wannacry | 8ab6a7f9f8be220c62ea68e25165bb0f61494d2cfb0a22004710a98f6cab533d

Analysis

max time kernel
150s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
26/03/2025, 18:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Size

5.0MB
MD5

32f36f8ea0302df105ae4ced076e4d84
SHA1

179d9920d63adde4f6745f9366268d350e91b1f9
SHA256

8ab6a7f9f8be220c62ea68e25165bb0f61494d2cfb0a22004710a98f6cab533d
SHA512

e7b3b15014610fa6b3282d6610b097253254697aba2a282ef74b7a1fe8de5ab07e901553bd40d03dcb7ebc8282e0f457771454b3f4ba05eb30ef9b02faa667ae
SSDEEP

49152:7nAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAbJE3jM2ce:LDqPoBhz1aRxcSUDk36SAIE3Xc

Score

10^/10

wannacry discovery ransomware spyware stealer worm

Malware Config

Signatures

Wannacry
WannaCry is a ransomware cryptoworm.
ransomware worm wannacry
Wannacry family
wannacry
Contacts a large (3196) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Executes dropped EXE 8 IoCs

pid	Process
5640	alg.exe
416	DiagnosticsHub.StandardCollector.Service.exe
4792	tasksche.exe
4244	fxssvc.exe
5444	elevation_service.exe
2508	elevation_service.exe
1780	maintenanceservice.exe
2552	OSE.EXE

Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Credentials from Web Browsers
T1555.003
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Drops file in System32 directory 11 IoCs

description	ioc	Process
File opened for modification	C:\Windows\System32\alg.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
File opened for modification	C:\Windows\system32\dllhost.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
File opened for modification	C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
File opened for modification	C:\Windows\system32\fxssvc.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	alg.exe
File opened for modification	C:\Windows\system32\dllhost.exe	alg.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\system32\dllhost.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Windows\system32\AppVClient.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Roaming\ba58069989f5d741.bin	alg.exe
File opened for modification	C:\Windows\system32\fxssvc.exe	DiagnosticsHub.StandardCollector.Service.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Mozilla Firefox\plugin-container.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\rmid.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Eula.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Internet Explorer\iediagcmd.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Internet Explorer\ieinstal.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\klist.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\OFFICE16\LICLUA.EXE	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\java-rmi.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\rmid.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\LogTransport2.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javapackager.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jsadebugd.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ielowutil.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\appvcleaner.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\keytool.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\rmid.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\rmiregistry.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroBroker.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\jjs.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\jp2launcher.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\servertool.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\schemagen.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\kinit.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\unpack200.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrServicesUpdater.exe	alg.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\133.0.6943.60\notification_helper.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\ktab.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\schemagen.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroBroker.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Internet Explorer\ExtExport.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javafxpackager.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32Info.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroTextExtractor.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\servertool.exe	alg.exe
File opened for modification	C:\Program Files\Mozilla Firefox\updater.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_84812\java.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\java-rmi.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\kinit.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\chrome_proxy.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\xjc.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\tnameserv.exe	alg.exe
File opened for modification	C:\Program Files\Mozilla Firefox\maintenanceservice.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Internet Explorer\ieinstal.exe	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\wow_helper.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\jconsole.exe	alg.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe	alg.exe
File opened for modification	C:\Program Files\Internet Explorer\ielowutil.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javaws.exe	alg.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\policytool.exe	alg.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\133.0.6943.60\chrome_pwa_launcher.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevated_tracing_service.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\java.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javap.exe	alg.exe
File opened for modification	C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroTextExtractor.exe	alg.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\bin\javaw.exe	DiagnosticsHub.StandardCollector.Service.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\bin\java.exe	DiagnosticsHub.StandardCollector.Service.exe

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\WINDOWS\tasksche.exe	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe

System Location Discovery: System Language Discovery 1 TTPs 2 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe

Modifies data under HKEY_USERS 10 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName = "1"	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet = "1"	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E\@fxsresm.dll,-1130 = "Microsoft Modem Device Provider"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E\@fxsresm.dll,-1131 = "Route through e-mail"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E\@fxsresm.dll,-1133 = "Print"	fxssvc.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass = "1"	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect = "0"	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E\@fxsresm.dll,-1134 = "Microsoft Routing Extension"	fxssvc.exe
Set value (str)	\REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E\@fxsresm.dll,-1132 = "Store in a folder"	fxssvc.exe

Suspicious behavior: EnumeratesProcesses 7 IoCs

pid	Process
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe
416	DiagnosticsHub.StandardCollector.Service.exe

Suspicious behavior: LoadsDriver 2 IoCs

pid	Process
652	Process not Found
652	Process not Found

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeTakeOwnershipPrivilege	2876	2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
Token: SeAuditPrivilege	4244	fxssvc.exe
Token: SeDebugPrivilege	5640	alg.exe
Token: SeDebugPrivilege	5640	alg.exe
Token: SeDebugPrivilege	5640	alg.exe
Token: SeDebugPrivilege	416	DiagnosticsHub.StandardCollector.Service.exe

C:\Users\Admin\AppData\Local\Temp\2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
"C:\Users\Admin\AppData\Local\Temp\2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe"
1⤵
- Drops file in System32 directory
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
- Suspicious use of AdjustPrivilegeToken
PID:2876
- C:\WINDOWS\tasksche.exe
  C:\WINDOWS\tasksche.exe /i
  2⤵
  - Executes dropped EXE
  PID:4792

C:\Windows\System32\alg.exe
C:\Windows\System32\alg.exe
1⤵
- Executes dropped EXE
- Drops file in System32 directory
- Drops file in Program Files directory
- Suspicious use of AdjustPrivilegeToken
PID:5640

