hxxps://drive[.]google[.]com/file/d/1E6zHarMoJyikxrI01wDZn6JVID8t8kzp/view

Analysis

max time kernel
556s
max time network
561s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
24-10-2024 03:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://drive.google.com/file/d/1E6zHarMoJyikxrI01wDZn6JVID8t8kzp/view

Score

6^/10

discovery

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs

Web Service

T1102

flow	ioc
2	drive.google.com
4	drive.google.com

Network Share Discovery 1 TTPs
Attempt to gather information on host network.
discovery

Network Share Discovery
T1135

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Program crash 8 IoCs

pid	pid_target	Process	procid_target
4776	2480	WerFault.exe	99
1796	244	WerFault.exe	112
1928	4888	WerFault.exe	119
4108	2392	WerFault.exe	124
4036	4856	WerFault.exe	128
1136	2848	WerFault.exe	131
3252	1892	WerFault.exe	134
2176	4728	WerFault.exe	137

System Location Discovery: System Language Discovery 1 TTPs 8 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Set-up.exe

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000003	chrome.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000003\HardwareID	chrome.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000003\Service	chrome.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies Internet Explorer settings 1 TTPs 9 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\Set-up.exe = "11001"	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	Set-up.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133742146526500737"	chrome.exe

Modifies registry class 5 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\History\CachePrefix = "Visited:"	BackgroundTransferHost.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000_Classes\Local Settings\MuiCache	BackgroundTransferHost.exe
Key created	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000_Classes\Local Settings\MuiCache	MiniSearchHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Content\CachePrefix	BackgroundTransferHost.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Adobe Photoshop 2024 v25.0.0.37 (x64) Multilingual.iso:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
792	chrome.exe
792	chrome.exe
2800	chrome.exe
2800	chrome.exe
2800	chrome.exe
2800	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe
Token: SeShutdownPrivilege	792	chrome.exe
Token: SeCreatePagefilePrivilege	792	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe
792	chrome.exe

Suspicious use of SetWindowsHookEx 17 IoCs

pid	Process
2480	Set-up.exe
2480	Set-up.exe
244	Set-up.exe
244	Set-up.exe
4888	Set-up.exe
4888	Set-up.exe
4776	MiniSearchHost.exe
2392	Set-up.exe
2392	Set-up.exe
4856	Set-up.exe
4856	Set-up.exe
2848	Set-up.exe
2848	Set-up.exe
1892	Set-up.exe
1892	Set-up.exe
4728	Set-up.exe
4728	Set-up.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 792 wrote to memory of 5116	792	chrome.exe	80
PID 792 wrote to memory of 5116	792	chrome.exe	80
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 4820	792	chrome.exe	81
PID 792 wrote to memory of 2284	792	chrome.exe	82
PID 792 wrote to memory of 2284	792	chrome.exe	82
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83
PID 792 wrote to memory of 3408	792	chrome.exe	83

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/file/d/1E6zHarMoJyikxrI01wDZn6JVID8t8kzp/view
1⤵
- Drops file in Windows directory
- Checks SCSI registry key(s)
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xd8,0x100,0x104,0xe4,0x108,0x7ff82c07cc40,0x7ff82c07cc4c,0x7ff82c07cc58
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1832,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1820 /prefetch:2
  2⤵
  PID:4820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1924,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2108 /prefetch:3
  2⤵
  PID:2284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2168,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2380 /prefetch:8
  2⤵
  PID:3408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3096,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3112 /prefetch:1
  2⤵
  PID:1976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3108,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3156 /prefetch:1
  2⤵
  PID:4692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4476,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4432 /prefetch:1
  2⤵
  PID:2308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4272,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4312 /prefetch:1
  2⤵
  PID:1680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4804,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4812 /prefetch:8
  2⤵
  PID:1176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5344,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5376 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5152,i,8694449832294041980,3658618690813905301,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5484 /prefetch:8
  2⤵
  - NTFS ADS
  PID:2328

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:3008

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3156

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:1980

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:2480
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2480 -s 2436
  2⤵
  - Program crash
  PID:4776

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 2480 -ip 2480
1⤵
PID:4880

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
1⤵
PID:1180

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:244
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 244 -s 2144
  2⤵
  - Program crash
  PID:1796

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 532 -p 244 -ip 244
1⤵
PID:3552

C:\Windows\system32\BackgroundTransferHost.exe
"BackgroundTransferHost.exe" -ServerName:BackgroundTransferHost.13
1⤵
- Modifies registry class
PID:764

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:4888
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4888 -s 2144
  2⤵
  - Program crash
  PID:1928

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 4888 -ip 4888
1⤵
PID:3116

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4776

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:2392
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2392 -s 2108
  2⤵
  - Program crash
  PID:4108

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 512 -p 2392 -ip 2392
1⤵
PID:4888

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:4856
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4856 -s 2156
  2⤵
  - Program crash
  PID:4036

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 4856 -ip 4856
1⤵
PID:4844

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:2848
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2848 -s 2136
  2⤵
  - Program crash
  PID:1136

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 544 -p 2848 -ip 2848
1⤵
PID:1480

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1892
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1892 -s 2140
  2⤵
  - Program crash
  PID:3252

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 520 -p 1892 -ip 1892
1⤵
PID:4676

\??\E:\Adobe 2024\Set-up.exe
"E:\Adobe 2024\Set-up.exe"
1⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:4728
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4728 -s 2132
  2⤵
  - Program crash
  PID:2176

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4728 -ip 4728
1⤵
PID:3128

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Network Share Discovery

T1135

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\Adobe\Installer\Icons\PHSP__win64\carousel\Dictionary\nl_nl\locale.json

Filesize
386B

MD5
e732f97e91f3dc2cc2e03d18916e982c

SHA1
50a39c460340990aee34b4637729e956916ec025

SHA256
8bd5d8451e00810c56fd7cf93569b76b0f995a2c3ff74864602b93600361ace9

SHA512
5b60cda689d90c64a83c45b80c9205e2dcd86a984b2ef03685b25aea0c866f8f924ea55f9332d8b9b22ca0ccbc41179116d32aaf236ec4d9eece1a9442c8f9a9

Download Submit
C:\ProgramData\Adobe\Installer\Icons\PHSP__win64\carousel\lib\jquery.min.js

Filesize
91KB

MD5
e1288116312e4728f98923c79b034b67

SHA1
8b6babff47b8a9793f37036fd1b1a3ad41d38423

SHA256
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32

SHA512
bf28a9a446e50639a9592d7651f89511fc4e583e213f20a0dff3a44e1a7d73ceefdb6597db121c7742bde92410a27d83d92e2e86466858a19803e72a168e5656

Download Submit
C:\ProgramData\Adobe\Installer\Icons\PHSP__win64\config.xml

Filesize
269B

MD5
fc6656e65cbdbc92cc24b60eec7a3d72

SHA1
db7e3089c668bbbbad152acb66e9cf488708d70a

SHA256
2f917740b60e016b74a1388f71bccc5437d65b3a7feb3f89868a827ea04ab530

SHA512
ed7931a25b58fa3118770e3b585760275c0f07b9191396fc5ce5aba7366f0a4f47f84fc687393b600d2837969f8c77194b37cf6ab6c2691461c689a5b1e0e87c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8890A77645B73478F5B1DED18ACBF795_C090A8C88B266C6FF99A97210E92B44D

Filesize
471B

MD5
0d94d905926d1fd6504021d615e56c14

SHA1
bf44f508cd4ac9bbf9572578f3ca2257a06ad8b1

SHA256
92bb706f5862a33d915526d17fd778f740c25b9c9b6fac741e63295256b537b0

SHA512
2dd7e615e975cc46882a28fd55551abab0c84a6413d19c56f757f7d11bcf5bfcd533d5e5080c943749067b8c72fb7556ddb8e53a66cbec77131c44a9798371c8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DA3B6E45325D5FFF28CF6BAD6065C907_EA01B8AC2C0BE6E5850A0487D704D929

