909e2e2472c7e00d2ddae438381a51479cf9bf20ab22070cb47159568a14b45e

Analysis

max time kernel
143s
max time network
143s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
18/08/2024, 06:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a5caf3b0cbe6c65bb82783ec28ce931c_JaffaCakes118.html
Size

21KB
MD5

a5caf3b0cbe6c65bb82783ec28ce931c
SHA1

0512c2ec1b9b3ae9f3c7aaec4d9c453c152c8774
SHA256

909e2e2472c7e00d2ddae438381a51479cf9bf20ab22070cb47159568a14b45e
SHA512

fb6a6ca8c8ecf6c7630564ebe076ef82bfe009718704c83ee8b86c44e646d520a3fd002f1715bc016c5214a5e90ca2eb76e6a0dde6a6f6252a3d6decdf9c0a9e
SSDEEP

384:xl1cqqLg4bjHDQGjJKmT2Pgpa1jijxBymFzcT9le2V:xTcprsUzFzcTj

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	IEXPLORE.EXE

Modifies Internet Explorer settings 1 TTPs 49 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "430125736"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\google.com\Total = "25"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{3F48C091-5D2E-11EF-AFFE-C20DC8CB8E9E} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.google.com\ = "25"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000062974e5b5f804e45b98349be16bffb7800000000020000000000106600000001000020000000cbfbab42d359dfb4ae619b9b5c85591bb75cde79219bd2df4ba90e51788c3dd4000000000e8000000002000020000000323b7d52346518b18303884089e221f5062e7c878d04608cb1bd4d93bea4ccc52000000040c6282d39fd0bf585a089638854ba0714843550ee097de0f8d026e361a5dd92400000001ba724776c5835cf77396f16430e1593058a6147f010692d44a19bae56a36cda93513946fb651837ef4fbd031eedb60a5453c6cd8c6c4f1a5260eaee81712bca	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 201b381a3bf1da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\google.com	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\google.com\NumberOfSubdomains = "1"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.google.com	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "25"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2958949473-3205530200-1453100116-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2956	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2956	iexplore.exe
2956	iexplore.exe
2072	IEXPLORE.EXE
2072	IEXPLORE.EXE
2072	IEXPLORE.EXE
2072	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2956 wrote to memory of 2072	2956	iexplore.exe	31
PID 2956 wrote to memory of 2072	2956	iexplore.exe	31
PID 2956 wrote to memory of 2072	2956	iexplore.exe	31
PID 2956 wrote to memory of 2072	2956	iexplore.exe	31

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5caf3b0cbe6c65bb82783ec28ce931c_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2956
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2956 CREDAT:275457 /prefetch:2
  2⤵
  - System Location Discovery: System Language Discovery
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2072

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F59A01A8B782D93EA6991BC172CEFFB1

Filesize
867B

MD5
c5dfb849ca051355ee2dba1ac33eb028

SHA1
d69b561148f01c77c54578c10926df5b856976ad

SHA256
cbb522d7b7f127ad6a0113865bdf1cd4102e7d0759af635a7cf4720dc963c53b

SHA512
88289cdd2c2dd1f5f4c13ab2cf9bc601fc634b5945309bedf9fc5b96bf21697b4cd6da2f383497825e02272816befbac4f44955282ffbbd4dd0ddc52281082da

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
252B

MD5
ffa51096cb9fbeed56df64131e5cb13e

SHA1
16ed82882f185e65ecf2f462b96a4f802835389a

SHA256
5a715d0c12002793431b62717227bba30580bd2f50ff585b26b437729b7f01d3

SHA512
ce919810caa1f521b2ce1c0108fc5a544c3c66b4e5183b7633dfd76d559d8e9b3ebe172baff981754f3b0c0e2dcad878c8e184abd816d5cc857327cab5d56c26

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1936e3e0179e51fb24854b868e46aa05

SHA1
404df0adf40872e98d78e18cba65cf0fb00db6c9

SHA256
46e75486c0f78ed59b1dfcf32e44be64d3da1257532f20753c5509305000ba37

SHA512
3c4b37f3305372b604dabc4bffc2714a253337c227c38adb11588858fa72a174a64eda0a5e2be1065fdb3811ccfcfa8eaa25eae173bd953cd4aa8cc045bdf719

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e1f5468bb82c295d9ba6622a78b9e71a

