Overview

overview

10

Static

static

3

2025-04-07...er.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    104s
  • max time network
    141s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/04/2025, 17:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe

  • Size

    53KB

  • MD5

    f4df354085cc9d71c4011841ff7ab228

  • SHA1

    28210aeae1405a32e70849455f6f9fcf2a984c39

  • SHA256

    b931e00c356c21534936596fd01ab4632b7e4042c95aca43abdc2b85568bd687

  • SHA512

    7ef83d5d2b47219acbd4aa133337b2ee636a599ff406d95181be3c48ccfc8f8ef41d2cc5dc431ead09547260a580517809d35693f4e2a69759d7761fd442a957

  • SSDEEP

    1536:szA4+k/t9cXalnawr1IwxVSHM0Zuikg8eT:94+k/t2XalnagIN1R8c

Score
10/10
globeimposterdefense_evasiondiscoverypersistenceransomwarespywarestealer

Malware Config

Extracted

Path

C:\Users\Public\Pictures\how_to_back_files.html

Ransom Note
<html> <style type="text/css"> body { background-color: #252525; } { margin: 0; padding: 0; } h1, h3{ text-align: center; text-transform: uppercase; font-weight: normal; } /*---*/ .tabs1{ width: 800px; display: block; margin: auto; position: relative; } .tabs1 .head{ text-align: center; float: top; text-transform: uppercase; font-weight: normal; display: block; padding: 5px; color: #FF0000; background: #1C1A1B; } .letter { color: #FF0000; font-weight: 600 } .tabs1 .identi { margin-left: 0px; line-height: 13px; font-size: 13px; text-align: center; float: top; display: block; padding: 15px; background: #1C1A1B; color: #F1EADA; } /*---*/ .tabs{ width: 800px; display: block; margin: auto; position: relative; } .tabs .tab{ float: left; display: block; } .tabs .tab>input[type="radio"] { position: absolute; top: -9999px; left: -9999px; } .tabs .tab>label { display: block; padding: 6px 21px; font-size: 18x; text-transform: uppercase; cursor: pointer; position: relative; color: #FFF; background: #F1EADA; } .tabs .content { z-index: 0;/* or display: none; */ overflow: hidden; width: 800px; /*padding: 25px;*/ position: absolute; top: 32px; left: 0; background: #1C1A1B; color: #F1EADA; opacity:0; transition: opacity 400ms ease-out; } .tabs .content .text{ width: 700px; padding: 25px; } .tabs>.tab>[id^="tab"]:checked + label { top: 0; background: #1C1A1B; color: #E29F12; } .tabs>.tab>[id^="tab"]:checked ~ [id^="tab-content"] { z-index: 1;/* or display: block; */ opacity: 1; transition: opacity 400ms ease-out; } </style> <head> <meta charset="utf-8"> <title>HOW TO DECRYPT YOUR FILES</title> </head> <body> <div class="tabs1"> <div class="head" ><h3>Your personal ID</h3></div> <div class="identi"> <pre>���������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pre><!-- !!! dont changing this !!! --> </div> </div> <!-- --> <div class="tabs"> <!--tab--> <div class="tab"> <input type="radio" name="tabs" checked="checked" id="tab1" /> <label for="tab1">English</label> <div id="tab-content1" class="content"> <h1>&#9759; Your files are encrypted! &#9759;</h1> <h3> To decrypt, follow the instructions below. </h3> <br> <div class="text"> <!--text data --> To recover data you need decryptor.<br> To get the decryptor you should:<br> <p>Send 1 crypted test image or text file or document to <span class="letter"> [email protected]</span><br> (Or alternate mail <span class="letter">[email protected]</span>)</p><p> In the letter include your personal ID (look at the beginning of this document) and we will assign price for decryption all files.</p> After payment you will receive a decryptor and instructions We can decrypt one file in quality the evidence that we have the decoder.<br> <p> <center><b><p style="color: #ffff66;">MOST IMPORTANT!!!</p></center> <hr color="#ffff66"> <center><p style="color: #ffff66;"> We are ready to work through intermediaries. </b></p></center> <hr color="#ffff66"> <ul> <li>Only decrypt_data proof can decrypt your files.</li> <li>Antivirus programs can delete this document and you can not contact us later.</li> <li>Attempts to self-decrypting files will result in the loss of your data.</li> <li>Decoders other users are not compatible with your data, because each users unique encryption key. </li> </ul> <!--text data --> </div> </div> </div> <!--tab--> </ul> <!--text data --> </div> </div> <!--tab--> </div> </div> </body> </html> ��
Emails

[email protected]</span><br>

class="letter">[email protected]</span>)</p><p>

Signatures

  • GlobeImposter

    GlobeImposter is a ransomware first seen in 2017.

    ransomwareglobeimposter
  • Globeimposter family
    globeimposter
  • Renames multiple (9063) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware
  • Checks computer location settings 2 TTPs 2 IoCs

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE 1 IoCs
  • Reads user/profile data of web browsers 3 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Drops desktop.ini file(s) 48 IoCs
  • Indicator Removal: File Deletion 1 TTPs

    Adversaries may delete files left behind by the actions of their intrusion activity.

