5432a7db786a1c1819bd14366bdd3d7691888b8d3ee5363c4cf88ab6d8f1c71b

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
10/10/2024, 04:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Size

19.8MB
MD5

b095aa48891654453ef741daf4e26961
SHA1

3dd198bc166ace35827769de93a26c81c9d13ac7
SHA256

5432a7db786a1c1819bd14366bdd3d7691888b8d3ee5363c4cf88ab6d8f1c71b
SHA512

62f0208123a7897a42d26ed42201a5c4a8b144d17c3f4c330a2e4fcd8dcc663e0c770813fb4d9d15c9596773a6373be388d12d65f3825dd881ae5791709d64ba
SSDEEP

393216:hpRg/CHmIAeoMYRtMYukLCJY0M+64BbU65lDJdfJjHdxtx7NXHPU1apZLdpxl:h4/dIAIYDMjkOJYY645XDVj9bRhHM1YP

Score

4^/10

discovery

Malware Config

Signatures

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\Pane.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\Slider.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\fat32format.exe	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\Qt5Qml.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\Qt5QmlWorkerScript.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\BusyIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\private\GaussianMaskedBlur.qmlc	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\Qt5Svg.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\BusyIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\Blend.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\InnerShadow.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\GroupBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\SplitView.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\RectangularGlow.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Window.2\qmldir	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\MenuBar.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\RangeSlider.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\ToolTip.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\SwitchIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\BusyIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\Qt5QuickTemplates2.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\Qt5WinExtras.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\plugins.qmltypes	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\ComboBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\DialogButtonBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\Label.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\SwitchDelegate.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\libcrypto-1_1.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\styles\qwindowsvistastyle.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Action.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\ScrollView.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\private\FastInnerShadow.qmlc	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\ComboBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\ItemDelegate.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\qmldir	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\Desaturate.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\LevelAdjust.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\private\GaussianMaskedBlur.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\RadioDelegate.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\MenuBar.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\DialogButtonBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\StackView.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\libstdc++-6.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\ToolSeparator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\ScrollBar.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\GroupBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\ToolTip.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\Switch.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\SwitchIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\ToolBar.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\Dialog.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\qtquickcontrols2fusionstyleplugin.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Dial.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\qmldir	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Universal\Label.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Imagine\ComboBox.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Switch.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Material\ApplicationWindow.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\BusyIndicator.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtQuick\Controls.2\Fusion\MenuBarItem.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\QtGraphicalEffects\ZoomBlur.qml	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\iconengines\qsvgicon.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\libgcc_s_dw2-1.dll	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
File created	C:\Program Files (x86)\Unraid USB Creator\unraid-usb-creator.exe	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe

Executes dropped EXE 1 IoCs

pid	Process
1004	unraid-usb-creator.exe

Loads dropped DLL 15 IoCs

pid	Process
3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe
1004	unraid-usb-creator.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 2 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	unraid-usb-creator.exe

Modifies registry class 21 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zip\OpenWithProgIds	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.xz\OpenWithProgIds	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.xz	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.img\OpenWithProgIds	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zstd	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR\shell\open	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR\shell\open\command	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.gz\OpenWithProgIds	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.gz	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.img	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.img\OpenWithProgIds\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR\shell	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR\shell\open\FriendlyAppName = "Unraid USB Creator"	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zip\OpenWithProgIds\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.xz\OpenWithProgIds\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zip	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.gz\OpenWithProgIds\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zstd\OpenWithProgIds	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\.zstd\OpenWithProgIds\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Key created	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1488793075-819845221-1497111674-1000_CLASSES\UNRAID_USB_CREATOR\shell\open\command\ = "\"C:\\Program Files (x86)\\Unraid USB Creator\\unraid-usb-creator.exe\" \"%1\""	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 3004 wrote to memory of 1004	3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe	31
PID 3004 wrote to memory of 1004	3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe	31
PID 3004 wrote to memory of 1004	3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe	31
PID 3004 wrote to memory of 1004	3004	SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe	31

C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe
"C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Trojan.TR.AD.NsisInject.yzerl.9891.982.exe"
1⤵
- Drops file in Program Files directory
- Loads dropped DLL
- System Location Discovery: System Language Discovery
- Modifies registry class
- Suspicious use of WriteProcessMemory
PID:3004
- C:\Program Files (x86)\Unraid USB Creator\unraid-usb-creator.exe
  "C:\Program Files (x86)\Unraid USB Creator\unraid-usb-creator.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  PID:1004

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\nsdB6C3.tmp\ioSpecial.ini

Filesize
1KB

MD5
49b97e98c0505f34ea53e63e3236957e

SHA1
8f2276443ae6b9fe23c3689bf9840ae1eb03292a

SHA256
6a1a9ddce5b84a11f89dec40c421b0e12288d1dbd09796ce57a0c635fedeafba

SHA512
625c12ee8db1abfa5cb1f6ffaf4698e9c7e85e2d6db9d807bd241f7cf27a069a784faad59ad0771775b8c753970643f5afc7de709956c761a969fe738c43a6b8