C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
1⤵
- Executes dropped EXE
- Drops file in System32 directory
- Drops file in Program Files directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:416

C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k NetworkService -p -s TapiSrv
1⤵
PID:4268

C:\Users\Admin\AppData\Local\Temp\2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe
C:\Users\Admin\AppData\Local\Temp\2025-03-26_32f36f8ea0302df105ae4ced076e4d84_wannacry.exe -m security
1⤵
- System Location Discovery: System Language Discovery
- Modifies data under HKEY_USERS
PID:2796

C:\Windows\system32\fxssvc.exe
C:\Windows\system32\fxssvc.exe
1⤵
- Executes dropped EXE
- Modifies data under HKEY_USERS
- Suspicious use of AdjustPrivilegeToken
PID:4244

C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe"
1⤵
- Executes dropped EXE
PID:5444

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
- Executes dropped EXE
PID:2508

C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
1⤵
- Executes dropped EXE
PID:1780

\??\c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
1⤵
- Executes dropped EXE
PID:2552

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Network Service Discovery

T1046

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe

Filesize
2.3MB

MD5
5d27561acb8a7a9c2f25ea12bac0a025

SHA1
47a327b9703405e49cd103951dfbbd7310a980e1

SHA256
ab3289de25215ae7070832c77603af6d93d8a0c55161543831d29fca9783a670

SHA512
1c50b7b76995e080e3d29dfa6fb5b46dda08f15af6ff7ff591f121a777150e9537fd4cad17999b8b5a2b14a11db92919aafc2ada6b180acf656c8f8c9b919b83

Download Submit
C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

Filesize
1.6MB

MD5
fe9dd0222d58223121727fb3a85540f7

SHA1
837b81c10d741e97e8659dd5e9653ceea9dfa0c3

SHA256
404781a18308d14ea22c28dc1f5d8ed2d92483e769d16f31eb3763706e8a5983

SHA512
167082bf5650c3356d0f02845873b3cfbace1348814711c1553e260b5e9a6e1dfc4adc2c6077737278d51ba682172032d21c1053a3c2516312b7ca930d391b0f

Download Submit
C:\Program Files\7-Zip\7z.exe

Filesize
1.9MB

MD5
e0491494713998e045efd5a9cbf66101

SHA1
024f282cbe6e87eecf2e7977da9ea4743265a806

SHA256
34361c854913023c9a94d5ac4729cc6971b67f0a48b5a67fe4207a68b48eaad4

SHA512
2495600a7d5294e26ccb023050c9347945182b81352970c1c656adb9bcb25dfc64c3ce2b44a5b5606f774bbe5c7c991249f777f0762d1f16c0a26883b7160eac

Download Submit
C:\Program Files\7-Zip\7zFM.exe

Filesize
1.5MB

MD5
b0f93628b86ede4f86cc3f842a20f9c5

SHA1
d0dbd7965be9475ff1a1033db5bca98aa17b1851

SHA256
abb5d3939b488d9bf265c85e9a7d505640608fa1404ed245da0a4a2f721a65e8

SHA512
b6b1723f88c2e7a939efc16f68691fee5ab9a13e156053f771e18de8960182b54bef7d1148abb7bcbe073100dfb46afae1ee08bbebdb9bb37f6e47d4f083e99c

Download Submit
C:\Program Files\7-Zip\7zG.exe

Filesize
1.2MB

MD5
90bbe5138cb688bade0788b0a3090e04

SHA1
7fee81f2b2373f2ea5026c0638d1552cbe723911

SHA256
2283f184fcd78216739a52201d6e9c37cf3494ce73f0fae93f98eda755366bef

SHA512
ce2c360e457c180d1613ab7a0647337ffd5f422b2219f844f1abc67a379e43913e04f36d0d73a2de7a4ab1842d5bf0ebb98ffc532d7b7bf37ede0744f3ec2243

Download Submit
C:\Program Files\7-Zip\Uninstall.exe

Filesize
1.4MB

MD5
caaad7619450f4d3343b6fcb40b2e9e1

SHA1
dc0e758e53eb9160fbd15e9acd94f19f67feab40

SHA256
d5c1dfe47126a1950b68a9bce9b3f73dce00bf0755de38698f415e8a32111b21

SHA512
1f025f2d32ca8f641cc64de5c6306cd68c57ee5a7580402c4974880c7a739e3618b61b09a31aef7d7d784dc6d0d7cb34b7753089efadba258544a5c5620a9058

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe

Filesize
1.6MB

MD5
8e5d9417eb809b50d9d9cfcb04dbf08f

SHA1
b3ebfe6438ceb1fb96c048ac8f8237a2819c3c19

SHA256
d3532642e7650f76cafad3773b5b21cb584fbdf5a1400dd0aeecb75afb0a57ae

SHA512
ee723f3a6e37daefb8f828e3b4ebc6e8dcbf8dca5fead1042e84e0d4ad4718183fa3308e7fac00294640874a55d9e2731b06709f8142dab87b30f319b49ae98b

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\IntegratedOffice.exe

Filesize
4.6MB

MD5
370337c1c4ca8f88868cc0c31fe066d7

SHA1
b5438dfe5a34f022286b936a06e736b85a952f48

SHA256
16109c7c959464b17d5b9f891ce40dbe64c69df378b76b37e87d7e282b85dde1

SHA512
f00ba5a7238d306d37d7999b447e936254d0e99478a6686b37551921363f51797f3740d4f55c2de2644309b95bbcc7d00c32a9444d706ea4cd3bd7e2f69a14d7