    defense_evasion
  • Drops file in Program Files directory 64 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 4 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 9 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe
    "C:\Users\Admin\AppData\Local\Temp\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe"
    1⤵
    • Checks computer location settings
    • Adds Run key to start application
    • Drops desktop.ini file(s)
    • Drops file in Program Files directory
    • System Location Discovery: System Language Discovery
    • Suspicious use of WriteProcessMemory
    PID:2436
    • C:\Windows\SysWOW64\cmd.exe
      "C:\Windows\system32\cmd.exe" /c del C:\Users\Admin\AppData\Local\Temp\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe > nul
      2⤵
      • System Location Discovery: System Language Discovery
      PID:5340
  • C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c C:\Users\Admin\AppData\Local\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1672
    • C:\Users\Admin\AppData\Local\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe
      C:\Users\Admin\AppData\Local\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe
      2⤵
      • Checks computer location settings
      • Executes dropped EXE
      • Drops desktop.ini file(s)
      • Drops file in Program Files directory
      • System Location Discovery: System Language Discovery
      • Suspicious use of WriteProcessMemory
      PID:4352
      • C:\Windows\SysWOW64\cmd.exe
        "C:\Windows\system32\cmd.exe" /c del C:\Users\Admin\AppData\Local\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe > nul
        3⤵
        • System Location Discovery: System Language Discovery
        PID:5580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\AddressBook2x.png
    Filesize

    2KB

    MD5

    96ef9f67cc9d6b52182dbd43882a000f

    SHA1

    024aebfd5bf5284cd6f0b4277912761f0fde918c

    SHA256

    98d0a46b1b90563187ad79d7019a64abac32c0c8f42bc3e9557b689b1b6eb271

    SHA512

    96e2338349dbdbe2297c52680a53f840d171bdebf76bb2fa4d08528e8f046328efa2ad47116712936a357dac15d362425e48f51ced9258b20c0195e8530a7d92

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\SearchEmail.png
    Filesize

    2KB

    MD5

    f94389f847d45547f492b3144e0a07d5

    SHA1

    5544e2968f9319a1c5d936b6ac94c3e049f98284

    SHA256

    2f434295ae26ce3f4c93dc0adc456b5e44c52f967c8a35e8700cf6b642e159d9

    SHA512

    975e8733e5f064df82d3e926ee6cafe15bd8b779f3b5c7b79ac11833f01817b31fbe5c60c6b1cfb81dc0b1a0b579f4b5b298dfb45b8ced35b1412358074a46c3

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\apple-touch-icon-72x72-precomposed.png
    Filesize

    5KB

    MD5

    d886fcbc656c05f91fae398326912d42

    SHA1

    a5e4d630de2327a24a42979926037271bbe0c458

    SHA256

    503588b71b28b1e6877d6649039b9b72fb0a27677506c90752dbb600084d0ee7

    SHA512

    99915e173f626a563c9222f82e30c628978024a53bb0e7cbba0b9c409205f3fd25bac4507a74a280c910c6b553be74a7c4608500d079fd9405dc2ea74d8d84de

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\move.svg
    Filesize

    3KB

    MD5

    e985fb28fad4ae8aae9756c3c9f87c2e

    SHA1

    d803370f3499584e9bc86613dc631fb0ed1ada20

    SHA256

    768e68adf116a51d6046ffea9114d91a4ac7300d738135c1ea3acaebcf8d2e59

    SHA512

    228205cdf5bc34e23efb216a3380741d363e46f30726559d8b33ea9053ad202a78cf9b2d6484bc297fa185108a35fc04c074d71d0675ff3333e6f2946facab51

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\s_agreement_filetype.svg
    Filesize

    3KB

    MD5

    920c0a6c46f872a5a02fd5d12eb7de4c

    SHA1

    c29e59efb5cca62a55bb7f8cebc75b8be29a5317

    SHA256

    1f63c3e2425dfccd1eccd37b6df6a4408408cff227b0600ab93f6cef2a1babe5

    SHA512

    bc693dca6f436e16586960013656acfc32b7fa8a8cf7f54a28c376ea52f67f0c2f8d3ee9b704e7d6bae35db9cd7e95e8557455061eeac9fffc8baecb4ba6c1cd

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_editpdf_18.svg
    Filesize

    3KB

    MD5

    3c2a1c03fc5975b953e042df3d59a0be

    SHA1

    35b95351287f8d66bbdf99ae2627b2df78e7d23f

    SHA256

    a460582013ba2f85a4e64bfaad35145bcb642756029b2312e96a6860fd52457b

    SHA512

    45fad96c545a63d6d94daccd10b5a2ffb64bcf43023dc88d72d99b97ff788ecd4defd700aa43d52ed1631be8c0ef63551ddfd8c5cab6226deb6679f8b1f809ec

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_history_18.svg
    Filesize

    3KB

    MD5

    45da618bcd31c342e30ce96b1d9d1420

    SHA1

    5e8326c79ac26a30e82ea1a2bc0bca7aca4fa030

    SHA256

    838eb6f2a30612ecc6b788c08d465255dd6193e1e73e665a7fc4658565639be6

    SHA512

    1c70f904a2c713f069ed95aeedbc235b718e3d9b38bcf7eeea175efd4da86794adaa3fd22618c3c93d7385bbac276dbd893aab8b44386ed78270c93cb33f8031

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\s_newfolder-default.svg
    Filesize

    2KB

    MD5

    922eaba8c2c405ba7e7b54357ef72f6e

    SHA1

    310f7f0a3bdd23ce2d17bbb76ed97f140552fe66

    SHA256

    4abea3907d73feb93b8f147da58939ee8a838d82506162b34c02b02270bedebc

    SHA512

    e42c3f3dd0b24b9bba9fe7d04099395d924edb2711473e298f9a232317194331b0ceb4a69689e1110e612e7ed22be4f6b198ade6d509c3fc28f5768e64b32e4a

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\S_IlluCCFilesEmpty_180x180.svg
    Filesize

