang\af.txt.tmp

Filesize
41KB

MD5
14372b74f826911365eae22b7d4c777d

SHA1
2db83f8439900dd7bbbc43f89d5a5ddc6cbbe537

SHA256
95008e87ef8a795d0c470333a43fb648092025216b4517afe786fcaec73ac204

SHA512
c24a0bcee0524b454e58a2657ad891a555c0f2b33d62cf55f96e1be24327fe3ab23b4a83f6363177dfc98c2745f293ae40fdb236cac0a41fd8728f947a5fc68d

Download Submit
C:\Program Files\7-Zip\Lang\an.txt.tmp

Filesize
31KB

MD5
e182032fe41f77beedf2604b214aed98

SHA1
d51da3b5bc017ab40d792111be48541a5d6d2f22

SHA256
f02491ecb1c223d6ea3561eb5f7aebf44d454bd8605162f28ea185d7659bea1c

SHA512
dc603e7ec3219214cfcbcb44d4282392edecb159ae151dedfaf08b7fb642f8634eb5e507a6f16ab767c013e43e1a36ca9f6237436f600d2315aa08b82a6b31ce

Download Submit
C:\Program Files\7-Zip\Lang\ar.txt.tmp

Filesize
43KB

MD5
06d21d86443c0c6e7083092e5cc3bdd9

SHA1
72ae28f02fb6416c6e3d145d03c3b940e4f41800

SHA256
74185ef6f5f38dde9fb71f0abdb187d955c4636eda3e4b43e449df0109a9440b

SHA512
d1e874aa9f3336f89bc7a9489127bd3e92b799486efb5ed37e4ae51614a58a3a8759108889cbcce39b707f99c96be8b350639fc899a8af6d335a346855e3584c

Download Submit
C:\Program Files\7-Zip\Lang\ast.txt.tmp

Filesize
35KB

MD5
d0c40faeffa3e94f86cbf30eb18c4df3

SHA1
c4e3de9a9250ae712218b5dbb20eb27ac694df14

SHA256
10d092b224c1ed4d29e7c782575867b5877fd993107d8874c89391811123ad50

SHA512
f9be91e46b6b33ff5e50bc1e5cb82873914ec5f4d9aab40499022894ecea5194555ee05784552bf43b000cd4378b00ab9a690a4d3378f7d7c8d04dddbd40feb2

Download Submit
C:\Program Files\7-Zip\Lang\az.txt.tmp

Filesize
40KB

MD5
09174430672ce38e6be02b5d914f1c9f

SHA1
c086a54d28e7c937b58592803102b8317020cfc8

SHA256
6e96762823eed0b769ddb593048fa3a33cb95c67d584c66ddc0bd0e72b32890d

SHA512
b267e51735d163e2eecbe543534215d5135c951e3e85160d5dcd9f9954befd7eb8558796f3ca132b5f13d91b32f3ce0617a6649e04ae48b89150ac7452fba5a2

Download Submit
C:\Program Files\7-Zip\Lang\be.txt.tmp

Filesize
42KB

MD5
837dcdf8d75986f377f57c98d74a6bbe

SHA1
104fe2130ffaecf01eaa567287fb528d5324692d

SHA256
090424f7d9f271853b04c804294f412932d1ead75901cb07a8e3a87bfe193599

SHA512
3ec7cf21c00921bbc73974493a1b3901259419bc34a8860b3c4d08fbbe0e318698807583766eb88e3108f1c65c87585779f74f87b8abeaba6b3f125c51cf4322

Download Submit
C:\Program Files\7-Zip\Lang\bg.txt.tmp

Filesize
43KB

MD5
63e5370ac6462394f976a40ff9ec0d9d

SHA1
44c5d07b8dbdf975009bca9f3ce133e18ac1f056

SHA256
a2b91fdd41372308b166e88635bdf99fa0758221eb5c80362593072b9553fdfb

SHA512
5afa020fec51151bd7701234c5ed50a3e3f3d1c224d9b5afe513ef29ed75096955cf782b92d2a322642d119f94f3a62dc5d7c35ed409006f005f0d1563776252

