8b0df603574c14809359a81518261055d491863a28f3c32a4832ce547874792c

Analysis

max time kernel
298s
max time network
300s
platform
windows10-2004_x64
resource
win10v2004-20250314-es
resource tags

arch:x64arch:x86image:win10v2004-20250314-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
24/03/2025, 18:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SKlauncher-3.2.12_Setup.exe
Size

3.4MB
MD5

79e973d7cf9069f758dd382bee60ee43
SHA1

0d1c6bf48ec6be84c2648575db5dc819e47d2ecc
SHA256

8b0df603574c14809359a81518261055d491863a28f3c32a4832ce547874792c
SHA512

88094aec244ce5b9a10d36a184bc1567ecae73cfb30e3f51923467b93d3bff965caf0ab19cf63c658bad09ff4445a4ff1b65ad726334a5105b9947d64f7ff239
SSDEEP

98304:jr9jbrLx1PPvuHs5VAhRPD2Cr3ViRp2z0:fB/zPvuMgfPD7r3d0

Score

7^/10

microsoft discovery phishing

Malware Config

Signatures

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-446031748-3036493239-2009529691-1000\Control Panel\International\Geo\Nation	javaw.exe

Executes dropped EXE 3 IoCs

pid	Process
4936	SKlauncher-3.2.12_Setup.tmp
1516	7za.exe
1128	javaw.exe

Loads dropped DLL 64 IoCs

pid	Process
4936	SKlauncher-3.2.12_Setup.tmp
4936	SKlauncher-3.2.12_Setup.tmp
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Detected potential entity reuse from brand MICROSOFT. 2 IoCs

phishing microsoft

flow	pid	Process
177	5012	msedge.exe
177	5012	msedge.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\sw\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-or.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\dasherSettingSchema.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\page_embed_script.js	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\fr_CA\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\lv\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_242306746\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-bn.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-es.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-sq.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\fr\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\Filtering Rules-AA	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\LICENSE	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\Part-IT	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\service_worker_bin_prod.js	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\mn\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-da.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-mul-ethi.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-pt.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\mr\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\be\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\az\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_1083066002\keys.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-en-us.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-kn.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-nn.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\cs\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\kk\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-sl.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-tk.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-uk.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\Part-ZH	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\ml\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\en_US\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_272469648\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\tr\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_1083066002\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-de-ch-1901.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-hi.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\pl\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\fa\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-cy.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-gu.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-ml.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-nl.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-te.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\sr\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\am\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\el\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\en_CA\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-ga.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-sk.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\Part-NL	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\ko\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_1014403560\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-eu.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-mn-cyrl.hyb	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\pt_BR\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping1168_195196623\_locales\cy\messages.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_242306746\sets.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_242306746\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-pa.hyb	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 2 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	SKlauncher-3.2.12_Setup.tmp
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	SKlauncher-3.2.12_Setup.exe

Checks SCSI registry key(s) 3 TTPs 4 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000	msedge.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\ConfigFlags	msedge.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000	msedge.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags	msedge.exe

Checks processor information in registry 2 TTPs 6 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	javaw.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	javaw.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133873147622318090"	msedge.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe

Modifies registry class 4 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-446031748-3036493239-2009529691-1000\{BFA41935-58D9-4900-A489-31830F85BF2C}	msedge.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-446031748-3036493239-2009529691-1000\{2A25B730-B2B0-4BD6-84B1-174A249F932A}	msedge.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4936	SKlauncher-3.2.12_Setup.tmp
4936	SKlauncher-3.2.12_Setup.tmp
4332	msedge.exe
4332	msedge.exe
2176	msedge.exe
2176	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
1168	msedge.exe
1168	msedge.exe
1168	msedge.exe
1168	msedge.exe

Suspicious use of AdjustPrivilegeToken 4 IoCs

description	pid	Process
Token: SeRestorePrivilege	1516	7za.exe
Token: 35	1516	7za.exe
Token: SeSecurityPrivilege	1516	7za.exe
Token: SeSecurityPrivilege	1516	7za.exe

Suspicious use of FindShellTrayWindow 3 IoCs

pid	Process
4936	SKlauncher-3.2.12_Setup.tmp
1168	msedge.exe
1168	msedge.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
1128	javaw.exe
1128	javaw.exe
1128	javaw.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4328 wrote to memory of 4936	4328	SKlauncher-3.2.12_Setup.exe	87
PID 4328 wrote to memory of 4936	4328	SKlauncher-3.2.12_Setup.exe	87
PID 4328 wrote to memory of 4936	4328	SKlauncher-3.2.12_Setup.exe	87
PID 4936 wrote to memory of 1516	4936	SKlauncher-3.2.12_Setup.tmp	109
PID 4936 wrote to memory of 1516	4936	SKlauncher-3.2.12_Setup.tmp	109
PID 4936 wrote to memory of 1128	4936	SKlauncher-3.2.12_Setup.tmp	111
PID 4936 wrote to memory of 1128	4936	SKlauncher-3.2.12_Setup.tmp	111
PID 1128 wrote to memory of 680	1128	javaw.exe	112
PID 1128 wrote to memory of 680	1128	javaw.exe	112
PID 1128 wrote to memory of 4432	1128	javaw.exe	116
PID 1128 wrote to memory of 4432	1128	javaw.exe	116
PID 4432 wrote to memory of 2540	4432	rundll32.exe	117
PID 4432 wrote to memory of 2540	4432	rundll32.exe	117
PID 2540 wrote to memory of 1168	2540	msedge.exe	118
PID 2540 wrote to memory of 1168	2540	msedge.exe	118
PID 1168 wrote to memory of 3484	1168	msedge.exe	119
PID 1168 wrote to memory of 3484	1168	msedge.exe	119
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 5012	1168	msedge.exe	121
PID 1168 wrote to memory of 5012	1168	msedge.exe	121
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120
PID 1168 wrote to memory of 4044	1168	msedge.exe	120

C:\Users\Admin\AppData\Local\Temp\SKlauncher-3.2.12_Setup.exe
"C:\Users\Admin\AppData\Local\Temp\SKlauncher-3.2.12_Setup.exe"
1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:4328
- C:\Users\Admin\AppData\Local\Temp\is-0QBED.tmp\SKlauncher-3.2.12_Setup.tmp
  "C:\Users\Admin\AppData\Local\Temp\is-0QBED.tmp\SKlauncher-3.2.12_Setup.tmp" /SL5="$60274,2553666,803840,C:\Users\Admin\AppData\Local\Temp\SKlauncher-3.2.12_Setup.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of WriteProcessMemory
  PID:4936
- - C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\7za.exe
    "C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\7za.exe" x -y C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\jre.zip
    3⤵
    - Executes dropped EXE
    - Suspicious use of AdjustPrivilegeToken
    PID:1516
- - C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\javaw.exe
    "C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\javaw.exe" -Xmx512M -jar "C:\Users\Admin\AppData\Roaming\sklauncher\SKlauncher.jar"
    3⤵
    - Checks computer location settings
    - Executes dropped EXE
    - Loads dropped DLL
    - Checks processor information in registry
    - Suspicious use of SetWindowsHookEx
    - Suspicious use of WriteProcessMemory
    PID:1128
  - - C:\Windows\SYSTEM32\reg.exe
      reg query "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Themes\Personalize" /v AppsUseLightTheme
      4⤵
      PID:680
  - - C:\Windows\SYSTEM32\rundll32.exe
      rundll32.exe url.dll,FileProtocolHandler https://login.microsoftonline.com/consumers/oauth2/v2.0/authorize?client_id=907a248d-3eb5-4d01-99d2-ff72d79c5eb1&response_type=code&redirect_uri=http%3A%2F%2Flocalhost%3A26669%2Frelogin&scope=XboxLive.signin+offline_access&prompt=select_account
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4432
    - - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://login.microsoftonline.com/consumers/oauth2/v2.0/authorize?client_id=907a248d-3eb5-4d01-99d2-ff72d79c5eb1&response_type=code&redirect_uri=http%3A%2F%2Flocalhost%3A26669%2Frelogin&scope=XboxLive.signin+offline_access&prompt=select_account
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2540
      - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --edge-skip-compat-layer-relaunch --single-argument https://login.microsoftonline.com/consumers/oauth2/v2.0/authorize?client_id=907a248d-3eb5-4d01-99d2-ff72d79c5eb1&response_type=code&redirect_uri=http%3A%2F%2Flocalhost%3A26669%2Frelogin&scope=XboxLive.signin+offline_access&prompt=select_account
        6⤵
        Drops file in Program Files directory
        Checks SCSI registry key(s)
        Checks processor information in registry
        Enumerates system info in registry
        Modifies data under HKEY_USERS
        Modifies registry class
        Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
        Suspicious use of FindShellTrayWindow
        Suspicious use of WriteProcessMemory
        
