infinitylock | cfa4daab47e6eb546323d4c976261aefba3947b4cce1a655dde9d9d6d725b527

Analysis

max time kernel
147s
max time network
143s
platform
windows7_x64
resource
win7-20241010-en
resource tags

arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
submitted
13-10-2024 07:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

InfinityCrypt.zip
Size

33KB
MD5

5569bfe4f06724dd750c2a4690b79ba0
SHA1

05414c7d5dacf43370ab451d28d4ac27bdcabf22
SHA256

cfa4daab47e6eb546323d4c976261aefba3947b4cce1a655dde9d9d6d725b527
SHA512

775bd600625dc5d293cfebb208d7dc9b506b08dd0da22124a7a69fb435756c2a309cbd3d813fc78543fd9bae7e9b286a5bd83a956859c05f5656daa96fcc2165
SSDEEP

768:xaTvxO0nJFcoYFY5Hn8tuWRHkD+unrGRcd0zOF9MzKh8yK4ZJy9ELob8a:EtOoJFSzt5BiGGmObB04Z09cobl

Score

10^/10

infinitylock discovery ransomware

Malware Config

Signatures

InfinityLock Ransomware
Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.
ransomware infinitylock

Executes dropped EXE 1 IoCs

pid	Process
2380	[email protected]

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\1033\xlsrvintl.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\J0215718.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Defender\it-IT\MpEvMsg.dll.mui.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\PROTTPLV.XLS.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\ACEWSS.DLL.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\System\Ole DB\sqloledb.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\BL00148_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\HH02312_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\HH02313_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\AddToViewArrowMask.bmp.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsPrintTemplate.html.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\MEDIA\LASER.WAV.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\it-IT\ImagingDevices.exe.mui.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\undocked_black_moon-new.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\THEMES14\CASCADE\CASCADE.ELM.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.5\it\System.Management.Instrumentation.Resources.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\images\bNext-down.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\5.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\TRANSLAT\FREN\MSB1FREN.ITS.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\J0382958.JPG.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Document Themes 14\Theme Effects\Median.eftx.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ACCDDS.DLL.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\de\WindowsBase.resources.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Defender\ja-JP\MpEvMsg.dll.mui.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\THEMES14\BLENDS\BLENDS.ELM.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\MEDIA\CAGCAT10\J0199036.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\AccessWeb\SERVWRAP.ASP.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\CONVERT\ODBC.SAM.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms3\FormsStyles\Maroon.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\ja-JP\js\cpu.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\ink\skchobj.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Stars.htm.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\handsafe.reg.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Google\Update\1.3.36.151\GoogleUpdateCore.exe.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\NL7MODELS000A.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\STS2\background.gif.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\BD08773_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\PUBFTSCM\SCHEME30.CSS.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\CONVERT\1033\DELIMR.FAE.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\CommonData\UnreadIconImages.jpg.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1033\Dialog.zip.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\fr-FR\css\weather.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\MEDIA\CAGCAT10\J0212701.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\MEDIA\OFFICE14\AUTOSHAP\BD18217_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\IPEDITOR.DLL.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEIRM.XML.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\PAGESIZE\PGMN105.XML.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\GRPHFLT\JPEGIM32.FLT.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\NA00807_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Document Themes 14\Theme Effects\Civic.eftx.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\microsoft shared\THEMES14\ICE\THMBNAIL.PNG.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\PH02291U.BMP.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.SE.XML.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\PUBWIZ\SNIPE.POC.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Windows Photo Viewer\ja-JP\PhotoViewer.dll.mui.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR46F.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\Office14\1033\PUBSPAPR\ZPDIR49B.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Common Files\System\msadc\msadcer.dll.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]
File opened for modification	C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\BS00135_.WMF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E	[email protected]

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	[email protected]

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	[email protected]
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	[email protected]

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1656	7zFM.exe

Suspicious use of AdjustPrivilegeToken 4 IoCs

description	pid	Process
Token: SeRestorePrivilege	1656	7zFM.exe
Token: 35	1656	7zFM.exe
Token: SeSecurityPrivilege	1656	7zFM.exe
Token: SeDebugPrivilege	2380	[email protected]