    14KB

    MD5

    7aa905beac043407617044bfefd649ed

    SHA1

    3106ff6b0af1a9103a55ac32bca3552fc8c41612

    SHA256

    17b53b627a9d48be2ca94110861e19bb0278b7a0f536a1a434466c84d0767955

    SHA512

    2a2b0a267ffaed51480028e06954854950917010823372e34f105ef3ed43173d3b7c1040646db1458be96ca902255bccb50b7a8042fc3459677fca6acaa8009f

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\back-arrow-down.svg
    Filesize

    2KB

    MD5

    6e4821c4331304617df357b7d140d749

    SHA1

    ffc1955af29bf884c365e58b183c1a232a512c88

    SHA256

    8aa57bdcc5eb3684eb75c3eada736f4aa407e6190b79d0b740cc7e5df792f1b4

    SHA512

    1c34462c4d4eed74af616d0b13a02b8e62b71edffe4ec90e7c111c3a0b4bebc81d1702e9a624bc40479989dcef6587725f63c3774b90ccd421c78fa351d7072c

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_ellipses_selected.svg
    Filesize

    2KB

    MD5

    82011a7ef29a378abcf04701b53bae1a

    SHA1

    635a0af1892c17f58910f86faf27ca0da453b371

    SHA256

    aff08ab69a53e3ad1f777332017518df30cd27437a933068651e3180a5135a78

    SHA512

    f14f0226e9212b4b970dae4e7c0d6aad356c653207f5e8f1adafdfd52e8d25baf1a06fb002275ca0c5cb2022462045e2e33c8e7b7487d1e48b0fdbf137081acd

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_filterselected-dark-hover_32.svg
    Filesize

    2KB

    MD5

    e3fe32d0d99471086ffd9e0d812c137f

    SHA1

    309ef3f6d057ce522a983c9b411713b7968df99c

    SHA256

    a176298127fa1e7182e00ef993e4df3b3b18385a03e5930a4db5d4c1842d1d31

    SHA512

    1d368c73cc60a1d43821668ba1ddf66a1e97ffe4843d90a2c07abe758a1f004c05c7bb6fb115b022b2c39872fa50eac26522490be61f7c7479b6bdf314197d97

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\selection-actions2x.png
    Filesize

    4KB

    MD5

    847f3bd55260517062d260229020020f

    SHA1

    a31ac71f77c6a020c05c2bbf8301c71f35a28f6c

    SHA256

    1c0e398a474461aa84e3290a1c345aaca78f6600ffb0418e3bce230751835e2f

    SHA512

    9c58bd12aa33b89a787060ffa1ba73675c4ecd54be20449585580e1e47d567c59939b3ddf983cbc4a4f84708ce93aa27ec4137ff16895669d001a3c01f017e7c

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\sendforsignature.svg
    Filesize

    4KB

    MD5

    732d5457711dfd2bd3cd14b49c08d07d

    SHA1

    1dc6a524216fd063fadb0689df9165c0a998b71b

    SHA256

    dbe3f677551bb030cc8fb17e2b74b035dc277b40d65f0f2f0b9c140ea80f3c09

    SHA512

    ef971b3dc0b6488bf8dcb775ebca1d0107692d4d5af4a04fbceac84be9f850a3e34adfcc7357cf454ee4bc8ae7160308b98b3c83c4f5bbbc956730fcff757e7c

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\editpdf\js\nls\da-dk\ui-strings.js
    Filesize

    3KB

    MD5

    0caf94a05c4b16404cff417b10d18ad0

    SHA1

    93065da09db8233f0b1b0d2467c343f92dbc1613

    SHA256

    ff4c4f43e0c86523023edcfd9ae29bb9089c5e4a507accbb1d75d0bb625d9528

    SHA512

    59e5a3f876ed0e6c2a0e6c18aa55f47c88e0d2700b2a4862c351834eabc440634609d949cd20a6d53820f01990c9eddd2c2cece9aed48198cdcb448b16d4028f

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\fss\js\nls\pt-br\ui-strings.js
    Filesize

    17KB

    MD5

    74f1efb07823aedff205f10831479afe

    SHA1

    e60ead2d537c6a62ab1e225b87b90e90135a8a64

    SHA256

    933ed78739f3f40467f9ae8c85a19f29b514264e527afc44736f78f4ad5b5201

    SHA512

    ba305de8c569dc0c157aeb16bdcdc4e47af2fc9c909f1b527e17997bebd822c7618343513ff090e6edb500665ca8ea1f8ebac0aa0dfb6acd49e418b35ac088bf

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\Download_on_the_App_Store_Badge_ja_135x40.svg
    Filesize

    19KB

    MD5

    14617e02be16004482ea62fdda47cc48

    SHA1

    5b5c67d4a7f4e4c447c3390f8314ef90754851e0

    SHA256

    fb2e722b7815171e6373c5cd3e8d1b953a284f39e1bd6fe6303cafde237a3638

    SHA512

    bb6d675769361d6369cbc6c4b94171b2ec7f748adcac7431f957507bb6d414ebc7f330b7272fbd008e2f68bef4df0cffcf891fddd8e72076440248ec2031a97a

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\Download_on_the_App_Store_Badge_nl_135x40.svg
    Filesize

    23KB

    MD5

    d4d231873563eb82e22f03738d6b0952

    SHA1

    163c6f0c5657e0e64e8f79383771f1faf5193725

    SHA256

    a46f5907f27232fdcad9a8f933378ff31d21ad9b3e9cc90db94ff17e8444e727

    SHA512

    dabf6db4bba3af877ed76c8e27aa9076128dcd046cfd378e44787a12d5a85423450c4ccaef6b2a360356f559100f4e78d293b531afd217ef1c7f93455e019e4c