        PID:1168
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x238,0x23c,0x240,0x234,0x2b4,0x7ffe3a0ef208,0x7ffe3a0ef214,0x7ffe3a0ef220
        7⤵
        
        PID:3484
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2800,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=2752 /prefetch:2
        7⤵
        
        PID:4044
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=es --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1932,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=2836 /prefetch:3
        7⤵
        Detected potential entity reuse from brand MICROSOFT.
        
        PID:5012
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=es --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2384,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=3000 /prefetch:8
        7⤵
        
        PID:2876
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=es --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --always-read-main-dll --field-trial-handle=3488,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=3504 /prefetch:1
        7⤵
        
        PID:5524
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=es --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --always-read-main-dll --field-trial-handle=3556,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=3512 /prefetch:1
        7⤵
        
        PID:4780
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=es --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --always-read-main-dll --field-trial-handle=5032,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=4936 /prefetch:1
        7⤵
        
        PID:2364
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=es --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4380,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5304 /prefetch:8
        7⤵
        
        PID:3136
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=es --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=3952,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5276 /prefetch:8
        7⤵
        
        PID:5532
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=es --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5604,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5612 /prefetch:8
        7⤵
        
        PID:1696
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=es --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --always-read-main-dll --field-trial-handle=5880,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5896 /prefetch:1
        7⤵
        
        PID:5488
        
        C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=es --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5628,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5736 /prefetch:8
        7⤵
        
        PID:2392
        
        C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=es --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5628,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=5736 /prefetch:8
        7⤵
        
        PID:3452
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5756,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=6400 /prefetch:8
        7⤵
        
        PID:5800
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=es --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6632,i,6996784725393840175,14859219670023302812,262144 --variations-seed-version --mojo-platform-channel-handle=6420 /prefetch:8
        7⤵
        
        PID:4524
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window
        7⤵
        Drops file in Program Files directory
        Checks processor information in registry
        Enumerates system info in registry
        Modifies data under HKEY_USERS
        Modifies registry class
        Suspicious behavior: EnumeratesProcesses
        
        PID:4332
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x23c,0x240,0x244,0x238,0x24c,0x7ffe3a0ef208,0x7ffe3a0ef214,0x7ffe3a0ef220
        8⤵
        
        PID:2664
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=es --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1916,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=2224 /prefetch:3
        8⤵
        
        PID:5288
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2196,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=2192 /prefetch:2
        8⤵
        
        PID:3720
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=es --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2588,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=2816 /prefetch:8
        8⤵
        
        PID:3856
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=es --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4376,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4384 /prefetch:8
        8⤵
        
        PID:5352
        
        C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=es --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4576,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4600 /prefetch:8
        8⤵
        
        PID:2128
        
        C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=es --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4576,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4600 /prefetch:8
        8⤵
        
        PID:4612
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=es --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=564,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4756 /prefetch:8
        8⤵
        
        PID:5644
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=es --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4652,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4760 /prefetch:8
        8⤵
        
        PID:1236
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=es --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4580,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4768 /prefetch:8
        8⤵
        
        PID:4888
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4872,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4884 /prefetch:8
        8⤵
        
        PID:1856
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4896,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4912 /prefetch:8
        8⤵
        
        PID:4688
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4908,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=5096 /prefetch:8
        8⤵
        
        PID:2208
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4956,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=5108 /prefetch:8
        8⤵
        
        PID:4772
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=5084,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4972 /prefetch:8
        8⤵
        Suspicious behavior: EnumeratesProcesses
        
        PID:2176
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4884,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=4964 /prefetch:8
        8⤵
        
        PID:4732
        
        C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=es --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4128,i,11405183051563094247,5604252527592462704,262144 --variations-seed-version --mojo-platform-channel-handle=2392 /prefetch:8
        8⤵
        
        PID:2432

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:452

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:5800

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:6068

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\chrome_Unpacker_BeginUnzipping4332_1083066002\manifest.json

Filesize
79B

MD5
7f4b594a35d631af0e37fea02df71e72

SHA1
f7bc71621ea0c176ca1ab0a3c9fe52dbca116f57

SHA256
530882d7f535ae57a4906ca735b119c9e36480cbb780c7e8ad37c9c8fdf3d9b1

SHA512
bf3f92f5023f0fbad88526d919252a98db6d167e9ca3e15b94f7d71ded38a2cfb0409f57ef24708284ddd965bda2d3207cd99c008b1c9c8c93705fd66ac86360

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_242306746\LICENSE

Filesize
1KB

MD5
ee002cb9e51bb8dfa89640a406a1090a

SHA1
49ee3ad535947d8821ffdeb67ffc9bc37d1ebbb2

SHA256
3dbd2c90050b652d63656481c3e5871c52261575292db77d4ea63419f187a55b

SHA512
d1fdcc436b8ca8c68d4dc7077f84f803a535bf2ce31d9eb5d0c466b62d6567b2c59974995060403ed757e92245db07e70c6bddbf1c3519fed300cc5b9bf9177c

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_242306746\manifest.json

Filesize
85B

MD5
c3419069a1c30140b77045aba38f12cf

SHA1
11920f0c1e55cadc7d2893d1eebb268b3459762a

SHA256
db9a702209807ba039871e542e8356219f342a8d9c9ca34bcd9a86727f4a3a0f

SHA512
c5e95a4e9f5919cb14f4127539c4353a55c5f68062bf6f95e1843b6690cebed3c93170badb2412b7fb9f109a620385b0ae74783227d6813f26ff8c29074758a1

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-as.hyb

Filesize
703B

MD5
8961fdd3db036dd43002659a4e4a7365

SHA1
7b2fa321d50d5417e6c8d48145e86d15b7ff8321

SHA256
c2784e33158a807135850f7125a7eaabe472b3cfc7afb82c74f02da69ea250fe

SHA512
531ecec11d296a1ab3faeb2c7ac619da9d80c1054a2ccee8a5a0cd996346fea2a2fee159ac5a8d79b46a764a2aa8e542d6a79d86b3d7dda461e41b19c9bebe92

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-hi.hyb

Filesize
687B

MD5
0807cf29fc4c5d7d87c1689eb2e0baaa

SHA1
d0914fb069469d47a36d339ca70164253fccf022

SHA256
f4df224d459fd111698dd5a13613c5bbf0ed11f04278d60230d028010eac0c42

SHA512
5324fd47c94f5804bfa1aa6df952949915896a3fc77dccaed0eeffeafe995ce087faef035aecea6b4c864a16ad32de00055f55260af974f2c41afff14dce00f3

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\hyph-nb.hyb

Filesize
141KB

MD5
677edd1a17d50f0bd11783f58725d0e7

SHA1
98fedc5862c78f3b03daed1ff9efbe5e31c205ee

SHA256
c2771fbb1bfff7db5e267dc7a4505a9675c6b98cfe7a8f7ae5686d7a5a2b3dd0

SHA512
c368f6687fa8a2ef110fcb2b65df13f6a67feac7106014bd9ea9315f16e4d7f5cbc8b4a67ba2169c6909d49642d88ae2a0a9cd3f1eb889af326f29b379cfd3ff

