mtx777.exe
Windows Exe (x86-32)
Created at 2020-01-03T17:16:00
Remarks
(0x200001b): The maximum number of file reputation requests per analysis (150) was exceeded.
| Filters: |
There are no files for this filter
There are no files in this analysis
| Filename | Category | Type | Severity | Actions |
|---|
| C:\\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT | Dropped File | Text |
Malicious
|
|
| Also Known As |
C:\\Boot\de-DE\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File)
C:\\Boot\pl-PL\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\zh-CN\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\da-DK\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\es-ES\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\Fonts\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\fr-FR\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\ko-KR\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\pt-PT\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\el-GR\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\ru-RU\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\pt-PT\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\ja-JP\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\de-DE\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\ja-JP\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\da-DK\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\cs-CZ\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\en-US\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\tr-TR\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\it-IT\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\fr-FR\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\it-IT\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\pt-BR\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) c:\users\@_files_were_encrypted_@.txt (Dropped File) C:\\Boot\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\$Recycle.Bin\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\$Recycle.Bin\S-1-5-21-3388679973-3930757225-3770151564-1000\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\es-ES\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\hu-HU\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\zh-CN\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\fr-FR\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\pt-PT\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\da-DK\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\$Recycle.Bin\S-1-5-21-3388679973-3930757225-3770151564-1000\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\zh-HK\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\sv-SE\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.en\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.en\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\hu-HU\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\cs-CZ\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\zh-TW\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\zh-TW\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\ru-RU\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Config.Msi\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\$Recycle.Bin\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\nl-NL\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\nb-NO\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\pt-BR\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\zh-TW\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\nl-NL\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\$Recycle.Bin\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\fi-FI\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\nl-NL\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\ja-JP\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\pl-PL\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\hu-HU\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\tr-TR\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\en-US\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\$Recycle.Bin\S-1-5-21-3388679973-3930757225-3770151564-1000\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\Fonts\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Config.Msi\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\el-GR\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\cs-CZ\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\it-IT\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) c:\users\@_how_to_pay_the_ransom_@.txt (Dropped File) C:\\Boot\tr-TR\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\de-DE\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\ko-KR\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\pt-BR\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\zh-CN\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) c:\users\@_how_to_decrypt_files_@.txt (Dropped File) C:\\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\ko-KR\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\zh-HK\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\sv-SE\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\pl-PL\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\el-GR\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.en\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\fi-FI\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\en-US\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\fi-FI\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Config.Msi\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\nb-NO\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\Boot\sv-SE\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\nb-NO\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\ru-RU\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\zh-HK\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\MSOCache\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) C:\\MSOCache\All Users\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\Boot\es-ES\@_HOW_TO_PAY_THE_RANSOM_@.TXT (Dropped File) C:\\MSOCache\@_FILES_WERE_ENCRYPTED_@.TXT (Dropped File) C:\\Boot\Fonts\@_HOW_TO_DECRYPT_FILES_@.TXT (Dropped File) |