Suspicious use of FindShellTrayWindow 2 IoCs

pid	Process
1656	7zFM.exe
1656	7zFM.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1656 wrote to memory of 2380	1656	7zFM.exe	29
PID 1656 wrote to memory of 2380	1656	7zFM.exe	29
PID 1656 wrote to memory of 2380	1656	7zFM.exe	29
PID 1656 wrote to memory of 2380	1656	7zFM.exe	29

C:\Program Files\7-Zip\7zFM.exe
"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\InfinityCrypt.zip"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of WriteProcessMemory
PID:1656
- C:\Users\Admin\AppData\Local\Temp\7zO87692668\[email protected]
  "C:\Users\Admin\AppData\Local\Temp\7zO87692668\[email protected]"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  - Checks processor information in registry
  - Suspicious use of AdjustPrivilegeToken
  PID:2380

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_OFF.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
352B

MD5
7d9fe6d73adfd5bd7350f578ce6a267d

SHA1
add2f32cb72f619321bc3b074bd556e8e8d67945

SHA256
be3836cde02c23e60ae47d225616de9e89b7829de9c331d7b9cfc5d6fdde29f6

SHA512
0578b0f96eec6385fc53fe2b62f25e40e17212aee39d1d42335917834ef38da068a7a96d636f6700b97fc18211ca76b39ef8f2bb98551daa321fddfe3a7452c5

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveForms5\FormsStyles\BrightYellow\TAB_ON.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
224B

MD5
56d8e5966e46c63ca0027561d1c7eccb

SHA1
8eafddd5433739e36f9f6fc79b0d7f7c5c384d14

SHA256
5d2d0dea3ad6581a3105145dfc39bae3e2f7c8042e5ed6659a0df5dca88909d4

SHA512
d5e571aa1a12d90fc287cc2fe30a656aac09edb54f165b740f10538e64670efac45c1de8a708f39b56dbfc0d0a1e826cb6e71178c041d569a47b42f1d33f2dcf

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\1033\INFOPATH_F_COL.HXK.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
128B

MD5
529bb57174864488ba530c3b0ceb27b9

SHA1
0c1073cb7cece37652494b79a483811b7c0a8db9

SHA256
d1f46445cd45ae63d70ff0c45bff1bbfffe69a3ba892c3407f00639df3b8facc

SHA512
5ae51492501a0617df4dd7bda53bb98afdff7ff05618b585f11ad966f8553fd9ce4741a4f4ebdc9b5471c54809133930bc8908a88c86ff2e2d8215c6397da56a

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\1033\INFOPATH_K_COL.HXK.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
128B

MD5
c388529b83393eae6410296ae56fef61

SHA1
8a0adfd67e966d155262c5791eb8da625a92834e

SHA256
7b3d566af79012bc93a8e62bd42d2abe6154dc2d505fb89ecb328bc688d9e175

SHA512
90a1eeac6283061a7cd686078352f0c58fb76623cd5ba7be65667367f247fddf958ef763f553b7047d445544ffef7d20ade6f95c32ce2a7b981b4d2b6617f76a

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\BabyBlue\BUTTON.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
192B

MD5
feda465dc5afd44fdca6667ede51a701

SHA1
376aeb3bca33c969c0335cfbeca77e543a0cb283

SHA256
71bf4d9e54635a894cb23d1f03b54df5160b147f35b84fad2b276ecbc0294071

SHA512
4bdb6ac25b0e2ec6b9ed69ee22c1b000fd8e5f4f8276724a628e11f13d4129fcd77c2831f047e28789864a47764961de1823a541caa84dd9acdc6370cd36bdd4

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_OFF.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
512B

MD5
7f765d83759550a9ca2f9d9d899ab4bc

SHA1
9f80d861a112332825621fe4ab286379d5f8c952

SHA256
1dc3bd84c2315b6c25ef77847a1dbb9336de84b15b75bb28cf62a513846c19d9

SHA512
e1695019b99175fea3a6d6d839fbe5be1d04a30ff83a390273ac1852780abfc57a66353bf300bddc4872a6b697cf3e7d17c0359ba352d8ff2bf17199d2c070c8