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_348760724\manifest.json

Filesize
82B

MD5
2617c38bed67a4190fc499142b6f2867

SHA1
a37f0251cd6be0a6983d9a04193b773f86d31da1

SHA256
d571ef33b0e707571f10bb37b99a607d6f43afe33f53d15b4395b16ef3fda665

SHA512
b08053050692765f172142bad7afbcd038235275c923f3cd089d556251482b1081e53c4ad7367a1fb11ca927f2ad183dc63d31ccfbf85b0160cf76a31343a6d0

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4332_75646299\manifest.json

Filesize
116B

MD5
2188c7ec4e86e29013803d6b85b0d5bb

SHA1
5a9b4a91c63e0013f661dfc472edb01385d0e3ce

SHA256
ac47cc331bb96271da2140941926a8accc6cb7599a6f3c17bd31c78f46709a62

SHA512
37c21eaff24a54c2c7571e480ff4f349267e4404111508f241f54a41542ce06bcde4c830c6e195fc48d1bf831ed1fe78da361d1e43416cfd6c02afa8188af656

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
4a0c6e4ebfdd7e504e01bfde72c03967

SHA1
4060e464bdbf183421216b2413acbea6d3df13fd

SHA256
53f833143773d129f04c252115b4cfc375bb898338f494fc503f1976e0333303

SHA512
cb38f24a6f83c0de5e7f09b31e8b4db53fb2a480510227a9ebd4be6ea3505867877f7b2a7d08b2116fb9d8673e3a4c03a4f77c04610ea78fc80e33c6ca3943b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
b3ec38dc0e957b921996d9ee822fa2b1

SHA1
0585d48ee15bc2551917eb175268a0117e65a867

SHA256
a2feb1c8d964c871f5bab427b2e1634cd99f7e7fa569cf54d986884993be36f2

SHA512
a4ea3e21ad3797b5be51e9d8f6cd8f7b7e3cfb4df0c99994eda73d15686ae7eae00728e9935f84d7154fd9bcaf2ec6fd2659ac3710b21729455f9bc51bac19ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\7ef735cd-52da-43d8-8427-356cf9b6a6ab.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
8a504689dabfdbd12ef75747b31bd8e6

SHA1
dcf1a2452e8ab04e076f6127d64fd9fe444359b2

SHA256
95fc99a3fc825005e143e29c820c33b0adf1731dd5e90560c90fc1264cf898aa

SHA512
bd049161fe34568949e9919860bc27b0865fb9eb552a4611d9faec38521c67008b830dfaa9ee25e8f335b6e13ac16e4052b12970a9d4a02dfef0c62b309abde9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
d2d1ea5cdd8b1db8d5050bff888293a2

SHA1
dedb7f70c513091196e5c407ebf6deb3cebdeb1d

SHA256
b4727d105de6deb4c450be811b0d77ae27702b27826367b2f0e1ba9e7ebadbfc

SHA512
2a6177d7ec0374756ae155acc7f83549b0cb00f50eadea086534c678eb889c46fae8649be9918fe12e02c0387f8fd1f566ac14031904908a241fc0486b90610d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DawnGraphiteCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DualEngine\SiteList-Enterprise.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\HubApps

Filesize
108KB

MD5
17f67c89851ecae127655e6d8376bd5a

SHA1
7da77058c8732aecd102eda54d8e053fbddc8f01

SHA256
426dce40d359477e84cb9bc31eb1abb89ea49385071682fc8486e6bf4870f55a

SHA512
ee42b7031f31ec4ac4bd26de0288ed979871b59f0ab0e7afeed4a4f5b4a5f2c39294ce0343466bb67c1fbb17654f25c7df150e356cd93f39d4f885826dd42752

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
010a955dd86699b2567f6817ccf101d0

SHA1
861ecf18941b38438dda98e9b27f7c3930f38463

SHA256
7c025ab7e445a7b701d1b8d5f370a21bba94458f393311f1f8e33a10a8853711

SHA512
244ac942e40308871d06cae363a9b1c82d93cdce24ff2ba73b51748f171cf846cfb6968efebe1d382cd7cb1317fe01132852451ed1dc3a813589c4978e01cf6d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
90415039d9f4e4ec83419273e5803226

SHA1
4fe9b93cb7c6ec9f72a08454ea219ddd6e0abcc9

SHA256
2a34dd180c8292e858096cfc1783f6417ecfc800fe894e682af090616b200969

SHA512
916f112f64e75502ce3693f6357284721d519b9d5018832305324d47eaf874f40a4c0e7f2fe004c500ec82b8c09577928722585a95f891e17a8b5cb092086dbf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Sdch Dictionaries

Filesize
40B

MD5
20d4b8fa017a12a108c87f540836e250

SHA1
1ac617fac131262b6d3ce1f52f5907e31d5f6f00

SHA256
6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d

SHA512
507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
5dcd548e824b68f1a010579aaea6318a

SHA1
7bfd87b13b4055e3fde1736a5e60469866536847

SHA256
2c6b7753ecc35e0d31ad5e3d0fc7965b7d381a3ad3f7137b642fb87cc5421ca9

SHA512
3e541741e0756747f0683490c1402678a9bb28d43c0cb88cf4d382f52508164a4e364349fd98b2eacae98cded77c2e994d1ecb6b0dd666325c64b19614ff0cd9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
16KB

MD5
c669690d96ce9c444a1703fbb3ccfda9

SHA1
e9f07308b6182da96521b28f2bc7c6b8abd32595

SHA256
a42688a069d18a5efba21b69d97080f0cdb45264ef64f15058bfb84c2897ae75

SHA512
baacaf438eaaa18b17b1e9cb74d310a6297e322d725c7138ac1ee254def559ab6c2f5d5de47ba453ee2fb0654d7dd026b0c9ea348c8c11c749a2e812de79bbd9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
36KB

MD5
cd82f2a1c7dab522f3529234b23056b9

SHA1
8958be45745de861a53c6f3a6710430e3fe3be4b

SHA256
0259f237413aaec9df677131cb8c209560ede9298ecad65c5eb82b6452474529

SHA512
84827915ddf789d40e8f26a71043317b23ea89d81e738082fde89421832fc667f3266a401ca5ef2b8e98e7f65eea0af9e078bd72b4e83a924107a30aaf25b83c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\Logs\sync_diagnostic.log

Filesize
24KB

MD5
b6953100e55864c94c6b3a9245ea99dc

SHA1
ab3a9f57cb1392b88f7ac17425f80dfd05e4da6a

SHA256
15362809886d6293ba59d1addac55b60db0c2957ff7517e13247cbdf84ba202b

SHA512
083b0c2bfed099dc6788e2fb6bdf537f2ba2a33fcf87f8bf9c84d62974bce84d60598a293ca8d669d500d30d9a2cf675b68abb4558517dae4f89128e29b4753b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
22KB

MD5
e9668ff6d2e187d137f72bfcdb66b0b0

SHA1
cc53b78e9aece92064713efc163b11e01a18ac04

SHA256
dcc60ae5897507a78f5c063f49e3ada0f842f56e0c530ce6fdb9862b95f38fb8

SHA512
904911679ecfe81b3e7618ba04228b904a9fa837a0f2175d776249741e2674627059a01c1ebace63a2c14b1104003c5222b9f38e73933e9f8e5214b401df5ec6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
469B

MD5
3fdfe357d3958c2913d38fbba787784a

SHA1
8b2a47c11c0dbeb1c103ce22bd1fa61743dfab55

SHA256
7d3fb9020a6ad356dbed92b6b0ff476384011406b57df53a18dfe3f5083cfaac

SHA512
2cd969592686a9b7bfc4c99cae657074ccc95804456757b2a22000d3ada5117c00f1c0165b9cf436a752c6505952213e8e1f9a09afabe4258856ccef64de09df