| Mime Type | text/plain |
| File Size | 1.42 KB |
| MD5 |
ddcee215268169b6ef5d8a45e564bfba
|
| SHA1 |
24fcf496af15bb97dba238a4b571f684dcc7c9db
|
| SHA256 |
360860133ed5bc432585cde064e82ecf1414579941dc9098e03f09d4af6376b3
|
| SSDeep |
24:bCaM0GT6fNf12fdICMYFwwGsCF0Fle7sA5kCiY4toJYl8DZqGy:bCT0GmfNtOri7kCizMSAqGy
|
| C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\mtx777.exe | Sample File | Binary |
Unknown
|
|
| Mime Type | application/vnd.microsoft.portable-executable |
| File Size | 663.00 KB |
| MD5 |
33b1f895b3905d4591207565ebfefef4
|
| SHA1 |
95dd25f7e36c18e90f5920d151fb808368fe3e12
|
| SHA256 |
f6d53e15abbb9743eabf99eb208843494ba8092d426e253ff96bf00b6271c068
|
| SSDeep |
12288:JwtYpqXFBJyTxqXE3CqW/cmccRBJA1W58y0OSnAnL3DbFR0b2+mjxDybwd0YnAjn:JtpmyTxq0SqWk1+Bia/0OSuoalObWhAj
|
| ImpHash |
d1513044f52f99052d9e642862e4a636
|
PE Information
| Image Base | 0x400000 |
| Entry Point | 0x4224f3 |
| Size Of Code | 0x38c00 |
| Size Of Initialized Data | 0x6cc00 |
| File Type | FileType.executable |
| Subsystem | Subsystem.windows_gui |
| Machine Type | MachineType.i386 |
| Compile Timestamp | 2020-01-03 10:36:03+00:00 |
Icons (1)
Memory Dumps (6)
| Name | Process ID | Start VA | End VA | Dump Reason | PE Rebuild | Bitness | Entry Points | AV | YARA | Actions |
|---|---|---|---|---|---|---|---|---|---|---|
| mtx777.exe | 1 | 0x000D0000 | 0x0017BFFF | Relevant Image | - | 32-bit | - |
|
|
|
| buffer | 1 | 0x000A0000 | 0x000B4FFF | First Execution | - | 32-bit | 0x000A0000 |
|
|
|
| buffer | 1 | 0x000A0000 | 0x000B4FFF | Content Changed | - | 32-bit | 0x000A2B0E |
|
|
|
| mtx777.exe | 1 | 0x000D0000 | 0x0017BFFF | Content Changed | - | 32-bit | - |
|
|
|
| mtx777.exe | 1 | 0x000D0000 | 0x0017BFFF | Content Changed | - | 32-bit | - |
|
|
|
| mtx777.exe | 1 | 0x000D0000 | 0x0017BFFF | Final Dump | - | 32-bit | - |
|
|
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\PowerPointMUI.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\PowerPointMUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
73218be67ed67af351770486b4dbb543
|
| SHA1 |
141c89a4bc022d0c9bbc4cab5fbb542e29459f9a
|
| SHA256 |
c14adb6a45ac44d1dfbfb7046ac6bae20fe34ac5483ac6943b9552b99dc735a0
|
| SSDeep |
24:AzPxpAYmZ7aThDeYlqLIBcuKHfEK7jPbx6ArmhDNlHtf/3CqJr0x069R9b9P:AzJ+YmpiqcBcuK/EK7n0ArmhRlNHSY4v
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\PublisherMUI.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\PublisherMUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
2051baf29a8d2229334ad9e65ce1aa3a
|
| SHA1 |
6307f56da72de328ff51e3c9aec67d18ae64cfaf
|
| SHA256 |
ce7832abbcfbd3fb92f3b500803f92419ecf3b5870fc22f5bfdb555acebaafdf
|
| SSDeep |
24:AzpC3HK5bKnXjsCUVOIfVs8P8WqaRYQ4IyNlSKilw/yt5EL69R9b9P:AzpOK5bUXjsDVxfi802RYQ1Zw/8sKF
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Publisher.en-us\SETUP.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0019-0409-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.57 KB |
| MD5 |
94b2706695fe9456af60c41d4f0603bd
|
| SHA1 |
891e57bf3e19a20f2b24229ed1a3175bd927349a
|
| SHA256 |
78b0b28944f62120610fdd608ba54cca059f8ac08dc136bc5db00ef033948fca
|
| SSDeep |
24:AzDcV3xGBzvB/Uwt7NM/TII3Aujaz7NM6mJDIhKGPjxZpqigKx6b+dTIFdkZ9FQZ:AzDzTcydvuOXeuhKs3hgU4+QO9m1b
|
| C:\\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\WordMUI.xml.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\WordMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.76 KB |
| MD5 |
15d73adb3c1913ff64796ab8559e588c
|
| SHA1 |
328c8da4ff49dc1707ebba3e0ec9f69b52f58c53
|
| SHA256 |
e11ec1f55209370cb1cebfbd1e0f65772e89e99b942c52358cc1eb0b80729d51
|
| SSDeep |
48:AzfoCqr/yxKdPDN2YR5K8Q7TtqNlqip+72JioBTtkfplwOz7D:sfNgqxKdRzNIslqip+iJiPZXD
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.fr\Proof.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.fr\Proof.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
9e36e5475b69d1dcaf23ea262a929523
|
| SHA1 |
45b7bf999ae632155b36130f4ca001a4fc327f11
|
| SHA256 |
9afff77c4d2f4cf2b2adbd58f07a0469d12eb820b019a328fd81a86e4a7955d0
|
| SSDeep |
24:AzfOgnND6SpdjUYlqLIM5MpdIcuKHfEK0OZGZpbxAbarK4iyX0EyXDm/aX5/tLG+:Az28NHpLqcMCpScuK/EK0hZVxE+Ni80b
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\Proofing.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proofing.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 811 bytes |
| MD5 |
57d596bc70f9f36e17f0252509252c98
|
| SHA1 |
8225b25b9a1269e9c4395280c8bf418e5f6925e4
|
| SHA256 |
587d3576267a72a67a8cd7b14c0c59a4ce58adbdef47c256fa071282ca3328e1
|
| SSDeep |
12:AcgUBW3gFuCI711mNiMA0jrLsJAYA0YYNo3fkoaSuSpR/VJ9AZFhpDWan6:AzUkCI5IjsHnluPlaSuYWZjn6
|
| C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proofing.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 5.75 KB |
| MD5 |
7f4ea7689595b0e878639f480ca97080
|
| SHA1 |
c571b48dae1290a6951b8878161494cb0a38b8d2
|
| SHA256 |
1222c84cba45768ccbfcc149345970aafc27991bdcc8e634a01a1bfa4c4f7d99
|
| SSDeep |
96:sVn+N6Bmj0ikYsxikz9uOdGPcMfvETZG8ODVz7N24j4iOZcmjpRPfzHM0xATPT:m+mmNsx0PBfsTZGX7N5kTcupVfrM0xA/