SHA1
303012a23e45f5711b6bec32bd9552e53bfc0ae9

SHA256
e325c2ee0e436c300a466753262302ecfa2d69df677ae848da492f2ed1d4c460

SHA512
c951c69697d425e52bf84437751cbd2c65ad9b79eafdc8eb8dad0f4949eedc09fe6f7d303ea411562181fa178b527bedd55930a4719612e167d24cb2c2316ab1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
417559c91909f923e4ced43e6923d233

SHA1
9757401abbef6058fc55f20e5cbb4b8c2c2febca

SHA256
ce0ca7c1339d672d5950700cbf1c6132f76f5b19bb35c8ab52bf32f3003e10c3

SHA512
ee900199f23731af4901d10bdb6bf7f15107e1fe54258ae855b982df7c4cb6d9d780ef13bb0facad5a63a79ddf1c1c5f78f3eeb5564f0b8d29ff92700299c389

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
bb40a9afcf600a6d10fa2e1783e5646c

SHA1
8aa41c41570e6c4c213af295ab1c77137037b4ae

SHA256
39d7e8d9382ea37894ada88aca1ac2af26e16304a6074875c8cc5889df37afbf

SHA512
46fdefda65e6248c4fbb770900a4ea0bd937adadd42757b36139b836fab8558f073770a10a76b4b7463ea02a6d1031adc16ddb8f4c778152d19dfd2393a1dceb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
088ca81817bd7b71e8f3baaf47195f1d

SHA1
77c324d132f04822e669e1aa8184e7759bab32ba

SHA256
5daf5513bf89de7ebe7f3cde4d4e15cb5212231df992d3be5121b7aaa9466f77

SHA512
5fe8a58ce477f157e164d7e58495c2980c9c97da985519d67e126d55c52e6385e0bc70b9e7fd0628aa074916321b822c8cb08a5ff72110f60160a0d23b1efae2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
582388fd501be0ab3dbb8aeeea1a2040

SHA1
d457e3049b653d6cc18494edd014da6670711c82

SHA256
22c6a6b6f68bfee9edbaee2f8895ec016fa12b03d577151bfc021c7b15b10b4c

SHA512
65482b83366c6921583899f35f390c89f5af409c55924b415e998afd8c77372516774b58f7d9fb9acffebc6e5199369ffc7aad080e7130460d225a75d10ba342

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
47e563a1eadfefb83665cbea4d9da2a3

SHA1
7d24cdde55082c1496962be07b0ee5ff3c894289

SHA256
eb68dd2c06e4821cf799c6ba9bde7f54d08a6ff0f7bb1cc21a0d5670458aa815

SHA512
c205ad8d147d07d43763ef54c276a6f39c0b43d08a7a93751f38bb42c48a89a591042ced828c494097d1c33c48b4ce0a5e1481997560ef1c8b3436e1aed7f428

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
62607fe99d7d3350e3c7e70bf48681fe

SHA1
3f38e0bcf339bc38743ed1772b708b9bc04801bb

SHA256
5cd88f1fe8eb363def142dcd36de6e13d722ee8b7dabbdc3f41792757afcd12a

SHA512
0523f7d4ecefb11118d8a3ae10f2dab650c59f26b75262e50924dd11b95d13d6dff2aed5591abc6bd08f29c9434241ee1601526a39bc2279210800d5602dc754

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0214e1d146ebe258b31d9f1830f6a297

SHA1
fe371a19438083853ab370ebd256a2fab4a3ae2e

SHA256
63fe5dc4654c29a1d4deb55433e221b0e4ae8604e3abe5f3029196f27b77c00c

SHA512
d97affc8ae706cea42a7ca239d8260e265be94016b406496f578e5bf5cda285da70997c536e0bd0d68c086f5ba080c9be6be5df447f6b9f28282b87be13f79b6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
3cc9f129eb803b98ce590dd27f923051

SHA1
5b636bc7aabb45022097b15e6719fec8bbf55a45

SHA256
87c3cf57438cf5264b207a1f705b36233bffc3b850ee7fb7bbcf8e65acc89078

SHA512
dc497480ab54e6eab5844ecb0676c27ec24e91d5ec5a25c6c39429d9b3210854d2a697953c2f441fd1ffd19ca40642e37c63f86e07b580a8ea717fce1161b7b2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
255d84bc054d71ccd4a7b636547769a3