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
904B

MD5
4b15a3319a2c1293aef235ef5259ee57

SHA1
4580b10b933fcc157bab99df14b25db31929b53d

SHA256
b25c475ec3f40d41e0a647f89c0db728456b2a834f9a86351b1857d7e5e46e08

SHA512
9a08edd2a836d9bd45fefd56fbd3e1a8c2e406d5886b2bb1bbf66adaa91c7bd992b3cdc97249cb5cf000219a3f0d1dc3d47c669c454474f51fcdbc424c8117e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\OperationConfig

Filesize
19KB

MD5
41c1930548d8b99ff1dbb64ba7fecb3d

SHA1
d8acfeaf7c74e2b289be37687f886f50c01d4f2f

SHA256
16cee17a989167242dd7ee2755721e357dd23bcfcb61f5789cc19deafe7ca502

SHA512
a684d61324c71ac15f3a907788ab2150f61e7e2b2bf13ca08c14e9822b22336d0d45d9ff2a2a145aa7321d28d6b71408f9515131f8a1bd9f4927b105e6471b75

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
50KB

MD5
9694a8526c79260113a8c3e2e3c6be27

SHA1
8e014f79e3fe6cdabe1b1112143b48fc420da7a5

SHA256
54c41802646e70fff5376ad5e1e635f5eeec2470adbe0123d3e378268ed6acdf

SHA512
6b7fbc88e1d7b337f6b937f03669736394865b72b6ce6a632ca908cc5ff72d7e41f65165bd09c5c0e7c23c63f6b6f1539055d3192e36bbd22d6a6fa8e4e7e57c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
41KB

MD5
28a6295bf362c3d8c569001e60d8522d

SHA1
2aec29740514242b460c7c48290789257276429f

SHA256
36e8cb892019f0249b4f1ccb12627ca10e37c61bb3ad4abc882ed93cbb3178a6

SHA512
116ac5ecbc20eb5da09054f6572d45fd05fb0c9df3eae19b0a60a146da6f8df5d67af414fc655a5f60de8338278af26a483d5a54528ca50aa174909d7a3ec66e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
55KB

MD5
8f264766ad4c53a03b5537495d6449ee

SHA1
064b5adc0b20c0568d240ced8d7a867e65cfc176

SHA256
5ddc0ad2dd517ecaa29da1569c4abc2fe4042388957976ac956c51d31e42403b

SHA512
6526a4960301dafe54c7a78f6886a332b7b49be4f9827a87b4f4d0b95476118d49de1aa89b692d9ceea9e0f37286bb70dfee9bd1b3f1e3e0b48db6bf809cbd21

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
50KB

MD5
cb5a6147ca70b791fa5c3123d9d62e91

SHA1
7e85db786056929f6895e37266bb0b9fac1d6f97

SHA256
72a7c7f18b5b9f33623096f1e5d151df845d23afe0e1246e26f1a04e984d0546

SHA512
54a4989e0af5f0a52c49d43daf04fba06ce4cc547ffdc5d6db5e8c177d08e82e4d0b120dee052f83988b30e0c3fe08f1ff94046717b4a06b2c9563a710ba6967

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
56KB

MD5
a92ea4716b7d512cc27762f17bf73270

SHA1
794f35866da0006d1a0d213d0fbc37baa9c80d1a

SHA256
b450ccb6a67875ba81b45536c61c1daa19d93b207fcc39fd3de8cc30e08e93cc

SHA512
38f40bef2f87a15f388471afdf3b03d2a0df796510eb0fc8151ed160ec1344f584e0c810fe2ebfa857a6909f9ba8327745484991e8efbd803af09fb6352a7362

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Subresource Filter\Unindexed Rules\10.34.0.57\Filtering Rules

Filesize
1.8MB

MD5
d7c9c6d2e1d9ae242d68a8316f41198c

SHA1
8d2ddccc88a10468e5bffad1bd377be82d053357

SHA256
f215127185b2ee6b01e12b6ca75d3e5c4e454598dd4aed36124ae13d59afd547

SHA512
7fd14824e9200dd99e1fd2cee402656dc0cfc3d0a60058c5eb05c68e9e65b7f0b47e550fb4d6c2b59eba204dbf3ef9e69dc9723b43a9b3ccd5412d6b77715fc3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Subresource Filter\Unindexed Rules\10.34.0.57\LICENSE

Filesize
24KB

MD5
aad9405766b20014ab3beb08b99536de

SHA1
486a379bdfeecdc99ed3f4617f35ae65babe9d47

SHA256
ed0f972d56566a96fb2f128a7b58091dfbf32dc365b975bc9318c9701677f44d

SHA512
bd9bf257306fdaff3f1e3e1fccb1f0d6a3181d436035124bd4953679d1af2cd5b4cc053b0e2ef17745ae44ae919cd8fd9663fbc0cd9ed36607e9b2472c206852

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Subresource Filter\Unindexed Rules\10.34.0.57\Part-ES

Filesize
154KB

MD5
4bd0ec01b325a901ca95d03dcb3d0b78

SHA1
3fed6b3ba95cd4b39744a5e6ad7970d5bfe18ec7

SHA256
f47f8980472678dd2caf6c728411ea4a2611c2eed99938ccf4a158296c0a0830

SHA512
28d8f704e4ef7fd4b13938c7c05f50c0e3b92c2753245e363fbe07abb8bd6b96fbacf864f1390031e86d0592034e03e90582fb9910d80b46c6cc3b0282ba6d58

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\TrustTokenKeyCommitments\2025.1.17.1\keys.json

Filesize
6KB

MD5
bef4f9f856321c6dccb47a61f605e823

SHA1
8e60af5b17ed70db0505d7e1647a8bc9f7612939

SHA256
fd1847df25032c4eef34e045ba0333f9bd3cb38c14344f1c01b48f61f0cfd5c5

SHA512
bdec3e243a6f39bfea4130c85b162ea00a4974c6057cd06a05348ac54517201bbf595fcc7c22a4ab2c16212c6009f58df7445c40c82722ab4fa1c8d49d39755c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\extensions_crx_cache\ghbmnnjooekpmoecnnnilnnbdlolhkhi_1.fa2232917a5656ea4f811936561ea6b7c92b3c0004c5e08ecb97636d3afc6f72

Filesize
152KB

MD5
dd9bf8448d3ddcfd067967f01e8bf6d7

SHA1
d7829475b2bd6a3baa8fabfaf39af57c6439b35e

SHA256
fa2232917a5656ea4f811936561ea6b7c92b3c0004c5e08ecb97636d3afc6f72

SHA512
65347df34378c2bbb34417e2cccfb3251a0b2412422cc190eed9df525b6e0a9948e0295ea3c33b3ad873ce81e369e89a138ac41d6eb7229546c3269107e661de

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres

Filesize
2KB

MD5
9b6d54ba7f7a7e53fdfee1b9a0cb1567

SHA1
d4e73cab40a4f5cbd7fda686c6799c39ec592383

SHA256
eedfd8f5c805130e1896b84c9652ac69359f558b97aa23984e16ef89ee5fee1b

SHA512
90662d7cade3154cc3af079de41e9ae0f68292239b55f6ba9df66a2c8436c7e172b32a94da0c37ef0eb4c497283e5017662bb04e5ce0413fef37b68969fae91e

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF12536744960385705740.tmp

Filesize
405KB

MD5
8f2869a84ad71f156a17bb66611ebe22

SHA1
0325b9b3992fa2fdc9c715730a33135696c68a39

SHA256
0cb1bc1335372d9e3a0cf6f5311c7cce87af90d2a777fdeec18be605a2a70bc1

SHA512
3d4315d591dcf7609c15b3e32bcc234659fcdbe4be24aef5dba4ad248ad42fd9ab082250244f99dc801ec21575b7400aace50a1e8834d5c33404e76a0caac834