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\Office32MUI.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0043-0409-1000-0000000FF1CE}-C\Office32MUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.35 KB |
| MD5 |
c7d213990569eaadbfb2b8707f7687ff
|
| SHA1 |
d97ef7df37ac92cd29a151627d01215d382d0485
|
| SHA256 |
9ecb4a39c22f398ed5cdc5ea9ac18deae8036821d03298bfcfed56426849cb9d
|
| SSDeep |
24:AzI9Ln+sCJg+aQZUv+5BaY74rWvAcuKHfEKVotJ7bPPqyiOfa6g7bPPz5RuPlaS7:AzWyAQJBPcCYcuK/EKin7TlLi6g7Tb5s
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.en-us\SETUP.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0043-0409-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 2.31 KB |
| MD5 |
5ce7cb1ad42acdc53a51ceae84781205
|
| SHA1 |
fc63eef89334601de9d8d36c73c6652455004761
|
| SHA256 |
e03eb167107a50108f98687f74bbf572785950f48368329118cb763ba43432d4
|
| SSDeep |
48:Az1dbYHGO6CZdYCCpwAZMRLnijv34GdIyCvJR1Jsnqe7+jjiBzahif9:s1kGO6OKpwEMRqI3msi5a8
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Visio.en-us\SETUP.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0054-0409-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 6.09 KB |
| MD5 |
bccb00a2547a97b984c9695a5b51fffe
|
| SHA1 |
371d6e499a7f5a5a0a3d313b9b30486390eccc5c
|
| SHA256 |
92cffa44ba9ac1da404b49d216de78cf75b3ecdedcd16fa748fb8aa553eb2579
|
| SSDeep |
96:sRwZZhBiyhaCdRHvL0TzhRIgk5L981eVai81eT7wM1PuwfDGD81eikIBTpiJP9DF:6wZZTiyhaCXHvEzh8RV/RIauw6DRYpUP
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\SETUP.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-00A1-0409-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.94 KB |
| MD5 |
1ab89932af6fae043ac8e5bdafdcf6e5
|
| SHA1 |
6d5babf4448b0091afddb356ced1d0191ad9a9dc
|
| SHA256 |
9b6d1588ead172411ad02e7037edbbbe823c83fd803978ccaf9403206331735d
|
| SSDeep |
48:AzOPofD1qMBQZg1ZqF7IQllOk01ltHvrYCCJ194vAj8xd+mLr8Ef:sOPoa8CIwOkssJlj8dTPT
|
| C:\\MSOCache\All Users\{90140000-00BA-0409-1000-0000000FF1CE}-C\GrooveMUI.xml.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\GrooveMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 913 bytes |
| MD5 |
b86084c50a377080660218311456a4d2
|
| SHA1 |
19b818ef2fdd411d8fc6e03847985a3b257609d3
|
| SHA256 |
f5ed51ee579fe29e31c411fe76662c0e22e15a52dd6240691c79499f83751bec
|
| SSDeep |
24:AzotvFSiie4gYlqLIBcuKHfEKiFJw9liAvMU:Azo5ulqcBcuK/EK8Jw9liAkU
|
| C:\\MSOCache\All Users\{90140000-00BA-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Groove.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
5073ad288288cacbaf5497ebf3ee73f4
|
| SHA1 |
0fcc3096220cfec5e078feaa1200355753851ac5
|
| SHA256 |
10a252d2f194f7016016e3f4ca45e485b52b6ac14fe8665bccbe4ffb70cfaee8
|
| SSDeep |
24:Azz6b/RfZLt6dzWNTzFV39AKEQ7OeVJA79Cg6UngrFVLLvx78885QHd/VO/88X++:Azz6b/Rx56dzyVqQ7hCIJUnA1tsuKr++
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUI.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\OfficeMUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 5.43 KB |
| MD5 |
76bdbc6faa1de3d0cb1c2ded86a3ad25
|
| SHA1 |
741dce1ef6e0c1c0e9f06dfd74c406289a3b25c0
|
| SHA256 |
f1b19d471bca52e9c45f007f034eba25de605a49ab89ec0810e03a73e6ab3566
|
| SSDeep |
96:sgtSU4lxncVDsY8Y1JgiuisWakE3gQJd5gEWz6gZnh9be2HYwbYtJqkUmtpPCc4x:7tSf3cVlQidEVkzNjcJl6x
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.CGM.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.86 KB |
| MD5 |
9b0a3e5bc14a12b08bee43ab701f4f6c
|
| SHA1 |
c929265c1c423f5f1352313188b5a4d7513ef652
|
| SHA256 |
a107879a2a0e56dc1a071b35c904c46566455fdf846f0c72091294c099ebe732
|
| SSDeep |
48:7BuCHdCd2Z1MVyq6NjLkAT+P2g374fH/fpt:dnIMNjI++d43pt
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.EPS.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 14.71 KB |
| MD5 |
1f8a27f726594c134bc12fff1509a3e8
|
| SHA1 |
1e9952b8123e8b0f9ae43341a36ca9b0d4d5f8c5
|
| SHA256 |
c0101aec3a3c869b6a3058df01bfb5aa116ffb28e7c4bcf977240d8cc3269597
|
| SSDeep |
192:mlrCTsTHwsf5RdvkXKtpmRC9DL/Ayh9nknCS+k8jZGXxTfQvESwji8OIm2eP9Z:mp7HBfyXKtocL/AJcvjZYZSFjVZ
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.04 KB |
| MD5 |
9c59dd83d5f597d78aa21cbbb8e84f69
|
| SHA1 |
7276d371aa174682cdf688abc26baf1db8465e50
|
| SHA256 |
e4420edef03966d84f49fc32b31cbbc6c0e79bd926efe66acda3fbe242768fa7
|
| SSDeep |
24:f/rolxI66gJlgxQaCmc+f6xM65FXFtLj2gjtbju2DqgOgUGen:nsXF6gQxQa4+f8/VRhB37D7xUJ
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.04 KB |
| MD5 |
b632bea60b971c2da24d9acc04658d82
|
| SHA1 |
40e1405b412fcfee229d5eb626759a7caa3090a0
|
| SHA256 |
b3b95f58e54e1028e4df3a2ede79b8c7d84e27a8b2c186d61d93ed8a609bbfe9
|
| SSDeep |
24:lHl8EB6N9QNtCqBWA94EnoKXa+Db3MXWJirrjPhNMbAPJrrQs4asc+Ju:rW+NpB9NNq+nuWJqHPTGAh/QL1u
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML.crypton | Dropped File | Compressed |
Unknown
|
|
| Mime Type | application/zlib |
| File Size | 1.80 KB |
| MD5 |
1ca1f9e0f3e5c46bd2d98604818dc15c
|
| SHA1 |
f566ee3bdec83be4babf95de504856ab8e3d235c
|
| SHA256 |
0835af0f294989b32922da01c3d006d71af8fd186c1f13cf470e0d5d24e4d9be
|
| SSDeep |
48:Y2Wxxo1mf3rPERHSLOjmlhByLMF8oOoRBt7RNjFtE:YhYmf3rPERyijMhEQOozBpbk
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.DAT.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 38.10 KB |
| MD5 |
c6992f72fcfb90853d39b16cb677f50a
|
| SHA1 |
3a20fee55e5b16c59f5619c5cf35a69bdbe474e4
|
| SHA256 |
e98bcf2c0715f72b8c2898042c7afb1055b988a2a17139c9ef9afaef406d0082
|
| SSDeep |
768:e3ez3VTqb7usZ8y16wHedeZREAXQ1VKBjl7/8Y3E480I9WxzPz7b1LS3:e3eBTqtud0eYR/g16lr8Yy0I9Wxf7hO3