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\HomeBanner-4x.png
    Filesize

    31KB

    MD5

    715bddebf91044a21deabdec66717915

    SHA1

    41bf0198748bc2c214d0e344b09d7a8c5bd10719

    SHA256

    50521ff864412949d5574318715dd1fc2b2d1d11fb6f5ecee0b6690dd94330cf

    SHA512

    71c5ccd37f8141514e276ee4abaee4bd167a0a31b9ff034eda082e6c9fa650bdee46577fae002b5060ff5a5cde2aec72df5a9a30db218b2aeaa6294b8d8e85ad

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\az_get.svg
    Filesize

    8KB

    MD5

    a6614a9e2944c1e606fa7ed48e650494

    SHA1

    8c3f7e443f742705835d70c598707d5a063c51d8

    SHA256

    3fefd7c3d85895281054e998e8508686222b3d2150bb797b3070ff5e936d3952

    SHA512

    acccf21254fdb110dc636c14a5c4938a546dbfd76ca3b2afb5a22016c4420884526dafcbcb525c6d2c54c1de81b38b1f16876720147b6002a4774059af1b8348

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\pt_get.svg
    Filesize

    8KB

    MD5

    1ec47085c6982d1c29a9bdb705b54cd0

    SHA1

    8431bea3b4b40c91f8e7e62b3baa7da4364e081f

    SHA256

    053235874674d3c9e512398be57263ac94baf419145299f40559be7e682c0597

    SHA512

    f46a92b687bed21812344bb61548fab767343b2a35b0bbcea5d1b16a51f9ad3f8d80f267035592e179bb36786055471ab08f89e4db5d9e70f512f266288c8520

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\scan-2x.png
    Filesize

    57KB

    MD5

    34e37efb86a6cbe7642c0e734a87d14f

    SHA1

    99c2da5e94a6896ac4ca90a53024beaa0b6c3e08

    SHA256

    a804228ca24ee60d081eb2edadc3f9976fc2897aabd0dd588eee3ca7fff91686

    SHA512

    6e89771c6fdf7b4e5fb76dff5427d0a1c856caf4f3b034845fbe64579b4d6a1e9074529aec75d3f78fcc3d3af5226a34c2d92fb3c4324d4f8555226a9c690c87

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\on-boarding\images\themeless\sv_get.svg
    Filesize

    7KB

    MD5

    a5fb966e9da123cca08bb3bdd1d75466

    SHA1

    822b18aae59796c6e93509e76033cf8dc7e63262

    SHA256

    728c441883de12f7e2095c43ee0c8ec523e27c4c64194db73ea9f8c7b2affb3c

    SHA512

    14bdbcb351404e2c3738cb9a59997c05f0d92b954b0d8f4eefdc26c99b7c904ae8765fca341cfa433369f200a4dc9af3c8d756815ba7bc1720c935739fc9141b

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\reviews\js\nls\de-de\ui-strings.js
    Filesize

    18KB

    MD5

    cf29fcfad9d8ad38bf6e1bf4870563ea

    SHA1

    24466256136a254d2c1cebbd17e2de6a12a2103e

    SHA256

    3e7b165a35ddf796f33f1c0bc13fd2f4ebdd0455be8ea25b9e0ff5ea3fb166fe

    SHA512

    2176e84f594584f1266b604aedba99050f2b959768a4345c2ccd371866bd5c3a4b0a0dc7393dc5adde88cce20c799d7a2045c08a7452675e169127b6b1dda17c

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\sample-files\css\main.css
    Filesize

    3KB

    MD5

    5ebafb1aa005c7c314b86bf06759bce1

    SHA1

    16d077e14a7e309bf13277cd2e65a0ad98729d8b

    SHA256

    f1fa9a673cebb07e15271571e087c364d3bf45f74afa2bdec5b15ad3af7a6dac

    SHA512

    143e49f21e4cb48267c9185b6eb1a0c44c56015136b545dff66f84d315eef6efdab02e3c491927d08fdf87ee52b71ab563e7c31e3655c7086827036509625b7b

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\scan-files\images\themeless\Playstore\pt-br_get.svg
    Filesize

    8KB

    MD5

    1df5ae06e7453b757e67408d1eca0dcf

    SHA1

    a6988a7c3efba683ae951f2c1456d98cb601b093

    SHA256

    778e37cdf6e250c81a254fb8262ce37c9c5eb27b3312f0ae67504f1dafe29289

    SHA512

    8ef47bce8599c37dd417828fc966c656414f928629c419c4b5b99720cd7cfd45d554f9e4f5261f0a3c926ac76300a0f8f1c7fc2fc060cd6cade50acb15450ddd

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\scan-files\js\nls\sk-sk\ui-strings.js
    Filesize

    3KB

    MD5

    5b626d958dfcb02bb0f1261faad62313

    SHA1

    ff63bd5302807932dde08df25d33ac4f134ab983

    SHA256

    9ef38a80172f1f4f0d9c993796a48f05c97e84a609b488d3edd6a34995dcc843

    SHA512

    a2f5b67dc09521ff20611400c4526dde66a89ccf80af3a4e4a0d5c5f95c67284d818aeda892bc5f7c90f7043c9951e63d5b0601711b82897654907bc1c476e65

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\search-summary\js\nls\zh-cn\ui-strings.js
    Filesize

    2KB

    MD5

    0f016ef2fede88f134cc8cf7eb8c6318

    SHA1

    4e3969f5f4639beb883d0e7682b5d45805a79659

    SHA256

    cc697bc141e6721b01c1009eb3ccdfe20e3ee631c2b663ab984692de53a332d3

    SHA512

    9e0b20855c3a35b9aa47a540bb82a87a1ca6bc1259a22555f02976131c4c45a8dd6945d6bea2e985f55af12ad387cff9cb1d499c030dc1ee48661c0d245c0c2a

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\signatures\images\dd_arrow_small2x.png
    Filesize

    2KB

    MD5

    8ca6406ec801bd4883888e37ce4ca2ce

    SHA1

    7e494a4eba53178175bcee5bb2c7a8f505fa1c82

    SHA256

    0ded48b182702de8b07b16adab529534a5ccae41091c84fe99666ba2f9af0a92

    SHA512

    858ef6b02708f8f8759cf3eb9edc386e7dada66b8db793716eb6503d7f01ecced94960500e723f14ee69dcc6242b572ec6de0f9da52833897f38245d1f2f2bff

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\unified-share\images\s_radio_unselected_18.svg
    Filesize

    2KB

    MD5

    dce3fe45b426ce876106830cefe4b7fd

    SHA1

    d2b5eec210b76d97ea041996dfc818860fa97722

    SHA256

    9986496715af00072d0f559e61d46f42b5e7359499b4e43652cfcb7b4e11af54

    SHA512

    32ea1bf011f4554bf5cd929f63ba7b233934c6347b4e00f8be6a8c3bdb9bfc84b592f686e4ec76044d7c0b0671d2ee018b2ecbe4b431a9b1ec748ba0a263b5ac

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Resource\TypeSupport\Unicode\Mappings\win\CP1254.TXT
    Filesize

    11KB

    MD5

    c4f85766e32d4b68cb5e0ac23a9c0c61

    SHA1

    600455213c13b5f706c421132c6ba352a5c10fb4

    SHA256

    97c9e39b5d79d33c7a098a04fd24ebb8118a30951c89f955b49666c6f04ed952

    SHA512

    18c44db216a35313d215b5131ecc5d28f78ab8a27d07b9d1a8bd8e5d0249ce771553b256ae916955eaf36f05444b225854ef412b23da7df86e711199cf84723d

    Download Submit

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Resource\TypeSupport\Unicode\Mappings\win\CP1257.TXT
    Filesize

    11KB

    MD5

    be7db213605f5ac18fbd79527d0ff50f

    SHA1

    cc39f40eba5acd79d35712689bad3e56a5b6c335

    SHA256

    fdf81d98396cec397959eaf60977225c60b573e71a1ef29e123ca539b75f65b0

    SHA512

    01cfd63d80c44f256e11a620a0196330c209dca345e9e10a2848c6efb936c7d07c18e92ee6bbcbedd2ae18c11838be506c7a89ec215aefd3488bd01948728f22

    Download Submit

  • C:\Program Files\Microsoft Office\root\vfs\Fonts\private\MTEXTRA.TTF
    Filesize

    10KB

    MD5

    daacebc135a78cf50d68e863a47f797b

    SHA1

    055b70e8172cc2deff2e42f46ed679a9dd3bb6f3

    SHA256

    cf8ef479e734af8e63b80da64a89dd0e2e216239fe73cdcabd69b774145a7680

    SHA512

    28a08dde4b7267e7055935d44f4c59000b71dcbf12374104be17da064ee53fb90b5b914ecd552714dc3f194ea999f8dc15dcf5e6b76e41119fab39f3379aeb42

    Download Submit

  • C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\msmgdsrv.dll
    Filesize

    8.9MB

    MD5

    f0b93cfb997438b4814c0800a6c415d9

    SHA1

    4aa49f022a0348a25e33629feda9fd99f2fc07bb

    SHA256

    c0d180717ac56a0bf46beeaeae31f841d2ac236f9f3e822e221632b9c77aa3c7

    SHA512

    e65367e44bd5018a3e24acf0dc04bdcb7319c54977f0d4cd221ba66fd51a4785946b45ecf7bf4cbdba9c3643b472b51d1f28290b38c9f0798442eaa1170acb9f

    Download Submit

  • C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-timezone-l1-1-0.dll
    Filesize

    20KB

    MD5

    98cb3922a7160b65cc31ac00625b1fab

    SHA1

    2029307e60e1ef653b7fef4c859e3f48e13da4d2

    SHA256

    9bdf824ddc5058a8268fb889e9df31c0cac457cb8e93c6a99d5a219d29d0e8cf

    SHA512

    52cb35cb94ec4c3ac74204f38cd47c8eb3a7d4e530fe4d516ecbddd790a677644f1480ab8cce6f1b7a5b7fa0ec594bd757ac749db8b308ea5be456444776503a

    Download Submit

  • C:\Program Files\Microsoft Office\root\vreg\proofing.msi.16.en-us.vreg.dat
    Filesize

    17KB

    MD5

    67f720d9d42d1929678255825d0ae742

    SHA1

    073f195c61a67ae3284b335d1bfbdc84485243c0

    SHA256

    82b3384354edd42120a94d8f2e6537547d5929c32e3453a3e58fc9a8bb0e356c

    SHA512

    d87adfe83c6e4bc8a0e285125e399301c026f98dba1c91f6a97b287f024961e7ddb7e9bb8034fe99f9c2593f7fe8335d3f1105f008e8458449a896512865d897

    Download Submit

  • C:\Program Files\UnprotectRedo.wmv
    Filesize

    2.1MB

    MD5

    762495e980e9f64c1ce52a800e673e0d

    SHA1

    021380f283f524f81fa02673b2c98d4c06ff0289

    SHA256

    b1a1d2c4b04f9aaa3f80f695a48af69dcf232dd3dc0b004126916605f461ba68

    SHA512

    492553521b5a14c1f1d9d0c71acd55ff77bed6c15626954ee7e7ec3aa627307c0d0db700ff98ae52aede6637bb06ee02a3def565f8fd1f115b7c755495e71330

    Download Submit

  • C:\Program Files\VideoLAN\VLC\lua\http\dialogs\offset_window.html
    Filesize

    3KB

    MD5

    8ac1b9fb71d9f755492e5ddb2ecd8cf1

    SHA1

    4f912839c34d8280ec33908adab91d47220622f3

    SHA256

    12fe01eeb5545ca17683e928d7b2dced17e1d259ec7986ca46eacfabeef1a75e

    SHA512

    91ac6269bcd26e8078eaa5f3cbfd49f6f549a3f92c44e7c15652150642c98549f36b1a70be9fb53b19e9d360d574c2004573915e4027d81d154834158a26eba8

    Download Submit

  • C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html
    Filesize

    3KB

    MD5

    f8ac8495abf756814838e5e1f04ecc9f

    SHA1

    a8dd691c8dbddca803ba95a9a50592c6bb3c63dd

    SHA256

    047c0d611cc2b385772411c5ee613fe6ee5a799c095cb00b5c32720abf2975ce

    SHA512

    0afd7492b6099404de94eb882bef98c6e15c93dd6e738fec30a667a441e26ff7213d47e69f6237209f30d6361991317658dfb2558041363c7ac06f6049a2df1d

    Download Submit

  • C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml
    Filesize

    3KB

    MD5

    29d7a305489614de61851901add60e1f

    SHA1

    cd58e7e1a3e48f1eaba7cebe5f687ce3f26ee97b

    SHA256

    a361908c45a80aecd4b6d55b7e07e7d5a22c9768cf9f719a86e05d1cc1fc8f97

    SHA512

    58eda9e718d5f413c6777154c8664ff6779ff0553d5a44988cb07522a7432db1be505c14a222cf9b0ecae48b6d9a7370905a76973fb49cfb5f3ac54ef13ffe2c

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libgain_plugin.dll
    Filesize

    41KB

    MD5

    cf9843d462a39e966fbb967660eca914

    SHA1

    07a4be01f074d391e3684ee3a0c59c75a8e4b706

    SHA256

    f5f7843856cf8ffe24e5c7975a5b5b9fad84135fb327d6656160fd1681baa0b3

    SHA512

    c7180b549ec79c5cec5817a994c57a2c8b6d05c369add9ebe6460270d0a76ab00b35680e98318d025afd5e1662e75deaf7f176b1951c3ab5d2f3f99ae1288918

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll
    Filesize

    44KB

    MD5

    32e5393f74eb7269c466d25ba062bc54

    SHA1

    b3a3dc08e0fe41491414fd2c75e8737c0a5f3795

    SHA256

    14dc93ff00ed5f24c3c471590482f79acbd46209eeb15f44c838aa86d8f65087

    SHA512

    00eccac8d7977596889fcf547a7f9d181bd5d370b307342cb8c2d1c56492f261ad3d81f7e6365590beede75ffa8f4d5f1f3dff4f68bb2ff78b6472de17b06297

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll
    Filesize

    40KB

    MD5

    787071570736cd39a8ba4f9c1b4ae004

    SHA1

    c5bf135a531b7c9d5cd364d487b9b362399ab381

    SHA256

    dc06fe3d658e5b0e0fedead63c4b31382284bd058562372828101273d83a2fd8

    SHA512

    6da93376220f92e7059f6d62cb932eb8752a3c28768c096dc9c7bda92da76c456150e3cf2cb6bc65ce7b69d3c4c2f58add570d70f8a77957041462cf90b7f7d1

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\demux\libdirectory_demux_plugin.dll
    Filesize

    41KB

    MD5

    d3f0faa5d32bd9e611a2430a268d7526

    SHA1

    7b8aa158add04ce0e09f800620edc271b283969d

    SHA256

    6b7e1ad50331b770f4aa5a95c82f5334ee40895e6bf13b7c2fa97f6b760185b0

    SHA512

    aa64021548453ade96bafe99df98fe19304bfd2cebfcc975f847cba4b41b94468b91ba6587a09ed89e81b95ac9b10be86fb5552fffd1d22df447670067c5d3ee

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll
    Filesize

    48KB

    MD5

    0a2f8c9295f9cee64f551f0c1f250573

    SHA1

    4d42f7529ce5ac5aff0af9036be7d440e261e3ec

    SHA256

    bab0ef11c670984934cce454e055fdfd6483404fc46f0507a9cd82bbfd374ad7

    SHA512

    559516a1b49fa12d132a8b6410011df496aceb776bf90a14da598beaecadd0bd11cdf35d2d06579a6af471353da48267fbc67fcfcefe2d1614efe4e6b9e81e98

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
    Filesize

    58KB

    MD5

    b8b16228a25554fc1efa6e11a76a7b64

    SHA1

    ae68dbff1dfe2ea8b3060b7814a35bdb5026e3af

    SHA256

    44a758e522844d38836aa17289f60d386f1898c05b793888049b9ff48402e598

    SHA512

    ed9899800ecaa1d0ea45336e50e76f45327d6fe1ac7581d59b9a203cb0be98a92653f37bdb86e264297e8eaf9857fbc61e778bf37edc47cf1fec6f87d89ddebe

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_description_plugin.dll
    Filesize

    41KB

    MD5

    36f54e0d1fa577b85e835307f9777446

    SHA1

    ad1ff7a89a203be1f8e83720122371bba2f7df2e

    SHA256

    07b7a3b823800a9cf84de088d8c33ce53a9ee6b4ac0b070788b7fc10a88e15c6

    SHA512

    e2fb4eba04f7c36853ea4788f8e01d0a8798583819d817985ff17fee45b771f11f4c3969a75d483ea9a4b1e88641a44dfb522ba6d793bf96760312d9bd830545

    Download Submit

  • C:\Program Files\VideoLAN\VLC\plugins\video_output\libwinhibit_plugin.dll
    Filesize

    42KB

    MD5

    a52cd1fed4b2b697d287ddbb8f4f7a95

    SHA1

    b6222ec233ff315b39e80671661569411297c1d0

    SHA256

    504a90e4624967d2b10e5e73b41fe5dd310701387fed09b343cfc364415c332d

    SHA512

    f7924a9edabf3e5c7c7136deabc1febbac4182886a9bc1840d0ad78f41bd2b30a520b15da4856a30850f6c49777cb0e5442503920cf17c2e274b4d6c86c11cbe

    Download Submit

  • C:\Users\Admin\AppData\Local\2025-04-07_f4df354085cc9d71c4011841ff7ab228_globeimposter.exe
    Filesize

    53KB

    MD5

    f4df354085cc9d71c4011841ff7ab228

    SHA1

    28210aeae1405a32e70849455f6f9fcf2a984c39

    SHA256

    b931e00c356c21534936596fd01ab4632b7e4042c95aca43abdc2b85568bd687

    SHA512

    7ef83d5d2b47219acbd4aa133337b2ee636a599ff406d95181be3c48ccfc8f8ef41d2cc5dc431ead09547260a580517809d35693f4e2a69759d7761fd442a957

    Download Submit

  • C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\hvtnam9x.default-release\cache2\entries\6D89348819C8881868053197CA0754F36784BF5F
    Filesize

    15KB

    MD5

    4ab427ef429dffcc1b6523219cc96705

    SHA1

    3c2922b16d9cba35bf01b0eed24ee5389fc1e140

    SHA256

    67f339594dd1039eefcd1c5f58fcc77aff30febcfdd2c5f555302e2b5f1eb97a

    SHA512

    091133394e9cd270cc23b14062f501cf4c4a84abd5ea27750324ec27f98968a58b533ea4a0b7453a759e7c8eb63f06aa082293c9dc8ec9f3dd0c4127e50c8b29

    Download Submit

  • C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\hvtnam9x.default-release\safebrowsing\base-fingerprinting-track-digest256.sbstore
    Filesize

    2KB

    MD5

    4a050b171c377cc4c116559b18aec61d

    SHA1

    e69de92b74dbfe2d7dc30f9108cd6bebffc4cf15

    SHA256

    b05cabb25aa8dbba371cd79abbcae5756e902aee09f0204ca32d43fe708833b8

    SHA512

    d9ac1aa6a54f589adfc3234f2be00f991a0b7beba2d6a1ba045773c72e32a9951ec9c3eb7f4b38f1e37cfc0dbd47904d5c2c1772821f6fc390222f8a0bae0b79

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\793ac3ca-b198-413d-a387-61492289796b.b7a31bd2-f575-43f3-a856-53ac7899083a.down_meta
    Filesize

    3KB

    MD5

    b6ba3e17de9e777920dae638ab095c62

    SHA1

    7d6216caeb3dc01cf01b5f485c63639df719c30d

    SHA256

    4ce1657b52ee813896c227063d811df72f2c6fc27d3f9a4d14edc74f3df90c09

    SHA512

    0e3b0f9bb4425237298f9aa090b3555deffea1a410cd470ef308169fd6ebd65d340ef0ee4504ccba12ce06a965c7ed05f9734e29fbb9f5e094aa8d5d5279014e

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\Assets\6694292562b8278f722fccadbe11f33bd66a4e3eb075a2783d9a5c5736738099
    Filesize

    8KB

    MD5

    80163470eea3406f68e479f465b7ac53

    SHA1

    ebc15328b8bf6c0b2a426b132bd8e6f84f2380c2

    SHA256

    95d65f3231b8244a44233c0a1db8373da475a9ec88eb39d7a9e966d0bb7b25d8

    SHA512

    3e1b2e24ce1ede8b3d3be25f322eee491720a3904adbc4cc8b6e431bb76278e202301dccf5138ed4f2e50ba3b5d48c9e1e0bf786c5b4cea25d412c941a778bc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\AppCache\0NN87QFE\3\F-9phXC_0uAqQQFuRafyV39z6Dk.br[1].js
    Filesize

    4KB

    MD5

    4a45a1fb24ab77e0487f706a9e683cd0

    SHA1

    2db7b4e2721bed64814fe00313001e6d57b7befe

    SHA256

    3d024e7ebd9740deb640f3410a1caafabfd14ff0084a3406334bc43800f3c040

    SHA512

    06adadc79648a46e3367691eb81703af1cba0008d9b16ffd3684cc69475c48b779656f9ba472a071bbfd64f9578a7db2cebf34522ce37e261ac97b1ee18608cf

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\AppCache\0NN87QFE\3\GW3DpE2qmyibnbFrEIzpiD0iGLk.br[1].js
    Filesize

    2KB

    MD5

    f74649f47b879436bf30d28eec741895

    SHA1

    a6786df552666845a8fe87813bc3dff90439f318

    SHA256

    790e88195947bca22fe73ccdff1f49745a4d01afb033e425d44dda03f7da42f5

    SHA512

    4ad80fb8823e71875eba6543752dc8377d19ea6fa6edb8ab14eee9bceca22d7c705d030fb3e14262a7a678fc949396b05761f1a4023b2b7c616b873ca4732f6a