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms4\FormsStyles\Desert\TAB_ON.GIF.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
fbd3f302db9c4771359ca20a19f28d26

SHA1
81f4144a69bad481911f2fef2286aca8f7662091

SHA256
2eeca6bd5c020cae0bb5e76cd3666071f1bf25bfad466725e256091e914d0334

SHA512
b9986755d032e9ba44cdc022ef429313ebd6af6fdeba0840810aeccaacf4f4eff9dc76d16d7215419f7acaa7e61560c42f5cc6913ebf10538a8cbcb95d7559f7

Download Submit
C:\Program Files (x86)\Microsoft Office\Office14\OutlookAutoDiscover\YAHOO.NO.XML.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
816B

MD5
1b02038e6778ba45d14955ffb6e1bb6f

SHA1
41093d18f04d568b009cf4b79967aca69ed6b877

SHA256
ace1a8109fea67581561bac7a5ab21350318faa9d33cbde8290b255b26983914

SHA512
9b315882fb54b461a2bfc840ea1b1cddf874dd29baaff4dce2045ebc1e81be9077852281989652dea7a9c35f6e82fd62517764bae47ae755c1880a88de95b272

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\it-IT\css\cpu.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
8be645886b61b6481453edc0d8fb7fed

SHA1
db1ffa1f979f2bf52925fd681b39cee9b3e4b129

SHA256
b66d8ee584fc78c8c5e32ed6d21f25be2263052acb0546d108cbff65d45906c4

SHA512
07db0116d8c9c711ac721bb3c732597b7e05bf8c1f0ee30e349e6751a51b24dc96f1b8cf92a562ee0d991b83fc7c3a385b4270255e072ec8444329c2566d5abf

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\CPU.Gadget\ja-JP\cpu.html.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
4KB

MD5
b13845c0b985ec60960c773fd4d9e5a8

SHA1
a0c03f28fdcd456e09bec626c08c58f76f7a07d8

SHA256
047d40a37ca8913b5657fb894282454f2c50fbb5a964d24d5fa2def510a786cf

SHA512
5ef6ea6e27d3284e41f15af74a1849bbf8c5d0fac3c3ba9333b11639ad955fbcf0ac5e52ea587dda9e9b964034c5aa3f156e90981f7d73c4166901c49d4149ad

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Calendar.Gadget\it-IT\css\calendar.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
4KB

MD5
e7fc5afed010549f2c64fe90f35c4226

SHA1
b348da143cd10f81ee594dacdcc9f8bb1e0e254b

SHA256
99e64c5e5c2ae184dc64ca0a9302815e1092f820cf875712aad6cd7f30c41d52

SHA512
9d37eb57995756da29a1e2565985109ee1787fe03fcaaf8fdffdad5123af22493188bbf6a0acfcc09d65140bec24d761d52abe3cc259a558aea1344163cc8acd

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\it-IT\css\clock.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
688B

MD5
f51a5bb54b9e5f0738d9cb3f3dd0a352

SHA1
1e7a9564b01845ac4c96873207d77b45442dd64a

SHA256
f31f6cdfc854b93a24a7c4b641381dfc9ecb17f68a2787463948bd932cf062d1

SHA512
ca7658291e0894e377633142551c26e9c55586451f703aa51022bd05a10a6f07dc18f0daaef5cd8c44a182bb8af018c75425ceba9f37c378da4e09ab4667f8ce

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\it-IT\css\settings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
b4bd55cdb11ec0d2b13194b3b5732c8c

SHA1
5c605a566f2bf233c7b687bcb32ed7cbccaa93dd

SHA256
95bc8f258dfaff3627e42fb5ed2cfe7c381406a7b17ce230c116ef8a7a454188

SHA512
041cf636a74ab05f94feba13545c59c93430ed39854356aa9676503741649440c602b5e46df37a2b43957a7a31dc9cbe8b0e7cdf9f0eb6204a980821b7809e3d

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\it-IT\js\clock.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
17KB

MD5
d87a18e0c762b5c5ca562ca5469bc59c

SHA1
d9b25fa3d1d613983586266c51ca55848b97b1b9

SHA256
5c8d78548178a4488f5603938ca21b6c5927778f2815438987fb2e328c55d44f

SHA512
91901d02221189cd9aa13b7c8a87ab9e0bd21bcf80579aeac72685fd7eeb56326df1bf1a1dcea1f2b1d9611774e6f192a54b5add7353e4171a47addf8d8dd3da