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\STOCKS.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.62 KB |
| MD5 |
a04a1bc45857589b2398079f1c514b54
|
| SHA1 |
189841253ee2a418826e205f6fd3512a9f1c85cc
|
| SHA256 |
aa0a8274d7aec8b3bb5571aef4f2ddb9fd8b4b44eac73fc8e6918c1ed5d51dc0
|
| SSDeep |
48:9U12VRUreh0uDY3WOffSgYl5oVUaJ6FJ6xYA9T1bM0Xsw/H6WQk4t:W1MRCnuqSv+Bq6xHT1brH/ant
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\TIME.XML.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 8.36 KB |
| MD5 |
c789f7dabf6e55e6e53ebb612a6cec62
|
| SHA1 |
89388318afd6844937850cba05c3e96e94b3771b
|
| SHA256 |
b32c676fa6064917216ac137b3ba25074e92d7854d95d5aa347b2051b1cc7590
|
| SSDeep |
192:G4YQ/rk5FrkHa3rkMkukMkhxkJkAkTkNknk4skt4YrkRSBWYrkePksbqJ:rH/rkbrk63rkMkukMkPkJkAkTkNknk4E
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 24.64 KB |
| MD5 |
8452b2fdb01b89a4471b222e727388c8
|
| SHA1 |
b77dd4cc8da58671dabdfc1ada2f6ae02027273b
|
| SHA256 |
9cfeb5db3c2c9a410a51ef0fa859c000a871ed5d29a17ecdfe54d433fcb8d5ad
|
| SSDeep |
768:Qd/rvkYW2qXS49GvYDEOiMM20I/lC+ZuEXm+NF/c:Orc9Ji4oKEOCBIJEsr0
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.78 KB |
| MD5 |
d99e61dd8fd91ffa8bd72f9a2328eafa
|
| SHA1 |
50adceecbfdf25a68a944898874d819b0a500171
|
| SHA256 |
8f34fc55d5f7d4d2eaca65a1586fd4e12f6bd00923a0d7ab1deffeff505f4996
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr50rd+ewg78ZcxpQnQs4taR7eKjuMxIRtt:4jBIDchp44IdT8S3QnX1zyRf
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 26.76 KB |
| MD5 |
1e0579b7d724caaa234e48725cc9096a
|
| SHA1 |
41bf55d7e21e932f1db27042dc2a1e734f2f1633
|
| SHA256 |
be4da4702bf136a95b014e8dc2bf54807fd70d84a02313cbfc3cd75d1a2153d3
|
| SSDeep |
384:squbPOVCVkDDuvj57rxs4De2O4GETi6Ggi/tvqZLz5zJa70xuXWpBMs1TLZzPYr+:hUV4DW5Zs4D5l+6GgSELXa4xmOdZzaOL
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.84 KB |
| MD5 |
16abbfa35353a94fa69c9dacfa0813ce
|
| SHA1 |
d2da29765e25d833faefbff00639c2475001cd0d
|
| SHA256 |
bf19ca13841881b28a2a16f05da167172d6de546ed57edfee05c74dfccec5c93
|
| SSDeep |
768:huJYcOagcE6I7b8yy1aq0h11oD9OECQyX0RM/vZQ9JfY:hu7w291aq0h1VEReQ9C
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.00 KB |
| MD5 |
0189bbaf54844a27dda924f80d0e398d
|
| SHA1 |
e35d51f7f49d2ee09dbaeda4fca68f57335ad2f6
|
| SHA256 |
86267a50e5cd6ecb2bbfbff774d80241d65acc60dfea5f059228779919bfd6eb
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr50hpgjL35HCNq3KyR1HgrhX8nhxs:4jBIDchp44Ky5HT3KKKX0hxs
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CAPSULES\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 29.22 KB |
| MD5 |
73a1ade54ad3d60ec849678ac304565b
|
| SHA1 |
2bb1c446478b36828b9b491bff5d895a3756fab6
|
| SHA256 |
cdba2b83ae843c390d67ec1e821c27f52ac770255d90b3c4550b090e77be92ab
|
| SSDeep |
768:yWbzAriYrGCn+1jHdh+3D6wfWohMQbssoO1ZJBDuvQwVT8sR:yW3Arik+1jHdQz6MCQbDoOXJN6QwVwsR
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.33 KB |
| MD5 |
18e00459a9677ce69a730b0758d68997
|
| SHA1 |
97b4658d078921e8a825429bbba3b6f99ddf1fe0
|
| SHA256 |
87f982ae0d87eb4bbb656592a556de1f1315db434e3d11c7eaf67dc8050c2677
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97I+ChAK0dZr+BEhczQn4nG4:lCBVhwjwImuJsh5hp4XIBr5vFK0dZKeK
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CASCADE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 19.89 KB |
| MD5 |
88e2afb43f46363b85052aa362ac681e
|
| SHA1 |
9f66e2da473bd6dbcb598b8f5a98f1712c8dc753
|
| SHA256 |
890da183950c7d8f195d42adc9e31aed05f6515c3eb22eb83c08e5995f9f94ef
|
| SSDeep |
384:qbzNwmDeIlbckQU6Fz3cIKaSFbjidXULMxAJwFqZiqjsWwbw1vUmj5nzaMmyIWTa:qbzf6dldz3cjVGkLjWFqgqjsWr1vUmj+
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.26 KB |
| MD5 |
0e870c6a33838966878c1e7d8ba197c0
|
| SHA1 |
e8afdcfebea6a7963b0f71e2bc84b406ab3b1aac
|
| SHA256 |
57cb3b37b5ec9367445e037252bbbee2fa3a6a15ad05048d88e468fe969983f0
|
| SSDeep |
24:/oA8MW6mBx+tJm+Rmo5yvnCpTTHkV3jfr8uVRiZTU5TLmqidr8jYc3S:AMixUPwo5yfMTjUVB5TLmVPcC
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.26 KB |
| MD5 |
51863f691d1eaa3bb00fee6661554b1d
|
| SHA1 |
1c94b250cae0044f49410f0b7f71ef66705fb12b
|
| SHA256 |
77502b60aad779f99438e609bd438008aceb8f50a9bc787b6ad6fb13bfabc464
|
| SSDeep |
24:/Hm90amBxXvtOAGdMW1LMYCTf7mb6RYXt129Kw6fofYCDryrQZUFo5W3y:+90jx/tOJbif3/9Kw6Afsr7o5W3y
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.86 KB |
| MD5 |
6673b7fc1eebe5ccc10a5292104d7e50
|
| SHA1 |
83c11b3886124a5ebdb62a8c496d4f79b7a2a84b
|
| SHA256 |
ae85dff12c8e3e69f6ab8ada13a03e7f1b97bd0ae8d0ae3e64dc51c8737ecdb4
|
| SSDeep |
96:1HanRaSxFYBpdWha5YefU9LwyQNbMi6hWCUOyFmvZ24eU:1HitxuBp4hCU905CtPI4X
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
ec19eed173e705b8237e3d87c88fa863
|
| SHA1 |
4c09c6c1184f0e153d8423d2080b299aa1693981
|
| SHA256 |
9605b1f584408728719e952295d5100fce64fc37a8ae4a73643400acfdcaec96
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97Ea8hg5BUDEoKrLBZ9Wq/HG:lCBVhwjwImuJsh5hp4XIBr5wn5D/KZZ+
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ECHO\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 24.52 KB |
| MD5 |
a512fc24acaefe184175d7ad4aed9318
|
| SHA1 |
c163122056f0969d176b24e3d83cda45f07726ab
|
| SHA256 |
fe2eb3f4b3aed614695228f95cc9410578a6797d2da5e8d2fe122b8da3963041
|
| SSDeep |
768:9jO1ya3E49l96Yb/VTZYNqyt5ZwMLdzmd:91aU296Yb9ZYnwkg
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 59.30 KB |
| MD5 |
e421de6bdccd0d101df6139cdeba94b3
|
| SHA1 |
64392a0871dbfc1338a719cbc30a8f7dc4649d99
|
| SHA256 |
cc2844c386f076fb9d2007fbdbb8c21181a2e4142f65d8fc7e8a0da9bfa94b16
|
| SSDeep |
1536:7rRDw6vkqMl5gUhYFqoxoT+SpZCB+zvqUIoY+GAEruhX:vJFkDl544Q8H7JFfGTrOX