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AC\AppCache\0NN87QFE\3\QNBBNqWD9F_Blep-UqQSqnMp-FI[1].css
    Filesize

    1KB

    MD5

    11717db55c2e74127b57ac745b93cc98

    SHA1

    9ad28cebf2c17f1b5629c7dd456c7de94db2878e

    SHA256

    c285ba18e923724822ade92a03d80e75bcd50a2a30263f764ae5ccfda1ab7d07

    SHA512

    e6ad23fc30c7b5664af7e162fd9f5272dc1884644336c64e9a0ee52848e982f78ab412de1d132e35b659c1e79b890457c4c8ad8b990e1ee80fe5cfa939f89ce9

    Download Submit

  • C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_quickassist_exe
    Filesize

    38KB

    MD5

    ee6877acc4dc6c410a5b87e3dc19eb1a

    SHA1

    21df8b53fbb9770838d0a9c4e9f1acddf22429b6

    SHA256

    c8f0d1ac0452aec6822e1bb540c99e2e7e764ab96a66a52104c3101cd1bfe379

    SHA512

    2fa637102a5883c9f24e4a978ed16b1413966c053c68e91e7db80e6eb93fc35cdccb7c52601188c00fca7b22a24444688c3d98860bd4928495bdc3ff1bab8263

    Download Submit

  • C:\Users\Admin\Downloads\UpdateShow.mpv2
    Filesize

    634KB

    MD5

    9574db5873cfb94aad586304933250b7

    SHA1

    2f1d495ae8ee7bd511bfbef06387b2436700727f

    SHA256

    95da6f3137419d39a6758ff3c226f92bf874d5a041c6c0faafbe74c3c3868df5

    SHA512

    9dd071b9a8c13e792f3792ab4caa97260cbe58a0e1b27c43ae920f15e270cd185b6d6832b88c893e4454575555ab33090e44a835f6c7d7aa446e2f3758c1b6fc

    Download Submit

  • C:\Users\Admin\Searches\Everywhere.search-ms
    Filesize

    1KB

    MD5

    ce889930e5ff8df8680a635acd28fe3e

    SHA1

    19f00f4359c3e8ea666daf77cae4c8b7d8ac2f8a

    SHA256

    4fe148bfa7dc0c6955d961371cd3b62914ca5b261e7b1e267df5b81ae1c3c4f1

    SHA512

    242d30a70b21138ff1104721993b711d1d5c17c30fddbd5b2f2f1759c7bac55bead85e1519b56b5feaba929449032320aee6c528eea456c931367ece9b66348d

    Download Submit

  • C:\Users\Admin\Searches\Indexed Locations.search-ms
    Filesize

    1KB

    MD5

    c31cf49483bd25ee4a403cf803ef81d2

    SHA1

    c29fd09f94784ca774b722b61b9c6d50b087e35a

    SHA256

    304a4d7dd8481db6f10d1348b937b21154506382403456263654fd7818b0ea6e

    SHA512

    f8a0a72cbcc8b35c18e41844609c7a1fa2dc7bc20ad8484975089509af7dcd2dd1f449a01e0d4a753a2e5d45a7dc90d336f073de1e59e6925c9230a4f409b405

    Download Submit

  • C:\Users\All Users\Package Cache\{61087a79-ac85-455c-934d-1fa22cc64f36}\state.rsm
    Filesize

    2KB

    MD5

    555c1431fba98edff4226ca3275fa5d0

    SHA1

    15f74db088be37291e154b2d6846b7ea00acd25e

    SHA256

    1530eb0ac87656dee00e2653b852cf2733cb10a8ac724e8333cf621f13fed1af

    SHA512

    c98f34c8ba9f5f59bbaa1dd659996740dec3929875ff9e4f538c906edd9bff185b52f8adf88f62dfd2d6a8b6c8b73abf8aa5a7206960465fe78446876fe4ecef

    Download Submit

  • C:\Users\Public\F7EB31BCA12557820266CCFDC3C41415F2408E0C6595E5E0B1F720766917EA13
    Filesize

    1KB

    MD5

    3e159041c2539260339eebd9c3a69cf2

    SHA1

    c45cf6d39d771d6c28eaf16648cd23e470a57daf

    SHA256

    cba5c3ae38cb854ae2a3cafb075d3ce48ec9001c74c9f71631044d2cd6510ace

    SHA512

    18eca5527519a6a0ef70859f4c27a91d4ef9b40f121e16da0ec804ced944e953c6ce464309e213a4fba06150bdae52d14b381fbf732b0a8d9349fe8fa98b6b43

    Download Submit

  • C:\Users\Public\Pictures\how_to_back_files.html
    Filesize

    4KB

    MD5

    5fd382e918651e97a953098100225849

    SHA1

    64f2f6ed92d2f835f110a719b81b29d158fd9244

    SHA256

    7971203c56fee7016c974d4186099723ea34e7ff3bc515ad8ba999d149db0bc2

    SHA512

    8175c8b47cabcf261be25e04adfeadcd0ac8c6db5125684cc125c60fe1b70e18355d1ed06da19857a830401541f0ecb19312ff949423aaf92f5311c9abbe9cb4

    Download Submit

  • memory/2436-3160-0x0000000000400000-0x000000000040E200-memory.dmp

    Filesize

    56KB

    Download

  • memory/2436-0-0x0000000000400000-0x000000000040E200-memory.dmp

    Filesize

    56KB

    Download

  • memory/4352-6-0x0000000000400000-0x000000000040E200-memory.dmp

    Filesize

    56KB

    Download

  • memory/4352-3756-0x0000000000400000-0x000000000040E200-memory.dmp

    Filesize

    56KB

    Download