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsdB6C3.tmp\ioSpecial.ini

Filesize
1KB

MD5
629006de51b9892693740654ff1add37

SHA1
f1fedc13ba8753e4778ffdb3c0f42599eb763204

SHA256
1c204ee1931be6615f611b04ff5e53ae7176e4354b329089482e61785b6e3130

SHA512
a618ba6198aad4896b2e6f607b2d31d4616a18d13ecd23893be7ca4044ca2a2d6aee5e02fdc8f8293faadef25aaca45210f77dc0083718ec733c2076c54f85a9

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsdB6C3.tmp\ioSpecial.ini

Filesize
1KB

MD5
16ad04b20178fbd44277fbbbd2b3dcc0

SHA1
456b8b1796db339b933dcea1f4bb08aa81420272

SHA256
55b102850ab0d7e126f04ce411c6c1e993bca52c7087a5031aebb8234aad200b

SHA512
e343b85373732293c972cc57d125171785502434532e4e108bd2436cf96949f9dc6a640178fd3463c3a766ffbc340274240dcb798d6b24095de046788c389881

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5Core.dll

Filesize
8.2MB

MD5
39d509b1675c380dc549972506a8f717

SHA1
7fdbb1897ccd3ffcdee39ac3838e19f7b9d3f6c7

SHA256
bb88391d53cf771c58887cb54101b5dc638abeb84bce4beddd82be5fb4bae671

SHA512
bb4cfd92dd772b4d7a5bc84a6348be1e7d96864b086bfc331713ebefb47e30c7d1b304cde7d3a25b388ccd7e59816b0e3fe96f85676c722664be470723960ca9

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5Gui.dll

Filesize
9.2MB

MD5
f676936b5dfce1c5ac2f8a1a7f577844

SHA1
c9870365d594bf1d6a4215acd4e730695166f809

SHA256
77f8946ac559cd03694d9a36ab4630cc7d5f0db62b34c00ecec12bc021eafbe9

SHA512
ce4ca22c4afb55a035c68711708ac86b5abf08ddca0bb0b059c3ad130aa1c9266a36e412b4feaeb4cd89edda6aa8ad95225e0a777fb33bcbae828b41c316301a

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5Network.dll

Filesize
2.7MB

MD5
ced4531f553504ed6770d999f9c82cb9

SHA1
3405a3118bb6479413b9a749ce4c0b395622883c

SHA256
77f1bd3192d9e8b15dd23adb15a3f83e92e9474df9a30450247fbe9e96b71736

SHA512
df98b27470b30377928bcea23e18b0c3d8e7929d0d7ee6862887440f6ef577e5172fcb02b82a20b4903ce9eb7e1d00cfb8e1785476cbaaee3da92354f701dcbc

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5Qml.dll

Filesize
7.0MB

MD5
65781efc205f808159563cb526332e28

SHA1
771cfa537a523cad8987179a0211c653cda30c68

SHA256
7244b065771674bf963d998acefad1ee0c93ababfaf667724c4ea3c6bf4f0bce

SHA512
fadd974e9353575ec3e5f631643e246bfbbb0da30c90225fb18c587517603b4f279b0d5f1cab86e47844edb46f6832fda2a338e9717b1534faec7e76bd4d2304

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5Widgets.dll

Filesize
8.8MB

MD5
b037b86cd074ea2a216bbd4b7b489c9c

SHA1
bc6b32e01e03887b06e297009efcf965083aa435

SHA256
2f0c2a362f2ef318ce80e03e914981ad42a1751c74b534725a6bf3cf50ce03a3

SHA512
39472c8ba41dbe53e180568ca61472fd3b912ea55227bbc75e9e2889f9d18551b971079824e9102afe0f132782b20c42f2b7c06b576eba2509c36e5f77b6572b

Download Submit
\Program Files (x86)\Unraid USB Creator\Qt5WinExtras.dll

Filesize
432KB

MD5
ffd0b3e6a95ac68a7a534f932677b6e9

SHA1
e2b365833ba1125d2e41082e2f50564b437fc684

SHA256
a6b8f3b595bdd486143e80040dca1bc96390c0fc866e80c4a3a373c8b6a14b4e

SHA512
3590d4ed40f71a3f1028e806bf66a5d972132551d7f6c8056dee4d85126aa9ed3ecbc6c648310114179122fa71e419d237190ec404593b5dfb36ca54961ec26c

Download Submit
\Program Files (x86)\Unraid USB Creator\libcrypto-1_1.dll

Filesize
3.1MB

MD5
97b0d80c9ac831207fa1d80fdbc1f4ca

SHA1
24f63bb64e4c098a07b84603b9db31d2faf747dc

SHA256
4c754c7b92fe58d8432ad438597a799a724aec949baf481a162da996b9e4d301

SHA512
b5de053b48d7d94d1dbf78d79e3cca19a36f1e797b4e28c238fb5e3df4e226486b31562958e64164db2e18a851d1f2c36ecd0df93573dd85ce8d7c91de9aa490