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 18.38 KB |
| MD5 |
d0620b9a73a69b30462937a11e16454d
|
| SHA1 |
043becdf00615ef50a73778f20865def27054a25
|
| SHA256 |
dc013d1231d9cbe5394cca81a1acf99b7d3d5cd05f91427331524ecb72598667
|
| SSDeep |
384:9Lrv6f/7i++HXlCAC4XSyDjtMg3ah4oF82BSWM8yGqEi06A/j2:9Xm/2++HXlCA9vDjr+4wjHomf2
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.42 KB |
| MD5 |
82aa4a2b614c3891a434d9026234a8c3
|
| SHA1 |
2215d764d738338d51b0d7f2dd81f44990583b37
|
| SHA256 |
c761c321070ee211470bef1ac6585f54f68c98d78a762b7548e46770c79673f0
|
| SSDeep |
48:mOSRn95TBoybqfrFf0DiQtRvklkZlj45+++LxiAKRAyHjtk9R0SbZh:OhTXQ0DVklk705p8QeMa9R0SbZh
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.35 KB |
| MD5 |
340e50081061aa5354eeb40af76e808a
|
| SHA1 |
435ef727e18efea86baa910544998bb96699bc1c
|
| SHA256 |
7da923d3c96006cf020bf864db93290d69ff3b2ddd58d85ff8922fa10e055dcf
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97+Pwyu2DJXtCkjafA+tQXn8:lCBVhwjwImuJsh5hp4XIBr5hY1ckryQs
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\LEVEL\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 46.99 KB |
| MD5 |
5f149cf06077c9ee5d12dde7a5fc84d9
|
| SHA1 |
86bb4b16dfbb96818159f8f1f339854ed02e0a4c
|
| SHA256 |
070c357981908e959b64ecbc6370f8536684e1b7ded366f47aa8af4d82d6eac2
|
| SSDeep |
768:xKwzL4ZQECH4x4EU647QSS8iNAPV1Cuu2L7w4G6n1Qc2mPsCk2iSJerXrJ5xE8YV:pIuECY6BASS8LPHFMLa+rSIrXV5xLY7h
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.33 KB |
| MD5 |
ff6d20cdd15fdde9d1d679e04714f9f7
|
| SHA1 |
f3ef98b8295dbbda197ea4ce463eb2a8c3050691
|
| SHA256 |
a7d9071e19314b156f7493a6e8b999667d9f5f092fb614efc22f32676e30819a
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97nhE6H0xpOJlYf5YH:lCBVhwjwImuJsh5hp4XIBr5tEUKqmY
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\NETWORK\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 11.30 KB |
| MD5 |
847fce4910d22d7436ad49fd4d8225c2
|
| SHA1 |
e7543182f81df05c5c3c86595d4345bfc50b87cf
|
| SHA256 |
39128741e56f0fdec1ec3953a48cee91d1b5e86c7604cf979cddc74e24d1fb06
|
| SSDeep |
192:YASk16iq8UqhujfuHjf7xH/tN9ueQHS3ofOTAvSATkfBJLwBo:YU6V8Uqh4GD59ue+SYfAwSA+Ao
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.56 KB |
| MD5 |
dda621ec87cbe5ebb0540f361e7f77ff
|
| SHA1 |
f03164a13da160e6a1f04dda360852096ba7808a
|
| SHA256 |
d9ca9f69dfeaf560220a341d73ea83ea408bebedad11c117a6f79d9d41c50cbb
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5wespOMMeNqVwwfGAn:4jBIDchp44AHRNqewOA
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PIXEL\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 21.24 KB |
| MD5 |
c6e910b40002eb9d594790e54f2a69c1
|
| SHA1 |
ba3e4b551245d9c91aecf653dc4a145d896354e6
|
| SHA256 |
88e02b88d8d37f883e3e4d0937332634d620f585d8a31ab23a14502b8ba03c0e
|
| SSDeep |
384:T4hWV64qkzVjUTfur88G1TE8oywgh2w8L44phG449nx1:T4gV6GVATfuXoEHywdL44DG4snz
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.31 KB |
| MD5 |
6dc403ff4de33297db09195d0863c575
|
| SHA1 |
07f152d2b5e5278273d0276d8a0569c5781d076d
|
| SHA256 |
ec346791032a405f1e5c5f493497c1bb0a4c8f4d7f54f3ee346dab1fe68bbede
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97nTmvAzvcOzFZRy13Zx/:lCBVhwjwImuJsh5hp4XIBr53mxyG3j
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.41 KB |
| MD5 |
6b9518511098696ff3fb8a510760ab20
|
| SHA1 |
513c545dfef59414e6b71e7a1ee502dbcf7c580e
|
| SHA256 |
8bd6516149a53ff8e6035e593d218f5bb94927fae1f4df718fca54a0825e2e1d
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva974MBkoPggYebE1ujd0MoDTs:lCBVhwjwImuJsh5hp4XIBr5sOhYJebEa
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\QUAD\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 36.24 KB |
| MD5 |
58c7a8c136eec2c5c48a14b290e24705
|
| SHA1 |
f6bbb8e2c26b745a3e6cb39aec6c66a679daa73a
|
| SHA256 |
e588d4a0fc095803d3dff236b8c9e6f9eefb1408669045098d56a019f7ebfe9a
|
| SSDeep |
768:Ppi733Cr1Y7qULgnHI9PDNcixH3D/njaLkgPNDvSN7bUIR3Yf+:w33Cru+xnHWZFxXaPNjY7bx22
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 19.10 KB |
| MD5 |
fb149b1f9c5b7c692fd63a9a926b1751
|
| SHA1 |
73dd10657624c78eef478f8a2de50ccf4cec37a4
|
| SHA256 |
5df68d382e3f36ee754dd71d11f0db181581d139038481f69040e9875dcdcb54
|
| SSDeep |
384:r2rCejHODPfCiNcCg+oMW9c70SCOeb5/8XRumaQ3JLBJ6pNv7AsRrVD:Cr5jHOLxSCtk00SCmXR/NJLB21A+rJ
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.88 KB |
| MD5 |
578456a59e3c159746eb05b346fa2a00
|
| SHA1 |
e07890c276cd2d3e80092a490345c8d79d60b5aa
|
| SHA256 |
af9845d2e38f8fb70f0478a44b748c4249886b07e140bcc0ee02c7dc52c016d1
|
| SSDeep |
96:4jBIDchp44jXv8u8Mryg2M+W4ocZEKyyJC1sHRK8M2MtKil:4jBge4EbygL+WXepyyC1wggMHl
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RICEPAPR\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 51.87 KB |
| MD5 |
a8b816d15af9f95d4f3268059a230ff7
|
| SHA1 |
29040b4fa9df5e9ea2bbaf3a3495e2bf4a109934
|
| SHA256 |
d0abb7984fcde3e3add83eb623f9c6efb377046e0e5b7d237e5c40d985f7270b
|
| SSDeep |
768:Y2pz77b2MvY3am2TNXnUfggGDiyl3Tk05k/rKQoNgkMroJUkEZhPkl2l4eSp3h5:Y2pv7b2Xk5k4gG5I3rKQapi3kMoxp3h5
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.54 KB |
| MD5 |
77a1c866acc80f31c930dd3004e705b6
|
| SHA1 |
887fddf0f275d128bd7db370306369378d8eaba8
|
| SHA256 |
28a3f251330432525b823eb7bb0a65bd00c1a7d97a5673900b3d6a05231b89cd
|
| SSDeep |
48:XaYsUArQxFrHlBhD10QR/jke2YKZEsxesJNbsIXYZUaWKFmF9bwSLgdiA6xqEGn:XatYxFzlB30orke/skOsOKFqBLgkAeG
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RIPPLE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.23 KB |
| MD5 |
b28b8ffd039e68c4c704a2f9f5e3a2a6
|
| SHA1 |
8c14a5df0cd85cf69711c1a5e0361da656c20bdc
|
| SHA256 |