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Clock.Gadget\it-IT\js\timeZones.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
9KB

MD5
6fae9406c9a270490c7ded6fb32599fa

SHA1
35722c98e4557173574d363d9d852f558fe55205

SHA256
7aad4698f9f5dcf84bc30ce9661e68025cc8da5a3d266c9dd444edc7fe0e6035

SHA512
91b6baa76e6fd869390d2fcefb063ccf104e547540b607b88c2e12ae76efc5394afe1fc72b759f02b718a358841ae6a9a3c388ce30266613cf35468c7a3f786e

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\it-IT\currency.html.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
3de6c6cbf341108d73d52c6df9a62816

SHA1
833715d19e6b8220521e27b46348f2344ceb3778

SHA256
0a6f6deaba90e00aa7c30c8995f8b24da39aae615e17e337968ec2b2274e4ef1

SHA512
26695558e86dc0b110816332caa42597fa99aea5ee3d621bb56a3e45f3add02ad65936ac9f678ea4eb222bdb1788f8f9c02903639fd052bc4ff38fc00e8b2b88

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\it-IT\js\currency.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
65KB

MD5
4dae4e4bab50b78c84d20df41d6a247d

SHA1
42661f40a67c09359b62a7f680443f933b2f1ca0

SHA256
ea545550a1b241812fa1e44f5167e8922bd408483a623dc97d953d16626ac92a

SHA512
cf5e18d266333da2da362941a0b8d598da1272c41325a005abc1c6af5ee864e8c63319e9b873c66bab2e0e667f0c12ab4a31f679bb5175b6144f5abf66b60c01

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\it-IT\js\init.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
736B

MD5
8b8ad7375378ebe269415da8a9d25774

SHA1
e0bb9ce2611d0924217005cd3620326a8a664832

SHA256
28033d5cecd3361d7406b192da9d212f7d7058ce8105d87f8671cfeda24141ed

SHA512
e7cf712510937de1c24425c7d3754e736c723d22ad5e6f07e190fe3e757932455b4187077fa1da45372419cf939a30b4aecd3e92cb6c539ee6a965cf6fe3c802

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\it-IT\js\library.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
368d6fbec49b69ece431db09c2d40bfb

SHA1
543f20d6796fa11b75c4bd9c65c9d39444486adb

SHA256
1e2aa5ae51a957e3f8ee9c747f09b70da4bfb85545bcd3629b5c7a9c9ceefe61

SHA512
3cd578200df1cbc79e68a2f088eaa7998b1578242ebf3e42ebd652a84d4420c00e056963f122a3755ff4f8b452444707cc7a9f5e7934605748db78b409067338

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Currency.Gadget\it-IT\js\service.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
7KB

MD5
b7fd86186cdffdc36c5785277bf67c96

SHA1
9bd50d32521ac5f417a2f82a5432849a2a9b6666

SHA256
de9d6c55537ec5a18630e15a94b81e39f0ec21aca8a3dfa4773863f702a26f0a

SHA512
e2575a8154ae380df279b21bf44d23a3b68e056eda5d0707940fa5bf83125ad931ab567f2fa102953796c7a1daa3449b9ff8a4e9989ef03ceb0359e3e5a663cb

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\it-IT\css\picturePuzzle.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
4KB

MD5
e7f27cd0b92f64e2a7460279ef1a53bc

SHA1
c1efe36cd95bffe33352b261e367357f4e5766b9

SHA256
e35fd16ffe67c189baeb30b672c61b442e9c5ed888d1e769f9c81d8be3e08a5d

SHA512
449bf5753fa1ae72a10dbcb3c47659b18f3c609d560c9d8dbefc4db99bba2e1fcb8b7dd7a4bddca6fb64abaa443da55dd8287dca57c89bcb6e7efff8fcb34106

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\PicturePuzzle.Gadget\ja-JP\css\settings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
af613ad081ed2cb69ed64ee708b46492