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF13128012506735631471.tmp

Filesize
404KB

MD5
4154321279162ceac54088eca13d3e59

SHA1
5e5d8c866c2a7abfd14a12df505c4c419a2a56f7

SHA256
6bdebeb76083e187c7ae59420bfc24e851edb572e1a8d97c1c37b7b2dc26148c

SHA512
04ca175774cbe3f2d83543c01cc388e2715ab7b1378143db41bacdc7e7eddf05d3beef476f6acbe7ddeb34861984efb5fd7f299ec1820697c440b372d258aee7

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF14890772034352851516.tmp

Filesize
401KB

MD5
a473e623af12065b4b9cb8db4068fb9c

SHA1
126d31d9fbb0d742763c266a1c2ace71b106e34a

SHA256
1bda81124d6ae26ed16a7201e2bd93766af5a3b14faf79eea14d191ebbd41146

SHA512
1fbc2841783140fe54f3ab1fa84e1ded2534bcec3549ade2f513491b32178df515bd63a0a4a2c35017a6850ff9c3a24f8602357d912acf8ca92b8d68ba846d3a

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF16441368530433621687.tmp

Filesize
398KB

MD5
ff5fdc6f42c720a3ebd7b60f6d605888

SHA1
460c18ddf24846e3d8792d440fd9a750503aef1b

SHA256
1936d24cb0f4ce7006e08c6ef4243d2e42a7b45f2249f8fe54d92f76a317dfd1

SHA512
d3d333b1627d597c83a321a3daca38df63ea0f7cab716006935905b8170379ec2aab26cb7ffc7b539ca272cf7fb7937198aee6db3411077bedf3d2b920d078a3

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF6848547001197150509.tmp

Filesize
397KB

MD5
fdb50e0d48cdcf775fa1ac0dc3c33bd4

SHA1
5c95e5d66572aeca303512ba41a8dde0cea92c80

SHA256
64f8be6e55c37e32ef03da99714bf3aa58b8f2099bfe4f759a7578e3b8291123

SHA512
20ce8100c96058d4e64a12d0817b7ce638cec9f5d03651320eb6b9c3f47ee289ccc695bd3b5b6bf8e0867cdab0ebb6e8cae77df054e185828a6a13f3733ede53

Download Submit
C:\Users\Admin\AppData\Local\Temp\+JXF8977124840312267369.tmp

Filesize
393KB

MD5
b97f16379b4c106616f60f702733f5c6

SHA1
85c472fb9a7f256643bc4bba10f158dfaa1d1e8b

SHA256
4c392dcc8ad916f0f9df7559ab5563b01dd94f9f3b2db34617fe392e00060339

SHA512
d124af2c705b97cbb307497f88c47a5f7d320174d48626ea14ac27d42bcf8016f32810cf7ecb6af1261297b8c331a6ea89e2e35c3e2536390d8d6e500ed8d61e

Download Submit
C:\Users\Admin\AppData\Local\Temp\flatlaf.temp\flatlaf-windows-x86_64-5390205574200.dll

Filesize
23KB

MD5
e5079af6f3aa197eefa2ac6802ccdf32

SHA1
afeac2f32f9804f5cc1f4053d246380892e63974

SHA256
dc130da62ff3a8b7ffb664204ac38aa68ea466fe8b2658bb7ea2de49108f414d

SHA512
cf946ed4dc45ffcb22c6b3790f2c5abe7b8f8ce60e786bea143381c234dc94083313004ac18ecbb3d3c17971fd38ff904d6702a5d9f8c904bb9125e00e90969e

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-0QBED.tmp\SKlauncher-3.2.12_Setup.tmp

Filesize
3.3MB

MD5
a1140e85ca5e398094523b5d65de46cb

SHA1
a4bad568dbaf8a52f4bb876da8067ebe38b3e432

SHA256
fa266f1b259c8bf7d2e3c2fad19da5390d90d01cab3743ef1e18a9a8c89338e0

SHA512
349fff37337baddce730b0b022dae00ad3eb2f33fcc23274579d26cc9bab5f2856bf31e42c5e156de0df37f18d5c52c3de9bb8f1c72d60248cdb76216da9f9ff

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\7za.exe

Filesize
1.3MB

MD5
c58a4193bac738b1a88acad9c6a57356

SHA1
66e5bd096f4e20e0423bc1540bd2b880b150d9a1

SHA256
fbb3dadcc29bcbc5460484d858c5f33f99e5317f5f6cd8d9c83f4dd8c39b3e30

SHA512
97ca384562fa9e49d0b32486ae181a4474c5277f2b48cefb2f4b479ae6797e1369a867cf8e5b39c77a10e38970de62f3ec43f1beb1b4b203c4110afe819f2cf4

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\_isetup\_isdecmp.dll

Filesize
28KB

MD5
077cb4461a2767383b317eb0c50f5f13

SHA1
584e64f1d162398b7f377ce55a6b5740379c4282

SHA256
8287d0e287a66ee78537c8d1d98e426562b95c50f569b92cea9ce36a9fa57e64

SHA512
b1fcb0265697561ef497e6a60fcee99dc5ea0cf02b4010da9f5ed93bce88bdfea6bfe823a017487b8059158464ea29636aad8e5f9dd1e8b8a1b6eaaab670e547

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-0.jar.sha1

Filesize
40B

MD5
018677d1accc999f9adcadf7e9d2eca0

SHA1
b86c7833259f8d170fc13731da046c85f4546b05

SHA256
a1f58b506c61eb64f9d38183fa7002a7fd5f7dbecb1f3bd16d1c5a7f181df050

SHA512
ec768e3152b4cb3aa1d228393a539e39b999f7964774f7291255e0e1130503972f8631cb78526bfc1cc6fe507fa6d0817f676dee92a64d1843e99801244974dc

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-1.jar

Filesize
5.7MB

MD5
c17fc8947177dfaaf0d2d5564468b3f5

SHA1
88efcf6f439b36c17bd467630f3942aa89d7f37c

SHA256
6f8dde0282b96c215f1d1b7638c78031ddfd970e6e7f8d6834a723ebf85be6ae

SHA512
84080941623407e3c9f6d6123c399037571a9dcd4e7e0df68affea7661e1a28887fc46e9cb4a0a50355f0232e34159ae3a3a278a3380beebac39cb2a020e2c44

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-1.jar.sha1

Filesize
40B

MD5
cb19a3834c52905bbc7aae9b0cb884d8

SHA1
69796c5f90088edeb9cefbf12708c60dd6776bc5

SHA256
d8e035498ba5918acb7899067177fdefb3300d7690419ec6b564e49902ab0160

SHA512
2c36a8653198fe67fc7c552c13d88530206bfd100d6b26243901ba6c8c41963e5094e39441c0ff66fd0b2839e69d5ed15dbcbb509d7d443dfa1c1f6a3582ddaf

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-2.jar

Filesize
2.5MB

MD5
481e60ff6432b3816d78dd3a94d6c89b

SHA1
4553548f8b569b5f7da7f9d93460f059dbed85dd

SHA256
0ab89fa8531f5d6f1a15b6c76cf5a7d44e60e273932ad282b29b8dd324e725ff

SHA512
7a92d3e5f71a8ccbe4d821b0b3ec0a37e6dda64df9dfaf660d103d89d4f716a37d7fa831c5edbdc8764511a009404458e57e5d9d84c73d0d06b580f7db395eb3

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-2.jar.sha1

Filesize
40B

MD5
716529fc440ccac9b9c853da3cdaf779

SHA1
cda19f161768360b3ac7a3864dd7efeb961c74fc

SHA256
d147881dc89769b2b4c524d01a1e498aa228eca808f18755a5f1ea1742b00546

SHA512
5a845b6cf674ea14670c50812761886ec4f7527da96e28c75a50fd552adef3f5ac2f532aba19c19293e6147ff715b8fcd69be607c20aefaa6d277dfe7f6c72a2