Download Submit
C:\Program Files\7-Zip\Lang\bn.txt.tmp

Filesize
45KB

MD5
1c9e6c1b0f823dcd32f45139cf020963

SHA1
9fbc4013b7384fbc536aea1018f236d402e02e93

SHA256
4a64510670a0ed9effb374ded2ed9453cfb68ce933ccb58137258f5eee1502ca

SHA512
8bc526f8353c00685e037ba0a110b637745d66fd852200fe26149289293e196d5fe9e5e9ca5f834395cc9a3508f4227050ff6881f8c10d07e100b8a5e42a3074

Download Submit
C:\Program Files\7-Zip\Lang\ca.txt.tmp

Filesize
39KB

MD5
426a011d3213c309c1eb837f638b4f30

SHA1
11e994447148c6f68f3ca34a7b6e56e4889891d1

SHA256
d77eea345beae001df2a5372bab3d6166a18651ca2ac6c02308e094ab9f3bc8b

SHA512
767af8ad76d07ddc054d2f3ea971f09e7e61d52602e32572ab1b9158745ba043e81b77103c25d6186e7ec230a5ff59c507f224471f7c6ec215ba035ea0da2200

Download Submit
C:\Program Files\7-Zip\Lang\cy.txt.tmp

Filesize
36KB

MD5
0dc285121f459fef396a36d80026feaa

SHA1
fc2393e9e0776b30bdfe187e06dcee850eabe447

SHA256
eb67f019162c748298582ecb92e6d88b82f1318c5d13a4955ce06a87edc4c372

SHA512
67f62b5ec770609ec71dcf7dedd1ec9707bd64d25a8dc261e31e63888c5c842e866b9509a3437f6b5b29003b33c6cd9708778b742a58bcc9920cf628e88c415d

Download Submit
C:\Program Files\7-Zip\Lang\da.txt.tmp

Filesize
38KB

MD5
f77a4ba35ab10c300454f68365b2adf1

SHA1
dcdede76806117dfb9aa31044017b530de3a3a00

SHA256
518150dc7e9a16c393f78204293512d3fc36a0846deae26d66be59cb7e4beb4a

SHA512
97241a151bfa3332eba10606a774bfd7f367e532f8eab2f0b6e98534a7e8010336f05670f81968b6d72f95c9f590f4f273dd07c7298125678a0310d089e363e6

Download Submit
C:\Program Files\7-Zip\Lang\de.txt.tmp

Filesize
31KB

MD5
0d11737596573aafdcb3444d589368ee

SHA1
0954b2f9b8ff8cedd14dcb58765b273f908de707

SHA256
293bf5c9718fd73788c0f6be01250d3b37a5805a8c1a1f050a013350311ebcbd

SHA512
3002f56741f0fef966ab0fa794ecbd80c951d36683a9eae514ff3116bb0f91fb7db4ce23a1bad09f2af153072634a30c32e5bd3a5fc556baba9064e776872f95

Download Submit
C:\Program Files\7-Zip\Lang\eo.txt.tmp

Filesize
31KB

MD5
8a8dfc689eb3f95f2cf075459bb1cda5

SHA1
f32572afa6ad1515859e6dc806f82b34dff1becf

SHA256
d73103c9ff986cd136938241a4b7d501afd6f6e6af32ceea23cd0395d304240a

SHA512
7c6d3a1c16c4ce8f670b2708b9e7320e74785d49893996d9d6ab61ce2072b3452b42ab32afc6fddb2410a7edb7e5318a786230517b5823017a52b1563724f308

Download Submit
C:\Program Files\7-Zip\Lang\es.txt.tmp

Filesize
40KB

MD5
a7f04937936671b2bce1810a1aa24a98

SHA1
083e7c6742af728e44d49c3c66b5f7a1ed15b4d0

SHA256
adc180cf764a176f36dc486c6eb8be358d3d99e14746eddc67a8c908563a03cf

SHA512
03425fef84daca5f84f5fb3e1f0df8389ba6a76169dab8cdec823666b6e522d3ce0c735481c7c38b66656eb3fa2d387ceeb0621a6a868599cdac7b8dd5528a3a

Download Submit
C:\Program Files\7-Zip\Lang\et.txt.tmp

Filesize
38KB

MD5
d05237243463ce1eec2bb8752a4c9cc0

SHA1
06a8423ce40baefb655d7555798e3da4a1b52084

SHA256
1feba36d97d0a91d254b6cf356f79e272391508ecd25a667459eb3b9f70b9157

SHA512
0376fdd5a00879da9729170025f6b6bb9072be2923ae600cf0d99cef4e024dc80f01583f7438062347cef6ece5cc8440251fb537061fc6f2b2aae55d426031f3