SHA1
e27c93f949c9780e4872eb139f500d1b3506f98f

SHA256
e7b60d5c33a15241ed161c5b63a949dfe96d84f96e533e5fd51c7a6645870526

SHA512
bc088b61fc704a7cb1827553b2507ae95ee233e0ec8b66f6a9bdb99a56346a4e89c66f27e06b9bfdd3fe99273a551822823ac585ee08f8423ea86518384a74fc

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\it-IT\css\RSSFeeds.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
2KB

MD5
051865fc71d67054d7d569b5eccbc510

SHA1
dbb7fc3a1d90b7e914d008876c1c82a7b841a482

SHA256
c6251c8d32892778b1c357dd1a6df4fa422f47934f7eaa985c016608d3561ec0

SHA512
940f516f8554c385b49734eb2b340b3595d758a7bc7947337465cc64efee8ba202ae2a8b0e1246f3d357c62cf4d3ee47b9a699e9aaf9ce095d2c2b03e3fe3906

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\it-IT\css\flyout.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
2KB

MD5
cbca06a25fa3fa1ddc128ebed66591f9

SHA1
87da87a210650dba7297000b524f7e25d341ceb6

SHA256
90b9f0cdff324ab99456df047aa52a083e4765a2cfa6ff1c115bf17dde85f0cc

SHA512
30b6e2a596d9605dbe1e769a592e2c88a06acd047ab12d97c23cea7bbdeb3440eaefd871160dfdbeb991363cb6e40f7a8b855cece642a4fd7e50ba28901ff69c

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\it-IT\css\settings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
8a64c3a3b67acbbb5b136ceee9c02186

SHA1
9e01f8b2b81b4756b121ba4fbdb928f6427d5427

SHA256
ab5513d062212e174e5156aa1ff5fb545171d9f1843757527aba2331198f8032

SHA512
05c4052da1b8f8afd7d85efd00245d2f3574bed53c61d1f223c370fc6cf02bb2724e519e9093e237f2b4bfb1e78c530a321a83c885060a63b761969f00a416e5

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\it-IT\js\settings.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
a02db9af928c467745b6b0a037c945fc

SHA1
69d1ef634c2fd5c93ad69ad52abff6e6de3a60a3

SHA256
8189b701c53dde002b2d9f29dac485168c373e5e55306da37d334a7d5379a461

SHA512
29b533a6c4838c597a49f2c763d47b36ddf2ac287516c8bb2727577c82a5dff6484cf245ca4af264d6d626fa5bf11637dbc224c497f143edabef88327ecfa8d3

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\RSSFeeds.Gadget\logo.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
6KB

MD5
e13cf13baca77c08ab3263e8da8e17ed

SHA1
a5f95f25244fb55570affbe766fcc6934262f398

SHA256
935c28a830c4ffcb735dcd0978d40ce510ffc6c53486ff2b14f5e409058f7299

SHA512
88f4829fc57b53182322bce6a1da5a915ffb6e51a706b292803b3c2a1529b9b90f265d7af376a505dd0f46050185936644a76b6434191675bca6b6f2fb2ec75d

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\it-IT\css\settings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
073702ce47884697d653bbe2b66f4c26

SHA1
d2df7c87b95fb85860ba1a9e3611f9c023b5a0be

SHA256
3fb111f8e1cef9fcb28d354da12d530ac1ec7caba9e0e533c87ee3feb47d5871

SHA512
75a5ba9edace022f7d285b8c43293a189ded2bc4735220433132f697729edf16639f005b3116987ab151855faacf249ca5bf47477edb623a6582478bdc727d3f

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\SlideShow.Gadget\it-IT\css\slideShow.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
4KB

MD5
3b608220140e6a45a2b560233401b9e2

SHA1
6ed87f5a9e1d42d01d8edf1847ba176342b5fee8

SHA256
327e4cef0d0cbc1c241f4fdd815e85a0650ac61cd787990d1d489f1daa95ceb7

SHA512
4ea52df20d30ce5a4cbc48f8d22af27a93250401f515944b71c26a2d8cc6edd63ec4f24c25e3e0bc0971a28134d8e6fd6dcae5911db5f0aecbbb0b9cf7626a00