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-3.jar

Filesize
1.1MB

MD5
6ad87d83a49a3b25fb5e137038b2c5de

SHA1
5dfeba2fb52aa7e896edeea18c86ff1143c2a7ae

SHA256
6828f4fd83ac7caeb7e25c21e4050606d384baebb18bc3b1f35cd866020757cc

SHA512
f2503347747d38e1ccd4d344b10dc0856b1bbf443b4b0d7d4b3a9f5f6c3d4a5a4e8b7ebae45abee2ba15e81f42fd4d106be4715e56c06c8694152b741a96b1f3

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-3.jar.sha1

Filesize
40B

MD5
1c6267fed13369e1f1bfc9210c2072f9

SHA1
13c9753c31145ab1039e66261a0f4e47d9775d93

SHA256
16309d1718c54dc502e50a4918fdfd0b24ddfaba28ba35bca30c89d42fab437c

SHA512
7e9dc8670f236608b4f4dc3ce76b3a774ef4080b5888d12d56429e2a4a458cf16c2f9151fc191aae075a8fff7f473cb249f0be1b863e4086a57262b95685a757

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-4.jar

Filesize
88KB

MD5
bd17f851cec71e55199ef7b5022d1af9

SHA1
ed85275a7530ec35206364eb4dea408174f7c226

SHA256
0dc9f29e41cf9be601990c270f84b2f6655e4d95ebb27ccc9cb0953be50d1229

SHA512
5ca27b2a63b60ed2a5f0f03fb86694e354d87654c34aa21fa9d095871e6ea0757b5629c2bb1743d80c38df577632beb2a748721246bb0b6461b134f4b5438f60

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-4.jar.sha1

Filesize
40B

MD5
69ea2a2068660c846ffa2c183719c7d9

SHA1
9387988c80f19e1482d1cdea62d386084194637f

SHA256
c3473edda477b297e19bdbbdfe306c1475d93addb21b80f923ddce3fe822556b

SHA512
84c9fe4520f4f5d84a2056091f6a85389d27fa039d6fb19c26b9e6a6810478a08d3b6afd38aca3a1c5593c014e7e2fbe0b4f6bd731f7225cc7c3e32671398c8d

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-5.jar

Filesize
30.5MB

MD5
578b20d6bf1beccb7e8895985159f2c8

SHA1
23a64a0c4cba3da91349df902caa99074966e0f0

SHA256
5f3fb26455c8d8d61f6b1080483234cf8b2cc1b8e44f5e9e50ecc176d2a064e1

SHA512
c6636acceaf80f1b523af5540c319f888b17189ae6a3e1cf1097a4ea708dd4e4477efe536b93f669bf9cc8eb706dd02ccf2418b61c0aaa062d4484c2fbef80b0

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\javafx-5.jar.sha1

Filesize
40B

MD5
2d229e9eb16dddef81318279a721336b

SHA1
eb86045b32bcc4657a6704d9d5591a39fcb6c3a6

SHA256
b52f2348ae1c287ea01956214bf5b74a0ae4aa1d96fd5992e35848194b85aaf0

SHA512
534ed4e0258adc1f9c74624d116a7898b79cb5f9858abcbeded66a15fa6acf3b695f4836a81664419f0109ae81610bb46e1a4db03e8b6b02ea78acc5a1623408

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-NDIH6.tmp\jre.zip

Filesize
46.6MB

MD5
fbf605cc3189e0cce4627372b37ad26d

SHA1
963cee5f91c57d3c45302a58df6dd3fa03c49f8c

SHA256
707c981a4ff9e680a9ea5d6f625eafe8bc47e1f89140a67d761fde24fc02ab49

SHA512
1edfea472fd10a6165b50e4e684f42d0d611a3fbb8a0503ca04500b549cdab17e122bf85f5ebee1bb44e546452d4904c340a8b2c3e0c2798b6fcd36c61775961

Download Submit
C:\Users\Admin\AppData\Local\Temp\jna-63116079\jna15110864061057160749.dll

Filesize
267KB

MD5
2d2475f1f026dd54e9f3e787ae4f81da

SHA1
27ff882ac271db547aee520b38e3ba9aa91e136c

SHA256
5a7ff949f6d93d86491eb5b26b1cfc60051168a60622650224b89995ac420023

SHA512
07ef110d202d51f096a8b474d25c66b93b16af8b2ecdbf3ab23138273a0771c94dda6426fb644d43dd26cf53924f37821dca4c539d889d435185fff2198b3e76

Download Submit
C:\Users\Admin\AppData\Roaming\.minecraft\sklauncher\javafx\javafx-base-22.0.2-win.jar

Filesize
739KB

MD5
239410d2a0ebe901c2baed127e865453

SHA1
0c109e43bc5a7a845e7bcc1f01f6a5204027cfb6

SHA256
17154354881d15014510b55361999931240f03e247023409171b83286d605776

SHA512
3dff24e22c610517856e51a7cca9161ed0ce9fb07e57073d371a6dfe1d9e0c4dcd685ca2cc3e40e948548fbbf05e502d83086ff46a04283514061d06ccd4036b

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\SKlauncher.jar

Filesize
1.2MB

MD5
5b67c472ea94d09f540d598fcbd18f73

SHA1
32c8d9cfd44f0a6b622fc287c24f6401eafa0d3b

SHA256
a3912e1e9b4e3b2d5362c91176444c7d5b1a15437cb827f123e4ca2b0d12c3f9

SHA512
0b1c339fb0ed5d2e5739d6e31b6a322af8f133d401e386992884d8f140705b719c5f160102fb04d834a37d3530cab4b5c36759a06dd453368a6591374260b16b

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jdk-21.0.6+7-jre\legal\java.desktop\ADDITIONAL_LICENSE_INFO

Filesize
49B

MD5
19c9d1d2aad61ce9cb8fb7f20ef1ca98

SHA1
2db86ab706d9b73feeb51a904be03b63bee92baf

SHA256
ebf9777bd307ed789ceabf282a9aca168c391c7f48e15a60939352efb3ea33f9

SHA512
7ec63b59d8f87a42689f544c2e8e7700da5d8720b37b41216cbd1372c47b1bc3b892020f0dd3a44a05f2a7c07471ff484e4165427f1a9cad0d2393840cd94e5b

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jdk-21.0.6+7-jre\legal\java.desktop\ASSEMBLY_EXCEPTION

Filesize
44B

MD5
7caf4cdbb99569deb047c20f1aad47c4

SHA1
24e7497426d27fe3c17774242883ccbed8f54b4d

SHA256
b998cda101e5a1ebcfb5ff9cddd76ed43a2f2169676592d428b7c0d780665f2a

SHA512
a1435e6f1e4e9285476a0e7bc3b4f645bbafb01b41798a2450390e16b18b242531f346373e01d568f6cc052932a3256e491a65e8b94b118069853f2b0c8cd619

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jdk-21.0.6+7-jre\legal\java.desktop\LICENSE

Filesize
33B

MD5
16989bab922811e28b64ac30449a5d05

SHA1
51ab20e8c19ee570bf6c496ec7346b7cf17bd04a

SHA256
86e0516b888276a492b19f9a84f5a866ed36925fae1510b3a94a0b6213e69192

SHA512
86571f127a6755a7339a9ed06e458c8dc5898e528de89e369a13c183711831af0646474986bae6573bc5155058d5f38348d6bfdeb3fd9318e98e0bf7916e6608

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\awt.dll

Filesize
1.4MB

MD5
f53a79f9ece055fabcb34892e7c23e97

SHA1
37df77f26d5a140c1eaadec2fcebb76a0ec2ef8f

SHA256
a075075615c205be87d05c8e99ea33565f97da9ed3e1d686821cbb29e99f6f00

SHA512
0a9dee281f55855ff41214ca55ad8ecddebdd2c726e183f2a14e92b3d0752b5883275c9c6a5e91813f11feeddd5c2c7d5795b7a35ac55fe44502c9039838c8d0