SHA1
c84e4a7e61687255feb19f6da6d1b7f6f83b616b

SHA256
b092d35bbc0cf30af312d49d443114a537a6fcfae26833930607d732b93d3ac0

SHA512
55a08b3e36f58cafa0e992053764e57eb0215c40a220b39d1f231b9607869fd90402fb41537f39fad0f1b09b1903091876afccbc27d222645c15bc9dca63dd51

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5379a7a9f6420b37ee77c6f1a4aa47fa

SHA1
5320cda4230a072d6c75289136dbea1c85f6075f

SHA256
ba8891c7bbaebba0dcc12e6e245977de302f88dc39eb07a56c6baf66ea12fb11

SHA512
199170c27a3d56504cc57d8d2195fe9c73dd464e5634e57dc3c741c703ad1e3360b0c5b79819de5252296fcb1d7f3d3cc0d8150b25a98bcc4dd0024d5504d14e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e52d7c3a4ea6b69f324c91c528d16518

SHA1
9e0718602b21a1ffce9acc845823b4d9739ddeed

SHA256
51cad63d4bbc107539afb73cae2fa25651d98ccdb6af5e2ddf3a80ccc3c24ba9

SHA512
3428b020c7de1b4c71d2bdc0200dd64a2d97db8a74c8f37dfebe68dfb28d47f32064805cda57eeb60c8616a2d636755c3d2a05226c60a7f791737b72c4cdc128

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
dfe517f619e282303a7de35133f3449c

SHA1
4b33c9c8bbfee601ef8c6c825d83f649db52bd1e

SHA256
6d66e00fd5580e92be13e2678c766e05a55e4f7ca3ba34e05f8c0f5c9c0d77f8

SHA512
0efecd015ea8f6130aef77ef7fc48b815244d44a40fa936d15b97ecab55012fc853aec028a574deb7fb745ebd8cc7282663cd195b0b4c91482a949900fa4e3af

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f299c6320dbc9f52522695aff6e021e3

SHA1
e414c8cbd205f7ba11d80e929bb7fb35a0116220

SHA256
c899727d122bdd0899aca7ab7830992f243cdfaae32d1418044c0d2d309afcaa

SHA512
11177785c25aee0b089608e9b54c13ce317f88715c30d9966d6ce37aae1b9b8b82226be7ffb3f2e6016157b6342b3b137bc296e8aaa3a936814777f4be031665

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e6da5cb1f42718a74936649e608f4504

SHA1
e5639c7c409f9d5d8c0013a72cbdb8dceee1ba60

SHA256
1c8bef775b503c0ff2263c8d74360b8e7cc75d0b81e6709a09bce9b93aa51fe1

SHA512
4f608b5e1492b15c5dd7afdc422ee571595a1b7608d11bd5e640f13fd64269ea19567d06d35bce46843a8bd431f58b9b11e3fed4a747eb1bb132752255929038

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0808d20a96eabed0c4241c6ab005d5c8

SHA1
44b75abd2e1bee61a3291c3472d6bf0b84bf9e43

SHA256
dc156fc652b52f0df3ebae2f78a7981b0f0c620d56c3eedc1a55dcb349459df4

SHA512
061a6d340adaf16e23dbc59e30ec77852445a48a61312459138e39c60008496cb989baa4028fb2c50b32f5c05150fa04d086f7f485245c93fcb39456a5f90d75

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
34114fbdcc347c3746a6c6097d6a2815

SHA1
5b5495d37990f446c8203a8330d6e011d81a9043

SHA256
f1988b39ef473e10fe54d2a6931c3a2731516a252efcbe4ff206240db306c4e4

SHA512
cafdf6b1dc4dbc836d65a0e1d1edd99be4c26ec2dd2b487af3562e412ce09414f51e2b38d896044c794857ee6a9809e2a3702184484d47fa282504b21eed3c34

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7de9685e25573a74a7c7675e6f6b16ff

SHA1
7be2ae35cb2c944b36c505d7610b07cc8792b28c

SHA256
569c5f5f4e723c99b1d504568451dd48ce77478938aed122e2d6a36f7a2bff12

SHA512
e7047c3ab77d4a83ed778b99e59e1591533b6a6982c07ec62dbe29e27a4abf93e06547ee18857dce8a138dfef226461e2265eb25def9b2545017ddfc70327c6f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c8ef56f85ea9c9c01e78fe57296cf7d9