Download Submit
C:\Program Files\7-Zip\Lang\eu.txt.tmp

Filesize
39KB

MD5
a8d1bd2c46a992d1d6aed30ca6b5d4cd

SHA1
68a8f297118c0a6582c28a0e370b623eafd9d9d8

SHA256
d669858f125c19ddb7a5104a537f0a98a20e411d5522bbe39592abba5b62e68e

SHA512
6b4abdec6d1885614a0e48961038504fda5c015e57beeda212e78f8cf8e2e8e5eb0d8acd11a14197a5b1496c8b4eca9fe1edda6d2fbd9546ef0c71e6c1e08964

Download Submit
C:\Program Files\7-Zip\Lang\ext.txt.tmp

Filesize
38KB

MD5
034537fcb6349ce9f0be8e33a10e0d29

SHA1
1bae7493a40d52dc5a5ead9911c1fdce586a96b0

SHA256
fef456800dfc88e2099efe34521d64d647c0b91df6f31ac50eefc36af74ac800

SHA512
f3159d9419bbf2fce9d9329051a898e85c0642a6b374e4a662b36b4d724957a05ad2b7bb9b0cfc0360527306d43d2cd844e293731a3ea4625fb8949956a7d7ca

Download Submit
C:\Program Files\7-Zip\Lang\fa.txt.tmp

Filesize
44KB

MD5
2fdc822cea3a4aea8ce0d01b622c4a67

SHA1
6885b4abc81e4faae71e53d9309f32cb811a8c73

SHA256
ce0661337e934dd04aa1807c194fdccf0b934362e14a1f17ee7c098a2b74db37

SHA512
1cf7a01adfb422f7c18d8a0402bddf28d13cb80a5b18526e917badd9b3b537bfbe112a1bf96f0d38a5ddc1cbc4b94732a34ed5ca8582c688c27a98f143299b30

Download Submit
C:\Program Files\7-Zip\Lang\fi.txt.tmp

Filesize
40KB

MD5
77185989bfed2d909e27a62cac92fdc4

SHA1
d963af8ea8cd6d6d87fc89932f7c4f01a59eb395

SHA256
4bd31070e601336b453d4c77dbaf6957617e85eb6000fe8a6a005baa7998b004

SHA512
b2bc908d73e343c222a867f8a59b02a803d869b6196e16250c0c7f829cad211c06e9b1169840255976b404b759063913002316ef4b93d373c206155fca36a53d

Download Submit
C:\Program Files\7-Zip\Lang\fr.txt.tmp

Filesize
40KB

MD5
1f8b0410f205fcef85b2505b09f8d611

SHA1
97f7d6cd1f4cbc82264c099137705a451fa25d82

SHA256
bc87db11efe7d39cd579e1f77233d96ec3eacb5267bb1c093adae14ba9e6bed7

SHA512
b68c3b89e58f804f49735ac22cfa81676d651959cd47cb9a2155d0006b4e6a81a68ef489d42c376dc557d2ae075bf95fb045c31c9624c7c2f3a73c82f9a4b155

Download Submit
C:\Program Files\7-Zip\Lang\he.txt.tmp

Filesize
42KB

MD5
a75a21032e59a0bc9d43c706b4ebe4a7

SHA1
8ff335299293715c745e22f3d38c976fac84f3c8

SHA256
8d86e899c88465abc37bec0ce676bf2f77025e2a0703bc59cd7153a190a94239

SHA512
7033c386f0e82a641d85a88237e14953a0b7d077a333f9370d418ecd2a1614bc23dfc14ab5c9516c5000909f3770d78dcc2475f1d5fcbbaf532a13c54228c669

Download Submit
C:\Program Files\7-Zip\Lang\hi.txt.tmp

Filesize
48KB

MD5
d0ad2551cb4ab613ad4da3c12edf11cc

SHA1
06abd1aac8c40d78614de3c206ab857f58236995

SHA256
5f6414f05f3561b3c4d7be67316444924b83eae65d17120f6ce86350737545ce

SHA512
f0f3a5378a15f0c62b0cbb0c1443b987f8e5442d65838b5905bd7b9909dab21f4f6e721c9ee487ec20bcffa7e9672cc2ffc78ebe012f8268d5bd9414da5bc215