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\extnet.dll

Filesize
23KB

MD5
7bbdca5c76125708d387531519e8a1a6

SHA1
2e5288a449dcd1c0754cd8445f8b327e64b44394

SHA256
9c1342869bddf9439bc36e18b64ed71ef6840beea2e2ba29f3167c9ca58c7ac6

SHA512
db5908bf6068f46ea4a6f24c0a0bb666942354ef166daf4d4dacb2f6183f713e35a30d1c1388f11e2b8d95589cdc9553909f9209626318f9bd9185d12de1fffe

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\fontmanager.dll

Filesize
860KB

MD5
a9d8b73b422f687d784ff790cf0d1879

SHA1
ff0e37bd3f32945d5185b07210278f7ea84ab568

SHA256
2e8dfe3e3e1ebd99deb538f54d0641a4598508fe1116a2a3efbaa9c0376a8a7e

SHA512
723b9aca542fcbeb4b10adc81ec75aa0c3dd2385e492315d43153d429dfe7a1ae0bdac029258141c97768670903b3d14ea7f3b184a94a166b689ecfe87b02abb

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\freetype.dll

Filesize
535KB

MD5
168ab8bc5488c25bdffb2898a806e7fb

SHA1
87b8ae6884b09206ab90f9357ff46c0569d93d4a

SHA256
f18766eff9b8193c3d0105d5f77b4015e3f086b93d55bef34babd28d51f5397a

SHA512
cf9069c1ae246e36f7952591c22816742b92093a81f5245f6fac29c9c26001c40b33f4668ad051f5adf93eb35b515a183b020c708aeed5e8c40828378ebb7a8c

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\java.dll

Filesize
118KB

MD5
b8f9d4e627536e73ba387de89ea1a175

SHA1
ad64f514572a512e8e80c458d23a931fbdb99705

SHA256
f474176d8e3e8fb77596cd0f902c576cc954d17622aacb2c474404395a981ce3

SHA512
1eea44d4ad4a3062b0230eeaea33e9962768e96bfd49922baeba9f2352b943caf5b24d3095cd1f3cc39ad431aad562b511421f52267d52341f0a1b6a49e72e71

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\javaw.exe

Filesize
48KB

MD5
8f3cea4ecc6d33e6774a71521df84bec

SHA1
f5c861c029954a95852dde3623677ffbe4d575f6

SHA256
f162274fe8723a859e70b863f83e02a95b418812932d94ea3c9105f0265fe48d

SHA512
e6168c296ef64505d9214970cc30a92bb04c92963186e3d8d3d916826f322366c1425b2cbf64b383bd75610e061f1706918cc375dc994f778167d135f6077b08

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\jimage.dll

Filesize
32KB

MD5
21a02272f514787cbb894834a86db8d1

SHA1
27c46d3737aba5fa4719bb169157383bc59fd6b5

SHA256
0bd4173c377c2a8369803adf92862e314745e7e01a44edd2685060cf8699da20

SHA512
7d439d3ac47bdb030aa8be964bb9c02fde66325af157f9114e8d9247068ba473922c456ed203d5deb393711ef90c01ae6e0bd97419c81faef95779dc681006f7

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\jli.dll

Filesize
87KB

MD5
7343522fd185f72df3abba7ff67f2db6

SHA1
3a5a3aa04f8249e4e39da041ff7a8e2014ac14a1

SHA256
7dd4a08bbd29ea590dd8253332c6e33df4f9052a599710e4c30c9eeeed9db35e

SHA512
39956e14e6c84f04c7a17b403ba0c3ee9f5e76bb7b1b27c8124f212c1d24d429e4a4afa166f8ea915ac1722af1150e7faef2c5eec0c1b5c46ebe7b6ddb182029

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\jsvml.dll

Filesize
849KB

MD5
ae0ffee3c346d1c7fe6d0738069cdbab

SHA1
64218372a65e90a39ab04ef7b02dec714d0031c4

SHA256
9b8a36cd33b25bd81388208784d19a137f685b14b7b81be77bec4a9471c7d6ca

SHA512
faff265b2660d23cedbfe9a0363e68b9cce89a3561fc35ff21df76db1a4f6bfef01b4c3e69be50aabb6e96971cad9f0148370b5a0f5fc12b717024f756a8d278

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\msvcp140.dll

Filesize
561KB

MD5
72f3d84384e888bf0d38852eb863026b

SHA1
8e6a0257591eb913ae7d0e975c56306b3f680b3f

SHA256
a4c2229bdc2a2a630acdc095b4d86008e5c3e3bc7773174354f3da4f5beb9cde

SHA512
6d53634bc51bd383358e0d55988d70aee6ed3897bc6ae5e0d2413bed27ecff4c8092020682cd089859023b02d9a1858ac42e64d59c38ba90fbaf89b656c539a6

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\net.dll

Filesize
58KB

MD5
cd0c6c6f6a96364d3211bcda4d903b5f

SHA1
adfeac52d9ff3161a350a6cd1820f8ff0e08eedc

SHA256
1530c4d8c3737e04910137256d0513e20bff854b08c0a830da73dfbacd27be60

SHA512
2e3bf431fe16f152c5b85b4ef3f497499220845000c886f0facfcd66558b00e40f91c0c9aff112e31a62ecc927b515d46114659b86804cfe1b09ade253d4c91e

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\nio.dll

Filesize
78KB

MD5
d35a0d9eb225eae4b3d4a719f4d42b2a

SHA1
83fc1791b23bc90a112ccd9a57e6cf88f21f6762

SHA256
abd40c27d299fd26dc0c0e030257a1db9d1f3b330451671073bf0f5f51f5911b

SHA512
23706c74fd1b40915d1fe19e2f1cf2616103ce02c89fc336bd7b17d7466ebead53947941addc11e921c4ca155a1c3044bc30875821fc2cc17fed11bc3e248afc

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\server\classes.jsa

Filesize
11.9MB

MD5
769b6dc1a3774e669ea7d6818ae51931

SHA1
b567381f9ae0beba02f1531b07421edc7c6cdbaf

SHA256
c3804e09ea26e6adedcf471056068685e53a2d1b1957713f07bb117b18541d20

SHA512
cd0806cd82842061271041b4ee178342275b66b701081e20b9700c0975d59f46077af3adfdf6ae4cc86a51850c6d1e0cefb911234df72e3be432e240f4a7bdc0

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\server\jvm.dll

Filesize
13.2MB

MD5
b9c8a7ad16b31b337b431721e7571274

SHA1
565d2b35f77532b1695abee8465643801f7f1b46

SHA256
c2bcdbc497292a1f31a43f39c7c8d03f8ea9c9db10d6697d6df84bc8e59fc35c

SHA512
2e0532eb592cf10be089b03559861dea756fd3312eec0f238617000809378a54d3d248ab6b46cce27ce063d9f60219f02cef87070c7e57cf47abd9d1ff14dac8

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\sunmscapi.dll

Filesize
47KB

MD5
6c1cd3632e94e9c9c683ce2ea3c41ee7

SHA1
7fee3fc8bac3494d870acecc9e7c44d989eca350

SHA256
cacf87f95a3a1b6264173470047441fa849701ab308200188dbc5af1818cc85a

SHA512
f99a68d5920c2e2f502a81589c92a85bfae4db6cfa767457ceef25ddf6efaa829636fa33db1647884d85b698077574d3276e504489231cddc2b854cc6b5beeea

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\vcruntime140.dll

Filesize
117KB

MD5
caf9edded91c1f6c0022b278c16679aa

SHA1
4812da5eb86a93fb0adc5bb60a4980ee8b0ad33a

SHA256
02c6aa0e6e624411a9f19b0360a7865ab15908e26024510e5c38a9c08362c35a

SHA512
32ac84642a9656609c45a6b649b222829be572b5fdeb6d5d93acea203e02816cf6c06063334470e8106871bdc9f2f3c7f0d1d3e554da1832ba1490f644e18362

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\vcruntime140_1.dll

Filesize
48KB

MD5
2bd576cbc5cb712935eb1b10e4d312f5

SHA1
dfa7a46012483837f47d8c870973a2dea786d9ff

SHA256
7dd9aa02e271c68ca6d5f18d651d23a15d7259715af43326578f7dde27f37637

SHA512
abbd3eb628d5b7809f49ae08e2436af3d1b69f8a38de71ede3d0cb6e771c7758e35986a0dc0743b763ad91fd8190084ee5a5fbe1ac6159eb03690ccc14c64542

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\bin\zip.dll

Filesize
87KB

MD5
81ecec3848e39716ec9113d7204f2d45

SHA1
08f01b443c99d03c870f9c161d6d2550b5656044

SHA256
8bbc3fabf069699adbab5276df097a9a878ebb3e4552ff3f22d9e861f268574a

SHA512
9a6cd89600bcfa74a48b8616a6c7247c5283eb50b022c3ae93a820ffda281885bf0d032030f1d0c5a62e689882ef1f0db5dab5a61e2b555439edee1a8a903873

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\conf\net.properties

Filesize
7KB

MD5
0c091bb338f924911db463aec454ba8b

SHA1
69e86a02207c1126a0d9faf9362a8d1798b140ad

SHA256
56dd1f6095c189c1052f6baa32e457efc09de4832e19cdb82bb236dc8abfee9f

SHA512
d0d257c7b0fc6059faef88603c07a9e1cfe6692359eb634b3436a02723ff015d36d523e1c2a252649db7cd4d0e24be114c042e3e209ce027ee07b7816466109c

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\conf\security\java.security

Filesize
64KB

MD5
e1b7b2a5c7e2a1f425e5245888e8ad91

SHA1
fd76a263a2ec03b695987411b6ac6178c2cd83e7

SHA256
327adb06968ca5b45ac7b3b0feec12a8ca20286f1ed1152bf23f639587125049

SHA512
cc65b4d186500661fe36b6aa605fd747166cf8299cf16bffc093b5b89ad69c429875192646ab4fa7c987c089d7d9baeb33a85291bc8ddb767e6fc78f39c03f9b

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\conf\security\policy\unlimited\default_US_export.policy

Filesize
146B

MD5
1a08ffdf0bc871296c8d698fb22f542a

SHA1
f3f974d3f6245c50804dcc47173aa29d4d7f0e2c

SHA256
758b930a526fc670ab7537f8c26321527050a31f5f42149a2dda623c56a0a1a9

SHA512
4cfca5b10cd7addcff887c8f3621d2fbec1b5632436326377b0ce5af1ae3e8b68ac5a743ca6082fc79991b8eec703a6e1dfd5b896153407ad72327753222fdb3

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\conf\security\policy\unlimited\default_local.policy

Filesize
193B

MD5
2a0f330c51aff13a96af8bd5082c84a8

SHA1
ad2509631ed743c882999ac1200fd5fb8a593639

SHA256
8d8a318e6d90dfd7e26612d2b6385aa704f686ca6134c551f8928418d92b851a

SHA512
2b0385417a3fc2af58b1cbb186dd3e0b0875e42923884153deee0efcb390ca00b326ed5b266b3892d31bf7d40e10969a0b51daa6d0b4ca3183770786925d3cde

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\fontconfig.bfc

Filesize
4KB

MD5
9e80af78b019e2e52287108b50f6cfbf

SHA1
a297f3d435fab11aa3f0fd21eb2666a3ba1340ec

SHA256
c7e2e76b908cb6330823e698889943c162e9861a4575501cbb59c9b830158ab0

SHA512
b920a3e25e24a9c20d671e8a8520db2e783a5e18c695e46f7ff3851d7931711a73b97deef27c14a766ae6ed5a5519070421e5834da6200fcb6e7371b90b50e6c

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\jvm.cfg

Filesize
29B

MD5
7ce21bdcfa333c231d74a77394206302

SHA1
c5a940d2dee8e7bfc01a87d585ddca420d37e226

SHA256
aa9efb969444c1484e29adecab55a122458090616e766b2f1230ef05bc3867e0

SHA512
8b37a1a5600e0a4e5832021c4db50569e33f1ddc8ac4fc2f38d5439272b955b0e3028ea10dec0743b197aa0def32d9e185066d2bac451f81b99539d34006074b

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\security\blocked.certs

Filesize
2KB

MD5
8273f70416f494f7fa5b6c70a101e00e

SHA1
aeaebb14fbf146fbb0aaf347446c08766c86ca7f

SHA256
583500b76965eb54b03493372989ab4d3426f85462d1db232c5ae6706a4d6c58

SHA512
e697a57d64ace1f302300f83e875c2726407f8daf7c1d38b07ab8b4b11299fd698582d825bee817a1af85a285f27877a9e603e48e01c72e482a04dc7ab12c8da

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\security\cacerts

Filesize
193KB

MD5
21faf1c2acd2ac2e5165d8749e16c300

SHA1
882610bbb3f6a9c1ce8f58d5b283a779b95b6267

SHA256
75baf1e4ce6f147e18ace9ce848f9caa1a11c308116be7797d9081e65fd17b28

SHA512
e500a17debbd6d7efb346348cfa39d0cde86664c719587dacd87c26a1c0918998b2706300e05f6f070b35922f74900cc2cf1461b1403c56e262a876c3d1f3f95

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\tzdb.dat

Filesize
99KB

MD5
279c3ed6f608a9bd037d87af1a2262f4

SHA1
b6f633c4f7b68be0dad361b8e505e12b5c017830

SHA256
87022eb5ae9465d75762de6fb2a668c60d411c1394e500c24651895681228148

SHA512
741a8ba22a71ff6d785579ca680160ea9c55e9de462c112ec737bd1e23b0e8bbcc7ce12f550358ea6d8a42424e9cf00015d12d04c478db0298513afbee776b51

Download Submit
C:\Users\Admin\AppData\Roaming\sklauncher\jre\lib\tzmappings

Filesize
21KB

MD5
4c30d7867505379a18a27d0e8f03198c

SHA1
0cc871d5bd91e061d676a861749af68bbc0ca9c6

SHA256
b41575b332809b37ad423bdca30c7c48cdef3d82f82fa9d534781a6f15d6a2ab

SHA512
873d329682ce67267f438b88eee0fc25cecbbcc1f7d694118417ad12756ec2b6ae7502ec4eea0cc9b4ae8b9e68f5f8877762fa13dea89c4a6dcd54fd8bf82c56

Download Submit
memory/1128-1325-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-2147-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-2152-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-2089-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-1323-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-1319-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/1128-1825-0x00000295C61C0000-0x00000295CAE58000-memory.dmp

Filesize
76.6MB

Download
memory/4328-0-0x0000000000F80000-0x0000000001053000-memory.dmp

Filesize
844KB

Download
memory/4328-804-0x0000000000F80000-0x0000000001053000-memory.dmp

Filesize
844KB

Download
memory/4328-2-0x0000000000F81000-0x0000000001029000-memory.dmp

Filesize
672KB

Download
memory/4328-15-0x0000000000F80000-0x0000000001053000-memory.dmp

Filesize
844KB

Download
memory/4936-748-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-23-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-21-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-19-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-16-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-17-0x0000000000F40000-0x0000000000F41000-memory.dmp

Filesize
4KB

Download
memory/4936-87-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download
memory/4936-7-0x0000000000F40000-0x0000000000F41000-memory.dmp

Filesize
4KB

Download
memory/4936-799-0x0000000000720000-0x0000000000A7A000-memory.dmp

Filesize
3.4MB

Download