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe

Filesize
1.7MB

MD5
f4f16b25bce884f7207faae6a5b39fc2

SHA1
f55552dd37550b13daddc8bc268ed062733978f8

SHA256
8cddfb5e42d67c60c11dce73e0615fa8f75befccea2dba2991fc4ac57f447309

SHA512
e09935c782c047aeaccb006babd1a85d7ddd5bc59f9074eee959c9a6cbd4829dc622037ff97c58532c12291d5fb681349cbab3fb20154662b2cfa1121b873a94

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe

Filesize
24.0MB

MD5
c18c741bfb4514b288438164859d902b

SHA1
c03bc58c04929ca277ac70466c88285e01def29b

SHA256
91c673a974f97242e2461adf440f5290df6438a6deefc8e1737291e76c78aede

SHA512
371eeb0884b65bcbac521bdeb1f96842f960833c493516fbd526fc9508c4e4c5ecf86c558a73233638fe20ede2cd93834524b55ecd662aa0606b1f170a9aba15

Download Submit
C:\Program Files\Common Files\microsoft shared\ClickToRun\appvcleaner.exe

Filesize
2.7MB

MD5
491afb3de4ba5c91ed59a8585471941b

SHA1
e5f9a66afe9582d4bd5264c97127777831092e2f

SHA256
674130c545ae3ac87f66ecc6f3ea8ceca636288c9dc9e7b269cea5541c4707f5

SHA512
10f14f5a8509d6773fe64501ff2ad1ce7d46141e164396650495ade41fad65104cca14b5808850d88b43461230f0a067c9ca7bf549ed4ac12716f0210dbf8f56

Download Submit
C:\Program Files\Common Files\microsoft shared\OFFICE16\LICLUA.EXE

Filesize
1.1MB

MD5
f03d1cd7a78c89afd5ed6d05fb1ea89d

SHA1
8f86371a527cd98a35dc0517780b5f2552f7993c

SHA256
b4cb3768d17993ca0364d6a79f633c67bfcb8fd29cc405238e4e064d07a81425

SHA512
caadab5f27ae6ca2be7135c7b95d468ecee80ab606bdfecea713335e886da6234c89c7638b6534b30556540693db3496a13dcf5a78cfc40922845786f73c145d

Download Submit
C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE

Filesize
1.6MB

MD5
4a6a6a9b9bafaba08bbcf494a2b63bf6

SHA1
e216d3a73939ecd41a8ad2d42f93c4a959c2fec7

SHA256
61dd47609570feac48501a1f1fb32c07498f32315c6bbfad71a4c0d9bb552a88

SHA512
eca17dc87dd5ef64aded4840e924a9136d5fa19596f7398ca4efba107e6a127bab2ffefe8328ddb2f361a2cfd6991d86e99345cfe1cc309112e291c04486991b

Download Submit
C:\Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOInstaller.exe

Filesize
1.5MB

MD5
b52bdccf1159a1ad2dce32f043a003b0

SHA1
03db380bba68c8af852f0522821e4557511caaeb

SHA256
29589e3ab7decf5746bad66e1b54be53dd1c19571d6fc2d06019f7da623297f9

SHA512
2d86c99ddf48326244add596c7c5b9b222464cc033d0627cb442c99748f80791b360154fdbbc66c763f4254940e5f75c44aaa7602b197ee01a3de1f3815b186f

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\Installer\chrmstp.exe

Filesize
6.6MB

MD5
806eb4e038b11dd90f6472e05f99fb8d

SHA1
79e42369330807502a60023be9704f6535e1f89a

SHA256
5f1e3abeb44bb74d30c88e15d2731aa4fc4718e9e9551b3080cd556a8dcffac2

SHA512
b39e56a722ec4c293129035530e8575a12a4420a91fe93bc3cbafed9588caafec30679d2aa5b8ead35b7dc8ab00b7dab398ebeafbd75cbaa046255ed35a4fc99

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\Installer\setup.exe

Filesize
6.6MB

MD5
87cbe3af2940ce7ba9afc4f18cc6507d

SHA1
c93496b2663a39e140b08b23250b780fdf8b46b7

SHA256
6dad43d176b0944b86b289b2afc41be658ee219577faf77e0b5494cd068903fe

SHA512
9b953ccac2f74dfa607f0961de614d4a6267b1c4d838bcb4dfde5ed86a9c0acf15ec5b9b958cbe409272ea9d7a02ead93fb45ebc7b627d1d3348f91f35e05721

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\chrome_pwa_launcher.exe

Filesize
1.9MB

MD5
f659a63e1e4fb0944181ed6807a56c00

SHA1
46ef6f21f1517646f2a11f7a033ace155cbea546

SHA256
285324a4e181663ab86db358e221f40e56f383468a1cce32d5ea1bac399968c7

SHA512
80730701e7fe98cb351fb688acd2dfb19ccd4439ac78f7f31429a75e6dd48c8d7071b63774eb7b94e67d5c3dc68053daf2455d1f3fbcb26baa71d143eef0801c

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevated_tracing_service.exe

Filesize
3.3MB

MD5
c9b55aae401e808d8848d5b68292b6e9

SHA1
306ffb90f8f822f499f52a069021781663035f5c

SHA256
b393ba8c2f75932a9e8592576a586636f6d700ff5c0c8b61db0089798869c7f3

SHA512
3d6b4994c02b394c1404b891c26aedc20c7bd928c31f392fa2dfb464aa79a603ded97d13cdb6fef1e91d2508f137b8f6d7a6ee96139b1b5c7e95dbea0f0dcb8c

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe

Filesize
2.3MB

MD5
66b11eed068b427ef76ee68378c3b4ec

SHA1
bdc5bdbbb88cda93fb921ceb75854c9285410ec9

SHA256
8c04a34704f3577c15416ecc1f67df9397cc6d94e2106cf6e3aa8d302736b8d3

SHA512
b61c57c30516e79d6be9069d563938e55d81968545a6f0e1b57d798c111ac3e6fdbec33f5445347ec997b5c2ddf0efbacafd4c19028724d7f83ee9b15862462a