Filesize
471B

MD5
813da8205f547e6318b29dce2dffce02

SHA1
e0f4d96fbb7cfc861d61a5452e519f6f92ebcfe4

SHA256
5db384b05bdeba51bd45cb9976bac34538e7baf2c523a71656401686af98f250

SHA512
9d1a2c7013c0bd3c1c6ecff5d00d061245d56f8a8cedb629d44fbc2375380f3fb6d94f2f457514bfafca797166c71695fea90cc65d0b5123a7b77d2680927b73

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8890A77645B73478F5B1DED18ACBF795_C090A8C88B266C6FF99A97210E92B44D

Filesize
396B

MD5
f4ccc46841d0ec469da47ae83364b717

SHA1
d1fe9eef91ac49bb245f03358800f8cdf23c9c9e

SHA256
457e06c9e7af157dcbf245bed86894fbbc59263a2be5eecfaeca8dcebc006cc2

SHA512
12370712e6c92c66c475f2e6d62df1559aaa8ce9b772ae00c0fb11dd1aa63fdbe64cf25e0a063137e72eb52e99345233eedffc34492f2f2ac0de1495f3f29c24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\DA3B6E45325D5FFF28CF6BAD6065C907_EA01B8AC2C0BE6E5850A0487D704D929

Filesize
408B

MD5
2aaaddc523f9146d9a6a69f4a573c7c7

SHA1
95d9643aa7b5c481f9b5276e0fd501ca53669193

SHA256
753d0e428843e7cd3b1f3def9c50eb43bc82aa91f1075b70020c93c706cbd5aa

SHA512
8820fef39ef3dd78b24f7e229282f669c343bb5f5029663698055771798a79abb8409f4289e9e8396a809c0b3c53c0adfb3d295d2cc619d138a9d471621c6315

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
ff3e2e9c59c7885ae56aa9df93fddcfb

SHA1
e3dd5c88dd1c4e26033d5a890edb0a952f7cd00b

SHA256
b17416aa0fb8929e58db712b6bf4887b212807065d95983becba76c2a3bd2aa1

SHA512
d0cdb8b0961d1c4abf9f6bcc6b92d24b28205a8a5023facd69f134ee78da75601cc33f3cb8590d717791cdccb21eedc1415e8b4d3d949a8bd1285bd61c487bf6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
360B

MD5
b619cd20491b66ac1975785749881a4b

SHA1
9edfdbc3c0d0d492d857c01394ca92ec8e9b2c6c

SHA256
7356c1f0d95248c7cd2edab9642d12aa194b80659c8d93a48681942f24c549da

SHA512
a015f708e1b2795fcee20cb78f738894a628696f74d81a865d8e390ebd71b1bf6f35a55f32bb53bc798c9b7dbfd3d6f8e5a385d3ed30bbfed6f1c0e44946beb8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
dd2a880be77b09631709db4dadc436d8

SHA1
8a9be6ac0f51ba695f3d8c97b6590a4da505a162

SHA256
f854ee539f75f4a3db6ca453b0b8ade382faf948c041ef2fd5f998f25c78dde7

SHA512
52907752f169fb221bea966f839cb28825d371734b663c5e14a21a3a94af714aba0eab363ddc717d505aac40872ed02b1256dd275bde4a0f5caca4a66ba50200

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
f5cdf105b4fbfb7f9ea13f90d8658610

SHA1
e161e56375562bbbaab1323b1f32eb1fe5c84776

SHA256
55b98ef28004d3148d2d74b4c4b22605799b285127d81efd93649a68140f8584

SHA512
680c0d08ffcae1167680d482b21525eb87837b8e5769b49b8b581ace2b6b65908d7d38cc8f7addac6cb196705001691b434310b98f99ce7126d876b1fa8aad33

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
405e1c0bb8d0f11219eaca1f3ff48738

SHA1
2be7d6cfde7f72263ed3ca770cbfdc8fcc497d35

SHA256
ab66e6a7f60ffd0c0e7fe233dc542134c6ca3feda3fec7bed6d9420fd1b87ebc

SHA512
9d91ed65b7a675e388bbde0ce577f323644ecc48da615fac77c564d84e9c8c0bcc28be4910089d7b5149f0f88fca38a2df71f524799cb0751d044c869047c99f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
94c98956e32588eaa20a6425e0e5d193

SHA1
b1a3d68f64708a6c691158b863f338e6ed3e52e2

SHA256
d15c9bd2f5baf1e643fee08ae1a5967819d677ccd8b6bc55abe872b1b4bb54de

SHA512
97b202b4c841f4d809a5733dc458ef6955287c01545968710c84362bdc5a0a2b9a6a1bc8c01df335140da87846f2da74b4ac5ed3ce79ac2199d8d22966828169

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
8ec5f96bc3640052ec36da6cb07be2e0

SHA1
e89adc4b0d102781a070dfba82f7d4508793fab0

SHA256
f1000987e96bfb4003f3025611cce3be93ecf8d393da45768cccc9ff34942838

SHA512
527a94ca54e697224963dd42b32cc2f9e1f61d5d9b2bf45036aa7052796b8280a3b61d58d2d8279973f1d87e3f31ebfb512c9217cda36f1e10d1ba59c4c97392

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8bd54a308e04200b6ff4452bcf4e0bd9

SHA1
63a12853043246ddad8639a09bb82c86e4a6b9b3

SHA256
32a47c3e16ccf74d47070373ad060c921b346135d62a15dc3620410d64feb6db

SHA512
e0af8548570c17c5e13db24040fd52a021033db2ea0502d72b4455c4304d0b499197f0960480dd777a10a8fa918a381d25d1fbded242f32a5448dcdd26ce8271

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
df30d4cf18961c41e9881a02e96676ae

SHA1
ebcebf6281604f9bb0662acab540f5d9f4a7eb65

SHA256
2d351205cfe29458fdd35e4191be7c293a9bdd70a7b395bd684a25a3d8d45ef6

SHA512
2884fde7798187517c50f38e9a7938a7792cbd6c51049049ad0f8a45916e849945425131b09ed3d7dd9a5ce41884d9a3a61525cc6ee8877393ebb768c1a5b3f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
8314b05454ebebf856284aae4aeb68a9

SHA1
83e9594e68242cf958dfe72cfe6e1684d4f6a797

SHA256
9c288c11f54e45b6ca4cca190de8da16fd2d4bbca42cf99184d97a8b58dcef4c

SHA512
38810ff17ba9f77ad7c8092185e1187f74a35ab1d98720583882a6f95bb7ff2d1732f345a28e4b131faa545b76f6d520457db40e7c21171ee3801f4b59c9b9e4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
86c9519724f3895f31693103b841e0e3

SHA1
80820bc4a48a9d9d6f1b9447c937f53735103871

SHA256
7519d9a48fd6b1882d27c0c53d7cefc6e9301ae22b710b5837deca0a8a88123b

SHA512
0c040284142817d0b0e3843b3df64cd698d1069cfd792220dd2bdc0f25594a87ec98e56ed5070aa8d3b2f294a9bc8aa3c537720bf3f9983c457008f210060dae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
8d0a2b9aec8517fe8498f32fee226492

SHA1
6bb539211be2d271771857cba21263f909009312

SHA256
fe0f82f0afdb3af5ce7dc9c20c05cccae72103d8d670f9f3cd0bab4434e1daab

SHA512
391d88f301f262a61f2148687a5e2aaf3f45f05c81d9c29266f23d63cc1c215f17110941f4efbd56e926d78bd7ea4a109d149942c8b113184e5be4c9ad638187

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c01d986ac7cd2733b4d4fbd61521c420

SHA1
f8a88f3d4f0979146123f4d0babb638b27221eea

SHA256
cf1e448b286de39ee8307f8eb6ff60224fa10ed4776d6b2c3db9140e2a86e0d0

SHA512
f3670b1106a1281ecb683ba52075e1019e8ebf38e6010c925ef6aaf04d2a109247f4a695b095bef98f0540e2fce5a19c5039f83536165985c65b54cce7f34508

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
ba55b197d387fa43dd761f9590e0ade3

SHA1
6f1a5312e25c1fe937d13a4db2a3167fb35bc6f2

SHA256
a0c42881d926bbca4f2616ddc8ec3848ff0e5435012261c9746dffb7fb230fa2

SHA512
cc0c9e29270ac9c682e7cebabae2c4e151115054cd67754135220b79875020f949461b2bbdff3b730cc1aac622d642f38159bb203f595b1316a0b3aeb5651588

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
0137e4d9291a1edc2fa9fa7e7bc4e0c6

SHA1
2eb9db8d406e59a16424bac9fb8746adeb7a7291

SHA256
a937c3dc1825adbfbf801a8ec5c2bb75f8f850a9c22f67531a11d75c71c7527f

SHA512
b28f646da4d049bdd3a375cbba561574c5ddf87e8cf5cf63e9c3544ddec40cc10704d3d6f6f990bb1febdd4710a58eaf50810adaec853c25a31153104a536ca1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3507e17338609750153620f88d48c676

SHA1
68cf693a61f1cc2796737397d9058f2a9d5ac5f8

SHA256
792ec81684ecd6b496e4bdc22456205e28ae50202b81da69cc1d45dcedcad90d

SHA512
b9fb314e5361643f1db0d375ec85342a0963fe2416cdeb37df312b09b2accedef0e80f1d7ba2e8039c652671a0abc119446d59d3e3c473db1b22f1a7c392779e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
6b25616ad042be1e620635c5ae8af98e

SHA1
c0888fd65e8b810ee11f1733f5b361edf6833b9c

SHA256
0c7fe6efdf533111ddeb364cbe2b087d796079bdc23a8c993a43f51487f4a875

SHA512
0f50225d1da5a3008a43f0c5b4f4a04b089a5f592d1b73ad2a038142002ebba14f1d4921613f778de7a69e10c038053fb058b85a5e25975a0097e230c770e6ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3e96bfff70fdb3b97ffbad9a0e7fc61a

SHA1
f6bb63a70c5856da3c2310b0cd28fd95c94392b8

SHA256
369668c8a520aef51ba3972f7806fac83d219391d7228e23b1559a6ace131e66

SHA512
e854519debfddd629acf10a9f85d5a9d49a7de4155336a8837732a2d4f7e8b2986db61802d0140b6ed32bc30d181efa12ac031bca5de0f774f4ea5d99ba95317

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
230c4e3df6a7531d0294fcc9c78d62e9

SHA1
05466293867875886df4a7646571df45381cd308

SHA256
ffed300ae4b19d0785afe8d5829089b4242c02ed065106f9af75e009cc80d9c6

SHA512
0ecd13d5b193ca5d77538c43762a878866f6263fcbe7f0c0e7b6ba40c297c2a94180aa22620d889187df809f8d07da24a685162f3610c5ab38bf29cf3bade8dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
10e7158c10b1de76809d373839ed0529

SHA1
6028a02262bb683346ceb48fa617b554b4a7f905

SHA256
c6b6ad7cbb65869b0e75d9a7c325d6029a6f2cc71c27aa5ecd30b2e6cf6367ba

SHA512
e36b040db4c01c6b18c62b5b8ec9535a3df88e98c5c31791c07609d431f1cccb2e90aca3a881f59f8e5f2648bf128c1c9c85791076050062f5c71e5f4e5885c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
87a02c7ebfe5fcedf9ea5a464397c993

SHA1
d3e111f491b371059222bc9dd43b6dc111b70479

SHA256
424a37f33cf343e8ae2944e68c9c1990657c03745bb5e19850cb4aa029cfeb21

SHA512
84caf7bba4ee97a0c937947c6f987dd951e9fdb1984a5f7761a0861a0483fc6e953874b6e9adf744ede9ff035afff9838e51998887b427526028f648563bea2f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a38f76d30ca519c9f4230bc4306651bf

SHA1
f23728b25d9fbe4b8c37540918b7b7e5529b421e

SHA256
f841b265bfbe7e4dd20d7fe21f3fcc925d39d1c6533dd2604749bdef768d542b

SHA512
674373d03d46f0aabd9ee480a823fcf9270ab8fca21f4c3921e8592faa57a1e5e1acdd74c07914aad0c41ba77a79a91693d94e8ea1f7efa49a8a6776fa5dc453

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
e278c9c5bedef28f523e92c730f53a10

SHA1
bf0758b2f31599ac043e62c88426ca90cce2740d

SHA256
7f412686709710e0feb9af5c5cb9def02cf419fe3eb7003d88ddb93803f21d6b

SHA512
e7d3d0fd27c7f31d8867c6e168ffd5291a122b07af8b18de618ec711a9039e3d9e50ec10477d2d666913dae12b15d3b964e24ef3531a2d8031d25246a09f16f6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
139e492fc3456a4879dbdcf711cffab1

SHA1
0e43bca93219a7a740c46bef82b9810dab3878a5

SHA256
b0fe5e3ceb1eab283ca6fbf883eb512ec4b0686428e1317c6ff883d6f9ea2a32

SHA512
d599e607416f8f8ce1555c08f2c877ca5683dd741c744ba96dceabd03520c28a5bec8ada988c09a56ea37b6a38e1e0dfc9e1d73416ec657293577a23e5d218cb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
feef6050f094cf0b09983ca0e163345d

SHA1
9d5c51884054a469338adf6dc768058caf6c6468

SHA256
4ea708104e2114c835a0413d15dc9e95698bab1359b1553d2afeff818799f68f

SHA512
a3293a149c68f8aa7e6c59e7d53339eba01b7d2c3014072bf7484861b306878d7f1a93159dca4885c6e547746759b5544397ee3ebc02e80df675721011792115

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
8b2df96c93ad4a145f6e524ef1b405c7

SHA1
0f59abb6f59b6fc7cc2c9c9e3f8ac6e3283547ca

SHA256
d362dfb75ff3b4eb45ead46e975d6dea81695a69bd2e83da36bc39ef7e594e5c

SHA512
392456082cb03d2453fba6e1ee47d2b19a13dead886d6d10181140759e917bcd45ff347fd77d68673d17eea4f2481387dc605444b4497d55ff3226930e8be49d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
0fd2d4bdf895fb90beda178f9988e9e3

SHA1
1ea5d5c5a586ae7c96b0b14e79fe19b4b3ba979e

SHA256
a9a13ba795e230937be92b48569597b44b26bfdd200a30a022ee70604a439cb3

SHA512
edc64d17dfed9701e8608170e10d980bddbab1c22b4d9f83c069de71f19c55c983989cb6c82e57c11310f63bee54e3e4203722d29ad9ce7057c807abe9312c85

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1cd9aa7fc32a17f4b2a607b5a2c4c87d

SHA1
c7bb800c36f989569cad896eacbb3cac5f31d253

SHA256
c4443e11f2630350fa99364675c4bb0a7d44ccbbfad266fe0d85e1cc19dc5bcb

SHA512
d25561c4f1f06e0300c9fd5967e290a86bb82d3d2c5811f5a7eb83d6a67e6d7bde79aa0b832d016afd812e65cb6b896af55a32640acf757a860e0e8a288e8a76

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
12496d6b97010bb9b26dfdf8e151193b

SHA1
c01e852cffbae2cb56aadbb5f1ae6090392ce3a8

SHA256
fd82b5f396a6770f068eb80231ac1214505fdd374cb7fde2c8e6b445527425ea

SHA512
78842dcc3b9e639a5f1ffa2eb4a264e014379311daa5fbf826b3b5daf70d457f4344b1eea1ca61d41386edb0a9d20ca68d510872d8795c71e6f9c5d91ad3887f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a68c284f5a2b2cf1134e7fa2c4281b7f

SHA1
e4128b96247429fd94bcaee0776f0dc32648328c

SHA256
d244c273a33bcf0e6df17a09d4f5acd1b70735568535f7fd88ae5062baa15ffc

SHA512
fbdcae311ae6f2e5737439aa2dbce31a87df9c4e83345c60dd4e362e8fab4726008960f671cdc6d41acfdf83a0894ea823c54b9c25a29926b111d2ffbf1a35eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
55ee99bbed927d67426fc28b117e8ca2

SHA1
b11d11f053b2d58c306a6f7dbc4c8f01442f030c

SHA256
899e90282278be1bbf4b8a8975cd3266cc90da05d3109724c9c892a723880432

SHA512
b81dbe1fcbda22e7502b99cb8affd5ceada9997303f92cdb77748d941ebaafe2c93eb176556ae60adaece0ac0f524664688299612a83b76806826908dd9838e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
fb954d440341a38ddab0af4f37e571d5

SHA1
f5b00a9b54b78bebbaadedd8c14f895d4f782658

SHA256
34506ea867bca2c28c0118a4eccd02d33efd87705a01d3fe842bd0b9a9844eb9

SHA512
5e967213e4fca1c6801651058c166c47746b7e957dce596d376dc6ade0adc888f864835b570ba521afc133a8dbb9c36b91a06156bff01f5f039ca3f4ba2af75f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
0d2095dbf67a2f48138e0fefa1713ee4

SHA1
a6ac8ac34231e5bad8778e7172772cd1244e8365

SHA256
d711b607546a778fd04aeffaf4b5c2edaf111cb9750fcee9aa5f7375536d0c94

SHA512
dc8c052b06bdf817a339dd55b14ecd741f7a329ed609ab689099749a5cc9407e13944194f4318990d04da2878c39c5f4d1b8dbc4ce991ae7778c9a626d154d22

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
0ed3c023b51cf314da85a3069dbdde60

SHA1
df47072ea5b3379ab8e312ddfd39eb440e2598bf

SHA256
f82ad841e75486aec4538c591a4bacd0971e8804d0091d6383c9adafed52cebc

SHA512
5e53ecce77154f70f5921c064a3d08cce793d142c979b342d0a1e7ce1709438a5d15a5085d63ba6115d7c49895b1037ed97813dda142fd9b0aa9e22fc678a035

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a50540939734508d42d55c0a134fc329

SHA1
f377d79d1a0fda43ab8ec7764db68558997f586f

SHA256
9076a0d6c3777601c94015a8751e096b6a7f2fd153a8b1fcf070539fbb30654b

SHA512
06c22a908b647540dfa14f61560f38557e7cc4ff44b8422687bbf3561f6e9b0f9a3788205259034f21f7a59b78547a503b7a903cca20464fc6e186a645b8cceb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
bc3a75e95aa43700f23d4a9e7532979f

SHA1
0fb7196653dd000c93fdd830956bbd6ffa89842b

SHA256
b02dd502cbd6261ca9e3bb609127365eb893f5b7db1ea6a92641543d27cef797

SHA512
17f2ad075293591091538b869965387f1a9584cba752a1bffdb212e1fad15f3d3cb76960770bbb20b02a00389b911be18fbcffadd349c63ec2a7738bb15516a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
7800ce189863ee0d6dcabae68649bc7a

SHA1
a4b1a137ccd9822257a895a0f35a47ad8d6c205a

SHA256
855fc45e5c02aa277f216510e7a16ab39ce6b2947ecbe43f0e89110a680091e7

SHA512
9ab44402edc0a4d15a9d6dcab5d03072bfe2b0e5bf42ca7620a50d96dcb29102484901a8a590583ebc529393cfc6bb55bb943ad05058cb03401d97a9ac56db77

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
34a619bced491a3ea67bfcde095d1bbf

SHA1
3a4892923338d4b885cde3b948393440837d0db6

SHA256
3d91dbddca89deeeb9c3a6ec6805c778b68e5e8b0a038c3182c575fd0ac29160

SHA512
af49f70669ff2cecfe6a291d0adf1729589036b9aedd1556560e9985064c7268dac6e55d946b69eb6b51f6c2495d9a8a7effc43d3573a96f4016f7ee4685fea0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2a467d7e5baf654afb830c2450c7bb76

SHA1
9a8a4f7d5add69f4b3348b9ffd9f9ecd996ceb74

SHA256
ac0a31c7d286385f7d6da587caf10b8f99f4e2dfc156b05c751f49b6e472c342

SHA512
2247dd084c0d0419e2c2e73f73ed5f48651e0568d16c8f52d6e2462930a8782d6009912417f319737d57d9f0fcf3834f66bf6758340719c72581a847f7edc286

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
e3c417d778e248def5b60f54dc662905

SHA1
6085476cbf2aacc8b1410e7b7f542fc5f21c003f

SHA256
38d1c61c33fa4def17d59770afd45c88ddade40faf6e651e6bca18f0654e7dce

SHA512
1c8b7552a758097162ad8624068c91a156004802e23d4c490872451213ffce842dc636f8bf0567d6257f75b1b29498939e7eb5a58b83be3c30f5c273af48c647

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\ae8885e1-f89a-44d6-8ca5-eac18e6440bf.tmp

Filesize
10KB

MD5
55301c42ff537ccbd46dec4e9d75d23f

SHA1
f1b3e8fd446520693dd7d56003d3a49c003e1aa7

SHA256
d9f3e4a3936042d547f69e47073180d7c957c287803e08d85d06f564f98c2687

SHA512
ae335d15fa6a6ace4532a0d8625b078197a9b1577351a02d50a1905264234fe4bc662d61faa8135e27d4429cfd980655d4ad9c80e089121ec53dc50c94768b3b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
5be928164d26ee18d6446c93d022ea0f

SHA1
0db7daf3ac7c8be1ee843cde2bc8f7c7b2513205

SHA256
ff14847cf99e09bb70bc15cb4dfa979f6b5a2026a8ff78a8a0edd29cf01a5627

SHA512
4ae071cdbaa65dc15b3464837c034934383926cb1a7db0e86261c257512c0f9fb39e25f08583430460a1a0e2d59e95f8fd24a16096294a349025b9a93935b068

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
bf1928b66db97d361a1d0bebaa26c2fd

SHA1
14a042bbbe07cd24357411e1bc782318c4203aee

SHA256
70d947e9ce8b1e7a0daf0c4192c42009a40124fec3cfa11747f97a2400a1c9aa

SHA512
cd35062c32cf73bc5b8265dcf5d91f0123a1baa401e57800e797a1a79575a6b3da501980d02247d9c2ba1ec30795632dd7f162acd86265427b9d50c4cc9fd6db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
05f685f14dd57336e6e89dfa41a92ae0

SHA1
3072f9dce3ead99e197941db47eb6c2d877d8193

SHA256
f1b34a71324bb0e776aa440d061c2ce72dbaca9915664a817ca276e910acf11c

SHA512
9aa29e8998ba56e36fff448805db06445052c18b9d22d750f976b8548e4da4e3c0dec03b53c1ed34ff5358745678c854e67b67305152d49e39f6d139e8a9c6bc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
6b9649518d3526deb8e71ecd9ab66286

SHA1
828f4a8e41e6abe9ec393fadb462e3eb82902a6e

SHA256
c5b135da81d43ed6393edf877057f129571e326beef1093859b0307c3b8e9829

SHA512
4f1d8054feb69e6090abcbdbb6da829e0020eea8db7e8b0a4855d064b9a6a765ce1577ed4a7aa86890ce1802580aedbca13c4fca1ba3c822afae766d64fdbfb7

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\BackgroundTransferApi\7f7e5904-4899-43aa-ad31-ce2d11561a31.down_data

Filesize
555KB

MD5
5683c0028832cae4ef93ca39c8ac5029

SHA1
248755e4e1db552e0b6f8651b04ca6d1b31a86fb

SHA256
855abd360d8a8d6974eba92b70cbd09ce519bc8773439993f9ab37cb6847309e

SHA512
aba434bd29be191c823b02ea9b639beb10647bbe7759bbffdaa790dfb1ec2c58d74c525ef11aacda209e4effe322d1d3a07b115446c8914b07a3bce4d8a0e2c3

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
10KB

MD5
0c71204dc7dd088aa8f1b279e29d7bf5

SHA1
475dbeb8589312574e6b5f3ca2913b8b80af155b

SHA256
28f655f695c0992c73fa7b02fca2c93b65aec5b8c82297e1be30ed9016eb54a1

SHA512
f10ec78286923446833e4f19900a790be0440885688fe273a811648de090a765ea82ef8ccc062987ec12285e0de608b803671d01358a18dd4504f90845169826

Download Submit
C:\Users\Admin\AppData\Local\Temp\CreativeCloud\ACC\AdobeDownload\HDInstaller.log

Filesize
4KB

MD5
247ddd344580fa4c0a2b8d42ea9c8f08

SHA1
af23f6e89940084012ed1bbb6354764cd3c783d6

SHA256
537929153d4fde585bf7a67e48af037b0578456fddd02a757a6ff7b4873d60a5

SHA512
610b70777835d31e73ff5ea8cf0b5d106e3bda8901856160479d1aadc4699db90b4060a1bb73809fa0d705b53179aa34ad43425e42d88a7e7ac900a6c3c99e7f

Download Submit
C:\Users\Admin\AppData\Local\Temp\CreativeCloud\ACC\AdobeDownload\HDInstaller.log

Filesize
8KB

MD5
709ccdbf76495aea2c6066bf6bf77c9d

SHA1
c2d3aa2f648926daf4f65724510e3f42122ee2ca

SHA256
af70e8a38eab8002803f04dc0e46c6d7f1893a3c0808c0d64cbc2f918c9ef1d6

SHA512
e41e2c33d51f4e6b109ebebf972f543fd926eed47af1e41af594447771e19be0df52b048c008aacde918ce93a35498afc321eb80fbf8a0e1bef1634afa16cc37

Download Submit
C:\Users\Admin\AppData\Local\Temp\NGLClient_HDESD15.3.0.468.log

Filesize
3KB

MD5
594d0a5739571850e1c27ab6c8d4b25f

SHA1
56aa8852b14b9b8f22efc2881b0a0b71e399580e

SHA256
10298e239d7a09d8ec9b001e6c76fcf983ae13d13c5d881347ee00a0d0f97095

SHA512
071695c3d166cc8cdae259ff2ce0ac23a36428b60019a36b9e65e000ae1d8422b23a689424ab29df37981b8cc5960c2ac1e78e06ecd739d14a43c0c45fa6cacb

Download Submit
C:\Users\Admin\AppData\Local\Temp\NGLClient_HDESD15.3.0.468.log

Filesize
1KB

MD5
8fd6fb37cd173040768581515871efab

SHA1
322c9220f9297e326f1628eb550d12c8028c4921

SHA256
a9dfc6ea1c31bb089b00062d90d1d9e6f5a595ac13d6c02a6be4ae4eb0d679bb

SHA512
b3aea7fc2da5185dc75c8c750543fc860db4b6b2495508803ccb1abe13e19001a3ddea6ee2612e0a1879df1edb3efa30fd7b55f7e9fb476b429cfcbf8d1100b1

Download Submit
C:\Users\Admin\AppData\Local\Temp\dat6700.tmp

Filesize
140KB

MD5
d070306a9062178afdfa98fcc06d2525

SHA1
ba299b83eb0a3499820fddcf305af0ddbda3e5d0

SHA256
8f5ccdfd3da9185d4ad262ec386ebb64b3eb6c0521ec5bd1662cec04e1e0f895

SHA512
7c69e576b01642ecd7dd5fe9531f90608fa9ade9d98a364bcc81ccd0da4daef55fd0babc6cb35bff2963274d09ef0cd2f9bce8839040776577b4e6a86eb5add5

Download Submit
C:\Users\Admin\AppData\Local\Temp\dat6711.tmp

Filesize
140KB

MD5
e204643042591aeec2043c5eae255099

SHA1
ba5f2f94740400f540befc89f1c4d022a26faa84

SHA256
7f58f56a7a353f8fc78ec2757394a7c7f28165e6bbf2a37d6a6e48e845874f3e

SHA512
7196c5b8e88100a08eb296be7570df4d045268ad6bab1c45ebaa9063aa9b46b8896886e24a9f861e322b167dd95e18d5a18abb76f1bb01c8bc85c36bead855ef

Download Submit
C:\Users\Admin\AppData\Local\Temp\dat6712.tmp

Filesize
139KB

MD5
dfce51814cf6d2f42375f948602cd99d

SHA1
766e162ff305343010b67fbaa28b36af277c5b34

SHA256
7a8a945586a1d21d2922cb4aed9e28d872129f6c396ac69f47ef3e32ea972ba0

SHA512
2c9489c18719ad29928e86a9e631e080b024c882a77a582f40f4f86f625de9b08ad3c09710d5ee32b5cae5284fd960f412f05290bdb3b4709f097b269b99ce21

Download Submit
C:\Users\Admin\AppData\Local\Temp\dat6742.tmp

Filesize
103KB

MD5
fa794ec12d353c26805ff53821331fc2

SHA1
cbc6658badeda2ad9b0d2e03a0a35ff7fbba542a

SHA256
cfdbd8a2aa463c11e483dc10c480acd274e9786632f5571a3970e8a20a2d8237

SHA512
1161afdbf6fc9b74421031fe6e139587f291ffaec03cae4aa76c1a86e10a69c7b1602ecbfbf60287ce8ed926377ad159992cde605ba98e75b212e971b7e14f18

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\content.css

Filesize
16KB

MD5
edacde36ff06bd26f1907ae092eac998

SHA1
c25e9052ee5b28ec28e2eceee40217302bf2caae

SHA256
257634b6fa84dce998b31d6497330f0a0661efbd270f58289fbe026ed95b6f2c

SHA512
7e8d48e71a51659ea52dccc2d7c542580c9ea1953ec9ca2ad77d3c0926c5bc77167f85121fab2dcb7fd4d6d2f04edbd90815b76979d3269994cf662fadc357e1

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\content.html

Filesize
6KB

MD5
60e80c05a9d6aa602626fec33cd99e3c

SHA1
7aeaac92d57fbabe5da2c923eb0ad1bb22e647ab

SHA256
5bd6a4bc514b2e697a0f0e8b7b8c0be0af34a9e1c25a628b286a5cdf8e1837d3

SHA512
838de7045b1ee4542d4145276b3fef5ba60dc10ed0066266bebb3e44c5485005d33dceaefb1cf3fd1fd1bc7364622bb85630957a243464c4c738a415b30adf7f

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\content.js

Filesize
36KB

MD5
d5e6dacf9aa3069e9241780cbc82d50d

SHA1
1b510f2e06b363b4b138afc409a811254f976dca

SHA256
4c3f64961a872731185c0db4d155c9db73f7885ec4596f15098857c5e1fe91f4

SHA512
a3485cd865098e0b6bad5b03936d8ca233eef42ae88f40d660e40a95cf8da1edc4788402c21cfce3eaf7084fadb35d121b1074e0e30adea4c01338aa1a327f39

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\adobelogo.svg

Filesize
749B

MD5
e7b1717b9eba236b9c12be7a980b5b40

SHA1
f1baa3f41ffa5dfff320b7e289964cec54f19a99

SHA256
2a48e8db0f3991de1088936f56c583fe615fae4b9e14f4ebe2b33d29138088f3

SHA512
9c8debe604372ac1fe3945579ee843f13df6f8d40f2c402590743009b39c5f80e859830fc422d7f8d447c4e30f1198584850de657facfaa2b84955d386563b88

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\alert.svg

Filesize
958B

MD5
332816d7725fc31725b678cff1cb6dcc

SHA1
876f938efb86c1bb1733b47ec279335de97576da

SHA256
8b5469642507c00b9130bf7ed17a1e4d221e2a93dfd4d2972163650c4e94d714

SHA512
5c4a678892b1a550a0c85e77f75c8b56febbfcd92c658dab198197ed17d7fad04d7b65f8adc17e095895366bf933421cae30e430e136870d3e02e9f89d115775

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\appIcon.png

Filesize
2KB

MD5
26e9b0fe7397d9c072da92fcf6951b11

SHA1
4ee24ef82e7ee4fcc980e3caeca90b6e0d99b59f

SHA256
e4c2314a50cf372465c97d955645455ccad1911eed45ff2c2de5a310316ab15e

SHA512
782b380a45eb82aeb69ae07938b9c0f211525fac4718c30b96c28d546a93be1cf000714df2375596cb6d237f3b3cc84f304fca73a732a7e044864ea329013425

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\cancelButton.png

Filesize
295B

MD5
7ae9fb845b9137ef10002fe9d0f5c643

SHA1
9f3fa2b29b1b40e1b6794e5d624524de297a8b59

SHA256
e9e5fc264337bf6845b2cf2720ddcde8936cb120328087917bf94c5911edd74a

SHA512
4420cdfbc47d2ac804f1c05840e4113b098ffc71e95e11ffe8f95342f5a75dc0f35fe8012984b0d645f1310b524f66069ae0c0fe053e0d601d39aded321c15cd

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\ccIcon.png

Filesize
550B

MD5
8d2c84506f3f48a810eb7232dc000d6f

SHA1
f4a238c1f7c02c7c907368b939efba7512c6be5a

SHA256
c4620bc8b293dd89db628d2002ef9fe02055e2d1cff1f07e18a3e2e4942ab7f1

SHA512
0fcca755a410c7ef4e6f056b7267aaf23d5063dd8230528fc3765ed1e3d12042c930f999a54498e754fcb3565df17636d7a5de2e95e142ae139d17a744ec93a9

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\ccIconDark.png

Filesize
654B

MD5
13b5f5e052334e0ad6d31845fc859e3d

SHA1
b71022382904d194a5d8f5cb3b1d0dd92e254b16

SHA256
87fd64c46642058fb6d7ae4ab2c71ba5df7ce12ffb8b9383edc7bb7a673f0306

SHA512
79e77ef0cc83c24d3d0f04a2340e248a8dd11469f43740b6453913648cf2c3c5592053dd4a5a34c81f3ffdfdd0fddc5953454ee0d44d3ac946b2ddbe17ada584

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\checkEmpty.png

Filesize
167B

MD5
d13cecc413374c4ddc22a9edacde8a11

SHA1
981295dd1f713584591716a6e753346b8a89215a

SHA256
b9c9ae215daf1bb5b6692f527375207aedc138891947e5f6c1c6b549c2ebf39a

SHA512
a717e64430a4680d09c555183c69705998fbec4cb8aa41ac6ad10df9fbd4f4e2243548689f12695760d5b191ed62a38a92558bc88a730004d7119dbe017c6241

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\checkFull.png

Filesize
317B

MD5
9f7974bbcc96f12769c1856045eb7bc7

SHA1
fa0b9b9d709718839ea525ab838260a4e124fb1d

SHA256
e7fcff2549114496e8141f46a7606f740bbadf22c9ad818c40d9ff9b9ea12198

SHA512
bc38c23791a8ad4e596e921bc5e391d39bea998434915d5c25b1b37015a089fe91ce9510774c48fbc91e52400c5843897a5780aa1c2cf5c8b73d3f89a2aa0856

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\dropdown.png

Filesize
224B

MD5
ee8599707751befddb2b94bc79525c15

SHA1
e118b48e25fe42d933377b03fb5a9a710e1c5caa

SHA256
c1f6844923f7c311d996d81eed6d8e769d52df6d95c898187d92997abbb2770b

SHA512
cdce6d59c807dd1d2b13af39e2fe078b0c0ad51b021dc30373e18bde2a807449051f3f9084afa15b2f6d943169c1bc246c7dbe6e965ddacacb961f67269fb548

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\dropdown.svg

Filesize
289B

MD5
4585f70294e7b625dcd1ea8c585067a5

SHA1
11c92ae523b0c588c5469814b0c3c7778cb3f133

SHA256
7e58a1cce147df03605a92ffda1b88ca26005c09d1eb9ae56f37accdebbfe348

SHA512
deb1ce83d9bdff93eff950ed267076e5e8a7bb43cd2dde28561c3d07f68094a9c99df594bf2fdcb38fddf9656cd51475108ad1b29f8c9d4bf197e6da5a093b03

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\errorIcon.png

Filesize
466B

MD5
7978536150734ceffaf0720837e8b302

SHA1
7c11361af6e41d00beffaf4ef9e677506b32164d

SHA256
5d10637927b7a623428560eaf18fb8eaf439cd8731199c3b4d251b9846841183

SHA512
da5bb4329783ba623e12d3dc50b2c080e8ac2aff4d4f25dc3e1d84561fd9b40b158570b98dd24618762562674fc1b7d10e081677f214ec859ecc5d0b477db0f7

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\folder-open.svg

Filesize
602B

MD5
3530c5040ac9af92cd0a7d347f764593

SHA1
b815ef3654ec2c677e8f8f68d8527b6d8142b4e9

SHA256
daf26ad61aee6152cf7c0e8f2d3936d0c220de2a3c329e6ce0fcc007cb64ca51

SHA512
0ce187a12445054e270337b6bdd6b035e8fadb3b0a4e8c822833c12431bb520340fa509ab3e1df564cbf67700b9ba78ee246689267878d386e88f709d10c1fbd

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\productIcon.png

Filesize
2KB

MD5
c798f5f4b98fd335a77e600ce21e32dc

SHA1
3db71eb6d87c8a4fcc6fded25d420cf7ea79231d

SHA256
9b249680adc23b858b08a62ea83fd8373e3480ff6f9120195314897c6e5f2cea

SHA512
f74351c5a9535920a81ee42f8caf82bb0c97664b6928f921b4bc74cc446ee61884b1620bce5e57abd6e1a3311d6f70c1f66c459ee4531cbf0197093feadd29b3

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\spinner.gif

Filesize
18KB

MD5
7699a4c54b1f5515a64e93fe3f801321

SHA1
2e51f7e1a331d921eaf15bd7dc9721a742984d47

SHA256
9146e2390273ac868609dac1be7f1a0458b7d4f7ecdfe1eaec107b3211f33aa2

SHA512
4810abfecc92866145a22f73639264574958d6db1157da0b6ff0472c14d8171ffc633fc6ba04843fcfd617ce4f0c19633475d2501ace48f8ee34ec8fa6fded87

Download Submit
C:\Users\Admin\AppData\Local\Temp\{1D0DB597-DF6A-45A0-8C99-F58EF5F6E695}\images\transparent.gif

Filesize
43B

MD5
325472601571f31e1bf00674c368d335

SHA1
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a

SHA256
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

SHA512
717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\common.js

Filesize
2KB

MD5
d98f70ffd105672292755a37f173c2ec

SHA1
c0154add295ac052f234a0282a62b704cdd01998

SHA256
257a42f797f140667c81930001e73943bfc243d50bcc775f75d0334a2d2cf2c3

SHA512
1909cc7e4da0949a469852240be2205209968b18b99f7d967bc0231de33d03c7cbaa9578972e30e95e6d7017aebf9cd70a55ba22cdc9d5774d2a237d3eb0971b

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\images\appIcon.png

Filesize
1KB

MD5
930eb6f1ca2dd339b2cfaa23f3e7c4cd

SHA1
16f569b9785919d0b6a939aa4f2b3e64b0966a85

SHA256
ac5b06748aacc67f7aa9257c2f5ab1d3a81077271b4ea69d24daa3be616679b8

SHA512
7e025d0895cea47ad93dd527d7b4a6777a00879351adf176f08bb408ca5f43db348fb9217d45c44d86bb7f2e6ca4ae4fb57fe093a616c9db9f28765fb1771532

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\images\appIcon2x.png

Filesize
2KB

MD5
69d2b84603309bed326301ca60dc01ba

SHA1
700351e3f8b9e7247a78185201121c50945b42d1

SHA256
de028e7aebdb9d6a7aec2668b15ff42936da28ea73c8ffb969fe58025d63707d

SHA512
ea1b501847d28e8c0a27fadc6b64e6eabaa9aa09d30e39076d2c25e15ae20d36afe1d760da112a38a3b7c80a54304fd5f62cd9324a8d38fbf1e13e892a672a82

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\lib\jquery.custom-scrollbar.min.js

Filesize
14KB

MD5
ab3adf4aff09a1c562a29db05795c8ab

SHA1
f6c3f470aea0678945cb889f518a0e9a5ce44342

SHA256
d05e193674c6fc31de0503cbc0b152600f22689ad7ad72adb35fcc7c25d4b01b

SHA512
44dfc748d0bd84f123f9d3f62d5ea137d9128d5bdbe45da9a8666d09039eb179acf0dbb3030e09896fd61e7aa5ae6dfaffe9258d80949a64d0a7e45037791fb4

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\lib\jquery.placeholder.min.js

Filesize
3KB

MD5
e13f16e89fff39422bbb2cb08a015d30

SHA1
e7cacaf84f53997dd096afd1c5f350fd3e7c6ce9

SHA256
24320add10244d1834052c7e75b853aa2d164601c9d09220a9f9ac1f0ae44afe

SHA512
aad811f03f59f799da4b8fc4f859b51c39f132b7ddbffadabe4ec2373bd340617d6fe98761d1fb86d77606791663b387d98a60fba9cee5d99c34f683bcb8d1f9

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\main.html

Filesize
8KB

MD5
f4b7942d6563727bd614f10da0f38445

SHA1
84f22240f7a5ed1c23b09e8677ac2ac3cd4e26f9

SHA256
e4bedde22ed405d291c746440a824d5f8527fb232e7a6be2ed9a76465d82f8dc

SHA512
f79b24ac78863a4ed87d41f37b2a5bc27017ebc5317f0a305d676090a16aee8a61384b476e7e9a68a024aa8da4784c1bd4f118766caf4450ec97af430e7074af

Download Submit
C:\Users\Admin\AppData\Local\Temp\{4C5E50B8-D51D-4FC4-92A7-91F7D45065F4}\main.js

Filesize
58KB

MD5
a8f9eb478c7512c98ca1ad46dbcc298a

SHA1
454226dc42b911caafc9a1e56d8ad0000bbb7643

SHA256
1df6cbdc80c1df47d93d6e7516a2d7017362413a6b9d93634e143856695c3645

SHA512
ae3198cc6ae739f3009359988f5c090664e5fe8422ad1cf739fe316e66f344c10385d1f841c7b0e3ca9f7997c79d95fa0559386b6dec10641ceb8c290b14f5b3

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\Dictionary\en_US.json

Filesize
72KB

MD5
c693e1bd4feda683ae5c71f2bd6b9de8

SHA1
2f3c32dbb95623c52ebf3b608074afdfbcbf050a

SHA256
5dffe13d4c72f59dbc6f8efb439350518acd4e8e07efa124973cfd1a625f60d4

SHA512
a48c520b1432f208f7494759d316cf2411163373ef7ba5bb2b2121b4520beb2932d4ea612e9d2dc8997b6221fa2d44c9312928c79394a5d8c577fa39aa5007d6

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\cs_cz\locale.json

Filesize
405B

MD5
0e66bd0983b2c3516613cc751d69971b

SHA1
551c857dad708f8e0ddc6b618de7966c254abe0e

SHA256
7d3aecdf9b1ea5128ef87a1e6e74dc3e283fb28dd6af8113b4e99040b15747d4

SHA512
44779ee6d29d2747774726b2c3f76a41e6775548d57705f16d59ad3a4ca1be44fb6cd12d1ef0f6f8f228911fc317f6451c403d04f6f1fefb097c8763d5801087

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\de_de\locale.json

Filesize
386B

MD5
d3f198446f78d6e17d85882563ea6b36

SHA1
3bc7c9cc9182935e4ea000ff951ce9493b99fd70

SHA256
e683843b5ecbe6bafd03c26c3762e9e4fe37cb5dc1d9a7188c9158553f3ccdca

SHA512
d3516f25c4f62a5f0787a173f73e001a149e9fbead9ca85964b94f1786635b246ddf182cbf6a46607938c24928939f41c1812db6b9260a81b70cc20b8722d046

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\en_US\locale.json

Filesize
353B

MD5
031aa6225b953a69e223fc71566058b7

SHA1
45a89a91cc432bdb698be076c8cc1db027b3d50c

SHA256
b754524e0f798d8db77bc777a0fed09978fd3fc9d4494f227b7fe07185efd9ce

SHA512
e61497f74508016c8ad755701c907d2d5e053f6e2d7b1228feb0b9276b8ad202975d81ab2806d5c3593adf6ca1bd320d6bbd6a59e565ed300060e851867b52d3

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\es_es\locale.json

Filesize
390B

MD5
592ebf7fadf7792f05ddae25d75a9d59

SHA1
2853af5a44ee3163261bb471cb7a33f0a0bb2ed6

SHA256
1f10dc92034244bbe5435c8d0029773025b929a36f3d30a4a5a3a4526d8a874e

SHA512
59ebddad4576a121b43181547cf0f806e7fc1192428e782233f3e20c4b75e0e7a2febfa809efe7f9296eed38ccc63f9d4f6850c8cdbaabf06ae99d80c93f2f9b

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\fr_fr\locale.json

Filesize
383B

MD5
47c7066b8c2d86ae7047ba355e57230a

SHA1
5702d5eae9b69896db0e2c9ebe8d6f7b83abc6c1

SHA256
e9c432fa590566d463502adcd51a129f789ebc01c59f6409c5734a0109f05156

SHA512
58a0da179b19c507f1ffe8fe4ca1312f2f0c8799c8f4f53a279b1bdfde311105c76bac187ea179598dc7d13fd32fd002fe0f06f5aa1b1a67cf147e7a02dd9f9f

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\it_it\locale.json

Filesize
495B

MD5
78d8a38ab29f2c70fc0552038763561c

SHA1
51ef11689a9e8fd6cf629e2c0238e12d59341e72

SHA256
2c5ffe288391affe2accc1988900d02c3517b652881fba852994d459434239ac

SHA512
969cabda8324cdf3a9cbe0b0b8fdd2a611ef3b813c012a749a89d792c9a9c6ef3ee513c53b76065efd6d1e93ddfa5c31510bf3e25be2fcb86592988cb4abe591

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\ja_jp\locale.json

Filesize
435B

MD5
8eefa1bb3912183d9e3438f91c098841

SHA1
d06c23d25afc8672eace3d214798c5122b664ca7

SHA256
919cba4b8a59f6b69ce16011e50f3bafc76efe58b21032501626cac364d48e9d

SHA512
5027e49717b19842438388b57232b8739e8a1cf15642bf9806e7eb5a749ed9c7a102d2c876cc8d9cf2113558509965cd638b128519071ff6cb06e1b4d5ac7af7

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\ko_kr\locale.json

Filesize
406B

MD5
3a504ea81ba343fab1ebe2a10efaa1a2

SHA1
eddd814cf6ba568a80553a5516bd588b18ce5a52

SHA256
9b4e351eb416e95f6843224227857c528dce2d7a8bd64876204879138208951e

SHA512
57a52b016801fef387c8d33b483dce4d5bd518bd9989ffaf775df4b4dd1bc83e614bf3ace69f779c5047b0bde6b7b4db861530700523acf25110d8846b7e13e4

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\nl_nl\locale.json

Filesize
386B

MD5
c4d0d42780213ddf399e83c60e8f25ca

SHA1
55c4589f3d9a514dee78fd47e7c3696b3df60c79

SHA256
416b4f94812ac0b6bbeb1a5e4f06e587f4ecad75b8efa02072eb7ae92b622b34

SHA512
74edb2fdbdb07a4fef43f3b61bf08188f4ba24cabd75c50c2e53210ea38e345ac7211dab5e761dccb6e0aadfe901b81cf27ec851b640474ab9979996c8841398