SHA1
ef673a953dd19a9d1dc29a863518efaa7515b3a7

SHA256
fd538bedbb47c98eb7c543f5316cda62958df0a8ef2c1fc6fbc5f353235a199f

SHA512
e142f76c9c5a1bd7ce0a97fd66ac908d47d99fc55a1b610dc97c37be33b899b69624a84e60aaf12b0510cd3b3199e47c6a533f5c215fe2aecb7e571ff6c6c1ae

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9147d683d3f172aa085737af0ecce17a

SHA1
bbaf57c6344361bce83d41c65fbee5a639ddfc50

SHA256
dd04acae5ad2fe3c0f36c4b6ef8821e6b3165d26b0d8d220b48ccb2f1722ae09

SHA512
445f6572ed5b0f38e1ca8c6f769b2cffb592ae494b42bc736fb556e0ec9e95cc4e368127468596fba9baf93dbbc1275b6082e32ea14931561b2f07aa370d6258

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
620cd41fe4c22d583d91f9bcd85d29ac

SHA1
264e9cc0c6d5e244593a83746488efa93e5360f7

SHA256
5884b04b1e3165dd193b1d1dc34882c1df0380dd0d4ad0f5fbfe6b014757aac3

SHA512
1a4d3e7caa78f9039ce640f3bb25a19f0f17a26e1c41f04deab63e66402d12d55c553dcce443f097e90903af54b5b06b2616e9a0afaa218afdfb7d5bf75e95b5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5a12fd3013180a2e15d2d1d27152b3ce

SHA1
df9694fd01b44e6f81ecc187e878e386c12f697c

SHA256
53c6d9be54fd677e0d2db5fae5ebcfcd41a7638c0a111d6cc44862cb83de1824

SHA512
1048ba069cee2251f82d43b5dffdee96894e75872421684f00aac42b16f17d36157869fb3076d15d0f03a510b246443d70ba5288e260316aeb5cc420f1c90500

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
38896382d31ef2fdaf7b17b027a97b67

SHA1
6381516ebba6466ae016e847fd91cf6dac323297

SHA256
8949af94cae57d5a2621d5c120bcd1ff30f44331ff4771e9339470b576328c09

SHA512
a6705c698d07398bcb7ce61efdda843fa0cd7fef63965191f2ada61fb7ffbcddc29b18381ce7da4c24dcaab5c093123d6122061a99ed051b8e9a662dadd83f9b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7deb075a6c6bd6ccc7e9d51a811c61fb

SHA1
95f1dbb2b409e4991890f2b7f83c5405182243c8

SHA256
73ff1ebab1bf96096d79444903a4af46b8e04276261b283de03911257b6c7105

SHA512
f1eb79d89872ab6ecec3ca8ece6d4cb49d9fe2b61bb43fc78fc9a386d314659f3cee220311e071bd0056c397750999dd68a95eb3ba58743f8c99348bbc6934b6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
64822fa4fbb87a5052faff01c312c350

SHA1
ad697909213ba06a2e3de7f8ac8d1582d1642455

SHA256
d5dc573923ab774b8d6a854d12469a6104bcd354e6e7cf320184c947132149c3

SHA512
4c8ee311c19faf604800dfc1efdc8979d2806e3b95e03f2ae650245eecc6d7227f099f0a8d03625f87ae2db35e3b6e116a669ffb31b7de3c1292c5027446bf7d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
11b2b2113bce706336d0ce0ad6209beb

SHA1
0f3e8f0ef3cb90da0ca9137ca8db9b7d29f8a178

SHA256
1cf7274c7eca665cdbe6dd029ee3a07438d921552854974a943c8f51b844ab44

SHA512
774b58fe56b60862ab24a93ef8abd28ee4012eccdd121562f517e9dc12f37ab64d2650de200bc0a051df131220dbf5edc2e8e8fa85b6a319d7edbb46ad2a933c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
16f058726e1d0c8878aa915690c60df1

SHA1
732f29d8486e85f14a1e65e273f09f7200c5028e

SHA256
20e1a07556caab359734b5e0fb56f0b8453243b925232f19725221e359cfe350

SHA512
28789d80a8629a63e3fb204af351e536f0c940c31344f8842f00509f7e9ce640217b8673a21fdd5719623f815764e8522571cc34568fe25ee049c8ac2882df89