Download Submit
\Program Files (x86)\Unraid USB Creator\libgcc_s_dw2-1.dll

Filesize
113KB

MD5
9aec524b616618b0d3d00b27b6f51da1

SHA1
64264300801a353db324d11738ffed876550e1d3

SHA256
59a466f77584438fc3abc0f43edc0fc99d41851726827a008841f05cfe12da7e

SHA512
0648a26940e8f4aad73b05ad53e43316dd688e5d55e293cce88267b2b8744412be2e0d507dadad830776bf715bcd819f00f5d1f7ac1c5f1c4f682fb7457a20d0

Download Submit
\Program Files (x86)\Unraid USB Creator\libstdc++-6.dll

Filesize
1.5MB

MD5
051973a1420749e10d007049f15a30ab

SHA1
27141d4e7847e16f3cedd487dd3f074811556ff1

SHA256
672458902acead23b1a4dbca8b26e51324e88948196bc30d68703d45547898e8

SHA512
0f105ba29af981afe3a43e6d789f5df8a501c252d3f46bf730d5c92c98358c6656cbdc7bd7d5a0d4c5357ae0acb1144828358b07cf2b1515512ca9b4d3f047fa

Download Submit
\Program Files (x86)\Unraid USB Creator\libwinpthread-1.dll

Filesize
46KB

MD5
ed53eee1623a43e9ae174262169f0f2e

SHA1
4bf7e9fa40878e19d6d7b8277982ed958681af86

SHA256
0b5532f93126db45689d7e3162cfc6951f78738a182e52712bb2c71980468f23

SHA512
dce1bc89033313934323e9ad1fd0ef7a525df0fd8f2f7c64b5ca8f5e7780b5526ce9e1fff408f8a00b46f718763d492eae059b7d11d873eea3186e8584dca53c

Download Submit
\Program Files (x86)\Unraid USB Creator\unraid-usb-creator.exe

Filesize
4.5MB

MD5
dc000b09ac02561d809167d744dcfa87

SHA1
620402730218a23e9c9986fedb2109876d1e58f7

SHA256
08e5e3968546df321e444557a7376aaa61307f66b49276e82d94c3d3032d2af7

SHA512
d8344c260caf50f15e2f9ed607061b91111bc2de6aca752e4c6d347727af028c9e72187f4427d67dfd7d35b7d730a4d71c45f039b1657284963add912cfaa15f

Download Submit
\Users\Admin\AppData\Local\Temp\nsdB6C3.tmp\InstallOptions.dll

Filesize
15KB

MD5
d095b082b7c5ba4665d40d9c5042af6d

SHA1
2220277304af105ca6c56219f56f04e894b28d27

SHA256
b2091205e225fc07daf1101218c64ce62a4690cacac9c3d0644d12e93e4c213c

SHA512
61fb5cf84028437d8a63d0fda53d9fe0f521d8fe04e96853a5b7a22050c4c4fb5528ff0cdbb3ae6bc74a5033563fc417fc7537e4778227c9fd6633ae844c47d9

Download Submit
\Users\Admin\AppData\Local\Temp\nsdB6C3.tmp\System.dll

Filesize
12KB

MD5
4add245d4ba34b04f213409bfe504c07

SHA1
ef756d6581d70e87d58cc4982e3f4d18e0ea5b09

SHA256
9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706

SHA512
1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d

Download Submit
memory/1004-586-0x0000000000A60000-0x0000000001091000-memory.dmp

Filesize
6.2MB

Download
memory/1004-597-0x000000006FE40000-0x000000006FFC3000-memory.dmp

Filesize
1.5MB

Download
memory/1004-601-0x0000000000A60000-0x0000000001091000-memory.dmp

Filesize
6.2MB

Download
memory/1004-591-0x0000000074ED0000-0x0000000074EE9000-memory.dmp

Filesize
100KB

Download
memory/1004-590-0x0000000061B40000-0x000000006225D000-memory.dmp

Filesize
7.1MB

Download
memory/1004-592-0x0000000000400000-0x0000000000884000-memory.dmp

Filesize
4.5MB

Download
memory/1004-593-0x000000006B400000-0x000000006B6AA000-memory.dmp

Filesize
2.7MB

Download
memory/1004-600-0x00000000662C0000-0x0000000066726000-memory.dmp

Filesize
4.4MB

Download
memory/1004-596-0x0000000064B40000-0x0000000064B54000-memory.dmp

Filesize
80KB

Download
memory/1004-599-0x0000000069900000-0x0000000069AE2000-memory.dmp

Filesize
1.9MB

Download
memory/1004-598-0x0000000061B40000-0x000000006225D000-memory.dmp

Filesize
7.1MB

Download
memory/1004-595-0x000000006EB40000-0x000000006EB63000-memory.dmp

Filesize
140KB

Download
memory/1004-594-0x0000000068A80000-0x000000006911A000-memory.dmp

Filesize
6.6MB

Download
memory/1004-602-0x0000000062C40000-0x0000000062C82000-memory.dmp

Filesize
264KB

Download
memory/3004-89-0x0000000074ED5000-0x0000000074ED6000-memory.dmp

Filesize
4KB

Download
memory/3004-88-0x00000000003F0000-0x00000000003F1000-memory.dmp

Filesize
4KB

Download