7f991f6baecb9fb00b0818c8232df549f42e6a53203327952cc15e60f8cc78e8
|
| SSDeep |
768:DpWAMPKXUNpZHG0SNzLWTswJcYt5KsMLcFIougx8:laaUNpRPSNvWTswJcoQsucFIoRx8
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 33.36 KB |
| MD5 |
562b0ce04d1c9cb6a489ab40023d7ae2
|
| SHA1 |
5885b4acd72b7927a95540cbec7905231f737abf
|
| SHA256 |
5eb2f8dc498d37442074e4e75fa4aea64af1f0dbb1c368c27c8409c4f7269823
|
| SSDeep |
768:pNnQW3GFzhCGda77b2dnqMWfaJSpRaZDKFMzVXN+AkQKSQ:pSW3+hCsavKRqMWfa+R8KFkVUZQKl
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.16 KB |
| MD5 |
d711737b7b9d0a7041cf47d6e383bccc
|
| SHA1 |
fc75a08ea226779b2a074b35da9f4a908895fd88
|
| SHA256 |
91c2b3103170bacfbeff3706508923216ddbef1030b97679db501b595e040b52
|
| SSDeep |
48:P4ar1x2VrIwtpynZKKw8ds8iage86IfanLYQnZesvb:waxx2phtpaoKwv8iag7pQb
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.47 KB |
| MD5 |
b1ce0e8ee4ae4b0806ad36531e4ba4a1
|
| SHA1 |
4a83c726eb5d7360d3e63c9a9a7ea57226398045
|
| SHA256 |
a4a241610acf12f10badea089b22a6e9a7c5eb4dfa9f63ac0f4b2aa2f4b533d3
|
| SSDeep |
48:MLnO0ZeXkefyLJ+IqEkdetVfHhVeEfUNJK+6ABpMJiBXhe:ML1neaLJ+pDwbfLdfcP6ypMiBRe
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.70 KB |
| MD5 |
08e9478af63838dc4f14cbf1dc77e553
|
| SHA1 |
df5608ea19680eea39397573e21b5ee5a1bd5638
|
| SHA256 |
37c28283f963a0be93d95e8c8a3502fc4b729f2f01e6abe13bf51dcd1addf09f
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5xfaiIaRRST8s5/NtZeAMCD6I:4jBIDchp44hCaRRST8shZtMCWI
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.64 KB |
| MD5 |
3b0696422f9ce3ac5d11f36e21ec9d40
|
| SHA1 |
eb2a4ffb8a7394a1d43460cecbf296cde672b428
|
| SHA256 |
a58fe2591fb02c289085e35c654241b4c1ab79526637f59309a8d368f602f51b
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5sOeHAoHCynPUTW+:4jBIDchp44cOiASCQ8TW+
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\PREVIEW.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 2.61 KB |
| MD5 |
281315e3e8e18204c7d8263ff60f35fc
|
| SHA1 |
4d59655927388e9235d6f00400f4e81d4a7bbd7e
|
| SHA256 |
5b8622a9b992f70d22e17db744baff5d65b532687f34f1ad56de2bd70cb99de0
|
| SSDeep |
48:R5BNDywsGO9CZLQFh1XBYZW5O9JKAMhME1VZXtyrt/cAzrEzxKxrMq:NO+QvLn5elE1V7S3sgGq
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\WATER\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 41.46 KB |
| MD5 |
375058fdc164929d899e31490ee6df89
|
| SHA1 |
dca45075adebeaf8e2d7ef4dd721d953fc6db81c
|
| SHA256 |
50d78d7affcd6a85e67c8f2b3eda9b2112616ee507ff7530b8f3b2fdff6048dd
|
| SSDeep |
768:c3tsZmwE2LoC9AsBqE944Z0Mh8+lOkF2UpXyQ+fvrzt9zlvcu4ySuHp0yJjaP/fb:62h8CnBqE94ey+le8yQ+fv3t9Bvcu5S7
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\THMBNAIL.PNG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 29.46 KB |
| MD5 |
203a3a1d1ce2cc971eb2a200a743511b
|
| SHA1 |
e162d73d9011c82b3277053675a0aaf68a191ab5
|
| SHA256 |
3c7689e291762f33517c371da1c98b0ed9ada782815270da8ccd144d4dce5540
|
| SSDeep |
768:K8cdF418EPcBOxyIQUXx6zMJTBFSh3pCmLJ:K8GBWMUXwkFCXJ
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\BIGFONT.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 316.73 KB |
| MD5 |
7959d3da253a4dbbe68dc89f5005ab32
|
| SHA1 |
bb442e3463069a6b01e2e71181a78124fef487f1
|
| SHA256 |
f6a24eb48b948c44264b75676cafb4c98f92a24589e289790f3339018ab6aec5
|
| SSDeep |
6144:dFSinS0bT7KIVqKspAQkt261Mx7IJ8pPXlC+m47Ir/v12dnC:dFQ0bqm2nU1spi+v7IBcC
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\CHINESET.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 649.53 KB |
| MD5 |
6849fedd6124314dc832885392f5c3f2
|
| SHA1 |
10cfa57261a7414915faa3828e157bfef407bf64
|
| SHA256 |
8739515d981dd8c44f7acf6b27608f1a495ad01d2c9ac0957ba383a659fb71a0
|
| SSDeep |
12288:pf83aVJhNOmhl2hZzqB11sSXmvaWu0dHEWcDqh6:pfZhflozDtar
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\GBCBIG.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 881.68 KB |
| MD5 |
fb55f5fe6ad035e3d8ff899ddc0a7b59
|
| SHA1 |
7f6f01717617873d9ce4957ee18812fe05a7199f
|
| SHA256 |
487e80187d2d0b8b5136c5ecf9c90996b0aec71ce88aa6a988d26de3daa38b79
|
| SSDeep |
24576:sR5/imh0x3i9L3V/eukNv+m74yycWWTGxJEri8k:e5/zKx3iJ6+w5WWTuJj8k
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\IC-TXT.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 10.75 KB |
| MD5 |
a7d6b96d0e025846221370de9e3e4cdc
|
| SHA1 |
80809b5d8f08307e8b5c838e938534e09e33cf4a
|
| SHA256 |
bd192b1212bc44387e8f12df7fbe0c66035243fc5e81a96dec7642136794fb38
|
| SSDeep |
192:CcvISm0N4Mr4ETrEuPwRB5s4bRiDvA3Ct5XrdszQMibJA1o0qrq9Tbkqar:hcUJTaRI4bQCibJA1ae9TbkqG
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\WHTGTXT.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 633.02 KB |
| MD5 |
29ab5b33afa62e9c3a21a0e4300c10bb
|
| SHA1 |
1bce147d5d35eac63ab1add181a7998f09a8b0c5
|
| SHA256 |
144044a5e48045ae267ef5a95f361838d0e12e10748d87c933fe93299c69c669
|
| SSDeep |
12288:lkePFnLFuDPlgi0oHzWoWLBKtZwrRaRamsYHWLi10nLdEE2:hxLFud0mRsRaRaiWY0nLdQ
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\WHTMTXT.SHX.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 895.15 KB |
| MD5 |
24bf7d4050c3b62a24fc4b021879e404
|
| SHA1 |
37855b0f31e9fb9edde2eb0667b4a91c6a9ac8e0
|
| SHA256 |
18a9ef9f3fa8d5db439280f35c404ba3a6f1919867591c6b0b2709498a081996
|
| SSDeep |
12288:vLmLw+wj+r1N4l2tt4Q4QeeQRPBliz3dWTrxlk0EKthj7ojILELeYWvs1Y:iLw+wj4ol2ttUQeeQP0gxm4thgIQ6vwY
|
| C:\\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\1033\FPEXT.MSG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 165.66 KB |
| MD5 |
fbbce6f8f0543a22731a98aa37911e68
|
| SHA1 |
e73c85536e899f94d15b1591a32b1634821b4194
|
| SHA256 |
385177c7fdaa53171f50b745cc6bc883cccfab226209bbeb498220cc7ffdda80