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
980b2a97b31815151ecba602c310bfdf

SHA1
7492bb9e02423d8527a3ddfdabdb7f2ed34e1ddb

SHA256
45066b9961ebda966ec9c5438d14c9386e6677595988635117feacf86d33b8ef

SHA512
70940bca5db39ed31c56e11b9e5356c6da40ec74fd8be0c138b019660b0ec4779957450dbc2fd8a68b75bf9d6c1a924de7ad4c9fc0dbd8af0c47f51072da7480

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6e52aa43a15badc0286db9125eb9a7cf

SHA1
b392de192ade3c0d4fb3e0e73639e218deba4f67

SHA256
853311c7fe70a8529d40384fa9c042ef4639b6175674e40bf24cb4fd8ab84f04

SHA512
f5cf58ff47ffc610c210b4c70fe52ba303f7c208f08eac036509252398a07cc8fcc6b397d44c9de691231e11fa1a7975559ea46d4649381fb5e0e6d7b56deecf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fd04490bfdb22906d3f05a0b9951d3c0

SHA1
0c6e37540cf0c49d65d2650d6d68e797f6838bf3

SHA256
3ad475492fd71ce3ac04eca1e49a30f3d9a962556caf1af1d1e0dde9b8675b22

SHA512
6b554b0a2f6da898aace95eaf3d83b2ee9a16f404211333a31aefd2bc22e76a0ed47d74d77f60638ffc88a75937d916c49e5942dbea6a41a653d2353ca6f610c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8210144c64246c98a20afb5281415943

SHA1
9becdbd22fd2c9812d7a994322596f05e09aa6aa

SHA256
4e9a020b69088191f6db54aa4d60b842fd75bddb2262d88a9c7c1c254c25bd69

SHA512
a6c4ea8c09d40f59ed33fdc170f4f5cd6adae76feaceee526f3bc95b57aff345f85cfc669956477c457d68f96c4a2e68684ad45305a0c3c4bb2b51f0ca779d38

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
be352a3e64bba16a24938455808de84e

SHA1
a89f8d7361fd16276cfb1d40f98cf56bb7759048

SHA256
ce84607eb70098ce599f39cf3cb9703c032200a196013c9e01d38a4c388fac15

SHA512
369a815e0f5d7014c1c48de4c8a178041adfa1c528e075fbf6b4c81cf92b9a1d09b51b644c203705eca8ef6f876c48ffb2d97cd5a3c7d365eb4213323c377d29

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5d8e686bbefdcc2de0de72693bddf789

SHA1
5408e0cf403ce40addaa319d0463ff379cf233f9

SHA256
7ce41c5446926af69160e716f0c864c56b5724d9df473ff90477081e78d69738

SHA512
1ec804ebff4edc7c72319a1673ffcac3a6333430730feba8ce4ca0fcf1a414217127c13a79b23e226a909eb0601e29ac3029a1c1b189ee34ae9ea2a75250a629

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
80ae4b5616b54b75bc50ca826f8b2340

SHA1
a5bcef26c5de8453d837719c6188455f310b9881

SHA256
42537f3b9a4da921a84c46f8659ac268960bc4dc24e77e97b8ceb4a76efd1d64

SHA512
568c510c938a9d81df4954ff283b7f1ed2f33b97cc08d307ddd5f842a621e48b0260093687cdcb739a8e71ac21db8d617d1bc9e7d97fd5d3bdef1bbb77af63a9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c87deaa2e52c77ea1f5c35cec6665236

SHA1
611f4007e7a1730fd7c7df7793c8e2548192af0f

SHA256
3d36986b374cdb707587cd645e859b4dee5c7a0eb56adfc5ca7b0de5c7684df7

SHA512
a10e23cf63208b3ecb7ff7479d85a27fcab274300d35840b3da3cc359deb85d824d6f5e8c14a416d9e609f8e84f51a3d3a4734354a2ed6ede7c0b174b443e1f8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
39fd675f2984a2b38dade592d4c43a73

SHA1
8ce39c5066f25856c6c25dc23a832c67fbfe32ed

SHA256
6c6b9878dabdb4fff52085d925a51fbe5ee005533edb3a6157ac477bcfe71b1e

SHA512
64455fe4a0a2a3c405a8d254e56f1c0b71556a5cb8626b35df0febf02ed0ff76f6856d1d46f1f943a7fb44dc617b60dcc275a01e92064816de429c265135bcbc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
765a06b4fce5b1ee205d712fa3ee2d1f