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\38.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
d42d2d9fb44587ff1a7958893ee81e26

SHA1
f9fb1e44b562e5ca6f3a908966cf65002e195f16

SHA256
4702594d56200128b832dfed2bb1f92e02bbbf3c3c325fa87408bf122f5bbb9f

SHA512
afe5e8cedcc79abd4c87bcd696199887f1e9c527f7b24f4f75d02f60b779dd72ef0fdf8dd41d7e00f8a0dc1195a136ce48d9a9a40be624b39ed047361f693ea4

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\39.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
5KB

MD5
11b35d9d7f080f919b524df2ad944096

SHA1
836821e4cc789f6ad4b8e3a13e1ce3a42b1f302c

SHA256
0fc4638bd6a529cb11ca734c282e828cdaba06ce954526713017e6b14273af51

SHA512
fa4a41ec9e67549c20a50b9fb8f858521f0ab8cf37e9044a0ec40753499e73153d9d336ab735434f2d16a9a5cf3ae8aaa83e5a413831cf3f911c0a2ed65d753a

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\images\41.png.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
3KB

MD5
c2531b2f1de7f05db6e23c9626f64ffd

SHA1
a148dbd6cf7d1d839e9c7fdaa3603fd67031ef78

SHA256
23b555082e113312f2cac464aa18b4777dfe5075f2efc751812fb71490707366

SHA512
593f6749326b5624f3239dd06d736a63e5aa0df4df7fe8d1104403cac1dc2b9ccc7f03741567000fc537aa3cb528ca505af3e8678fbd76bb8f4cb88c349a3f05

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\css\localizedSettings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
976B

MD5
542c1079d2bc050235c92de4512778f0

SHA1
11123bffa7d4d92fd755ee6f8a5c2d57cf321784

SHA256
ef5e5fdfb4a659c92d55b8b48da59de3ee128d0ec9353e57bf7c6838f55bfec3

SHA512
1fd65549c80ee1512cb89fce91594c8e554917e7626031547581ef461c3c1f126efb999416c2d4780e6c7d2f88347dcf842d18f556e49da621f56e7891e24066

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\css\settings.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
9KB

MD5
8962936156ecc67a81fc5e8cb4a9b5dd

SHA1
99e5cac92030c5690f73bbb18287c79f5b741fc2

SHA256
fae36b9f415cafc534b47cd6423aa9b902af79ea14858e1746630c923c2b6895

SHA512
e67790b2b1bef7be0ceff93400c098cde2655a4c7fc66cc40de8ae6b7ed25aeb3fc67b5e99f7f8b79c58d1bdbad2d85a4c4d5def579fd111a0cb6016ab677db6

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\css\weather.css.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
24KB

MD5
4644b5e587f69b78e0c8396d0554475c

SHA1
34e6ca9e42f5039e54366e84282e2f5670170861

SHA256
cacba81a0ea5dcf082bdbd3c7fe860a31d1df6ed23235273825db88ef6740ad2

SHA512
928b1951e23214090f04e6dcc8c3557c34a10e8f1ef1f1e8c39ec23e9e5129338ee2051fc79d52b6e3e617319de3a013a845c91406b56d554b295569ef1e9ada

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\js\highDpiImageSwap.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
1KB

MD5
43f06fee9626fbd5c92e70a4cc76815b

SHA1
a94b061a5c675787a34329b2c58cc8ca03353661

SHA256
4ab3b1b877c84582f1c0f95b3207a886e63c77c19182e34eeb746c1b1b5f9a1b

SHA512
1f728af4874b6c026af1ad7cd8a679176bdee329dbf34be5adbd9811488d67680ccaace38c2f51dd6ab555e86e9a2e55351af06507762235f736f568c4046866

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\js\library.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
42KB

MD5
af494e8d26bb3246f79d3a4cc382593b

SHA1
db1a238478fef289b9daeee8ab88d9287157c6ce

SHA256
a8cb09815db773f0744173862c2dd5ae8405939447bdc17bbdb78280c70366b9

SHA512
51df41d73a1e90157523b43328919f932313b12f7f4f97571dc13c0ec1144c4f608f79b146d00276b3d3e0557c0bc455ae4a9a3701642f8420638a7f8fc18190