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\notification_helper.exe

Filesize
1.9MB

MD5
b934725748db800ba4e2826b8ffc5d22

SHA1
82746f3b1d73754443741a756bc157d463a95891

SHA256
f394c6c30493ff881c60a0ca4e6f3bfcdafa0d0f4e64a7b36c1ea6318cb30fee

SHA512
94a01a86ea629b72a9977da33fc20c6bd4a765d0dc2d97daf4d5cf3daad9670c22f647234aa99e67791fe2a18ed37bfe6d777e9759c5063739f5b2733b7dd1d7

Download Submit
C:\Program Files\Google\Chrome\Application\133.0.6943.60\os_update_handler.exe

Filesize
2.1MB

MD5
5cd3b3a204a8f51ab0bc3ec726355936

SHA1
9231bfc5dafc40d6b46801a789f18c4bcedfa1c6

SHA256
9fd22827dfdab6baf8689a810e90da9a88b73c218a0ccb2617de4f3ca335a14d

SHA512
9799ad84cb255eb4597766a76b0b84ff41817b1330707435292bb62db33c06c2c4f0768c912877349aed2b5b7c4cf3b9cc2df6eabee6eb475da4ccf9890a2c15

Download Submit
C:\Program Files\Google\Chrome\Application\chrome_proxy.exe

Filesize
1.6MB

MD5
f5dda67882819010699d95f18033835a

SHA1
4b1ad8541673c655e7f84b75bc91a282c776540f

SHA256
d23fefa74019867d49f127b6448556e2a5f6e7f72b527528a6538767420c5465

SHA512
6adb7ce2f8f16a9cf20fce2423f6054edde677e60c978e18087a3702cfa065c789fa82537904b5726b59f58184baf011e06428e2da4ec0b2920f5684a728a500

Download Submit
C:\Program Files\Java\jdk-1.8\bin\appletviewer.exe

Filesize
1.4MB

MD5
6903836ad52df9f608eda98570a0c493

SHA1
af46aa5861d93c6f2955cb59409e5debff038ed3

SHA256
98c8bb384e3bc994489710fb85f1b2f34e98bee5c80df5bdb4b84bf81dc631fb

SHA512
f26708aa15f03acd41a0d424f4b4bd781adca5a4d2600cc0d7704f044ffe36dc0541ed64c35b072856add9bf8fca9c4021e0e8bdb3d06df047de7b80ffaef679

Download Submit
C:\Program Files\Java\jdk-1.8\bin\extcheck.exe

Filesize
1.4MB

MD5
3322b30446f1086c9f1aadf7bd645014

SHA1
d4f4b2909d90ed6af8307cd81d6d2906f27554e4

SHA256
ec9fac047caf87b421bdbafbb617b2024e19c9071559ef4d3a51f222ebbdc9a7

SHA512
e16b4d358146d0b36cbc47a09aa51e09f100f9fb5d474332f4280b6de541a7174c14d1374d33e36b4f85b1ba0794bac93f3703bfa23dca5875da0c9aaee5da07

Download Submit
C:\Program Files\Java\jdk-1.8\bin\idlj.exe

Filesize
1.4MB

MD5
890b27683afe67387c488913cb85fe74

SHA1
494a16cc4d0f9f5581053970cc2a320b21a44294

SHA256
36d852477c7556b3fa11a2422f9006b4e238f74f258db4230fcdc50d08a41be2

SHA512
460465864d943a4adc66ef60ba8c296405a8598ddd619ceaf3cc9233b78e849c238919caa0bf0e5d85346217360e76d09b1eadc752ad1443a50f8828a3792791

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jabswitch.exe

Filesize
1.4MB

MD5
fc5de73e61295f1c583ad50b119d832c

SHA1
9b87659b993acb30c8ee6592e6877535a3cae8e4

SHA256
333370e95ee2ff2a7b24ecf08bb78c1ad65111997f7f7a4a1eadfd061d0dfac2

SHA512
8d82fd411a1c8ae132704de1589ae8ef457f52759397d4d5b58517d2ae591a0bd6646e3e16a1d04fa15842e1b83063724c91e789a6911a4f9e35e7738395aeb8

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jar.exe

Filesize
1.4MB

MD5
29f698cc0c7faa35393a885a22410693

SHA1
2d8063b1e32a5986d14a5fedd8e6be5cf7729060

SHA256
6407dc2b23f29bcc544236d65a4b325b080d08c4990586a32b3caa734ed18887

SHA512
021a29b6842cb370fa6ed47ed95a12ef7c61bc6e8392c14e3edb327f6a089236918c04222331021ab31a5882d32cd8334554d45968295e8fb8e841a9821c930f

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jarsigner.exe

Filesize
1.4MB

MD5
6473f62a43601c26e8ea173a57f82fc2

SHA1
32dff2a79911417a4055c47f5cf2b6ca32049965

SHA256
e9f17e8b4611151c9a956a679f7195ffe4b7125db6784a8ea987429c1c549019

SHA512
4b5af3a1b4e92bfd3d9411dd863def4eea4d586a1393258f8db56742e5d05cd8998fcc97b76957930b7a4f647e36364f1ad83d1d524256964833fb2750ba0dd1

Download Submit
C:\Program Files\Java\jdk-1.8\bin\java-rmi.exe

Filesize
1.4MB

MD5
782c7c64d59f2b5eaffab3ea1bd3cd0f

SHA1
ec5d850d877f7234f409ca7e7b5567f5b9317e37

SHA256
aed2ed34d36f96eb4cb48c56a6f277d35a83f5a2e3b274c3fb8465deee8b137a

SHA512
1f0a8acd0e2b421f21400c85071006b7ca00d1d6bcf4c2a489d91c34b1518f8b9c81b990a91e54e42201439aa205ec6c2496a071f03a570d92a20c7bc2d41cea

Download Submit
C:\Program Files\Java\jdk-1.8\bin\java.exe

Filesize
1.6MB

MD5
32ebb58e1de732f0e002ff5ff62bf9f9

SHA1
e5a91d66ec3a96d0818558ed471088eb63cab9be

SHA256
c9c3a10cf9b292e9391b22ae9304fe8c3ec027206153854d1cd0b2bdbe2f0286

SHA512
986a776f6338d8996b1c159c32f13da9be2ac89e48a1888d19aa41b0e7a3617cbf6382830ff19ff23610971a2047dad14b92b9ba6d83797ac9e3ffc141309cfb

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javac.exe

Filesize
1.4MB

MD5
bbf6925b1548fe47dd8abbb77dec488b

SHA1
7523195d88fcc59fe97b8e41ceb4f94dd287da5a

SHA256
e3aa881dce34cd8f165e5c7bcbad3a2e5d28c46983665395a9b96a6c1fbf43d9

SHA512
98eedd3811d3c799e717e16103df0998e6f8c3dbd20c64471516751e536278da213dde328a0a8624b13e115a95fdafa600a2214c3f66e32e868d448df4746b71

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javadoc.exe

Filesize
1.4MB

MD5
0de861dec988fc2318481b0f50165c8b

SHA1
e53e8d79e518d091af1cf8051cfe291e6d615e8b

SHA256
f316ae4663a5553b7673acd71e5f85ef98af1c2eb10f088cb159e32c723e0c13

SHA512
acc92014628d628d36bf68a0492ee6848b7bb4c9c01032b02ef93ab2d77d1745a33d1f006a1506a87d84aa01ce4d4a3aae6d33bbaa8f89b1123319ca6e3db042

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javafxpackager.exe

Filesize
1.5MB

MD5
a5117c4cbfe2781c5178f0becd64ff2f

SHA1
d956902ba67fc142fe00d3cdd9623dcbaed6f0e5

SHA256
ed0841208a8658ac2c5f9f6a8dca8664448a406672fbd14fd9420183a6df31c5

SHA512
96a805ce695795d5375c0fa7e82b9b00248e560888a0fd365addd4c7fe11be97b06fa95a110d421735060b2af42b7066a5ebe3dfac5f25f486359cce2f107000

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javah.exe

Filesize
1.4MB

MD5
bb0ad4435da2ca1f280283216abd76f0

SHA1
dd730da81e80997002bbdbd350555595b9ffdf50

SHA256
646d7ec68842db216b0e6e5f72c15c904ba1934c41548ca72d334b39b8df5f85

SHA512
5b365fde60a8c596e01f217abb555e80c3776f3a4cf42f9d7711a231eb672c8670a2c0d8780abaa8dfc3cd81dcda6f458e39e119313fbe3e0f6a8901aedda243

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javap.exe

Filesize
1.4MB

MD5
d542ca9fea7f4613bb40628e4c05060a

SHA1
d260519e21c57754619af17094073c8f9d311e67

SHA256
b4b8811773a9360d695345d2ec415886a4a2e1c279c18ef4da36cbebbc73cf3c

SHA512
19c464168cc90b45b2c77b379cc7c31600b3d64ce232640a92b97eadc665b9eea3a782fa9f65fd83c2e13396591914835249f8d78ee03b331c414abd2ebd2614

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javapackager.exe

Filesize
1.5MB

MD5
86500ff557251f30f963a7ce931382b7

SHA1
776dae68e646cfd56e32022d129a455a978201bc

SHA256
6212f3905c6f87336d957e2c83df916cc8b0541bb9ea1f101f848e1a2151a9c0

SHA512
5e66ef01440e1309a143e91f80cc4afd4f1194c975ead3df9b9bfda9eaaf77b9e3ebdb8712f34c24cd95740f450cb2c9f88c7af7a80e38c4660defa0fd3fa165

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javaw.exe

Filesize
1.6MB

MD5
e5367298cd34a551cf1c5f6a76b0c019

SHA1
06d2063edeab9acc85570145e23c373a47e846dd

SHA256
ebffba54ab09182f92566e831665b7f180e69635b781004497f9a716418fc308

SHA512
7e0202ed8f9922f3348bf7428eff4a538753e5ab7ebcdc3bcdecc75a89d2af27a3b7c85608b671ef954689af981a2a161af754c9e7daf5839dfe8b722e8d8549

Download Submit
C:\Program Files\Java\jdk-1.8\bin\javaws.exe

Filesize
1.8MB

MD5
78cfe26e245639c3f64f53aa1ee95f72

SHA1
8ee7e8aa4ede6a7c68f4165f65f2f0bd5bc62cf2

SHA256
017bed4eb2128571e8d06b636a40469ff64bca45a536bb77b21c93a7342ee35a

SHA512
b4374df3bc3f2fb20eee7c9e64dabc5eee33040911c0e5304a087a077ff67bb201d41139da85668b58bffaa1343d765b621273dd669b3020c055f72853d844c6

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jcmd.exe

Filesize
1.4MB

MD5
721176e9280fbf49c84424dedb684a3f

SHA1
4fe239c1d434b56ea3792e1fcfecac4693331f07

SHA256
c736b6ed77dbadb4e22c8393febb2d4e17819a7a570c4a8e58a002ed09c24265

SHA512
238b30f5f5981539d5274ef2e9ff9945353bbeebb547afd3022e7c6887d799ddf73e398b241f973c13c7dd2e4c7847a0cd0718a7ee6a85f7862ca1e3edd274f9

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jconsole.exe

Filesize
1.4MB

MD5
e7ad6297f297f146c038b4304f7d19e1

SHA1
d7e9559fbea49e53731b69af08523d76ca59a212

SHA256
4bacd03be0d8cfd31a6268cfe7e579170c8f615d33c1200e564c189ff45b3ee2

SHA512
1292556ccdb1a97967bf838d7f2c0b80d47f15f460aae99c8aea7971eb862d2de2a98f52ae18bb38ffd453e643ce61033baeef0172214e784b4e14a2c1837122

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jdb.exe

Filesize
1.4MB

MD5
cfba9a88f6b465384618e4c76709e7c2

SHA1
62d568274d0d8ee662190bed9e878d66b84783b4

SHA256
cf23ed2d38e8ad3ece87c2ccd255f25a274dc61b19cf93163603f2b10ec7fe0b

SHA512
d98399ff15497218166ee06be5d299370447314fe1acbc85066027da3ae3194bf13bdc2780320ae8941299a722ee734ec4d57ce0053bcaaa0f19fc74716eb69d

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jdeps.exe

Filesize
1.4MB

MD5
85fa22785e03154484404f7d3b197f37

SHA1
f0a8acad0564b677566cf84d2c88021f0a6b5c0d

SHA256
182c620561b05bfed7cce535262e3604211d003fa314e3597a3cadedeb347854

SHA512
fe341c63e93a750110baa5a2be47c5347f0039b17f7a061c10a153c1118c57e3d0c72f1f7d5738bf8f683443de0eb7ee85b9cf204ca53a6533cdd755e096aa50

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jhat.exe

Filesize
1.4MB

MD5
90d639ce34aca440b310406b2c5b4048

SHA1
4f92f1da88c0ace1d31adb6f3f1e65d4c1319e63

SHA256
b28e58f72d2e414ffe018a6066b327254a154f76633b561018efc9c73f8e0633

SHA512
d8ae95e1f376d3ecd6773fe3136424b2ad0b9139796d5df5a400b81ad262db95c0700ce2a17a2ded237288e6bf641faf23fe60342e653e45d41b0240cda05e6d

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jinfo.exe

Filesize
1.4MB

MD5
a98d7ea4ff146a5e18f0d5c063fbeb2d

SHA1
a483e86f68ecbd2abe0258abb598ebcaeaf2f3c9

SHA256
e27d309b12118235f5dc4cd9bbe21ff47f1594bcffd6cc139269be2f6d109d0a

SHA512
76cd50706733828f017352d3f1ff41a264f0beea86cd15747e15c19ccfc6a2d9a6f869b3760ff379e52d7ba7d6a96060a9a3a3dbbae94026fb767cfc111b3ddb

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jjs.exe

Filesize
1.4MB

MD5
a0839908c192c85f782ca9a24ac49844

SHA1
8c8c1b12ff2cb57537cb1e7d0f9ea5fcff394e38

SHA256
c268bd492c8f60d57e5355e9ae1874d43024c358683cb7a3bb55cf02e2529804

SHA512
a40d52c4e00b1946710afee261ef82fc37e3edba14f723665b624b2456b422f04ca2de1bbe50f1191c9e02d6990dba79787313563d0155186335b136416fce1e

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jmap.exe

Filesize
1.4MB

MD5
7a1b6c7b51495cd504aa2b08ae308764

SHA1
65c39c63c4d68fa9096344269466fe71be5ac071

SHA256
149dd0b5a29baf7107407e5965acd1599140a98366e1a35fb3b1465818d873d6

SHA512
f218a5df191f00567a734820877438be9784abf874616e658d173f328351cab5e252b5e386ac5d52736505f10d7940120190fd564156207a773a1b6577766fa0

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jps.exe

Filesize
1.4MB

MD5
15771202b890063ef829f9a463c62e21

SHA1
70e475525537a5d516c2d82ca1cc8de417709a89

SHA256
fe2302de0ce8f1623809710d8744fd8def01d5451a3262e71984cadac53f032e

SHA512
b2f8ea26a1b8bc914bef646e0ddc2e7f5420a289b7d370cff05a1fda5fb2ed18430d42cc0cfbef9b4675346a7989550c0a83e8fb1a0cc5c46c0fa93683c449ae

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jrunscript.exe

Filesize
1.4MB

MD5
30c82469269aa1bbe549a5ac2d03801e

SHA1
39c2d07dbc263217947b85b18503163f890ec16c

SHA256
0bff9d00c102fec3d5713879b00ea828c08443e0e3db706324c940ecc6c0061b

SHA512
a29286274136d3d2764d4c914ced0e21b70ad747bafc9c50da5797194c6e9afbadf436a82b82eb64e1c9bae1a0b92831e99ef8daea58c7ece390a1804b176273

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jsadebugd.exe

Filesize
1.4MB

MD5
97df8bc8954466888c5f97ee80059618

SHA1
80a9befcb2c344df0923635849f69871707cfe0f

SHA256
c9bb1d32f0f11ef617da59951b20e65d0d624ba0113637dcb9a69d7d56dff069

SHA512
af850f286e3316923216434236f0b98bf09abffb18be0fd62f406240dfb9270c5a58158788306c789c1ac51af114a51125f175c2466b80d330f5ab78ef8ff1fa

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstack.exe

Filesize
1.4MB

MD5
a57b405cf90790cdb114a22bf20577b4

SHA1
e2fb93474aff005ee4ac0ee94e1461d0d1bbd7b2

SHA256
49a5dee0261533725f573fd4b846a7614ebe8a2fc591fec0bd542fd615d9e53b

SHA512
3b081f47f8ff6e2eb464cf9504cc03adfe1ed13002131ceebf667b9ff52f817e057b0f32303f09833072af19c06bc68e9e979e802ea3bf67f760a68c8a2a4861