SHA1
9f1d2039c35e8c4058c7a7392ac316fe9af4a76a

SHA256
b821f28ea2e7c5e7a926681720e9369cb4c6975d7558966a8d9023e6d0dd1332

SHA512
124bff5111cf6b0e4e0390841221805ae0ae91e760c40a744b87ede0e5e0e70c4ed05f30b78fa5937efa1c5f9bffba05e83c617a8562e90be51bea00f9789b7b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f39fd02fa21ed112bcb1564e5f9b6e9b

SHA1
3cfe3ad4d1ed479bbc0e1a73104662b2cec233f9

SHA256
2c29942903c2b8f566938a01bf97e30205f6ea96365c52f922330cafd058669c

SHA512
86eab0ffd1c24f12e3934f131991a88c468bef80b6f013ec93f88d21d89f2114bed36e8ec556fbb787068945dafb83eabddbda4bc53e05de0313c9a15aa74cf5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
773c10d942f521c76643a516ace4d256

SHA1
9de73113ec070e7e02e7ca629f1ca7eaa3e1530c

SHA256
29ea2edcc04c9469dbc5f315061086d9e451fb8c29d85ecf7a19189cd68bdf72

SHA512
982b301eff09d44abf5753e6037adf21177c6d575fc28acd584fb25ae49b614478c8b2ad60aac25a1eda9b0e1c6cc08f984a21ce79c9706aa5344df39493be56

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
92b633823064f74f95ce38b5b90a0abd

SHA1
3e7207871719c616fa98118425dd88b6310b03ab

SHA256
a13357bb2d3492731b42ce022447ce3bf5b17d6a0cf8f132514be400cbd5dfdc

SHA512
adc9675fa92760da5f5cc4d222e19970c1c9ec814f32365b2e1806e93b287f8e654a69af0c01cb3215e9c13edb2b03fe988ad566e30d7c24ff735fa0d2dc3d0d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2514e8aaa997d852936765156856d538

SHA1
29165cb797582197b89665ae48c1a878bd322f21

SHA256
886324183db8a4fde8d2e72262f9820a77e0b296659ce84d122524ec62527eb5

SHA512
4562e6282d2dcb7d880c4b12b285f6ca58a93e9bf7165bd2d979bf03ac2a401eca63e344879f308c9b84a8be6d9a1f75daed0fdda328408c3f6296300c285fc9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9e207d389a8d2be5b7d079fd9a3801e0

SHA1
1f3ff528aad47d76401fb486f434f3735cd5c363

SHA256
ba1d8c7d1b39f8e8792249c605aa27c2055a8767207cf8a1e7b67afcfc7aeead

SHA512
477aa0b21c1d2629303591b591d4d30df0e3882cab408c7f9572aaec93b3b4ef9bffaff6fe94c436a330453722b4f96407debe33ed52e1ad3fbc4eeb4071fbc0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
242B

MD5
13266d95b5700ceaef9e3ac1105dcff7

SHA1
476fe71ba00aa2eab45296fa1842eebd930e87dd

SHA256
d1a2f876d4d91a3768b7c2fdc1b2bc2ded9dcfc281f759c478d240a9e112e134

SHA512
b67234782b4902c0ec031bd5281eb5a52b26457c4b9c9dc7d3eb612bffecc7097fe28fa307f6d3c5fc22415eed2bcf8145cea3bfa678bc3af62071376ab87510

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2UK8J8K8\recaptcha__en[1].js

Filesize
531KB

MD5
1d96c92a257d170cba9e96057042088e

SHA1
70c323e5d1fc37d0839b3643c0b3825b1fc554f1

SHA256
e96a5e1e04ee3d7ffd8118f853ec2c0bcbf73b571cfa1c710238557baf5dd896

SHA512
a0fe722f29a7794398b315d9b6bec9e19fc478d54f53a2c14dd0d02e6071d6024d55e62bc7cf8543f2267fb96c352917ef4a2fdc5286f7997c8a5dc97519ee99

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X761FPIN\styles__ltr[1].css

Filesize
55KB

MD5
4adccf70587477c74e2fcd636e4ec895

SHA1
af63034901c98e2d93faa7737f9c8f52e302d88b

SHA256
0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

SHA512
d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabFD16.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarFDB5.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit