asyncrat | d45b4bffe48643060f1f5dd26e4d5e1a65ddf037082e6f6d7388e79ac29ad191

Analysis

max time kernel
899s
max time network
533s
platform
windows10-ltsc_2021_x64
resource
win10ltsc2021-20250314-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20250314-enlocale:en-usos:windows10-ltsc_2021-x64system
submitted
18/03/2025, 14:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sigma nigger.exe
Size

63KB
MD5

02b879d944c0f3d15543e830e6570912
SHA1

a5e4c91860c4242149204c0e39e11dc489304538
SHA256

d45b4bffe48643060f1f5dd26e4d5e1a65ddf037082e6f6d7388e79ac29ad191
SHA512

68f65d5c2e33fc08dd985c477d61c471eb9e784cc45e715703c9c05606d62250026f37e391a60a6e6be3f347e85da4042f28fddab714ccc48ba7e022c6538e28
SSDEEP

768:fv0M2UM/978aQC8A+XjME+blFrW3E1+T4ZSBGHmDbDgphtoXsSkGwCYSukdpqKYC:k1/k4RrqEqYUb2h0xtTukdpqKmY7

Score

10^/10

asyncrat stealerium default collection credential_access discovery persistence privilege_escalation ransomware rat spyware stealer

Malware Config

Extracted

Family

asyncrat

Botnet

Default

cut-peripherals.gl.at.ply.gg:15761

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Signatures

AsyncRat
AsyncRAT is designed to remotely monitor and control other computers written in C#.
rat asyncrat
Asyncrat family
asyncrat
Stealerium
An open source info stealer written in C# first seen in May 2022.
stealer stealerium
Stealerium family
stealerium
Renames multiple (3492) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Control Panel\International\Geo\Nation	sigma nigger.exe

Credentials from Password Stores: Windows Credential Manager 1 TTPs
Suspicious access to Credentials History.
credential_access stealer

Windows Credential Manager
T1555.004

Executes dropped EXE 1 IoCs

pid	Process
3172	DECRYPT.exe

Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Credentials from Web Browsers
T1555.003

Accesses Microsoft Outlook profiles 1 TTPs 3 IoCs

collection

Email Collection

T1114

description	ioc	Process
Key opened	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Software\Microsoft\Office\15.0\Outlook\Profiles\Outlook\9375CFF0413111d3B88A00104B2A6676	sigma nigger.exe
Key opened	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Software\Microsoft\Office\16.0\Outlook\Profiles\Outlook\9375CFF0413111d3B88A00104B2A6676	sigma nigger.exe
Key opened	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem\Profiles\Outlook\9375CFF0413111d3B88A00104B2A6676	sigma nigger.exe

Looks up external IP address via web service 2 IoCs

Uses a legitimate IP lookup service to find the infected system's external IP.

flow	ioc
32	icanhazip.com
35	ip-api.com

Looks up geolocation information via web service
Uses a legitimate geolocation service to find the infected system's geolocation info.

Sets desktop wallpaper using registry 2 TTPs 1 IoCs

ransomware

Defacement

T1491

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\AppData\\Local\\Temp\\oVcBLd9.png"	sigma nigger.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Java\jre-1.8\Welcome.html	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Integration\C2RManifest.shared.Office.x-none.msi.16.x-none.xml	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\win8-scrollbar\themes\dark\arrow-left.gif	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ARCTIC\PREVIEW.GIF	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\sw\LC_MESSAGES\vlc.mo	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Resource\TypeSupport\Unicode\Mappings\Mac\CORPCHAR.TXT	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\icudtl.dat	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jre-1.8\lib\security\blacklist	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL093.XML	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\welcome-2x.png	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\include\win32\bridge\AccessBridgeCalls.h	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\legal\jdk\santuario.md	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\icudtl.dat	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jre-1.8\release	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\fss\img\tools\line_2x.png	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\edit-pdf.png	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\dd_arrow_small.png	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\legal\jdk\joni.md	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-001F-0409-1000-0000000FF1CE.xml	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN110.XML	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected]	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\ob-preview\images\themeless\media_poster.jpg	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\Trust Protection Lists\Mu\Fingerprinting	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jre-1.8\legal\jdk\freebxml.md	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\DEEPBLUE\PREVIEW.GIF	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\RHP_icons.png	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\pages-app\images\rhp_world_icon.png	sigma nigger.exe
File created	C:\Program Files (x86)\WindowsPowerShell\Modules\Pester\3.4.0\en-US\about_Mocking.help.txt	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jre-1.8\lib\meta-index	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\OneNoteLogo.contrast-white_scale-140.png	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL106.XML	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\ob-preview\images\themeless\compare_poster.jpg	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\Dictionaries\en_GB\license.txt	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000042\assets\assets\images\MSFT.png	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BOLDSTRI\THMBNAIL.PNG	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EXPEDITN\PREVIEW.GIF	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\unified-share\images\Info.png	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN081.XML	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\[email protected]	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\vlc.mo	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Resource\TypeSupport\Unicode\Mappings\Mac\CYRILLIC.TXT	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\CompatExceptions	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\LogoBeta.png	sigma nigger.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\hwrdeusymnn.dat	sigma nigger.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\133.0.6943.60\VisualElements\LogoCanary.png	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\legal\jdk\thaidict.md	sigma nigger.exe
File created	C:\Program Files\WindowsPowerShell\Modules\Pester\3.4.0\CHANGELOG.md	sigma nigger.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\legal\javafx\libffi.md	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Integration\C2RManifest.dcfmui.msi.16.en-us.xml	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\en\LocalizedStrings.xml	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.contrast-white_scale-180.png	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN103.XML	sigma nigger.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\COPYING.LGPLv2.1.txt	sigma nigger.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\insert.xml	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Blue Warm.xml	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL022.XML	sigma nigger.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\rhp_world_icon_hover_2x.png	sigma nigger.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\Configuration\ssn_high_group_info.txt	sigma nigger.exe
File opened for modification	C:\Program Files\7-Zip\Lang\fa.txt	sigma nigger.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Event Triggered Execution: Netsh Helper DLL 1 TTPs 6 IoCs

Netsh.exe (also referred to as Netshell) is a command-line scripting utility used to interact with the network configuration of a system.

persistence privilege_escalation

Netsh Helper DLL

T1546.007

description	ioc	Process
Key value enumerated	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe
Key opened	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe
Key queried	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe
Key value enumerated	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe
Key opened	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe
Key queried	\REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh	netsh.exe

System Network Configuration Discovery: Wi-Fi Discovery 1 TTPs 2 IoCs

Adversaries may search for information about Wi-Fi networks, such as network names and passwords, on compromised systems.

discovery

Wi-Fi Discovery

T1016.002

pid	Process
820	cmd.exe
4552	netsh.exe

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier	sigma nigger.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\Description\System\CentralProcessor\0	sigma nigger.exe

Delays execution with timeout.exe 1 IoCs

defense_evasion

pid	Process
2492	timeout.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000_Classes\Local Settings	OpenWith.exe

Modifies system certificate store 2 TTPs 2 IoCs

defense_evasion spyware trojan

Install Root Certificate

T1553.004

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D1EB23A46D17D68FD92564C2F1F1601764D8E349\Blob = 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	sigma nigger.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D1EB23A46D17D68FD92564C2F1F1601764D8E349	sigma nigger.exe

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1144	vlc.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe
6036	sigma nigger.exe

Suspicious behavior: GetForegroundWindowSpam 2 IoCs

pid	Process
1144	vlc.exe
5152	OpenWith.exe

Suspicious use of AdjustPrivilegeToken 5 IoCs

description	pid	Process
Token: SeDebugPrivilege	6036	sigma nigger.exe
Token: SeBackupPrivilege	5704	vssvc.exe
Token: SeRestorePrivilege	5704	vssvc.exe
Token: SeAuditPrivilege	5704	vssvc.exe
Token: SeDebugPrivilege	3172	DECRYPT.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe
3172	DECRYPT.exe

Suspicious use of SendNotifyMessage 9 IoCs

pid	Process
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe
1144	vlc.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1144	vlc.exe
5152	OpenWith.exe

Suspicious use of WriteProcessMemory 20 IoCs

description	pid	Process	procid_target
PID 6036 wrote to memory of 820	6036	sigma nigger.exe	87
PID 6036 wrote to memory of 820	6036	sigma nigger.exe	87
PID 820 wrote to memory of 1692	820	cmd.exe	89
PID 820 wrote to memory of 1692	820	cmd.exe	89
PID 820 wrote to memory of 4552	820	cmd.exe	90
PID 820 wrote to memory of 4552	820	cmd.exe	90
PID 820 wrote to memory of 2408	820	cmd.exe	91
PID 820 wrote to memory of 2408	820	cmd.exe	91
PID 6036 wrote to memory of 1496	6036	sigma nigger.exe	93
PID 6036 wrote to memory of 1496	6036	sigma nigger.exe	93
PID 1496 wrote to memory of 556	1496	cmd.exe	95
PID 1496 wrote to memory of 556	1496	cmd.exe	95
PID 1496 wrote to memory of 2640	1496	cmd.exe	96
PID 1496 wrote to memory of 2640	1496	cmd.exe	96
PID 6036 wrote to memory of 3172	6036	sigma nigger.exe	104
PID 6036 wrote to memory of 3172	6036	sigma nigger.exe	104
PID 6036 wrote to memory of 540	6036	sigma nigger.exe	105
PID 6036 wrote to memory of 540	6036	sigma nigger.exe	105
PID 540 wrote to memory of 2492	540	cmd.exe	107
PID 540 wrote to memory of 2492	540	cmd.exe	107

Uses Volume Shadow Copy service COM API
The Volume Shadow Copy service is used to manage backups/snapshots.
ransomware

outlook_office_path 1 IoCs

description	ioc	Process
Key opened	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Software\Microsoft\Office\16.0\Outlook\Profiles\Outlook\9375CFF0413111d3B88A00104B2A6676	sigma nigger.exe

outlook_win_path 1 IoCs

description	ioc	Process
Key opened	\REGISTRY\USER\S-1-5-21-780313508-644878201-565826771-1000\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem\Profiles\Outlook\9375CFF0413111d3B88A00104B2A6676	sigma nigger.exe

C:\Users\Admin\AppData\Local\Temp\sigma nigger.exe
"C:\Users\Admin\AppData\Local\Temp\sigma nigger.exe"
1⤵
- Checks computer location settings
- Accesses Microsoft Outlook profiles
- Sets desktop wallpaper using registry
- Drops file in Program Files directory
- Checks processor information in registry
- Modifies system certificate store
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
- outlook_office_path
- outlook_win_path
PID:6036
- C:\Windows\SYSTEM32\cmd.exe
  "cmd.exe" /C chcp 65001 && netsh wlan show profile | findstr All
  2⤵
  - System Network Configuration Discovery: Wi-Fi Discovery
  - Suspicious use of WriteProcessMemory
  PID:820
- - C:\Windows\system32\chcp.com
    chcp 65001
    3⤵
    PID:1692
- - C:\Windows\system32\netsh.exe
    netsh wlan show profile
    3⤵
    - Event Triggered Execution: Netsh Helper DLL
    - System Network Configuration Discovery: Wi-Fi Discovery
    PID:4552
- - C:\Windows\system32\findstr.exe
    findstr All
    3⤵
    PID:2408
- C:\Windows\SYSTEM32\cmd.exe
  "cmd.exe" /C chcp 65001 && netsh wlan show networks mode=bssid
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1496
- - C:\Windows\system32\chcp.com
    chcp 65001
    3⤵
    PID:556
- - C:\Windows\system32\netsh.exe
    netsh wlan show networks mode=bssid
    3⤵
    - Event Triggered Execution: Netsh Helper DLL
    PID:2640
- C:\Users\Admin\Desktop\DECRYPT.exe
  "C:\Users\Admin\Desktop\DECRYPT.exe"
  2⤵
  - Executes dropped EXE
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of FindShellTrayWindow
  PID:3172
- C:\Windows\system32\cmd.exe
  C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\AppData\Local\Temp\tmp4A0E.tmp.bat""
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:540
- - C:\Windows\system32\timeout.exe
    timeout 3
    3⤵
    - Delays execution with timeout.exe
    PID:2492

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\Desktop\SwitchExport.DVR-MS"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1144

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:5152

C:\Windows\system32\vssvc.exe
C:\Windows\system32\vssvc.exe
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:5704

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

T1546

Netsh Helper DLL

T1546.007

Privilege Escalation

Event Triggered Execution

T1546

Netsh Helper DLL

T1546.007

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Windows Credential Manager

T1555.004

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Network Configuration Discovery

T1016

Wi-Fi Discovery

T1016.002

Lateral Movement

Collection

Data from Local System

T1005

Email Collection

T1114

Command and Control

Exfiltration

Impact

Defacement

T1491

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\themes\dark\aic_file_icons.png

Filesize
50KB

MD5
82c0fa55a0122fb76ef9b2c322d7497f

SHA1
144f31adc4c5db6f815c664a4b84c471778cb40d

SHA256
a1d6d3a2f858783db9d357694b203825df1a39ebb545463d83df45b18ff2a17f

SHA512
ce7052768bc4d0b545551381ef493cfc0416ad0dbe9498a9909237b8516826c656c70aa66b2022cd7e69e16f0f5bb9f114bbe802097e23444176cf69012fd968

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\themes\dark\selection-actions.png

Filesize
1KB

MD5
48f6f56fda620af8da21d08acdb478bb

SHA1
e02920e14fc9d8be600500418bb5abed4d0c88ad

SHA256
43ae2887a253e9a98059c13c00897ad2837df4d752506e601a7acf3dbd1e5cc2

SHA512
170f18ed505329f525a3f592d73f3e8eb916ae706fe332ddfdd2daed13478150539583494a8e4baf88cdd8deea3ff2e8328f6f17c9ee02c21a5ca716751286a0

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\themes\dark\selection-actions2x.png

Filesize
3KB

MD5
f6651cd56b9be09898edc29279b63510

SHA1
c001a33d33d3e06861f4f868e48e826d9a537d87

SHA256
f6433892ad1c9dda951c2116f7f84b5edbe1073fbc51914363697ae6b08e1035

SHA512
bd7b59806487fb601ee6e76b4ced0c6bc6daed5325e19b73477fa1982029b051cce6394528b3a3b3e55441b5c19ae0b78ebbc568ff276242abe2237bd04c823e

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\example_icons.png

Filesize
688B

MD5
72bbee116938f1a9169b19d92aa2eab0

SHA1
7e5b94d9748c48f3ab3021d5d10d627aac6f022c

SHA256
82fe98f707b58fb1457c45c0f339e16690da4c52c6c6790b9a4e188c492fc925

SHA512
6a89178c5eb64ddbe0503af4942be08050fd2038d1a47e689497ecedb6ed3d61e307471b4835aec91bed5a1b16507d4ed8705ee46fc309ca0de638e1f134de00

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\example_icons2x.png

Filesize
1KB

MD5
48dfc2616ac17d1e1daf170b9029d0b0

SHA1
a16dee4e730be6d9b512ffd336bfe80ead07ae26

SHA256
a096a01060490e01d0b4c84fc46ea7e44ba408967c3088e9705efd08c01cefed

SHA512
c9d734828e2da7cb2392ce5023244c734a0b5ddd26217cb986e7842591d5da0e75916bfcf2d3a5f517524893682ab6871db5187110dfc0625e15c6fb1f4a1e52

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\rhp_world_icon.png

Filesize
448B

MD5
995b08d1e34f34fa604435c7da226a32

SHA1
aa134362e10caef10688a7812535cea0883c5823

SHA256
5386d57118029be156706399388c548b47f111c68a49162bf13e5257d1d5fe1a

SHA512
71fa5169600c64e8e29aa1097ece924a3e3a379dce3a3f7fac28c456a5d2f76d99cf5c8a329a8b7d684c52d47a53fc8417e155e42234022b3d85d757028991e7

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\rhp_world_icon_2x.png

Filesize
624B

MD5
a44041daba652341e118bf06a18bc76f

SHA1
73de24dc859ad7db991eaf735ad3f905cacfddda

SHA256
240336512eb3ae0b904be2dbe95d7c9f94f33839328b0a5cf3596e7f05b5938a

SHA512
af2e07281e32718021878f961eab5ded3038021d548444b3b98c7b7dad1ae6b3d21faab0bb350568635efc9ccaecd43e1fd9350e0cf261e4c11c2b1d834925eb

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\rhp_world_icon_hover.png

Filesize
400B

MD5
440d41f257d060d4880e8f2613584db9

SHA1
9ba3f65f52fc8080f107d4261eb1e9e5b9369376

SHA256
b9bb54100d083b1c066281a501ffde4fffe57ad4edbb404df3a29bead6994c5b

SHA512
5e9f14f5a75183b41377653e023b33a802a51c97b4b1bc1c28174dbdb15648c7c5535faf95cc897f4c3bbd8b86bd4f0147e667fba8cf9b4eb98d3686f14c371c

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\rhp_world_icon_hover_2x.png

Filesize
560B

MD5
64cfc54795d8a8543d2e1d8bfcad4337

SHA1
05fc4624d4dc075cdcc56751a1ad7c37308f68e6

SHA256
b720ea5a62766552a909376ce042a65ebead02e45bc5e10474835c086a340cba

SHA512
a3d507c1db0d7630667898e1866aac479b22e7367ce118cfc95e3b950716a713413c33d501cfb67640308fdb3a85503a1beb1ce76c7b66b32df346e47009cc73

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\themes\dark\rhp_world_icon.png

Filesize
400B

MD5
55bad4939f39ea5e99903507e5725d38

SHA1
5db3078012b6a001c9c7cb540901333c04cfe385

SHA256
dc08ec9bb8e4a94fd9d1e2a96fd7aa3350baf42b9403ecf99228d0365147e12f

SHA512
ce9a9f2eee6aa5f3313228159e892e6ad87aff8ee61802c2d66a97933e2266528e098b5d5478551097e683cb08701ba9236e9a286516e2d0fef5d35a30ea12a8

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\themes\dark\rhp_world_icon_2x.png

Filesize
560B

MD5
c35619b3cd07e786d62935f77757d684

SHA1
6b1a3e6d081c95d2066efcdc7f76c804210798de

SHA256
72169d95bb20e6bf14cee6c4da503fb1ba46c1c2057df95e1f5c7dc10dd8c64f

SHA512
40b681f802572056a038cf6721ad9ebcd9eafd8d82a9fcbf07f9b501d8f470c6b0bc6e81bc08a25deea7756841af98d1dc56f9370276d2cf1db62883a8349455

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\themes\dark\rhp_world_icon_hover.png

Filesize
400B

MD5
ec524ea6751940368143f81131b9bf90

SHA1
c777c69f364fb52395fceb81110b7d5bdcb6ca5d

SHA256
538cd2fb6f7f230ad233d9c06822ce4af1132f6ef8d4c1ad0a1198c3908546b9

SHA512
b5cc4b3831e3628c1810388b835acfa015ed43f63caff56e407fec159bbc74d8d035d5275826757e1e2262ff3ee6de6dff3044eb92b19ed72fb4c1cec902ee47

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\createpdfupsell-app\images\themes\dark\rhp_world_icon_hover_2x.png

Filesize
560B

MD5
69255d4255738ee96168b7e3116b0ffc

SHA1
62c8051354055b3721001189c0bdec9446eb5b60

SHA256
f5c83c86ee3bd49d8b88bac9fb5341a8dd81f3ca225dc0bd9613ac36466499e8

SHA512
64c02ccfeb63d589dbfaaa471b16697f8395c6778a14d261aa1cecd2b45e5a9d3366bc0ed11917397364c5f0f4a9130c344645b948e83e34a5b814d007a8f772

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\icons.png

Filesize
7KB

MD5
099d231b771c12bb44779532638ebfd0

SHA1
daffb2b71c27f915ab991eaea9b667191933756e

SHA256
7fc8db4a33a05dd69cf8ee253f7887a10463cccd28c835a2c5324cbe3972870d

SHA512
4173c8ba0617cce98502fa4c3539de22c3e5167e3943815743b66e55ac36d7aadc9958835d9805b1e4899e8b0ece5608cc68d65b70cdbdf79c63fac63b9ca998

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\icons_ie8.gif

Filesize
7KB

MD5
f694b28ba379de1f5266bd8bc918d8ab

SHA1
53fdc59f544030ad7d37e1674e93ccd438fa13c4

SHA256
3f93204e4d99a509780f1754f74f63fa6ee6bd51438ed6fe416438ee7431dad0

SHA512
5aa44753a3ca97ce93890680d3e08224694c4328c47a6c980430564c7b66a15686612c97f5858b5eb34b0096f449cd59b2579b621388df6cdb001937b975e6b4

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\icons_retina.png

Filesize
15KB

MD5
62077add39b28f30963b34f15a8b58ec

SHA1
8708da9dbac0ac5668926edab050d0512efc90eb

SHA256
7f4df2a43d9b19834dc7bfa82a6a093f5dc09c9bf8ec035343ee16914ef5efa9

SHA512
cee722cd501bf83e2fd1731570b6cd1ae1cef826d4b445ec9a13a3f2dee20443c4743af5ca51ab36a9e4fea3f8780f42da222d4600d8f77adbd616f638a6910f

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\new_icons.png

Filesize
8KB

MD5
5160eadbc08fb3d9ac21290790f88762

SHA1
0493e9c62d7383bc57161d3ecc894a817a36dc34

SHA256
4932aee982d7c2a741183234b55122732817d290f0481831effcb17cea532cdb

SHA512
19112ecaf87fcee09ef0a8c78668ec2138b38ee190580eaa68ff8b3acad3a9222dfc7d73d31cb8fd62d1fd46afc615464669521f1d1f4d2739c8f51dd98016b5

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\images\new_icons_retina.png

Filesize
17KB

MD5
5633189db7826e439e9b1e1fc5862f79

SHA1
0f89523939e4f74153fb9ece58b2aeac55093477

SHA256
d84b84fc6d9b7ed808c221e568f50a96cbf11f2f29747dae94342d1e503a6ddc

SHA512
d744e1fb727d5d530b6ff39c1caa17a7bacca41f2593b9940943fc1b110cb5145dc1ee7b4bb1c71dce523dabbfeaedfbf4377b78db0c21dd639dabbe7277bde7

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\bg_pattern_RHP.png

Filesize
192B

MD5
5595a5c56806fd2e3ef3ea5e540eb731

SHA1
549d058337dd6ec713f14be9c22b2376fa662836

SHA256
b2818030dfddb76ec1a23e0a50880c5bca2f90ec9f3afd3c38d0e5cd26d9dbeb

SHA512
735bd4a7b826922b3f44ed44e000bb3f0c1990e17dac0d94d09ab48f790b7d0b601b50796438bfcde4da47232df3a0ed24acc78badab510745d2fe7d2008bf14

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\bg_patterns_header.png

Filesize
704B

MD5
2526c93a213feadd7897f10ef617fc63

SHA1
79c97f3a3099b8dade6d1f76b30356c85eca3f23

SHA256
4d747afa5ab86ce5cdfac2179c83213dd51737831dcd3eb22d4d1d3f0cb6fec3

SHA512
150273816e5493bee5cc7a3b5540dde94680d0f228bceecd88ac78027fac3827ae2b70d9f5bc7080279e4fff3265adc3e232583d8328bce46ad6a26489ac70b2

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\illustrations.png

Filesize
8KB

MD5
0c04ea9bdbb8385bb8f56e6e712bb9c7

SHA1
1c7f39c97ba758beb6bac37dffa0906001dca233

SHA256
e4fb1723f00727d35cdefcc9c99b9ce409b52c46507c8f8f17be94dc359392cb

SHA512
5a46bc32e3b2caf69528184a8d0f5031ef4b36aea13553a3934882d669c31ba7eabfea7e7837a86c5e79027a67752a6325d00d6332cc8380deadcd78e2bb50e8

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-computer\images\illustrations_retina.png

Filesize
19KB

MD5
e4f5708f2a781c761f856c53575dad96

SHA1
fc14961c6398ce6b3b6c04a2e7fa9cec8ad4b15b

SHA256
f0ea14e1294071e9f80c7f49dd00f3e231c92b5310925f63db8954c84887de8b

SHA512
644bedb3a6271a4426efe567e955f939de746710663296564809821ad69c4b87b69ccd6ca66679b7e00aaa3afdb6e942b1a0bbf428fd284ebf568c67eced1894

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\send-for-sign\images\progress.gif

Filesize
19KB

MD5
3d5da283a9a3d1467651d747c205cef6

SHA1
fc4fdbf73829c73047161d86d6d14c4c880bfb88

SHA256
8579092a7418067ef328d7217db75a81ea646850d6c95812d93073f268b0467d

SHA512
75f3342c7174cbb45fa97aa8cd3d4cb2b3bbaac1af28076c12d23afd0ff597daf5aedbb965251d678bd322886b9b734eeebdad14476ba78aa5c5fc78b0982057

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\send-for-sign\images\themes\dark\faf_icons.png

Filesize
6KB

MD5
7b1daeec4dad6a0bcaddac4379a8cc1d

SHA1
dc1cbc6c5389431f1ce0e982a307c5a0fbc7a936

SHA256
bb810842f4f4d77bd958aefd32fe635117d7eaabd917bc584ae95ecdc95706e1

SHA512
10c2ee591366f8dd7b52e6f72c2f8b9c8cc92eb8cf247bc395dd4844401705a9b3370f738aa1ba622a37e175129c786724a93a319949bfa703bb4265a20225bb

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\bun.png

Filesize
2KB

MD5
8ac4da300e51e2433383f69fc45566dc

SHA1
0e83ed60067a3decdca5a02a1891c8932853a9c4

SHA256
fc8c6c51abb284d6be6d0260f0c14bdda5d6e10a39a4eb8f06744d43d417d399

SHA512
75c29544f760925ffa2bfc9ea9ebb6b4dae1d552da96c4631d0030fc5ed44e37a5fd50800b28a8d0bccd61d338576c20f33e46e081a56a420f170f9d29a3d7a3

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\cstm_brand_preview.png

Filesize
2KB

MD5
1a59e4680bef1054dcfc307548eb9500

SHA1
1976a48c777101f77625b01617a17ea612ffc7f2

SHA256
bb84a787be9778c5fbd5006b1275df755f39f2a3da83528b6388332bf2459663

SHA512
896afcf8c6f867d5e2bed246d226a14337247f99e1c6b67b60bb6ca31faa5b949ad6c08381803258f9935db85a7670a37c280453cf2e05373a5b9b83dba94459

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\cstm_brand_preview2x.png

Filesize
4KB

MD5
7f3def47c897ee88be24983d0f531531

SHA1
652218e9b30137a159ea6f664700c5e5197506a3

SHA256
48359cc3c656d5ed5b93e795fd678dfb0f1542f5d061ca096c8d5569b0f524a1

SHA512
1fa872abebfe7e20ca4833d1c14b6c58809c4a4590268180fea3e56c423a945a1eb8c1468e02a2ef797e57a190705e489b8e67daddaa6e618c590ea9d2e3773f

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\dd_arrow_small.png

Filesize
304B

MD5
6a9354e34bfcc48ace961f2fdc12c48e

SHA1
f20d1e63a70b6d21f4be99cb07e04349d2d77338

SHA256
c57978d16fff603790294d4c1dd41f582e5e6aecc9cc98ecf02aed190323eb96

SHA512
7d2c6e6427c5a666d63bba4b892bb73d6888e800f25e320f94da97330eb9dcff12217b5a0646603b01da0f6949d10ea3a3f022109088fe947f22a7230e253f14

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\dd_arrow_small2x.png

Filesize
400B

MD5
00d30a1657c5c197882f914cbad17011

SHA1
bbd2405183e098647dc39ec71ee8a9fe4143815f

SHA256
4bd241c36dd30d13912b9ddc2f4a8fa650eab647fd3566c7c3dad9394b825f9a

SHA512
8d69cab132f3746d64960fd8148da303c3d5118b13d30f56bd1f58f56aef7420da20dd754386aee041ec914983a3f09da4650adcab0f5bd6da7e1882b22dbd2e

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\illustrations.png

Filesize
4KB

MD5
61c6be76d23bfa41aec526aeff9ae91d

SHA1
4c7e91e78b64bcb018e05325481aef8c1be188a1

SHA256
68f42112fae709a81aeba7fd0157de470fb2ce6a2da0fc97cfa15736a4ed7ce1

SHA512
e915e9ad812a10e34303e885e4695be498c3777095b274547d9394f72bffa273b05a78fdf7c18d2033ebe4b7a55ee4f37a87dadd8dd832e734245db98b53074a

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\nub.png

Filesize
1008B

MD5
b454dadb959644d35030de786001d838

SHA1
2eb68179365e0c4defd263535c9b3da029f94f81

SHA256
76b669f49d9971e88d6901d461bc740d20ff154a1d4be103ae2e5a10e0621a9a

SHA512
874ed8d1c11835cdc6f091be33195d33bf9200cb33be4374d512d31911534108b67b7951ac2367af9ff8ab6bbb8c6ecd69fe396e181f55285167a8fbc9eb2ca9

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\share_icons.png

Filesize
1KB

MD5
64d4a6778771aaafc98c62062a21d1aa

SHA1
54db5a6446c08111e30fd57605fad9a2f83a2d05

SHA256
ec7fc2f340cccd3a8b48ca67f623a72a825912162d535781743ffbdc31c0b8d6

SHA512
01923bbc6ff9c3fc08d7ced9ee6cf12f27a86f73602b7b436e7802de1d9b191e8a20fd5a173d2eb1272081501729342993024e26f754a96dd80f18bdecf983e2

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\share_icons2x.png

Filesize
2KB

MD5
bd7cb50ead018d41af84f448b87d912d

SHA1
49c25cb5bac63bef7991ba662e6287bf51ff8b97

SHA256
352d9209ad753f3ea818888954499d9f31918bc132a99e3d05af55cbce7f2e7c

SHA512
249424d032b2f2b8e27f587acee5c5ce2064ac14a58dd857554a21368dd102f139adb138439cab17c1d5bcd60bfe9aaf05156667b5813121af013e209037ef66

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\images\adc_logo.png

Filesize
3KB

MD5
8dc51e2e3a1d7902a10beeb6b3df2f63

SHA1
c2c1202e43cfc88f2774a78e932772b2ee2ac70f

SHA256
9e1668e5084ffcea015a5d038857224601ca923197cbb9501cc2aaa904c269ca

SHA512
9e2b5bc0fa96b06399db7df9639cf0266df49a656622c1405c801671988703cfac01ab1a44dc32dfa060d3ed7bb7ce2690fcf94fb45bac75626abd3dbb3cbdff

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\images\adobe_spinner.gif

Filesize
560B

MD5
71553d80cba39e5901424271db036d2a

SHA1
560a22de7477a582b7f53153517278590aff7672

SHA256
194d4fd6e963275ed52e5b41737a5f54b205babe1ea250dd9992d03b94bd0bd3

SHA512
f2dfb0bfa46c892ec9bb0cd6c75901e4c7edb6d4c1d8080ce75a24db0fe140acb4462fb1ab07dafd244d026e81e009481dc37b113c217a51b1a08558625774e3

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\images\logo_retina.png

Filesize
6KB

MD5
2d2ae5db649169a4f8cc59be1e3cbe99

SHA1
f105baedd89dd7bf25561f5bcb9673fc46aba7e9

SHA256
614e3be7fd34957c9cb86524d97d83cdba35e1c5d6508afc5be2832a9f4c294a

SHA512
2abd6dcdb7bacc652dfc1548bab51108e9b54dabcf5820a24abffb97f4af84bdbce6b4dc11acce78f50ff8a50fb8fe24e496982c6feb99812f05c0f50da53589

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\sat_logo.png

Filesize
832B

MD5
98596833b107edd01d83dc1bf72b2647

SHA1
991e86c345429ce51af4756acbecbb6d55b9a333

SHA256
9121a2df3e683d91cebe4df616615c403906243d75e49e5735813bf1d6d03d28

SHA512
68d7f8e15fe954b7f7f31823706f05e46b4146615f1a971cc57afcadc2f3d55679b8bb12575ad2df6a67df3bbb611076d02cff0dd47947fba79e19b653737810

Download Submit
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\tracked-send\js\plugins\tracked-send\images\sat_logo_2x.png

Filesize
1KB

MD5
fb89c9a98b73939f397322ce5ca67430

SHA1
fd2accafc9a4d4f2f6c5976cd1d6fdbb171eb47d

SHA256
8dc1e07056bb6643c0d00ad97e376e1a5c992d50cf4023659613563c96174e16

SHA512
511e72a16847942c64bc95093ebe3a3b7aef4d7331be1a3b38e1749a948153a0789f8c505956b81c57078443cd59313516482e835008f24d4a11a9aa14b23368

Download Submit
C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB_EURO.txt

Filesize
32KB

MD5
000a3c95a2b5310f3b5c7a72ece86749

SHA1
2029d55184f2f03a03deb8f7ffd254af5604237f

SHA256
65aa279cd6c1428dee06df6db640eee9e775860f5f129ce6f3d8824c0e2e633e

SHA512
db8bf35f7c97b55121aad2e4821fdb81663ac8a5594223e3827c5680c8cd5a06dca071e084f664d22d624062454c86922c14a0c791efa24433a99d62aef35424

Download Submit
C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\Crashpad\metadata

Filesize
16B

MD5
cff57e14ad3a0c22ea3272d1dbf88b4c

SHA1
4f3b6806a57e32e01c2d25dcf24853eefd6b5fd0

SHA256
5ca3bfa6fa0afa96133fcaa7d1a2c3c3f8f7b40781f1405cf69afa6538e6f730

SHA512
c9bc7089dc5444958832282650ca4d6f43d50c835d55e71f6f80999957fc2b829de266d8ccf8846ff2768c986cd311e3f6f81c59506d74a638615c03cf64711f

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\AdSelectionAttestationsPreloaded\ad-selection-attestations.dat

Filesize
64B

MD5
2f2460995b2ff4e23ba71a8503ec2d5b

SHA1
a92e5462d62f9aafc27935f5a092d15290db5d4a

SHA256
c67150af543d564e35948a014b0dc1ff7e05abc52bc2c6deb2f3cb499bf46dfa

SHA512
21776348b79bf1bde18f55b80464ea8abfcdf37316e6739fe5ed4e07a9e377da2bf38a2a15f649cd14d656d65269513ab5b90e83b306ca44c059863c666945db

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Edge.dat

Filesize
12KB

MD5
b33be21977275a39c41a6e848969bb87

SHA1
bd3ef1095e56e6d83b0019b21e64c365ce9a88da

SHA256
1bb688f617548d6392b066965e9c71fe983fc6036971223ca591c13c94f06a52

SHA512
ccd07fa3d0b97262fca993286be0f12f0785fe55c92140eec4c55c42b19f31cf84a154986e76e85d27565d9042d980fd474704091befbc0a4936b32575339186

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\EdgeWebView.dat

Filesize
8KB

MD5
9af448b29838cd1dd3122cf8ce7fa778

SHA1
36447fffb8aec1a20ee25e74e9378f8ed1dbf939

SHA256
b342a326d64750eba6c60b7573e191ce1beca8a96759cdbb8eab98e0c2b5c8ec

SHA512
0a1361eaacbaa14e8ab313f295152efe8cad355405a98e5acddfd673e42f7a2926fd608c2fa843ca628e05ea73325f813818853721046361baa470b6ce268d61

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Advertising

Filesize
24KB

MD5
c6596e695a9cc614a1777b0b5604118f

SHA1
51beb17fb957c33468d613b1ccb0569e9cdd50c8

SHA256
bd4ff7c052119a0215c4f44aaa6c535fdf7aa4f69d15ec644e472a672fbd9cd5

SHA512
cc19d85b1b769abf7376e22882e016c3c01c55ce3ee57d8a171267a7bba6adcd00572eeac61e2ffa2495534edce7bfb367a84980901a0f6b28eab63a6bb67e8f

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Analytics

Filesize
4KB

MD5
f7f27bc6756f8432777c0dd17fce8c6c

SHA1
8414d77c9b28377aad0e2bd6c52c5d86cc6b8e19

SHA256
1d4a9a7efad2cb134dc7a739a1881165db5479d267d6fa3ea8a0f351dbcecd24

SHA512
8548b031f973b1c6700df92de796a20067e4600f3a67f130c9a855669efec51cc94b1e32d81596ad5bcee8be842cc63bc1edcd25634120a91917c0a4f9ffd3da

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\CompatExceptions

Filesize
704B

MD5
3cf9373ec42e2db05ab7329093ab4831

SHA1
3c14ed3ef9e572240850f0c1d3c49a5f86dfcf1d

SHA256
e6a3ba0b3bcd94edd97541286dcd91e6001d97a730fb11924ec8e1f3cd8cf823

SHA512
b36c8f6814ae0136e86d4593ba91f0fb928bf63a383c2aa4b613606e238ece418edab8c925c848c7d8b0e7a4ec3369b4cab470a00912dcdf21deddccfa77ce0e

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Content

Filesize
6KB

MD5
258401b1f866305f7ecc9a935a0883ae

SHA1
72a9d6e265fa9311d63329a687e6d59495aa8004

SHA256
f8e8047f84952ef4ec6b2a7a1c1aa989d27f16558b192485a0bd84d5f6bddc9b

SHA512
63453b068ad19dfacb2a2f90e2328b31030f61bf9fd7031c25fa9041de95598851fed0d38020d91f718924358e21ef30d5de0f7a91fec1542aa2a72b119827d1

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Cryptomining

Filesize
1KB

MD5
74ff05f2127a545e09607935aad7a3dc

SHA1
790a3ef0ee1436b209eb375a477fc416a2b41e9d

SHA256
949da0cbd8b270beb4738dd55d0bc541d9142f6aa70ee6f3d09ea1be3f6c63d6

SHA512
ef2a214ef77e1c4d1c528556df9932161581ee76d4edcea8bb9e332ec5996d2e02ae0bf1c36f63c973dbbdf530b359277a4925f0503a2b57e1bfbce9c6bf0ea3

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Entities

Filesize
68KB

MD5
ca888e6a57af9dd885fdf32675cc5208

SHA1
0f8d6dcbbd7782da34f68caeccaf325b91bef9e2

SHA256
2228a8dd59b88ab32681c1027143c6231711c3d625405fe646368a562861f5b2

SHA512
a266c5ae59e1f9c1fd73c40864ef1b6afd9371174c6bf8cb40d25364722a9f175b53b1eeca143f4be7e92f4f255bcfe8acfa4ae4a24c1cc3f674a38866d48a03

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Fingerprinting

Filesize
1KB

MD5
57550a4f4ac1bc52ed7663fc0a3bc2e7

SHA1
464ac8fd25c51b3daa3b08e51dad21088807f031

SHA256
5ec24c48c9c160202cc3312ba845419d432127a5dd18598354d96a3d8bd54c8d

SHA512
46711d7ff8698a6af4416994857db5d913ec6baf49880118fa6f48fb85ace68199c0ccfe85f13c48086c22849235ee7f266af6b0bd4df49f3d7ad9e0bf2f0f1a

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\LICENSE

Filesize
34KB

MD5
2a680d6a5a4eba874f2352a4dfb47c2c

SHA1
422f380b9ae47287b3151cda91136e8fa41bdb64

SHA256
a92a47d87b724d353c6308618c7566ca448909134491e1125a050dbef77fe8f6

SHA512
35d8288930479435359a0afbe145a4e872eab8e9cd660b9bbecfa05dd31a76405ee86840be1a2176cfa2411df3821fc7a3206032ea7e4ba41024de3f5dd3d61d

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Other

Filesize
48B

MD5
6242ef374c377834933afb68188b2cb5

SHA1
bd08e3a3cbe9cd17d209d7d7b9b5037b8775cd22

SHA256
aa7bf68679a15d439def4a163edb0ba4c36a5fbbb22a106c629d724e1145bd48

SHA512
b666eaee20c56649ae17e0c6c4eda3164604e14515e26c0b86b8a5532c08711398344d5eebe5ec7580677a6cfa9d9ffc1b02e8ea2b81d0bc0b70e2f2ff4945d0

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\Social

Filesize
368B

MD5
8c4a282817ad59be60f0c091ce23397b

SHA1
85e731f7647c59c5f5b156c9d2d8040092659bee

SHA256
b859767090f789e5d97de045f434843c9eaa5f67943e554ef3ebd40ad6e13d4f

SHA512
7fcc51e896c65048995f71d7446f37ec6e01c4e3967084fa01b084c10f081ab6cd72622ecf985360559124cbbcf7b002d6bd86d82ef635a5d562df9fc8c380a1

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Mu\TransparentAdvertisers

Filesize
112B

MD5
6fa14eace9ad0b6ed396fc409dacd56f

SHA1
feb582bd35ff68912e0c356dd0c87f7773b1533b

SHA256
7cf5fa199953bd7fede6461b79f55b6c980406167a10643282dd094c94dd9d80

SHA512
f76959f31825a8a8e05178e18c495f5952219eb0f86e7617bba686c4cce32db7d2453002d46943378544f673b258b868765cb9c54c244e309e78f0ced93fde66

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Advertising

Filesize
2KB

MD5
fd2d3a6f5acf431f8a7d66bbf02e864e

SHA1
b44e82b31ef5ac606a4ebb92a783d93ca25836b5

SHA256
32eb643611cdbf513089274886ae21099696c8eb46ec5840c5a824a485211839

SHA512
151e4868d2bd4e084f5bfe46108b2ae0433c39428bcd1c346797e6975b639daf7d33c8e5111159bd3f64f0fc20d0093babae7a6fe795a5cc4bd54185a40b50a2

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Analytics

Filesize
448B

MD5
0d5f17b67451f02ed02fb44feb9409e6

SHA1
128e5b5ec21e9b1d003a41182f710fb42f87c423

SHA256
4bbeabdeb5aa4184ea269caa92757ed21671e41490f184544ed6e90c5f5ec757

SHA512
4e6796cdddc298843c7b65576b8bc57a2c9fdc3ab4ef423a642c5925dc6ba4f4fabeb46b1bbb41fa30513512d3c7ccaa57d290202614f6b7a077a87517807ba6

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Content

Filesize
64B

MD5
7013ce40b3fded93c301fc24f4f985d1

SHA1
89b5f4fb6602464474a02a7638c4c6ac6a6d9ebb

SHA256
3e66364720f11a116d049cf28cf5bebc9d33e8ea04c9a3e5624d27d8d1fed95e

SHA512
e0f01abab77cc24c80dac4545b74133de63d419561f1a75e8cddf1dbc3b4c4a690b5935d877f17cd80f044f7d7f7ecf31553a6cb0615823e538f1e083aea8382

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Cryptomining

Filesize
48B

MD5
5fe8d70ca0227f0c6a326e4131a663e6

SHA1
1089105fd8a960183c15845928c3f42b14345c7b

SHA256
dd5f7249d42e838ec1966f62c36ef8655e35700c41b219eb34d802129da38bb2

SHA512
a6e13634ba71ca0942a264e682bbdceff6b1fc37a0a429337860fefbd0c295a7af0078ff52d0d67aa4f984aee1b07ddd1fa7fec5947e4553d8ceec8275829be8

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Entities

Filesize
42KB

MD5
3075e32932add60a4970e429b87c9411

SHA1
8cf25bcbe59cd21d4f6ecdd4833bb8012546a92f

SHA256
0794a55045772585d1d799d983af998e16f183eb3316671498b79dda19e7a1a6

SHA512
1ced80a7944a5e47e223c046f7dd4dcd4841617624fe86c8802cf856b55ccf0c4badec1e3a54ec53b7c28579ce6f244064006cc416c0df86c35f8e32d469c69c

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Fingerprinting

Filesize
176B

MD5
1de87dd62b22902141b1894474f72673

SHA1
4c76d47695c9aff262ec1b159ccdcd82a27633cb

SHA256
9ffbc33ff48bfdb22a145f9b77e04ab01e9534e16826318e3693845e381655b6

SHA512
ee8dba87d5e7c5e3c02c37cb0df17b0c7775aa56ff4e6c6163b53bb50cc3cabae140315aa1a3fb60e474ff5edc5d9d0f39a9afb55f8cc5560d9592458ca35451

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\LICENSE

Filesize
80B

MD5
1dccf42d8f659bc4d509777ad4c46f62

SHA1
5defe2c6ca358e9e41e859887ebe6f80e94eacec

SHA256
82930b749233a442a4d204ab5c6104ba6bff05c88ff5dd23da6ee9a8f655e1ba

SHA512
11ba484e8bc77cc1ce209a63b7502710f7cc104ea4df90ce71bcf97bd3cae3edfeaf54c00eb52aa168679517457f7d2df2035db87e13d46e1e954842810b67c3

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Other

Filesize
96B

MD5
4dbd5a96e3f295fb73cca58e5a48489d

SHA1
c7b57502a9e01d84bfb66cbf3be62d08e049c539

SHA256
7b523c38fb070b83a84a81cb175bea95c2bc66e3c6f9e4dec0063fb6b4f8447e

SHA512
81616bad7f07436bfd077d4398cbb1a98f4aa8918b9119f69aa082f44c80913d7ca60c90c83fd46728441d480e7621084463c701650f6dbe11a98c8f68c37f5a

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Social

Filesize
3KB

MD5
c556bd1538ec3cb2d32582bf04675878

SHA1
3f68995493cbc4b1e793e75a4763cb8a0301c490

SHA256
e41e6106dbb51373c088bed7a1dcb235d2b85307f5557e5ab6f42b1b885addcb

SHA512
0d9317e66b5d399a88f1552a8fefbbd75cf26f8fb8dc16c8d68135f33b4e8f42bd2ff1bd2a3c23e3748c138b468b9063f28927b9d6bb670351d2e65d66e0ee47

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\Trust Protection Lists\Sigma\Staging

Filesize
16KB

MD5
4fd720346d2403eb5fa3a4801daa53cd

SHA1
80f3b3fe6b7ccc762a7d395b1645f5783d1f7f87

SHA256
437616ae783873cae4778c9c57e9203463b7f988ec9c10b7bcce2a27cfa8dc07

SHA512
73f6d10fe24c848ac35fca1e7549403321933b28b92d61695630e437ce9b17b3fbe63976117ef4e6b21f24015c3a7910ebdcd57311ed602702d42a40ec09b29a

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\Logo.png

Filesize
31KB

MD5
3fb60ecf3026494ffb08f90c796cabfb

SHA1
e2c711d88e5d25a3074dd3d928931200973e5cdd

SHA256
0c94c28b86bab3aaf48db66f7c2c60809243d65026d2123a4e98956c5ab25f26

SHA512
6e961a8d0b0cb19f6a3cf20d1815acef2586e71036d8615e76f44c889ab044df721952498d98242d46569eaa4c2b77e28a38f5db471cc8bfdc42495dba660cf0

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\LogoBeta.png

Filesize
29KB

MD5
0543ab3daf3a627a376a064e8fcfb84d

SHA1
0190c25150f74de94606802cdba7279d2c476f51

SHA256
5a4f6544ab807779c780497258131deb8c3fc8c44b79c31af18af0da194c0316

SHA512
86694c5acfa53de4b59b49beb9d03ea298d6db9e45960cdff4b2bad4b2f8e19175154a0409c78cfd7a006ceabf91fa936c234dfb51cf1dd035affbcf061d8077

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\LogoCanary.png

Filesize
29KB

MD5
81b33a04eca3d3dfa3230639945b3011

SHA1
4d904fd3ec471a56059184876faa2ac3dcedec6c

SHA256
9fa5731a48082858000bc50bbe30490d36214f65a5b9c40cb9a88f525983144c

SHA512
51c8e3df75c4d85c7014bf8b68c969902b889a37612d2cbb92c9b8e89023e1e88c05943adc720e56b2163620d5963e0562268ff735b046682812d9f8f34d2993

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\LogoDev.png

Filesize
29KB

MD5
a36d35a13e94bb72d97df33c5945f8e9

SHA1
ccd02ea14c2db4df00eb9b665b63bbcc039c8333

SHA256
e84dabeacf90a324d0d4c24695ac0bfac1f098bf0cda940ef1cb1aae86d6d060

SHA512
c98a0c67dcb8251f1dd31cecdfaf87c887d2ca22004e43eb0c8e6f8bc18c1ceec6d372acf68ac2b6fd570ec9dc5d982aa6bd1386e6c3b601d6b12a27d176d9b1

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\SmallLogo.png

Filesize
15KB

MD5
12fc6a5dafcf0390249bc34b814b30f6

SHA1
bec68083596e7ce292926f903e3c2d0807c68f1a

SHA256
eade0513d0648b89ba8f4fa14be7fe9b58174556c5c5b32e98e22de5f874f82c

SHA512
5c6516f4b2a11fa672177b5225a106d3f926638268e0d188f3c86fc63bcd00fb871c8b5b6f019c1720785300de7e4a200037ebdf17a217083d2c2f7b0c7c7a2a

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\SmallLogoBeta.png

Filesize
14KB

MD5
eb6fbc2cff293c67e5e15533bc3e5eb0

SHA1
ffd624828b5ccf38652e06b8344b2277aa24eed9

SHA256
150eba91b528a4d01822c467faffdbe73960f9062cf43335949fd549f6c49c86

SHA512
3f52b6260d14dfca84d00c81ad65da368305ec78452e740676955b8f7f468a3a6836fd2f594d3632ccecae652e6f5fc0fa6ee884ae4c096a7becdae92428b6fa

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\SmallLogoCanary.png

Filesize
14KB

MD5
058d9acd37cddf888a5e188b3890f352

SHA1
3c99b22f1c73a13ae3a7a5208e445dc3efaaf380

SHA256
aec2512af5c5b8eb8da69b4e5d4fdc307a88d318e1dac7a76f559f10268bd9c1

SHA512
d0b14cfbeb4fac282220be19600ef20620f6d30fe13f695ccc23ba4e85e744827999b7399144e158ca09e135c0dadff4994c6db863c2bc56c8cb1ecd47a9fa44

Download Submit
C:\Program Files (x86)\Microsoft\EdgeCore\133.0.3065.69\VisualElements\SmallLogoDev.png

Filesize
14KB

MD5
aefbc6923db943cbcbc7529d42846a52

SHA1
d9694ca5179071261f5826f0fd3e6b407926b517

SHA256
5f33a240de1222644774cbce84c7a20a3db84c0c904fd3bde329a83dd9918b7b

SHA512
8f85bda16889d2b7afc8ad81ac628ec206b89b3fee05cdd12dc4a50c8e8e50cbfa95ea895b841aea822eceb9457f1a36a81ea8fd0702f20c6f5253cfa495bc84

Download Submit
C:\Program Files\Java\jdk-1.8\jre\lib\images\cursors\win32_LinkNoDrop32x32.gif

Filesize
160B

MD5
f677d690cd39da546c77bf0fdec4db4e

SHA1
6224f0adf7637028789c6d5c07665ede20a9530b

SHA256
a8d6bf49d82faf3d31312cfd2750b2b510a2a0e6b2a75a38edce0122299cf350

SHA512
da4f6c46649c1764a38bae40747e9aceb7bb6f1944feb7a0cb7099bf823b9b138df9ed9e8752df2ebe89f78ab20ade91b79adb922058b29a7d73054be310ae92

Download Submit
C:\Program Files\Java\jre-1.8\COPYRIGHT

Filesize
3KB

MD5
1aabb885d07753def060637850a1a24b

SHA1
6b9578f2fb2547ff0b7435ea3dad50aee3ed2d93

SHA256
f7760fb2250ec0ec6c82ad7638ca5253cfaf1609acdab00b5512bb4992ac6f4c

SHA512
55bef1171cb6be808679d1e3ab34e15e862103d4481ef0c7b6e4a38277a05b4ca8c6a227e3af8dacb814086a2227aa05d361c0b79508e3348d15c9f1a6823d95

Download Submit
C:\Program Files\Java\jre-1.8\LICENSE

Filesize
48B

MD5
a002b46cc576ce6f33d844f0175ffca5

SHA1
32a3b710e1985e71e521600ad834f3e5a4011c76

SHA256
997c3f1fdd87fd072ff7475b6e6378f5d246c5331f933584f7915b32b3b6dc03

SHA512
b96ade9b7218a9c120f11782a468c776aa92879f9f4e37dcb2baae22f8f3897af0fe438f06a75a0509b97045510392c7133c43f4b8f77cd0323ba638da78dea4

Download Submit
C:\Program Files\Java\jre-1.8\THIRDPARTYLICENSEREADME-JAVAFX.txt

Filesize
192B

MD5
88f2da16ad1875f8ef2536f053ad706a

SHA1
d5ee4e16b704bece082be92b2dbeced9198de384

SHA256
c003e7e13cb581ee5ace9a07708f54321d29a6dc6916f950dea139657ccee485

SHA512
4a9bbc520dfe94b517057cbf144f0de6b16d705ba401bcd0f166e298ed7f1e5ef2249f722d59e0093f82176a456a1f081ec993b13e295b9e69595ca930018a01

Download Submit
C:\Program Files\Java\jre-1.8\THIRDPARTYLICENSEREADME.txt

Filesize
192B

MD5
0e66734b4bdfb8ea28ae0b5cc4e3fe01

SHA1
cc3592d3b9c51ddde9954839c364f65291b83cd5

SHA256
265782515b001cfeb64e623cce1d12032dbc08a233f05d09742962e0ccea1281

SHA512
16603bfa14ce8e355b4cffd2812930d288e8e3864cb473b6324c03c8bd0e52b36810cf6ce16b2b03450b3b91119c9290d703da82166f81928b89d5b232ba9e35

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\directshow.md

Filesize
1KB

MD5
9451684063be15e44f6a200a7b1db774

SHA1
4c8a2981aeefebf3e1e07006482725bb3bdc36e6

SHA256
c7764fda9b9ea454d947733c4c3de90b702659b28306f0b262ae4e9402ae22e8

SHA512
a5d5a27a4b473a24e8e5e78eca0a2b0334234912bf14be0fbe5ce4b5eca1c95951f108f5a5f5408a7396285ca926c794b77fb18604419a20beb36bbc743e9742

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\glib.md

Filesize
31KB

MD5
d07ed9d108478903a30ae024d0ffbf23

SHA1
39bc1bf6a9e23ef35230a35e166e769374c7449f

SHA256
fcabd5b72ca9c505c4d22ebc0fd4f221f7f8a57908290154f042c57defdcde11

SHA512
5a9e1c7be7f972e28bdebb1099a623e54097e2659f322af5565308ca2ce8772fccff824abf5fd6440dc57d9aeefe305e3a783154b5da99d155830f6c1bb685f0

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\gstreamer.md

Filesize
34KB

MD5
037583a3312351f4adab0b4830030171

SHA1
f56f50fd3f182a9f5e7e5423f8c83310d97461e4

SHA256
a54dabe1a95932573929ed9e4851036c6bb4694925eb6f2e5424c87f8a2a21ab

SHA512
4f7f40ddc9559fc15d3ca20bbd0032193c4de36509bc6c1e28025c3ccdd37e34bfc8f71f086dfe60e679728e68947e028ade61ef5f821faf0c34716d88ce8aff

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\icu_web.md

Filesize
23KB

MD5
e6b8caab8dc3ba6c43a402910a528257

SHA1
6bf198cf5083f9b6c8466f6220521f275a0561d3

SHA256
808f16dbef86fdf41099b7632206dad91c97b4d82776e46c25b79818d495b01c

SHA512
ee8d54ea6f0eae91132e17b53c0869837567299847ba7ad4d1b33f505ad16cc3cd78ece3613c07186ebb74baaa8c80584bfec51a184f526c6d08c7cc8aa7fd7c

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\jpeg_fx.md

Filesize
2KB

MD5
e54a9f99c39a81be8f118dee87996d86

SHA1
a054a801da25787c3d56553bd0ab25aa95d4ef1e

SHA256
719824d27e9055b656647007be4c26f6472d4e0df0d865d7094709e539f9cb7c

SHA512
f70fb2e75dd0a1537ed48b966bbb3358282bc29544a7edb57be5b5538e401ee385fabfb26287bfe11e2069be9c029bee72ab575a31453703f06901305c355c2a

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libffi.md

Filesize
1KB

MD5
59af4ae1f3ecf0a8079ad44f5c0946ec

SHA1
791d5afed607ac8b48abe010d435cf535ff2010b

SHA256
179ffadb0247fdb4b0ba309a61fcf12b363483965fb061261235456e6e664819

SHA512
f2ff7fece579a8b32a8eb276835af9460574f7116c984363a4d37d7e698b01d07e99e9a68a53f0611ad464424bac029f24d8d870b891b0ef69ce783d44a8fa05

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libxml2.md

Filesize
3KB

MD5
a4e0d9b5bd07571ef5ff76e4394aa8f9

SHA1
2871446b7a55caed919f7b28053b24c2bce7044b

SHA256
f25d83d6d265c539e336b0cef96333fbeaa3fa6117a0e81fbc41a05cbf947bd7

SHA512
e365cfeadb40570bcc3ae0f6191ec324d8807854ca2074b3c94c17c4cb6c821b82f77e3ba6097a12a93b1467dfd7dd979c45d31ea0ba3df7f8b7e6fa1ad51c64

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\libxslt.md

Filesize
2KB

MD5
c2daee6aad7b1c6588a11eec86fa1871

SHA1
23895b141767f1e5311ed935533725e63fb8b499

SHA256
ffa70c67ddba19080642227055ff4f4965e0e385358955fd2bf20bab17668ba2

SHA512
e630a03b20a677458043ad3abee40bc5d7469372453df8fbacc6b785482fab5bad6406398bf5c2688bc4d87174ca3725d09f87dc8b310b061437506a2937495f

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\mesa3d.md

Filesize
5KB

MD5
5e2119532f3b52aea9e23f5401e1c0fb

SHA1
7fea55f429b61cc533fdb86f1888f9e273e7d286

SHA256
884852d4140d658da940d5f7bbcf9a261268a9e0017eaa0f71fa8afde18af8d7

SHA512
a6159ec50fb0021be195b4391aaf1cd42b04d87df2902feba4466c29cb6fe5ea8761e81fc6b0df0ea2f5f9a2b8e9a64023722992fa686c049370ef09e096e700

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\public_suffix.md

Filesize
17KB

MD5
7986bd71fe0e7b67fcb77bcd2b94406d

SHA1
9d0462cc7cc44c2d77c7093bc197a17c8e84bd3e

SHA256
98b41181f07bcd3055eb52f737f19560e6c768d8a1bc3e6e3baca9d896a149cd

SHA512
520c1fd0e14e50273e4aa72abef79858f4c75d6a37614518697e0a361cf5a372eddcad0629e59b03ae387b2bb864367ebb501d6c963667b50f5d4ce33fb98761

Download Submit
C:\Program Files\Java\jre-1.8\legal\javafx\webkit.md

Filesize
320KB

MD5
548280d5d8efa2dbba2178aa918667c8

SHA1
ece9b15b4a9d237f5e2cf3efe50f25fdfc4167ad

SHA256
ebfc6a15434e609b3e44abad3d4e49d2ede772a04acd4a9402c59598081a0d12

SHA512
496d7e6808b2641aa5da7449aeddea6b72b1210e50f213b67102e3a97fa153dcad7a2e0b4f05ca674a6372ed736d9c95b24643754488709770a8c8d25d5bac0b

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\asm.md

Filesize
1KB

MD5
a366eb41cf7bd0cf51b8a282d5dd196e

SHA1
f1a6cce47102603f5d2f6b7aec2cdd374f2d234b

SHA256
55a28498469ba4190aa49d60f17710ea7f03b39da80b8dc54f22fed6b13bb2cc

SHA512
b43e06c314ab62d6046812593f21f61cedc103a568a0e000f1025ce05a8ea1844be3fe18bd2e1d33a0c170264db94ce24cd9430461b7795413ea31193a81a7f3

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\bcel.md

Filesize
10KB

MD5
e39903060aa5481e02c911a21446d952

SHA1
4db53a53a6bfccf7674b0879c850222f9667fbde

SHA256
c903a3640c1e70defc80237c08ee7affe8fa0e6cdd16bc2bab9965299345bb65

SHA512
dffec1939706335ed2df4f72c2ffe1193c5b4f709e7dd1e91ec4b3dbda6c035051bdacb848c4a7de3f7b98ccdad67f9e3d21e2cc12b62ac8e0402cafdf3f6e6a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\cldr.md

Filesize
3KB

MD5
71fcdb7ef8e9fbfdac057fa857b5f081

SHA1
49a9e85a3e37e4bbfe0810cb4a578719cb7c18b8

SHA256
80090ce45672a52a17de579f3e516c50a0ac3320d108a7b96aabef44603dca82

SHA512
3a7cb850de12af68d4afbc92e16c47cce49ebb1642ed0f43a5cc1963341ca6395243e019e9b5a3792a4dfb03a7b86080d4dc589f31dac66005b98b98f515c9ce

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\colorimaging.md

Filesize
176B

MD5
73bb2ce0b92573f7034f22f455bdab59

SHA1
88331e23fd8adc83da6326947ae04db1f401e2e9

SHA256
69edcab836f1c4ac071bcffb907652acdb7b92b9e0155357c96d2eff52f2b593

SHA512
70f45c3da51ae579000d5c7b75bba61186b589478192ad5b8cd2da4b267dc1af4071eb4c3213899c27b39a91e9eeaffd800bb49e5d9ef157106e6a7daa0ca91a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\cryptix.md

Filesize
1KB

MD5
7a44dbd6e3c667d2b262a6947cdffad8

SHA1
8c2f97ce7f4dbeaaf12396632f3e528bdc7c4c24

SHA256
c116bd1f84226ea683b8ca58f36b818c5d55823ea72efa67da7bb59cc4aa6d66

SHA512
0e635aefe414bdf24c881e5089cdff45e3980b89183a308ed4f90ed6f72a4247da2fceba325f50348ae1cd66dd9616662246a15a1d96d518b1f545415563b1cf

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\dom.md

Filesize
3KB

MD5
518549fa8e808d9d7bcaa8f92cd401c7

SHA1
8744d177af7e8393a4d5b66ea1f03002091609bf

SHA256
b6955a6232d690b53d3632d949a8058ae4e3689dab5c6471f1d636ea41d8d8f9

SHA512
cedd234f676f18675e928026de2198bb9f4eaaa69178349a8b608c9eca438af149cabd55b73efcb8c2b04389bb53f7395b64941f0c57ac6b75960eb80b7ac300

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\dynalink.md

Filesize
1KB

MD5
f2ad9bf19fdb2cda7d69ecee719c2f28

SHA1
154f607952e4929d50e93414283d02aab80f9f0e

SHA256
fd232e2c9481a8f243236691cad9c665062f03387a3ec1d3fcc41407afc4e3e5

SHA512
b70f8642975cd0f01f81ff3e7a93a9944d6943860b1ffc9b62f010cb871cbcb2729aa3e598af57c1b2030c8e44e5e1f35b9f092fdb918bbff945d034b6e638e7

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\ecc.md

Filesize
28KB

MD5
a4a67f4349f7772348bf45426a1be3be

SHA1
e0434441e09458fa927b53de4a82a3e5bfb421c2

SHA256
c3e47da5ee04381be6cb4406ae563f90a13ceda70770230f5c1bd8a816bf2680

SHA512
5063ebb80a5d4add1d1e213edb895419ae8724cf8f5f27133a4d985f88cd066aa1ed4bf1d2282656b751d34c42ef3eca0c123af92ad9941f0a1b5dc1770de03a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\freebxml.md

Filesize
2KB

MD5
9edad4c15313518a8a4daee7699d7561

SHA1
1b38022d8d15ad4eb05af355b1d0065f3c56fc2f

SHA256
51c0a545efd96548fd326b831b7191ca1db5683263438dd2e6807a9130a29c0e

SHA512
1af38c92914f28a46d179d2f6275a0da719c8372f29bf2947cdae73978b079c81aaa43e89213f22b5893cd10c33a5e088e4ad4511318001efdad8fc6bbedc6b0

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\giflib.md

Filesize
1KB

MD5
63b7a4cfda2e5041b3ac2065ed661934

SHA1
392d4594f92f328a9f2fa42a0721317a4aa65256

SHA256
a090897a542b057c4ca6d7b6548c61c5d9199fb7cd1528a17f3090576a140199

SHA512
5c17b0c457dc74b6e856a42028b0d2b6e1687e282437e908b999db7ae1e06a5a571714c6b439dda72bbd002a4556d5abf5139333bc8b4562042621d5460f7bfe

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\icu.md

Filesize
2KB

MD5
c03be59c4ee9b208824e5238514a7718

SHA1
7d923996dbd2e31506247c5e5d25e4301d59eb7e

SHA256
520cd37f5d9588b1205c2646a35272aaf5521df046e4c4a48119e6387689bd6e

SHA512
ae6cf3dfe0df67cd50d2ca202ec59ae7d5d2d10601b0f16ff80f56511b538763db6c7e96ec34f83dfd41f4077989517c18bd24980afda56c1fa1eaa74cb79a8b

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jcup.md

Filesize
1KB

MD5
197393d1aa0917eb0d71a2462e4cde84

SHA1
aec3e766a5e030fcdd8484c1d2850c50c69d212c

SHA256
515107baf0298de65f5a9f74224421ae244dbb980b85b493b74ccec5d2be8205

SHA512
2630b403bfe83c9c87cd37752102819001eac3db43dc877effe07c8300d4144afd6d54f2f921f26533c3f6c56a9e91aa8777ff1fb70c8caf57d4e68a3dea0767

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\joni.md

Filesize
1KB

MD5
0b761bb8d40ea49b8c76abd7184ab4b4

SHA1
13d345d8ef380c68dc4952cfd6a299e5ef608208

SHA256
1df9dba03497929c3a3ee19abc37d5f1ad530a01ced29d256a8a88641fc94add

SHA512
7d49a424696417cd53550cf818edbfa3962bbf2aa143249382bc00e3f0645be453008377fadffb4d317edd331ed31cc43a2c7b7949ebdee15312ae6dd2edf016

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jopt-simple.md

Filesize
1KB

MD5
eeaaae1f097f759f8be114c697e9dafc

SHA1
04997873ee928fc84a4ce67573be7866fcf616bd

SHA256
a9f945ea89d4865fa5eb15fd8d5053d9d518cf36e1d9fb581cf6565495892c9a

SHA512
38c8b84a2d09a60db75b1a6d20fadb197d54ebef4c00150fb78b8240dccb1ef5db1d9aeb14aedaf5a0e3232208350962b6588562af7441866870eaa2fca051a2

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\jpeg.md

Filesize
3KB

MD5
509ab220056b66f99c5a2b6a0e2a51b2

SHA1
b9bbd8687db836eab967f7b7c68162b8bacf2eaa

SHA256
d8ce5bbfe662122690a7708ea1b0f14ddc7f7a0f970b415bed752601f1ba7f78

SHA512
82cb3146df76312d0ea0419f089769e422aedcc40e3afd7efead17bb6bd82772987e82923f78b297a327c18bef24d44538b051c639063b4add9738616590ad65

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\lcms.md

Filesize
2KB

MD5
9715ef0d3c21e8e408b5a07767cf0960

SHA1
76ea449fc90beaf2436818b211cd7ad308996440

SHA256
c0ad5479a36f987203e094a470d2d84917e35e6734f924c050fd32e38a74b947

SHA512
a72b2816fac68711358ba6d8d2eb2d4f8095974cf8ed8232b9390a1e9f2c351c576f042a4caa0b838cc730723cee460e2a35eb6da8ba639e59b127f0de2a5da7

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\libpng.md

Filesize
6KB

MD5
e5b73ce73a027e478eec520cf0e8ef24

SHA1
20a04c0656ca0747d7bf5effbd2d1986bdbad5ac

SHA256
224d2590b993085d0b33114853b14f79f3debd1690556800b02a7d65ce18f74b

SHA512
c32005da2684fcdbde8bc64a98e6e1f858e7e66d65de65eb9f836d74a9aabef31f11fa64f714100ab10482848670937ef44c06ab0f8a73f8e2b8082ce140490f

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\mesa3d.md

Filesize
5KB

MD5
0e3290b2da6dd33258d7f8239e4a14f8

SHA1
035e86e199ce8c7f7aea9581e083f34523fee997

SHA256
0807f5071e854d60556d5f7829c0c952916648ad978c6fd15048ce4e4bce549c

SHA512
714fd63cc0a9ef1f85b3e13ab325f3747767306b3cd20867ad82ed3238bce80f0a9cc326104a4a3fbfe8d15f93cdc12f5c06359a7370d00d76b0cd80b9b80175

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\pkcs11cryptotoken.md

Filesize
3KB

MD5
35ac23d6ca92f07bb8b1814aefd5b946

SHA1
57bdaf1275e36a6fa834b577a7959987cd9edf0d

SHA256
281bd602943ea582f3c69ff7957da0c6457f96a9d10e4a406d0120cc52fa9f15

SHA512
a7802b6af5c2effbc5a03563873e901a10aacace0354228f30f2c5c0ee3af6374b1c0af8bb3ab8c2bfb5976ce4e0a6f59be3391cbf0dab978901cb856fc04f75

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\pkcs11wrapper.md

Filesize
2KB

MD5
bd045bf755973c6c02db35800e785207

SHA1
8e693b417f6dec56b70a9620cf44e9b437a7cd64

SHA256
c1afc17e2804251f9628323d7c61ef3c31ea8ddb54615db61ffa14c3362360dd

SHA512
6f20baef568542abc8755d502a55fb546353f14434555845f50f3d08f2a0214852efcb769732eeff504b69c02666c3b672c1cc71a192ecbee67a54295110f8bc

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngcc.md

Filesize
2KB

MD5
bbddb2800c04200c385ee30321fa91ad

SHA1
aaa0dbdfbc9b88205e4e6be2244a5d9efceabf85

SHA256
494ddd8c4ac862b1f98ba47b2b6840eaac26e1806d59e45baf267bb212429b76

SHA512
657850202a1a25a8020f4a9020c560403bd516012b207fa045cae71de513a2f3dca058f7dbb5a0bdbb66b33298e91b2dd328f05a87ef631608c55926794fc040

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngdatatype.md

Filesize
1KB

MD5
ba02f4f4658accc2551e09858ba5e21a

SHA1
82cd52dbb0ac7cf3224dd1b3eb83e5424ac97b27

SHA256
1aaa4b5b5516f92b686b6a818ffa145315aad7268e27fdaf07a43184382642a5

SHA512
73e82db874d20b15e2cdc31e94898c6d3463c5eab2712a329a174bf162d862e682b75a407881cf6be748c2d209a7b4f347ee3bbab49a12125ac5652eac7ab29a

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\relaxngom.md

Filesize
1KB

MD5
39e15e0ef4b6f510956b92e879b7ba29

SHA1
af10379317c13fd6b8a2229e6857751ef27c9411

SHA256
768efb571856b4449f7a5d3433b3ebff300b566bcf826136285f97ff85b1a951

SHA512
48bec96ea6ae792f77f9d40ec5805b559a52bd051aa9bee695bcc06c2704d949d22f63f2a982ff77c55670f1ca6765573535baf3886ced5945a52b25ce9aad8e

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\santuario.md

Filesize
11KB

MD5
7a22c8f242e08cc7ff4b77530ee0fbd1

SHA1
8ba83c7c781aeaa71aac84766e4c36d1104210fe

SHA256
2f63d1c9071289ea803efcbe1422bf6e61adebd22b11b4fe3cf0a5cac9ae4fd7

SHA512
28653a6ba2ec2fe8fc4938b1f06da9adf3f43dc25d13fc90e4d01274aa8f2acf85472102713790c0fe3b695ebd9d302663ecf3144d80431d8216982be1454f17

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\thaidict.md

Filesize
1KB

MD5
cfbc9065988a448de389a8a7de520a55

SHA1
a90c6e099123d3c41ea880b3f8ffa0f0c69f2f58

SHA256
75de0d7cdff6d886c5c4db14fb4b9fdad700e8ec4f2423941bf238934c00e9c8

SHA512
3b8483073f9d9ccff5db603723f965164d45a5bd62fd03179370d198a5e1ae4b7d19ab575a7159c71f7ff205e092545fdaa43829cec73d337ff1d37d164f2042

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\unicode.md

Filesize
2KB

MD5
d1ebbf75f25c92555837a90449bb6c7a

SHA1
8ed29748e01b868841b102dd5f2dba43117cbf31

SHA256
5a8396eebce7764af5e8703c35fd0eff593884d8639125cddaeeeaca46d5aa8c

SHA512
cc63ba8f95c26776d307fbe3227616e79a681565cc830e3d754f34d168679256961e7c3402b17df5b0b69ea6d4a603b2284ba48d5e49d069321e1a3e428f5510

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xalan.md

Filesize
11KB

MD5
9ea495f9236ca8bd4ec32ba35122fecd

SHA1
be9a5446cbf886a476ba306b36e1cf8950e5a988

SHA256
60dcfb07378c1ba7be8bbf92af3816057f807f47818aa748506c92f65b1c6bba

SHA512
877db22958bbf9fe56eb678865777c52d43250f96385e30d94674e5fae3f5f337a833eaa36aaeb17d2ad379d623b68bf036686f4a4199caa3a52f10f47bece8d

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xerces.md

Filesize
11KB

MD5
8bb02ef86b9ebd5189606ba12b6877c2

SHA1
3fe7e8ffcfc72666eddf8f28e33c1f2d13483a3d

SHA256
6d92bb7e56b25be9454e13c7127271452915d57bbf8d8d2c3a9536149382f203

SHA512
8e189647e3db6024cd678f19ed41e970d9f8f04cf0d4a59adab16875c538b37d44673c435565cefbcb97e6d13218f39df97ad470228678a2b948f38dc3ac5349

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\xmlresolver.md

Filesize
11KB

MD5
eaa5c64e4b5a4b836a873f8662b16f10

SHA1
22d320379387959c0f8c93b152e3b2775ad4af48

SHA256
d6266dbb251e4d0d43bc459a7a0f6533332101e05c5e3929ba3b94c78c4e9130

SHA512
03224f97e251f72867566a799b08807b0528f7915ab4bb680074bd07ff9647e52e15b38a9422438a8b72ed6ea315c357360c7de4c20290530fa76553f8fa1fcc

Download Submit
C:\Program Files\Java\jre-1.8\legal\jdk\zlib.md

Filesize
1024B

MD5
3f86d50015ca2b6abf553349c5a3d1fe

SHA1
bf76bd5d2678072ccd914be1c8a8d9662f374c7e

SHA256
5e45309d9048738e7b9aefe8b79a508f90598d45a8898a1f664ff29f82804e88

SHA512
940ac32f743d17c5bef87a859890f3da6f7116b089d2bd5cb01c18b4fb97f48f53e4456234d6f309d3e6e56af3fb99601c799bc85f2b38d6dccc63dc2dd8fe0b

Download Submit
C:\Program Files\Microsoft Office\root\Office16\1033\ClientSub2019_eula.txt

Filesize
48B

MD5
055224438f797a775e7dd5c8fb8615fb

SHA1
2fc1149be2ed309fe32d898aa527a9a32e7054e7

SHA256
10adad08305b885a36ca813329b42e72d54889d4cbbe9339b76ced015803ca8f

SHA512
a9f72dca998277c4268e88c4b632069607bb1d9262863d9e44282b486876245f31b7a7c9dc6cdf588fc33a7fb8006ab89feba1b5999d5ecada8dce855c36f50f

Download Submit
C:\Program Files\VideoLAN\VLC\locale\da\LC_MESSAGES\vlc.mo

Filesize
584KB

MD5
bf2e3a706a5b50220b23d89e533563b5

SHA1
31b927db77db0c294dbd8ab34536f3eb10dc8557

SHA256
6861aae77c0e562b2f151c51f166148aa6499c14cd63979539560c129ee9f7c0

SHA512
0fc796e268b34a670d790e6542efb2b1f8ce272798a1efa095a9c3b3dfbadeaaaa417fc57d618479e514a941f80097a7188442dc8c20943969b7f67cae2391a6

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\Browsers\Mozilla\Firefox\Bookmarks.txt

Filesize
81B

MD5
ea511fc534efd031f852fcf490b76104

SHA1
573e5fa397bc953df5422abbeb1a52bf94f7cf00

SHA256
e5fe7f327ae62df007bd1117aa7f522dbbcd371ec67953f66d786424cb1d7995

SHA512
f7d8e575a2332b0fbd491b5e092b7ed6b0942a5165557fcc5d215d873b05103aa6ba01843133871c1c7ac81b10182a15895be49885c98d1a379dd55f88004fae

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\Browsers\Mozilla\Firefox\Bookmarks.txt.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
96B

MD5
1e65b8d4f638072bdc0c82ba886ab4e7

SHA1
7131f72c4ab02dcf9769d890679658d05d420c00

SHA256
bf8e37ab5053390b730b833eeccffd5578d5c679265bf6f7b5baa42e78a8bf39

SHA512
3b99c6ac50558b82956ea2e6c9abe18df3e6b145af395976c962656d389c5224cf8fa7fb58ab3c52e3d57ad89dae08f072465afe2255830325795b54334d4118

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\Directories\OneDrive.txt.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
32B

MD5
9271c40ebe7af1d113ae29195e4b46fa

SHA1
ffca186053939ab6c17b14c63602937091d27783

SHA256
68bc9e657151fb91d71f558ca4ed52c335f6b9aa008c3506113773757e6d41d8

SHA512
c8d0c71f022050437c02a2a22989ef140aeeaaad6ecd1ac80f26ee73f01a04c3cc5d3387b63218aee8f62e7d1d6599365018531c7d3241ce7f23cc2741b83390

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\Directories\Startup.txt.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
32B

MD5
7555e642803f93f2a7fad2cbfa9363e9

SHA1
359d773f557ea2f63b9f688cd9b8ee07f78c4dc8

SHA256
01f481c9d559b54160ff51ee2b08381d851f2eac0a1c0df0beb9d303cd88f542

SHA512
5e082692456bac650665b7d01d76f38139e0e3e4ea646508e0ed0ed740c21f033f9e6c78d3d0b3db229603d182cb23446f048754c80fda4003ddbc8598786f3e

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Desktop.jpg.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
85KB

MD5
06857a1a7549b6cd28f439850d1e3504

SHA1
c920a3dc4133f2b85e0f29d0cbe2384bce617a45

SHA256
f681789e5826954361e10db3a3f6ffd4a0223674fb7b9ab8d12bfdff990b9e31

SHA512
985b6cc3b87168aa66129e2206807c94dcd80816d4a52c0459673dbb589db600ff68f7cce4310614d73da7a0c36f540a1fc1208a139edab4512832727caf2f6a

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Process.txt

Filesize
1KB

MD5
344425243620189cd982a22d55586c3b

SHA1
55846b22964716f038743f65c5ed22248436471a

SHA256
ff644bd9a4aa7ac1a275230b82b591864f21e9c56a97ed8a7a5542966c1a2fba

SHA512
0c2cf4c5827b7afffc3aa0e18236ca3d0cfaf274edd40655f3cd5377c6eb012ca1deb14235faac0d624cc60ca60ffc99cd22c06a6759c0a13c8c40ef3a421363

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Process.txt

Filesize
2KB

MD5
0847d925df5e5794a0d5d0e8acd342fd

SHA1
e0a99e77b654a03a6260a2d98ee2cf2f620458a1

SHA256
ce53367fff7a57421fe5297fff8e807b901573440d290d7324bdd9f14f9f20dc

SHA512
98afde0d85718c53c624911e8534574b0543c4db0088407408201ac69f0b48d51f32e94eed668fcd50fd362bd6fd2daf0b153bf2cc3799cd1a49b4dfee4712fb

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Process.txt

Filesize
3KB

MD5
8cb630278039fe03e7f39607e631d66c

SHA1
680ae466697f7a237d50df6b30a603b1980fcc07

SHA256
c4415ceb11427cde1981350d199a71958d63db470c3c2f793acf1c3645acdd51

SHA512
810279119c344eac9776a23b7e54c4dfb30e7ac54fa6bbf91f7e3cbc95744221161e4bcc3c130753aa0d4e2964c265d139eab80b6cda2fdeff022bd5c30c75c3

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Process.txt

Filesize
4KB

MD5
f61f3811d8e6800b58b8dc95049189a7

SHA1
9293673ff216f79cd5ce56a7d4b3a30c28ed454f

SHA256
7665ce0eb0b64769608c4c127f05c75ecff6d72028a24250a22e01042fa1c7e9

SHA512
ba905e4b5b148cbe0167b3b4c744e709b2177bc54939a2e8208f2f61856a5f9822e6422e7aa03d9000d8a395e6526d9061ad1000968469e5d7bfb72aea7f7dd7

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Process.txt.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
5KB

MD5
24f67b4bf4de945b3781c407312fe95d

SHA1
94fcc0d2f1c8bc0e97affe127bd8896f539db164

SHA256
fa316021fe0418d023263f88d811cfb7e3ee664bd5c3e1b83ba38d9fa88992ef

SHA512
13aa3cb7b9573d545fb1d59959d3befa950daabfaf7ba5e7d8d7ded31407d8601abd7fabf0eb92c81eda4986954b37f1f33ab7c06e9a651fa9ed307dd5eea69b

Download Submit
C:\Users\Admin\AppData\Local\2bc00e95289f8e0e6909b6adaabf5421\Admin@LEPWYOJU_en-US\System\Windows.txt.ا̘͜ل̬͓͖̘̜̀ͅف̹̙̖͈̣̀و̠͕͖̀ا̛̲ل̸̘̺ف̶̹و͚̖̗̙̝ض̨͇̮͓̠̠ͅى̹̗̯͡ض̢ى̳̬-aj219sj1Uain

Filesize
176B

MD5
54979358ff3459eafd8f5ce93bbc7e8d

SHA1
f6ecdb2eeab11d7e250e7151db20bc20af45fdd9

SHA256
4e825fbb9159989b753ada8930e916cb4c7a6baa0b021e90bb728163ae160cf9

SHA512
9fab68e9dac2ed4ecc4752e08b6ef59a5c60ef60519051ce13e70d5b38b9ca2cce171e8255a69dcdbd846d2651b78c0e5409ad686fc190844782286bbdaa5d59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT

Filesize
32B

MD5
399beca2ebafc87c37671779cd6287b7

SHA1
5e5f1971202a63f1ae20aae98e81d2e62c6b082f

SHA256
43cae3ac53f165db91b660c4c8f6537e0d945f118897c69c0568282c9f9d71d0

SHA512
57fbba84328b383ed31431f340e9b9d26fc4ed16b67c6613bdf4041887ef235534bc10d4a48b3e3384b1c33715211b8b9027b396a216d6db76377e27d7561a32

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000001

Filesize
48B

MD5
2a80910adc580d1e8f6ee72dd0507b6c

SHA1
9f8a7d3c5238403d5510a4296a6350577064402e

SHA256
c97e5c8103514f8857ab7d7d267844331bf27b0210ef3ea7a4bac08df840b331

SHA512
ad0278bf093690891c6d55f3f5443e328eb918b53ea8dfd4800e0b2de14d12fb52d89472d3b9319483e0498eb2da83564e23b40997335979a58d4a882bea2456

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0

Filesize
8KB

MD5
b55da4682020439bf782faa99836e08b

SHA1
b9d8cb0d0a62cb6eff55f85dfa3bcb7beb4c00f9

SHA256
acdfac4523a5d7ff7f0c87db8b63a435977d5372645b10654e7005476b7da315

SHA512
440c2d8f188d5a45620108fada562e42e5aaf35275d27a68fa3b6e62099d1cf60c07906fa8bdd99f6eb8416449929bacf88209ef57b23098c9409f7e7d05f845

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
838107b570986ec1e01c9ff6c6186a0a

SHA1
af0fc5b33a96359838b460bc9efc8981cbc825ba

SHA256
6ddd4281e0e7c47c8be0e6045ece2883f30febaa0198b821944f40a356f1a307

SHA512
6ebc9a7b1a22ea9e4b97f64b6eeb7ff766806578c88b2a1923ef470023ce2d70ed235ec9f2700de8ae804ad5790d349d8ed3b52878d048d1b88ddaa5df72d627

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2

Filesize
8KB

MD5
4e810903ea1dfb022d76291f3f4ee8a7

SHA1
e3897f48442cd06504bb23a3d918d3150cdb7c0a

SHA256
57bd010900fc777edc2a89e7aa2cf1ae9d73cab99419f7127ba8a06ef2ab5f8c

SHA512
92bc83465898ca63589a22542367ab2838a044170f5d34e9c5a502727a9f577bedb8431d0b910635a07a138c5be5cba18a9c1dd2c9b87c9a79f728856e2a9362

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3

Filesize
8KB

MD5
354db5c273bffeb1e9f5d6776ce513bb

SHA1
d90df844f72d9a6e7375e527422ebbd6410015e1

SHA256
ef2c3c7f78faeb36216e3776718a0b3ba826e23f5422156964f827000e32fdd1

SHA512
1b88f4aab2fd26c9e5b7690c2db886394cd24919a081024b44122d3d7830d7ef5be91c5d84376b66f957e8cb8f3b5e22d45cee972fd44f15fee329c16330e64e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index

Filesize
256KB

MD5
b5730b52f837e6ed3aac0e1a16cd203d

SHA1
0c0e2d99a11d4e198bf1a536f0d92148d8782a33

SHA256
e297e63d91295378eab9766a75d7d3f9a1548c579fd6f49767d0b8fcf3957577

SHA512
1aad48ec1f01410936546ff919da3e21ff29797a41f12a9bee3d734e3c69302c725f9707b6c06fa28da8f8f75db16f0554c4f3bc1bf29d884e2141b8f020b748

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index

Filesize
32B

MD5
ed9f7b6d5f093244cd484bc2ef8a0333

SHA1
7d6d02172e2dfe46977ac3ebd3edd4f59a46ef9b

SHA256
c4a82d850826ca76ef06e1f81d8917fe3756de132c07724f9f2502e2d420c2a7

SHA512
5318db501f0e9728b02e28edc01fd8e248f58593c0a3a72f7f9d1e076764958f499a39db8c92b4997b9b8b0071a8e7de046c714b11376771cb5746cf5c04a965

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DIPS

Filesize
4KB

MD5
5f97c25ea32d0bf96352a2087d792771

SHA1
8c16c6d52a8ade49d8ba6db3fad883e54df590bc

SHA256
6b5861bfea83e540cef9ca6b1f7d1c6cc5419fee599867ccde9a90859bf0a8d9

SHA512
e068ae099373c718e1c57a0fe10729db4fb70dbbd66f63041c3b6a85bb3ce32f40150cc54ae748d365c38c4dc50f0492f73cc5ff23821539a20e90f9df29d908

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\index

Filesize
256KB

MD5
a856ce63800a7c93b495dcbca2f9d303

SHA1
bdcedd7c6b2261f16a7410f14f177ad133eccd85

SHA256
1dd948a5af1f67f95df04976cba89c86516d7971620e557a3d0625fcdb6ab235

SHA512
a61192020ece704c68255e54f9be31985e063b48b39a7b4736b2ca914ebbd3af0b7a0175b9e3cb35175794c8496f8ccaa143e8b25419ced4d7ce062fd85c9c75

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
16B

MD5
f7824f9b68a4359fbf42ba080fe6b897

SHA1
5ead024dd7b063535db6e5c0698ac95839e1ad39

SHA256
7fd6cc171a46378a0f9e17a7867265f5c60bce14fac23da5088b14b526c8820d

SHA512
8b370cd41f52355a83a14e57d7f440f5050d6eb29a8f39b74f6a6fe7daf88b15cdd11f6f3a96fcec63d5b9536332a7964a38b20ee00e010d92bd11d538a29f11

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Shared Dictionary\db

Filesize
44KB

MD5
82f8a7ad03522725be2548a659751c73

SHA1
68c7e52c5df205bc4f2ec3f749c580f0621e54e7

SHA256
4fe3cc7e31f7d9e511bc6737fb7d254b14af1effcf589d46dd34d1bc2a1bd8bf

SHA512
ab7a03fc36cedfdb93053bfc49e40ef46f07b06fa14f530079a50d29560a414ecc2a292a4fa50988ba48f8b11795c52635df6d32a97f900f8d8d7e5e5e0ac7c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Office\16.0\winword.exe_Rules.xml

Filesize
333KB

MD5
af3ea6ca1d75cfcd08f84eca3778169c

SHA1
5318378634e1e75744bc5bd0ceefcb57088d2901

SHA256
b084d0338247c45e3c7bb20f7a695717a240e7a67b49e62d9397b1d47ff3bea9

SHA512
e43c972f7f0913c2677482451a79e2555bc6e435e2e8801e7b987b2dece9603094313a35967c6b3f2b9b575685430f0d66419eedac6b35079f206ee665b51122

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Office\OTele\onenote.exe.db

Filesize
24KB

MD5
23e64ef1821468acb8a59e0fb08d5d4c

SHA1
7c7afdfdd33002d06d43a68207d179e6b6e78b23

SHA256
31718be2d1546108f23e67d3b38bd6834c03748c3380fa3172e42a11c8423ebd

SHA512
3703832bc67a3c5e26d47b9bc9817238c2fc6bc8c4ffc476c09a5766fe7c40482920cec3cd17064e01f0be2060e86b11ee78cdb0051ecd116f16e168636e2c83

Download Submit
C:\Users\Admin\AppData\Local\Packages\E2A4F912-2574-4A75-9BB0-0D023378592B_cw5n1h2txyewy\Settings\settings.dat

Filesize
8KB

MD5
98b00c025fd4a9ac25f4fb7eb8f7eba6

SHA1
70dd0a53b03c5d0dfb368bd4d0f1b31a751c05e7

SHA256
6ec0944dc6ba79542c929673ecaa236ff6bd1a4d707c3b0d49d1b0fca32af5b2

SHA512
5a158103bfa950aba86adf0bfc5902527650cba1f08045713f59cfeda276e6c50a5fc231435b54f2da2b23bee9b13b0bb642ea791ad29f7556a724a4e61844c8

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\https___java_com_help

Filesize
36KB

MD5
a8544f48d5375d1ed51ff2e5a536ef42

SHA1
9a51fc6067e86fb395c9d778619db29f0b8a7fca

SHA256
cd4a1305a1f25ff119afd41413f3aea7133c22e95049d91ca775946bc4d1d67d

SHA512
3b6300a1f9a5bfb437425aa8ad957126a14b81c1df540ba53d636d416531bca0f0cbb594a4ed3989bb5d368a09ca9075e2da253fbdc11ec53c56a535e0c46f29

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_charmap_exe

Filesize
36KB

MD5
af86b47dea628716dd12bad54a977db0

SHA1
8bdd4d18f5356f3196bd2953177b95f3d4daed40

SHA256
ab53aa53627b6aae42ad54b9972b5f85cb290bf123f24daffd9ffc51aca033a7

SHA512
db5133432417e917fd082a1c82217cc8fa4eab80b09ded7c4faa103bc5c93c36c5fee1fb78f3be6a6b730d9adab9198ee7ee5f2a7f55b23704ade708d032dc82

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_VideoLAN_VLC_VideoLAN Website_url

Filesize
36KB

MD5
9ee40ec86ec7fcfb76cd74a36952ff05

SHA1
aefa7849ccb8da384a02fcb279a4d26da663fc79

SHA256
dc1333301e59b0238113e31c5b8f634ec5442006defbf89a8077d6d6a0730bfd

SHA512
e7aba6f5b81ef430139144b55330c845bf7d63ccfb427817d16044593e5cc765563239c527e84b9b003353900186cf12c09fb8258497d8ba7bdd5a77327b4700

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{6D809377-6AF0-444B-8957-A3773F02200E}_VideoLAN_VLC_vlc_exe

Filesize
36KB

MD5
968804c85d1d7d3bdf8733f8496ef2df

SHA1
819955e1223a4773235ab790cb8ac25f7019cbb4

SHA256
0a9ba17cebef5239a6882d5a3b7e4c709fce3ca81fc12c4ef29b2c35cceef706

SHA512
52a7b161dfbbe87d83d79a114bc919fbaa4330150a690c878582e28a8e4edac02420a2b84d8c1c8ebc6a883f80ad5a21bb30cb4180dfa8f751702d0a83d3ea84

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{da32cc7c-db95-4260-a8c8-7575e982a040}\0.1.filtertrie.intermediate.txt

Filesize
16B

MD5
ed6fc6242bb61c73c1c3bebb14d42d28

SHA1
9c7348f643a39d35207a3b414391aea5fae6fcf2

SHA256
4891bc03972509c6ce8d6c646dbc02b16a523b4535c95c982f7479f066fadafc

SHA512
8bb584b3a5f66adfc21792baff335011000dc8512de772135b66a95b3ad75384fc080303dc03753f300824c5373130937b0a121f7758453dc17629a633bd841f

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{da32cc7c-db95-4260-a8c8-7575e982a040}\0.2.filtertrie.intermediate.txt

Filesize
16B

MD5
83709d995a57c3f3adb0138246b686b0

SHA1
7e6d8e697f2d3c6c4f3365f2a4e4ea81f705986e

SHA256
7e30ff029b0bff72da215ae860272f4da33c76e5e6c33132d6f31e8c72cd46fa

SHA512
3d45d0d30c5322c82cfc449e6f12a85c04977d27fb7b4b8d86d38e921254a20eb331d801ee93585fbc69d447921d17e0a65d13c4e66c91f11d5926e7fac570de

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\AppCache133864580065556749.txt

Filesize
53KB

MD5
222b77556885dec7ebccdf019f184d83

SHA1
9586995befe67a45edccecd565b1aa8133d63117

SHA256
44ce375ddfc0e0d9d8fb0eae4312023f53d476040079d4968bfc986629fc1d76

SHA512
7fa8a6817e331dc38d2e2b7e7d7aecb77d54501066c522e71e771bb5c509d8d8e91094e5083d3732abfc857cd8d3c0dc662884357f7b330a886627f91dd9fd7d

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\AppCache133864587876750619.txt

Filesize
70KB

MD5
8d06bb211c569ae4477ed7cd3a801202

SHA1
8dfd0e5461a1a1723b3168f8a4e008e6a136dee5

SHA256
a4d7eda051637c335aa429ffa241aa6b5c1c6ed755b6521dacb194a6b39f6ff0

SHA512
11f7fe004cb7ea94b80f3b53d8fac5f2c9ea8b58f2aab24cb810cd9bc3e9b31e5ac60f99009a1af9e23c8d7b48a789174bfd2eae88c157df9527ed35cde9476a

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\AppCache133864589931657467.txt

Filesize
80KB

MD5
a1e87bbeffa87b0aebd08a61846b0c4a

SHA1
3aa65fd7fbbb1b10913c80bae85d4a7249536893

SHA256
2fad3afb864cf844088fc2c56da2d83fd7eec30d9ea7639f72c53e6303ca42f9

SHA512
67bce770c393262ae8d843c5f0e4017d5964339fd1e2f6f97bc59e66af65cde5bca1be55183b452f985f21faf68e94f08efb1eeff9d257694c8cd689237d0d82

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\DeviceSearchCache\AppCache133864619222623319.txt

Filesize
83KB

MD5
7ee5bb81d875f4916c43b6d97aeb98ef

SHA1
40c27000727f66c64d33e075b564cb1f4ae5e3a5

SHA256
3f59c188427d05d89428f4cb67a7786fd6c3a15a54dbf479dcb2cfbb24caa4eb

SHA512
bc65f2b30926939aee9303486d932a489eecd1fdac57be332ed012f3e693c3c37f5414240ee3ae0bbf59b96cf0bebec54655dc1524463828bcc7b0772f19e90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Microsoft .NET Framework 4.7.2 Setup_20250314_203939556.html

Filesize
94KB

MD5
b7eb7e193f25a9dd1bbb54419b571d7c

SHA1
6c2019c76e2d331822441aa66ed68e8bfb59d606

SHA256
451db5e8313f1ada51a26aafbe9f6916c18f8cd6360dbe5b3b687293f1dd1530

SHA512
38e0cb49e6871e1922522638ce88a9c4f0dc4fe91886de8387c24ef71056a0e3667d08b1559d08ad8aa8f63eae2dbf37d6904bba95dc72900fd57b3e6640f1a6

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmp4A0E.tmp.bat

Filesize
164B

MD5
5aea96f296b1d0e197ecc32f2b811d02

SHA1
dc03fb8b38ab9ea9821f5205915e9d2156245262

SHA256
483db0e050e32685936dcc14a98e59fb4132708e766e789014b7fe785a4ca420

SHA512
32d426ef4d9ebd79c7f27c9bdd5d8cbc7d0deb260286b573596ff8022e9d5dc7e31de2d04b0219b40af872f885b15edc280e9921c5ce1a58ef78e5d4efcf3772

Download Submit
C:\Users\Admin\AppData\Roaming\vlc\vlcrc

Filesize
94KB

MD5
5c2869ac32debce68ea5fd1ea6d8e1b8

SHA1
d09742d27ece7f24ef4a339a0c48a6e507f637b7

SHA256
6ef6dc87309b5a0b3f45d26dd1b5677ee383ef1fe947d3d750caeb45065218a7

SHA512
523795cd5a6880ecae554807d7e9c515a5f016f592c4e73c8be6d24d78eb94ff4e823475ed1cd20ee8a3a8231515351f263456c1fc2ca1e87b7de5d8097471f7

Download Submit
C:\Users\Admin\Desktop\DECRYPT.exe

Filesize
4.7MB

MD5
13cc3bff0f824ebe590c7f9d6515532f

SHA1
1f0d2c9f699f56b2e6019b4bdf963aa4606c0ef8

SHA256
28921f3da130eb80c2f3cb546750b76d6ba6865380e3d576d525b7fd80d234fb

SHA512
a5e9c518a945f152fd06eacf6f37ccab067d564b34efb01938529a1619191bda3480c9275d871a1ed7e445627f515c8274671ae806531d1ecc59118da348fe15

Download Submit
memory/1144-30-0x00007FFF46980000-0x00007FFF47A30000-memory.dmp

Filesize
16.7MB

Download
memory/1144-29-0x00007FFF485A0000-0x00007FFF48856000-memory.dmp

Filesize
2.7MB

Download
memory/1144-27-0x00007FF6F6E50000-0x00007FF6F6F48000-memory.dmp

Filesize
992KB

Download
memory/1144-28-0x00007FFF5D550000-0x00007FFF5D584000-memory.dmp

Filesize
208KB

Download
memory/3172-7280-0x0000000000820000-0x0000000000CE2000-memory.dmp

Filesize
4.8MB

Download
memory/6036-1-0x0000000000270000-0x0000000000286000-memory.dmp

Filesize
88KB

Download
memory/6036-9-0x00007FFF4D6E0000-0x00007FFF4E1A2000-memory.dmp

Filesize
10.8MB

Download
memory/6036-8-0x00007FFF4D6E0000-0x00007FFF4E1A2000-memory.dmp

Filesize
10.8MB

Download
memory/6036-7-0x0000000002400000-0x000000000241E000-memory.dmp

Filesize
120KB

Download
memory/6036-6-0x00000000023B0000-0x00000000023E4000-memory.dmp

Filesize
208KB

Download
memory/6036-5-0x000000001AE30000-0x000000001AEA6000-memory.dmp

Filesize
472KB

Download
memory/6036-4-0x00007FFF4D6E3000-0x00007FFF4D6E5000-memory.dmp

Filesize
8KB

Download
memory/6036-3-0x00007FFF4D6E0000-0x00007FFF4E1A2000-memory.dmp

Filesize
10.8MB

Download
memory/6036-2-0x00007FFF4D6E0000-0x00007FFF4E1A2000-memory.dmp

Filesize
10.8MB

Download
memory/6036-248-0x000000001A660000-0x000000001A684000-memory.dmp

Filesize
144KB

Download
memory/6036-31-0x000000001C310000-0x000000001C7DC000-memory.dmp

Filesize
4.8MB

Download
memory/6036-0-0x00007FFF4D6E3000-0x00007FFF4D6E5000-memory.dmp

Filesize
8KB

Download
memory/6036-5139-0x00000000008C0000-0x000000000093A000-memory.dmp

Filesize
488KB

Download
memory/6036-4319-0x0000000048B50000-0x0000000048CD8000-memory.dmp

Filesize
1.5MB

Download
memory/6036-7282-0x000000001BC40000-0x000000001BCF2000-memory.dmp

Filesize
712KB

Download
memory/6036-4324-0x000000001A840000-0x000000001A84A000-memory.dmp

Filesize
40KB

Download
memory/6036-7287-0x00007FFF4D6E0000-0x00007FFF4E1A2000-memory.dmp

Filesize
10.8MB

Download