Download Submit
C:\Program Files\7-Zip\Lang\hr.txt.tmp

Filesize
39KB

MD5
06ed5f65f0fbecb0dfbbc52d033a420c

SHA1
18fba7c797a19397fe239be47c1f8177a6b9dbc5

SHA256
577faf49e5741bf7257edf19dbcc43831ac750c740e91fc3cbd1ff98db231a6c

SHA512
32624ab3b2d96ba6975da917c0d47ab70b643bcf1ca0eead753c0c55a7e5c3b0a1204cf7e4c62d8940729e97a6c9c0908c4308218ed0a891eb5fd18bbe38b4d9

Download Submit
C:\Program Files\7-Zip\Lang\hu.txt.tmp

Filesize
41KB

MD5
bcdd7303de66b05038059cc548f03ca0

SHA1
56f8488136f6aeb1c8f5cec1269e0514f7999823

SHA256
9820c6fb69dee1b022e178c207f3cc5f46e8e8fc43d9aa28931bcdcbe26c2a35

SHA512
e458c2dfbfd8ef201b15b595381717ad8f99df91d9b32d5bb89a699329cc392495714c71d69e8f9e4a33bba5c52ebc2b014d0377f20c344ad21b046039541c46

Download Submit
C:\Program Files\7-Zip\Lang\hy.txt.tmp

Filesize
45KB

MD5
760fc88ceebd719d5174d28e7c713d51

SHA1
43689241daceb4c689943be6308460f744d6ebd1

SHA256
34ace40bb73c12e8bec94c0153b3f249436b4303d0703cb4dc43df9ca903933c

SHA512
1973947ba79fdfc8fd57cbc7f1a3c593c530090e30ce25b503de7b38393c01c9c3b677d6a47cc938a4e01562b12036cd58b3d98faeb61c01b558ce0254615b46

Download Submit
C:\Program Files\7-Zip\Lang\id.txt.tmp

Filesize
39KB

MD5
4941e1e16f030221f7b31ddc9ee8ecfb

SHA1
a16c4be2d580e96c4e66ae743d6af37f2843b460

SHA256
4f3f915f727f17806307177a86b5724c73ff9051656149795afac3c8ecc2e9df

SHA512
9127a27e24170be0b80328991d2bdbd561cf09d6fe8f99721bb2f5d74beabac27c68734ef52c62070ad9b50e08afbc1373010f768a38dafe1037096f2200a5ac

Download Submit
C:\Program Files\7-Zip\Lang\io.txt.tmp

Filesize
41KB

MD5
60f26d2b9c5f7e0976d45eb3d8a89a0f

SHA1
33c5c79bd60843f79ee6c47d9a3465872334e68b

SHA256
2dfa362bdf09b071d97691c902a8a51db744d61ed8fc3759327922a9cb76421c

SHA512
e2845472d27988762eaec1baca04e3a77c923daed764bacbd37b790b6456c4480cc27b557f5659addb0150a888d9c2a666f8cae7bfa799cbd014814d995a2f0c

Download Submit
C:\Program Files\7-Zip\Lang\is.txt.tmp

Filesize
39KB

MD5
dd115bae3e8a22eb216c0c5f22953032

SHA1
ca8d2962cd570442adcdaf55ac8489e527b6de30

SHA256
704452798de3764f5cef3e3b323b42bc4e5c7f379ff04951c637b0454cac9e10

SHA512
30ec9f4640b7f8391d1d80eb158e6b89cc3f197c0b36b130de811f7dab5b8bc29b313c62d404e22a4427fc7e4ade0217aa60d884adbf6089b765d6488ed09524

Download Submit
C:\Program Files\7-Zip\Lang\it.txt.tmp

Filesize
40KB

MD5
ee44ad4f8eaa31f533c10c7ba921b343

SHA1
81aecce17ad53cd72a8bcbb1175e190b2742d9e3

SHA256
6e41fa53c529d52b608d094e20f3b88ff6b6cb65ecf969a69f9e2edbc34283c0

SHA512
8ea5dec782c1f184489e3e2f60d9f9ce22d48d3bb5e22b5f6ee974865e0babea9cb752177c9c7770ecc7ac8825806a930297174d15b549e93b6369ccd43ea27c

Download Submit
C:\Program Files\7-Zip\Lang\ja.txt.tmp

Filesize
30KB

MD5
5f61d28955e761bcc8966f34d1efbe47

SHA1
2725923bb92b68af4ab56d84035ee0be3e386ea0

SHA256
1524bda3f1081fb136db8403d5a72b1b93748f281ebad00981116e496dfddb8a

SHA512
0910bd112527d78dee68a4ebf7d0bd94acb05c7b3220f83e4402a1650cbb00b798cb490aefbe6ad0e626a083469ee105d9a8e26e9054b19b9830a966d9933e22

Download Submit
C:\Program Files\7-Zip\Lang\ka.txt.tmp

Filesize
49KB

MD5
e1a699ecac17d3123fba7a70e8f4ae44

SHA1
385936de8d0be2bf4dfa5793f71b360bf305672c

SHA256
3344835dca4d315a80c2ef2f96b650743bb69f20a3602b903f13bb9f28f3d5ee

SHA512
b1459e751882da8583dd9f67196bb45e1815a941c180b614fda83622b6ff3be98f4abcf891ff2f1a43fc45b2844414520ed356875e13e4d5a3c0056bc967fbf5

Download Submit
C:\Program Files\7-Zip\Lang\kaa.txt.tmp

Filesize
39KB

MD5
2efbed8ca3375e9286cbe1418e6843e6

SHA1
461615afdd78e9fdc19463d90f11d289a86706f5

SHA256
a1d441fb6982fab12f75004e4983707534235bc477a05041cecb4d69b57cd192

SHA512
c01edbb462ff65926bb05eec49de7745dbaa9a756eb1ee385e30e9582c6d2887ea6dff4c4e6712b41782a4f6f8bbe9fd901b5e56884c02221fa0f5d2a6a889c8

Download Submit
C:\Program Files\7-Zip\Lang\kab.txt.tmp

Filesize
39KB

MD5
83e6a55c6c4799cad4b0a36fdaf762c3

SHA1
904f1629f6651ec07a237f2b8a4dcb83adc90dd7

SHA256
ce04cf0b401de4dc3bc1e1e566bd75264a2c939c9f99e7778b9f459c5b436983

SHA512
617f04ee4fdce32bb2cd19f8b57cc750325888407f65b63a2446d18eea175e58206b37746a3b71878dda43c4af1323f0900b89ae46c861ac050988134d92bb9e

Download Submit
C:\Program Files\7-Zip\Lang\kk.txt.tmp

Filesize
41KB

MD5
72265825b78edb69d2e26f5d238b011e

SHA1
d914e788f53057455ab69c3af565164ba3309203

SHA256
843cee614f1dc0a80916000af1dfac0960b8ee9cee04d39a99d2759093336416

SHA512
1a136a0798da64f3f4dda5737fb121bc018533af38701e6b9223b9749b6e89c7bd31c4c51a49d1d0e935d08f002c37cd7c8ac77e4533442b2c30dcfa8a58ab49

Download Submit
C:\Program Files\7-Zip\Lang\ko.txt.tmp

Filesize
41KB

MD5
1c027043f14a0f4f055a1db8425f0e57

SHA1
fd25d3ca771647789dfe9ac5d13a801e8f6bff6f

SHA256
931548afbd48e28f6cf474d273495259f61757757645c488dc01bf13d548f22b

SHA512
5db90471ecd1549e1309b45b4bf7301bddd03248af7fa6ff1f8945d9567895244f6ab88f0c8cb5ff81baa93a18e9b9593d5e972f5a3c8b76ec7eaa8764a101d9

Download Submit
C:\Program Files\7-Zip\Lang\ku-ckb.txt.tmp

Filesize
43KB

MD5
ab2364d3adca13382d118ee6f65be7af

SHA1
644d03d4de25055896c684b3e372c72bccc7b98a

SHA256
811c0683796473980a32609b3c79cf35a443ecde789009fa74d1d847e5d7466a

SHA512
9f91aba86a991b050b7186e6e2a0b6615fffc1a2ee5bc2eee7401c1b516d9cd7035f3510f705e9bba0df5fd167bca805449da4c2f77661dc771cfb23e3c7fb9d

Download Submit
C:\Program Files\7-Zip\Lang\lij.txt.tmp

Filesize
38KB

MD5
b2d34b0cb0807f206dbfd1cfd7776056

SHA1
eeab9a920a9b3a8e26b2dce8421b33390f8454ec

SHA256
e1611bc3d8c044a365f3446137d3562fdb7edc662c7212c931f3652937c6078f

SHA512
c05902864378ecb1e647e6204f65e1cb95319632eb8c9e06183c872241c1dfbf94c305581a36eb38452814a54f98a2786cdcbe141c2504dd368cead8822477bb

Download Submit
C:\Program Files\7-Zip\Lang\lv.txt.tmp

Filesize
36KB

MD5
416935819ff85fc0c247de7caa304f48

SHA1
a6295f50095c0c9e9120d0316844caa4053f78a7

SHA256
621cc160f32d9f91d51f43f2da12282753a80721bed8b8442f009e800cd09412

SHA512
afd68de48b9201db1d996aaa1f9df5abb12dd54017480826b3320a3b74d12e3125104ac021cccbab5b25b64a24d4ba8afaab3894f7135f2c3db3c1a4a50a2075

Download Submit
C:\Program Files\7-Zip\Lang\mk.txt.tmp

Filesize
39KB

MD5
194157e5ace3dfa41825d1b21a85bf9e

SHA1
b2f1f574a5b8f14aab62a86a8b248e5f881997bb

SHA256
e28f9ff3199500458bcf61e88628e2acd3af2300d0bb202b4b714f27a66e0713

SHA512
1faaab7cde1c979527a895fea30841a15f5eb9a7a5fee535744d7626503cb93ccebb6092a3d577964bfa10e88c089829eea76920d83d6a9bc1448f42dfa17f31

Download Submit
C:\Program Files\7-Zip\Lang\mn.txt.tmp

Filesize
39KB

MD5
3cff810a624163ce5ef9fe49c7fee3fe

SHA1
41dbd422e171464ad50b77b86b3a94432160adf2

SHA256
97ef2118fc279a966f86349f582de72196019b939f854e9a356b4a63fd14f194

SHA512
dfbf0d1c5b30e150586b78c561ae47165342b05f4cdc6fef284522c45444aabf0041fff07518492ecfaffb5b23d7fbc18e943806b274135f18f872012316dce0

Download Submit
C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\ja\UIAutomationProvider.resources.dll.tmp

Filesize
45KB

MD5
bde5be7cbca4a0f955a2101dc9153050

SHA1
ce8fd2aa570ee11b42e4fb8953ba0c9e7e57e102

SHA256
eb918e4d759146a28d4620d9201e3e2805d05bea53a9079773e9c809e136e198

SHA512
291f3017a473bcbad63d34b72dc80c59289879c80b674e09cd81fe604d713775023e90ca87c0acce842001de4d4fd6ae5b53c1cc9fde1e490d404dbf6dc7d992

Download Submit
C:\Users\Admin\AppData\Local\Temp\_RunTime.xml.exe

Filesize
31KB

MD5
20e6160395bb94aaf90e6cf8efeb2abc

SHA1
1db89c2f2be5d204bf978a1bcf4f4f442769e9af

SHA256
aa0fa9335c59e9c95e1910418f41f7368fd53556f3cc7953097b3faeb8d9a4ea

SHA512
2d21bc424ba242343d0c1f35dd337159d2e034438d3f6eb95dfc8d2553723ab676f61c14371d1e5d1ede65e031fe6c789122a25fd668cba2be8af61b3b45354d

Download Submit
C:\Windows\SysWOW64\Zombie.exe

Filesize
30KB

MD5
29c0e842000e475e0e14dcbeda371f48

SHA1
7c616829cfaff0470a4a9181d218ab2f4acb95aa

SHA256
02bed5f683aab94e895ede6f5dd32aaeb6001da92a3cc00c938712eaff439721

SHA512
7ca0e7e09971c8fd7912061a74301d9dad50f2dab374315f63f36f1fa9d3ace8b5e82cff0921d6f9379d417c3136061e3110c04068cacad06723427425be38e1

Download Submit
memory/1140-12-0x0000000000400000-0x000000000040A000-memory.dmp

Filesize
40KB

Download
memory/4840-0-0x0000000000400000-0x000000000040A000-memory.dmp

Filesize
40KB

Download