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstat.exe

Filesize
1.4MB

MD5
6efb581c70a95fdafe9433738a4a43ca

SHA1
24731f790e29640f7f07ef8356ecfba4ceab1be1

SHA256
b4ac53e53cef2b3b447bb4134d1eef2ad4f0af54143aac99717720c9d8bc732e

SHA512
5a4042d03ad01e238dbaefe067c0753400305e7bb0ecfd844061d8bf946a812a9bbdc8c59e5f41b2ba2d04083137b93b1e1f1a430b25c1e3dd086b7c63c8c755

Download Submit
C:\Program Files\Java\jdk-1.8\bin\jstatd.exe

Filesize
1.4MB

MD5
19c2a9aecbcd7db3851c1520add3599c

SHA1
303f18e6d812308f240b84d64f4d1ddc02f43e9d

SHA256
85a681445abb273730cab254d149986e854b89f70e00b804311e32839d7ec53a

SHA512
15940b6b82aee6be2ee7da58a8a32c6f627e7f79b967ae28a2731f7520d05d4ed3cbd48c21af11496fbe43c82a6d75215f1b2c4e664102b091b4d861d32fd851

Download Submit
C:\Program Files\Java\jdk-1.8\bin\keytool.exe

Filesize
1.4MB

MD5
6c221c9140323cfd87fcd1aa60c6ecdf

SHA1
eb59b27e7e663f8207948da4982aaf28bf8ecf0f

SHA256
e1dcd710592a744489b1f3fef2881f29ac1ebe4ec975839b1b4dcd56e4da88da

SHA512
d0297cf07afa9f596ef605ef1cbfed38065394219d55cdfe0a9dd3c6afaae4a13e5ccba7d4ee032c4ee704515350b2958e0eea807fb788a7cd4c0218529cf313

Download Submit
C:\Program Files\Java\jdk-1.8\bin\kinit.exe

Filesize
1.4MB

MD5
060919a68290a86270774ea848fbb288

SHA1
d47d7646bb7cda1d3590156bfa282eb7835ac44d

SHA256
ec4ab45261af87fc5ed19c1af27c6d8635e017c5e68e254e44f8b9075df25f1c

SHA512
2d6edc57dd3e88cf180dc01d17c84cdf2bceadb16c7e5c62a802dc1d024ae20d204290f0c281fed6f6ad09f915b85a6740fac7a1f47b284f45a49c117c0e26b6

Download Submit
C:\Program Files\Java\jdk-1.8\bin\klist.exe

Filesize
1.4MB

MD5
938b06eb6bce20c3fe41d8d9e940eb68

SHA1
384a67b331a1ddfe61abb2856fc124a8cd54c52e

SHA256
766cb592e75269acaebf1328b0c1d4945469c98949d824fdec1b7398d99124be

SHA512
96530901609288184288c5038af0dd94cbde62c04a7f98c4b9165e1d169718fea8e75c85f9a0f90e7cafd6866d661172c74d2405a77d0708de0eb911ac24e3c8

Download Submit
C:\Program Files\Java\jdk-1.8\bin\ktab.exe

Filesize
1.4MB

MD5
bf35b8255cc7ceaf608a04bf5e1b4b0e

SHA1
356736d7b0582761ce20a7a2e7d52f2afe60691d

SHA256
7e0258714a77d2ebe63de58690cc0085c9cd2b88e55790665c4d0998ae462c20

SHA512
7eef26d53a727fb29e2283460fae1ffbcafa943680504ff3e6a6d0ba2e66a41be299e481ee1ad10e900d9aeb803ba349a5ba6108fa4421fa42f43caca8061028

Download Submit
C:\Program Files\dotnet\dotnet.exe

Filesize
1.5MB

MD5
fcd5e0848a5df6d24d198a40517653a3

SHA1
89588ef48331801b4ec75cb56c2d1cd687cf2af1

SHA256
4097ad149a7d70fb5e59ae97a24d11d368fb8373968d4aa4e534dbd06c54d9cd

SHA512
6d838bb1c274c1adaca5d3414f2be0b384ba966fe3a181df9039d23e3b86baeb8080cc3aa0348d4eaedb19b2b218e0f9bf75e7acad9d999e73a24e450ce45661

Download Submit
C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe

Filesize
1.5MB

MD5
87828f0f27c1d634a62de802ac4e5246

SHA1
a0735a47d2eda521af71dd0d1c2ac3a1aa9684d5

SHA256
c6d08ab2ba9be723af46ac4981744119e9101d29d2e22517a562193e4eff2617

SHA512
4b6ea978465497294796dd49d2e4d8259f633cadd1e3e659801df5240a38012eeff386b56cbd8254dbc15871298d63f97299d31e9c39e9a7483b85a3bff1cb99

Download Submit
C:\Windows\System32\FXSSVC.exe

Filesize
1.2MB

MD5
aedb0c4794abc6c26539eb1b6cd278a5

SHA1
ba4f76fccb4f19207d506377ccf0fef0e676321c

SHA256
ff08fb9a93ae7b565b311db88aeb1a1a917bf2f93b85d455ab5a8c643fcc72c6

SHA512
1482a52949253af52395f71e42bf7712217192d1ef6db220ecc999b7e78518674e8065991eff545db2b29cfc3e4feb8066e0afae555b0902197943cb53ca0401

Download Submit
C:\Windows\System32\alg.exe

Filesize
1.5MB

MD5
819b18800518d32a159693ef11ee423c

SHA1
1c803c722404a5442e5b3d2b22202354f3fedcbd

SHA256
87775c82291eb16ab64409a5797bd949e2f7dd356ff79976bc7bafb93e958899

SHA512
c70d6c14fd719473976abce985ddd935f9ca6f3bdeb89d3ecc59cd8f9487c824d147f106ebf43d0c0dd6aa21af4f27596bffd4d9012e792081cb7b0331824519

Download Submit
C:\Windows\system32\AppVClient.exe

Filesize
1.3MB

MD5
569fed99108a3e564e3ea980f6a6c53c

SHA1
e4ee32f69e1c114b4faac6aa117b9f6fb9216253

SHA256
b8ef9cc5fa76331314b2e27701f04ad00f47ef99837e398984bc16d48a55bdfb

SHA512
64a216d71bc914feae92287d4cfec8d4e1ff09e98f556710f96342f54655a48d738632240cda726032e70bfcdd6630b1c13df8371ab084864c0b139417c9edfa

Download Submit
C:\Windows\tasksche.exe

Filesize
3.4MB

MD5
3233aced9279ef54267c479bba665b90

SHA1
0b2cc142386641901511269503cdf6f641fad305

SHA256
f60f8a6bcaf1384a0d6a76d3e88007a8604560b263d2b8aeee06fd74c9ee5b3b

SHA512
55f25c51ffb89d46f2a7d2ed9b67701e178bd68e74b71d757d5fa14bd9530a427104fc36116633033ead762ecf7960ab96429f5b0a085a701001c6832ba4555e

Download Submit
memory/416-35-0x00000000006A0000-0x0000000000700000-memory.dmp

Filesize
384KB

Download
memory/416-170-0x0000000140000000-0x0000000140248000-memory.dmp

Filesize
2.3MB

Download
memory/416-34-0x0000000140000000-0x0000000140248000-memory.dmp

Filesize
2.3MB

Download
memory/416-26-0x00000000006A0000-0x0000000000700000-memory.dmp

Filesize
384KB

Download
memory/1780-93-0x0000000000C00000-0x0000000000C60000-memory.dmp

Filesize
384KB

Download
memory/1780-87-0x0000000000C00000-0x0000000000C60000-memory.dmp

Filesize
384KB

Download
memory/1780-101-0x0000000140000000-0x0000000140274000-memory.dmp

Filesize
2.5MB

Download
memory/1780-95-0x0000000140000000-0x0000000140274000-memory.dmp

Filesize
2.5MB

Download
memory/2508-81-0x0000000000890000-0x00000000008F0000-memory.dmp

Filesize
384KB

Download
memory/2508-75-0x0000000000890000-0x00000000008F0000-memory.dmp

Filesize
384KB

Download
memory/2508-85-0x0000000140000000-0x0000000140266000-memory.dmp

Filesize
2.4MB

Download
memory/2508-268-0x0000000140000000-0x0000000140266000-memory.dmp

Filesize
2.4MB

Download
memory/2552-269-0x0000000140000000-0x000000014026E000-memory.dmp

Filesize
2.4MB

Download
memory/2552-111-0x0000000140000000-0x000000014026E000-memory.dmp

Filesize
2.4MB

Download
memory/2796-37-0x0000000000B50000-0x0000000000BB7000-memory.dmp

Filesize
412KB

Download
memory/2796-51-0x0000000000400000-0x0000000000AFA000-memory.dmp

Filesize
7.0MB

Download
memory/2796-44-0x0000000000400000-0x0000000000AFA000-memory.dmp

Filesize
7.0MB

Download
memory/2796-42-0x0000000000B50000-0x0000000000BB7000-memory.dmp

Filesize
412KB

Download
memory/2796-266-0x0000000000400000-0x0000000000AFA000-memory.dmp

Filesize
7.0MB

Download
memory/2876-0-0x0000000000400000-0x0000000000AFA000-memory.dmp

Filesize
7.0MB

Download
memory/2876-8-0x0000000000DC0000-0x0000000000E27000-memory.dmp

Filesize
412KB

Download
memory/2876-1-0x0000000000DC0000-0x0000000000E27000-memory.dmp

Filesize
412KB

Download
memory/2876-53-0x0000000000400000-0x0000000000AFA000-memory.dmp

Filesize
7.0MB

Download
memory/4244-117-0x0000000140000000-0x0000000140135000-memory.dmp

Filesize
1.2MB

Download
memory/4244-72-0x0000000140000000-0x0000000140135000-memory.dmp

Filesize
1.2MB

Download
memory/4244-70-0x0000000000D90000-0x0000000000DF0000-memory.dmp

Filesize
384KB

Download
memory/4244-64-0x0000000000D90000-0x0000000000DF0000-memory.dmp

Filesize
384KB

Download
memory/5444-267-0x0000000140000000-0x000000014025F000-memory.dmp

Filesize
2.4MB

Download
memory/5444-62-0x0000000000730000-0x0000000000790000-memory.dmp

Filesize
384KB

Download
memory/5444-56-0x0000000000730000-0x0000000000790000-memory.dmp

Filesize
384KB

Download
memory/5444-84-0x0000000140000000-0x000000014025F000-memory.dmp

Filesize
2.4MB

Download
memory/5640-20-0x0000000140000000-0x0000000140249000-memory.dmp

Filesize
2.3MB

Download
memory/5640-96-0x0000000140000000-0x0000000140249000-memory.dmp

Filesize
2.3MB

Download
memory/5640-21-0x00000000006D0000-0x0000000000730000-memory.dmp

Filesize
384KB

Download
memory/5640-12-0x00000000006D0000-0x0000000000730000-memory.dmp

Filesize
384KB

Download