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\js\localizedStrings.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
14KB

MD5
afefbb3cb0f4a6c4b4c33bfcf4d956c7

SHA1
d54cdd3833065e6c01756bcd318cdc3b87e86841

SHA256
2f0b2bd4419947c9e824c7de8e116ccc5da86f681bfa90e451f32aa71ca15ecd

SHA512
bad57c9c9401f05ddc4380a3f94a894dadc743284ce3f4378a4c411088001a698cc97433ada0063c0f1adf1c6a8359e2ac5d5dc4b41d4302e9ae426dbddba9aa

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\js\settings.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
56KB

MD5
529b9e0cae55e6789a899b7086e12b30

SHA1
e3f1effd60b77883e0373061b3090c61c696c75e

SHA256
93bcdea33c66f12a493e2f3f0fc4a723ffe24278923857e4454b3800f3746c74

SHA512
02d011c81183a214f5721bd701d8b75d5bcae070c64cb1f3f7b50c875ca4e7a093f99ffe8ccd1b4fd4f82a8e6e0f0a6a4ffba99a4e9d1ed22293f2f2c9966b83

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\js\weather.js.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
132KB

MD5
8ccdaa420f6b85a07445cb12478ca303

SHA1
2266ea7a7dd8019bc0dc1de795f74311a99f5a34

SHA256
bbb3976e3ec2c8e2a72d12fdb33b80f36cc1b346721f0be861301dc9cf6af139

SHA512
9e087fd9d80dced4b065bf96c010263a461fcebbdca64a9d73bc6a002ef054aaf9ea2db19c8381bf4229a922119057206e25c492e53938c5727b599ea7ccbdd4

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\settings.html.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
8KB

MD5
2cab870004fbda764a57931914784884

SHA1
5dbf48bb8a13af5791e72eec18894942f0773707

SHA256
5ce36e08d983fe64d0db12cd04b599cc4b51c999d8cac165fe59e8dbf12a566e

SHA512
1380208a2ee7bf297c9fa2128203b3886bfab1a8fe906646b658238b3f8e9aadb6fca4b00a5f63f2c16ad73f0a679f5b8f2db33537d2948f8d3df1d6108919f9

Download Submit
C:\Program Files (x86)\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\weather.html.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
15KB

MD5
b80f7380620b3aaf2475635b5afa709a

SHA1
88b93cc74486a98c9dbef615987752509b13aa31

SHA256
3fb2026f2f73c8a37a8c772c5065f2e88ff3556c404b0ecf842067667aeb11fa

SHA512
fb7abbea33bda831f00a08857dd146990f46c1ba65e52f383ac44df02a37210dc3a67a28f6377cf852d136299f0dffc0e9e1f9940aff729beee38878abba76b2

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zO87692668\[email protected]

Filesize
211KB

MD5
b805db8f6a84475ef76b795b0d1ed6ae

SHA1
7711cb4873e58b7adcf2a2b047b090e78d10c75b

SHA256
f5d002bfe80b48386a6c99c41528931b7f5df736cd34094463c3f85dde0180bf

SHA512
62a2c329b43d186c4c602c5f63efc8d2657aa956f21184334263e4f6d0204d7c31f86bda6e85e65e3b99b891c1630d805b70997731c174f6081ecc367ccf9416

Download Submit
C:\Users\Admin\Desktop\MeasureSearch.xlsx.8E216EA471589E99C113DD7CA876D6F7A5CA206D71E1366889FB5C8C595A341E

Filesize
10KB

MD5
b66c5d0db8c95b260e1db73cff633008

SHA1
5b6e3cc6d7f04a35304eb6116a122cbb4bbf4d26

SHA256
ce1600da956b1daa0718c586bf1f269a8e7be3838aedd70aed62f21fdfad766e

SHA512
29de30c0d6f8d365debb2d9246f8e04143fadd18d0571dfb16e48faee6e8becce3190e0e70c92c0479cf2f86c58e6d6e0a4bb9b1a4152cb8fab86af83b3297e4

Download Submit
memory/2380-12-0x0000000000060000-0x000000000009C000-memory.dmp

Filesize
240KB

Download