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\pl_pl\locale.json

Filesize
415B

MD5
440e7340c381b936d04d8206e966d44b

SHA1
3f5743e2392c734a546f7b9f75b616ae4a121f40

SHA256
7aa4d5a764e0f0a9649a5faa24f14206d0ae44f3e386ed002df2e6f5d359f0a3

SHA512
3adac1c7c6dffd76f6196414919b051cb9152ea073df1313aaff549b7d8d77b73683a83ce03fd87af6a10a6c9223a07c05130d8e96b9d998dc0104fdadee5b80

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\ru_ru\locale.json

Filesize
626B

MD5
3f1235f9c362e368fe52fd708da455b5

SHA1
88bb2da22e940527b61ceceb4d78c992af78126f

SHA256
454f7fe589e1e08f2cf112eddaa839b60951698a84ba87e7767d4dbbcb3a038b

SHA512
d1dce3df39db2db386545f71a5a67b0725906878983944bc97ddb3c95f706cdc71a7a04d717a28428a7e682adcaf40f2f94561c681f4790989876f5c1bdb2bc5

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\sv_se\locale.json

Filesize
378B

MD5
690dbabeee5810ae5b68027eeb148f1a

SHA1
f1624c92497acdfbc53ffb5a891c545b293d01c7

SHA256
270157002492ad80fff2d47f9cdc0257b72bafed053556ddd5b14c910c6a9a8e

SHA512
01f685608ffe85b4beb4bdf20b701944f7b83ab0fbb90b39f379053285e058610fa9f4c6671f4055586674a9a3a849a2784ddede476e4677be9667f3faad8b14

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\zh_cn\locale.json

Filesize
360B

MD5
9fcab8f3d4f4840c927531f5975109c9

SHA1
d433d4dfc1fdac136057f8fd551db01727a749bb

SHA256
b103e04a7ddbeefb389641dd93fafee6119f3316f4133702bb3af38bae92fb4f

SHA512
05a947de06e5594ff031fa4b9aeea39725db4648308ebe7bf12d4db875abadfa4f3982b77c5435de9d498da905ae8c8c69b96bc1dda954288b7f9d7a66701496

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\Dictionary\zh_tw\locale.json

Filesize
361B

MD5
bebb9ba86d130666f1dcaf88abac5d9a

SHA1
e07ea165fdfcaa1b073f77f891c248b1669235cb

SHA256
efc69bc38f34fccaaa7fa985dfbd75c0196da23971fba3df349cb8953657e7b0

SHA512
aedd79f53b6f2a923714965320db4e648f8560b6a6d3e53d39b36d16a55d1f9f19bc898b9aad4efe441392dc424936d0b7e04d0a15f1423dd5dec81a7a55d90a

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\carousel.js

Filesize
2KB

MD5
755a1bb2b209c2dc7a05c32a7a461ec4

SHA1
115952f7486d5552ee157ad18ae20ba9e7cf6594

SHA256
f771ce5c2a69e92f808fe856ce473786b9d14067681c501b7fcc87caa1125e97

SHA512
764fee2f12ddf5b6b7d98c56a289289e44ad65d3ab022b723611d48eb4b59df2d48452ae3f99ce6d9d1cfcbb0ac28944c5b3257ea00ba055a210c97130887e66

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\css\fonts\adobeclean\adobeclean-regular-webfont.woff

Filesize
30KB

MD5
6af297e58edc414ee90c76c2d3ea8678

SHA1
7497d181cd6fe3a4b01a4f8b6ba6a47d3fa54333

SHA256
3e8f59db6dfae287af8dccc0fdf5e15a8aa2a954c2c232bc6c64536e1a27eaa5

SHA512
61e14f8e605c4d2b52c9a874f40e73fde43625bc468ba3c7316e7672cffd05b7c1766c875fc1b48218bd2b6856226645ee9bcb45810eb7121c5dbd0c184b7d0a

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\css\styles.css

Filesize
189B

MD5
3a0ec2d2c5020a3cf45c13a87434b285

SHA1
12275d4d51de801ce28c88a0c246de22c6d08120

SHA256
406288e48ced388744e5165a1ec4266f419cc409e4a70036e4b15a93af5c42ab

SHA512
a7c6d55f64d91e5d71661e040f4d06d2c873e0b2d2a3b2e52ff60d230a7c7c0924cd0ddc4dc124d53736c934023a27d6ed77c1266732f0b5de5dc75b02715c8b

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\images\01_creativity_for_all_445x239.mp4

Filesize
984KB

MD5
81e4c33fad74a5bd58008f4b1525adf1

SHA1
6ce7f599a1319495be5b677fdca16fdd433bebd3

SHA256
7a3e8435aa3383576ff1a19abc639c5f4539fec6d4023a82889378b221dbdd97

SHA512
8af1037e6a68882563dc8a85f0f14902043226b9bdd771a160ec838b83ebecbba4cccf88ade63e1437eb34cde98a90b4a9614488613cd3859d87a4e114731869

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\carousel\index.html

Filesize
2KB

MD5
e89a10413d61d0f8e20366fc168e60bb

SHA1
3ff1aa248751d03ba5dc7b25e11db87e694cc6bf

SHA256
679419e78e55488f0625cf74673bc365176093783b34331227997fa075ff4c43

SHA512
0a70c72b523a74292f72e20ae44221ea10dfbd93532d6fc32dfaf24f0bf8e31d64e89a9a385d05453c52b88ffd80c7a80c9b98bada37ee2e06d13fff5ec32e05

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\clean.css

Filesize
702KB

MD5
4f3364af3e396f92a8826532bfb1a7e5

SHA1
7f7b613435ece78a358f2066287c2f2c3c6aa168

SHA256
45b9b77499356527e9047256db96a542a720bf075d67e9f6ba55d51fd562339e

SHA512
c022a28656483106095967ec4d57eb743d04f029406c2c553c9d19c103520e274c0eea19f411bdb7ae16f388211c456a413df5a0a6097036deb0010573d49c72

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\common.css

Filesize
2KB

MD5
1265d497504870d225452b3309b0e06b

SHA1
29a3b783e6f2f2cd3f6d08833b83c7848f8e3450

SHA256
4273a5d4ef990dead6cabe760c27b25f7fcf8a51177f1b31813ad8866a565330

SHA512
9aa8b24e800a619651699c193a7747b8673a3cd4f8a5d3b16ee35f5ef6161f953a904631b97d118339332a3d2c7292c910802f6e1518db18d48fab5e9eb91681

Download Submit
C:\Users\Admin\AppData\Local\Temp\{5DE4D7B3-FC1D-4DF0-A186-7000EF650BAB}\main.css

Filesize
16KB

MD5
ee23e36c90c9fccd530504285d371ac3

SHA1
7a4e24d18ec723d38cd922e3845ff290f0299e15

SHA256
32616e0764c80efb4607a0dccfec7cf7862886c4ae80e6405dc3cc5c62cd0f82

SHA512
542937075a96f6afb8170c6f41915efeec5e067803606c2a26d29e6c990d93a255ad8cea18600cd0825a0c91ff935d057870a1724062543a8e2bc09c4041b375

Download Submit
C:\Users\Admin\Downloads\Adobe Photoshop 2024 v25.0.0.37 (x64) Multilingual.iso:Zone.Identifier

Filesize
186B

MD5
9b2b4338443f882b554165091352be76

SHA1
ea25ac6b288ee9e41e8c6f50679fb9679c0c8d94

SHA256
e01df3ab3cd8a3cdef79360960c67775e6469f642716ef4ca9d642808bc884a0

SHA512
a8a9fb4f34bcfc18b469be1e2205650f1c0791266c4048c6f7254df899bc80f14c57ad85ab7294a6af081ae9a794eb733997b45030fe0e0728222f149b04c1e0

Download Submit