|
| SSDeep |
3072:yXpP1hkeiKpP94yDQGM27oanzfJSOlyT1IC4lXpjiWK:yXh1WeiKQyDQGMUoGfJ1yTqBNK
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00037_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 6.53 KB |
| MD5 |
fb82992a055c024f969370c50c7862fa
|
| SHA1 |
67a1b75bd313696b576bf9599a9b03fa749429fc
|
| SHA256 |
87cd46e05a6113c1843b1cc499dce2955259572e9dbf668dd24eb4d98e65ff0a
|
| SSDeep |
96:wBnymxxjxSnoJHmNVXCa1aelGhwgt/k5apVnUwMY3WLRSP3rx51DWdx+3TLBwZMr:w/qopmvXCa1a+GhwNmVmEP15lSKL0k3
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00038_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.17 KB |
| MD5 |
9624ed2f6cd979beb38ebb973fdc1c63
|
| SHA1 |
c438b1b0e66bca04023294434b78e5dd6eb7cfac
|
| SHA256 |
cab0f9dd99ffb7a3260996ab8a3ac543d9f2ace3ca93479dc987a6387a116548
|
| SSDeep |
48:KBagomOljD062fsC2EDbUEp+g94NCgrhbCdxgvTFpQVS5WXJXIVoOwoqohO/WrKB:Ksgom+f80Cdpp+K4NbhoxgrFyZ8wZOrO
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00040_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 7.91 KB |
| MD5 |
d851324f765b9b878c0d1073b327c4b5
|
| SHA1 |
d03b6742955691208f32163daab8eb7868287b27
|
| SHA256 |
b492c426ee1c9ce8b989fbbc322abb882d83eb9c71442d80aa93382da1e6ba21
|
| SSDeep |
192:Q6ntmQn4weWKSujUnfiSHJbQpQV/p7sM9YWyR7U8KgMRpAY:vUdwLK5jUnfXHZ1/1NigfhT
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00052_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 7.51 KB |
| MD5 |
8b4ec83bff2e3dc207c8eff88237d9c3
|
| SHA1 |
4e909321be24eba068a9643e2a8d407419d28c6c
|
| SHA256 |
892207a054adfd78e0ed9ddff532a8f8cde390ade14c963220aa54cd50f602b4
|
| SSDeep |
192:JDWOq5p1GgwoQXW8jPOTfk8KuvwwnoxJ+o6:tWOyp1Gg1QXfKfk2vwwaC
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00057_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 11.61 KB |
| MD5 |
1591ee2de2fd50af79f1b28ff485077f
|
| SHA1 |
adc246d9a86b1d33b0c2ace3434dcb70575101fc
|
| SHA256 |
b759c89a1638a329d359c6f462edb9713b3cac147e918f182e94f8cad86a1f7b
|
| SSDeep |
192:GUEwjIouw/usTxZJaSE6x5hvcExyQlJo+UwjPcnURb5pf/tX3nptnNXCRNgntJ:GXwnusxLc6xDc0yQlJoIjPIqb5D3pzvb
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00090_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 517 bytes |
| MD5 |
d1f25d136da800cf3a512bb18683d777
|
| SHA1 |
119d8b49c373f3564e6db08bf42326d71472c500
|
| SHA256 |
4187e4bbe785480c3d65a39d1ac1edd1adb17c8bba387c575442d68e715b6714
|
| SSDeep |
12:lgib75cAqHa2xjDBPBXr65RjZPlAILEdpt63Tbgy:lgib72Ha2BDBPB+5RjZPlAJU3L
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00126_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.07 KB |
| MD5 |
99ee9b54339c3e5f1f16c1ef6e86da48
|
| SHA1 |
4c52ec9751153a4e58db0e036f9122c57c195dc5
|
| SHA256 |
f3d5cb7a4d3c281720db374316c01d025fa2f16affb4b8fc2ae44350551e0990
|
| SSDeep |
96:YoLQjvCvk2aKBgc7lg4X/BjZMP35dYhjwzqZN0w/+i:TU+vkugEJjOY1wzsP+i
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00139_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 10.36 KB |
| MD5 |
dd4bea9dc8247d73adbcd20ebad6bbdc
|
| SHA1 |
b16a54b1190c1267981328f0c243378fa2e75dde
|
| SHA256 |
556e8b636f2ba3c84634c9d3d01f2de5c0d0c9a9ae9b9750fdc5d356d4c93c0d
|
| SSDeep |
192:Y6/CgZ8+Z8YlMMuU5UBWNTN/78Fx5uVpvnDr38BTH:YsNHHy7OUiTZ7WOFDr2H
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00142_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 14.95 KB |
| MD5 |
2d0d557368b28341b8649030e5cb97b2
|
| SHA1 |
56fb31d58003fcfd0d8966eee8e889c79ebb18c7
|
| SHA256 |
7a9a2e9d420d5d42cd25e3b04d6c2a22576dc3928d6767f0dff829d9a35680aa
|
| SSDeep |
384:xbV7fGWB4AYprLy5+LEljI0EPPRGF/8dhBFS17+OdLWGYAZKpN13Kki:x8WBuprLhEljoRGF0rSt++LWxvi
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00160_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 1.12 KB |
| MD5 |
cc858ad167504dd28852159cbe254199
|
| SHA1 |
951498bd6be9563d08feb1a82cc789802d3102fa
|
| SHA256 |
fe82d23903c061cb532579c1e5b343eeadfb65d31d03eab67427aa2ad348de51
|
| SSDeep |
24:xs7NwgAo7OwgAo77FFJ1wTbS19qoL9hAfMuDzq:xsBwgAoSwgAo/FFJ1wBm9hoq
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00163_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 6.82 KB |
| MD5 |
0dc7f7fcbc89f160c315eb5c1e8fdf3e
|
| SHA1 |
0a51398a86eb497d046bf070f164a5a6436b08dc
|
| SHA256 |
7173f362169f02c1e2f3542e5cb85cf954aec91e1f5a6f67a9ae2a37c3ee4e13
|
| SSDeep |
192:l8G1ypBuhlqI7/8iDuXZjijsMNaHM7jppaRdmiSBuhlqI7Babl:l8+scO8kg0jijsMkCp6dFScO8sbl
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00164_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 12.94 KB |
| MD5 |
d8335ea1a0645b25e5d029b311f34438
|
| SHA1 |
aaeb9696f04a0a9168f64536f252b70b693ff526
|
| SHA256 |
99ac773e0f865a8563ed775c963d7cdd22f6a8a969e93bb9e321b7fb3e2bc78f
|
| SSDeep |
384:if8+oh9UGltDh5Z4sG/L2uAuUDmwYjM8loEsj1NSzO5Qg:if8Fh95I2kEreMEoEQb5Qg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00169_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 5.25 KB |
| MD5 |
dffa5bb31ccaa1b8757c4bbabb3a1ad2
|
| SHA1 |
5a4889ebacc141f71aace7e5bd645e54d601dd52
|
| SHA256 |
97d3b37db5c4d4d8a8ace4a2e87d315997567294536c90a39fa604e8a4b2e3f5
|
| SSDeep |
96:c8ClN1yWxqVqoU1rE9zXmYQ967/aNl5gw+4nRutO1w8SNG25:c8G1yWxYvU1Ox9+5gw+Ous1w1h
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00170_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 9.03 KB |
| MD5 |
cbde2d8235b9203238f7fe1b7eb14ed4
|
| SHA1 |
eae446d24b8946b39b41890434c36c94ecb448e8
|
| SHA256 |
0caea117cb4718c73f795c3d3d57f34842190165a4b8ce306f6f3f14ad6b0a67
|
| SSDeep |
192:ZclaHRiHQ3WTkSSpPy1HtnUpOJlYRAhaZsRRV7lYYZNlCCDSI:boQSfAQUpOJl1h7HBpZN7Dn
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00171_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 4.90 KB |
| MD5 |
f87efbaec49e43cb07c7e6db10cfc5f3
|
| SHA1 |
1dc9326b4296e1c58c139e774c92f8693e4bbf8c
|
| SHA256 |
416252ce5c59eace1731b088da8cc4bb117ccaf3d471dffec56d6ac6b0a8ed82
|
| SSDeep |
96:88ClN1y09kLS6j+n9PYYY9FXHxVl8Cxxgc4xSaw82WrUT6XB:88G1yHSBYYYfBV9xiRrUg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00172_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 4.29 KB |
| MD5 |
4cbd7daf81deea7cb2f8be2756af3c24
|
| SHA1 |
944b0e4930b4872569dde0ac1e12a1812b89bed4
|
| SHA256 |
00863a30ce4282183ab5cdbdee80d1a81ee1d5f53ef0cd3423e52a69ee09efeb
|
| SSDeep |
96:x+S6lIphhRNdHxhANJdHxhRmZ/rqNXOxbBPEnutJC3ZEAyac:xclaHRtuhnQWOxNcnI4Evac
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00174_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.87 KB |
| MD5 |
6115b681c1843e7a9b6d2a3fcb1f69f9
|
| SHA1 |
e7c12d30d3664f02ec37e2782ef77dfb6a3b5124
|
| SHA256 |
2ef279a16f4fc8085808628f151c91d25d332854b029ffd6a407f70763ce4d65
|
| SSDeep |
96:Gxap031JGWPoZXpBb2zAD3EfwVVTzRgHE8rOLP:GkyAWUMAUELgNy
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00175_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.30 KB |
| MD5 |
03f728f362ae5d812ae39ea6e7393a7a
|
| SHA1 |
4cbd98602ec3e9095c913a6284340afae533da97
|
| SHA256 |
c5c9d6f6c1bf9f9d6df623bd3a77c8813f7f741a424a533f52c11d54c8f76507
|
| SSDeep |
96:6n+S6lIphhRp9kYxVlCptnUZtnyswPeEC19UT65:6nclaHR9P0UZ8swmN9U4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00176_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.05 KB |
| MD5 |
710a747162351ab1f5ba966c90d8dde6
|
| SHA1 |
1da5d44176607084c8b1a80f080027c6addc11e0
|
| SHA256 |
5bc2293e2e934eb10f3a93977b080e078d343bdd682f296bcb06dd246030add8
|
| SSDeep |
96:0HauGqnfxRyQswD9VvcW6x79GPG40psMY3+3Z1:06SLyO0WEx4YP
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\BABY_01.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 7.21 KB |
| MD5 |
9d5d2fe73ebb5797012a09e555d54b59
|
| SHA1 |
1dc3f8896e5ccfdc5e17d4161f472c9c6f5dd99e
|
| SHA256 |
1c4b22b1390c7dbc656c9314211d8e21e2beff711eb43cbd68ff994a7bf68b8b
|
| SSDeep |
192:gvDEr3jbAoSq4v98m2uw3BnOH58qUCIWyGEbCugGWs0:gLEL+qi98zu6OZ80IWgdgb
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10972_.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 19.72 KB |
| MD5 |
5e508cdd1dc1e69af774a3a6b9cc5f84
|
| SHA1 |
fd5a786ce3c9e01a04eebc375794af4b9cf7688c
|
| SHA256 |
d519bf875113eb3b924e019e1a7d6ed5f8b4649da06b13390c24017382139178
|
| SSDeep |
384:pWIhMlY/qX+TDs6Cn/xCnQ3E3bY+uICeV4d2r+nmthBxy:pWI2zuDs6C/c2E3cmVE2r+mja
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_01.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 12.68 KB |
| MD5 |
c5e52e1d6b9361f7fc335ff40332bd08
|
| SHA1 |
14763c42c2eda87b1f7ad16d26d6ad92e8e8c342
|
| SHA256 |
c4cd768d74afd3b50f9490318429a09ec3aaf66c7ccc5c044d69a55fe5574fc2
|
| SSDeep |
384:hNYLPKSNbmwS0XOMuAnekLsNbjBW+7PtOiO4QSwi4:8LSCmwBccANt71vO4/wi4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\FINCL_02.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 9.10 KB |
| MD5 |
57602cf8d08c24a76ded429151fde133
|
| SHA1 |
b6e4d44cc56f78ce219999926e6efa8d046fe8c8
|
| SHA256 |
6867bc4abc227066a2ab176125b61dd8c866abbdc0274c32bfbfb7d1672a078b
|
| SSDeep |
192:ovsEntE8KvnEeeeee9gapjLzoLlz6CaRhYKizs6GcKR2ofiPxcC856MHDetZ+:okqqEeeeee95pkz6CaRhYnCiZI5676
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\GRDEN_01.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 7.39 KB |
| MD5 |
810a6f246e25f5d9996af055969497ad
|
| SHA1 |
c05f53aa5c2df0d478ec7a43c47d8aa0d4491125
|
| SHA256 |
cdcf928438b5f0a46fd78bd7248289462fb0daf2322c88b2ed692303c51f3ff3
|
| SSDeep |
192:ovDzUF85qR8QaNV9YT4W6s5h4W6YkGWY22Kjk3B:obzp55vdWAWUlS3B
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\HTECH_01.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 7.01 KB |
| MD5 |
cb606d37c3a08a2a121c568628cf4784
|
| SHA1 |
7a01d6919f49391da7c82f06a01b1600e5b78181
|
| SHA256 |
b772a05ebe907c815af241341a2badcd650b52f886db740b97a1024c5169f2a0
|
| SSDeep |
192:kvQctlL49IfBEh0y3+EYy0MDCcH1T5iFnt0zzs/w5WW5aPN45wH:kaOBEhd330aCcXMntusSWW5aPYwH
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\INDST_01.MID.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 8.37 KB |
| MD5 |
ecb02b954e745a35847cdc8ae845fdaf
|
| SHA1 |
b2a67897fd35d7393b6acb2178cea5f1cc8ca574
|
| SHA256 |
bdb480a53f3cfe6d295a5d8f685d71c6b0f0723140626ca25cc44d16fa256639
|
| SSDeep |
192:x39Aq7VAHjvQ0kPE2g3mAmiIM0H3gOM90Ao/QMyg:x39AqBADvQTE2gXVIMnOVQM/
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099145.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 24.18 KB |
| MD5 |
fdd2f5f85f0cf231960997b4f314dbd2
|
| SHA1 |
5f6ce5cc39f9661c2a1e4ad81fa7b19830f19129
|
| SHA256 |
a39647acddb2033bab41cff47512872708da07fef9685bd08429e7e7fbdb9bbf
|
| SSDeep |
384:VFeKoh5aKTzB4fVx379M1tSefZkX858JRyg8DK18szinFTmAHm3F3Wd10rwptx:VM/h5aKTzBh18efqXFqXU0mb3Yd10rsx
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099147.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 23.81 KB |
| MD5 |
057a9e0f062af50e9d68cb9af7e75777
|
| SHA1 |
702e69bee2d2b77b71443adca80aaff624b64231
|
| SHA256 |
4c51620b76ad137e29fe523ddc6ae8d9fa05947a83b6706d07aa0155c2c05aca
|
| SSDeep |
384:VFeKyR5xmRxCcp1gJE69Hs/wgH+g80JAUvBMDDp3OEpUns2EEgJEw4CAp:VM/R5AicbcM4bNWWDDMiUncWOAp
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099148.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 17.83 KB |
| MD5 |
f6cd61e6597cd738c976c62c6e032d96
|
| SHA1 |
103d4570c92cf5b02cf40dc4694081638d9b3e79
|
| SHA256 |
aeaaa368bc538ec801a775c2e48ba6fcfbb63d123e9bcc1032221471d14d84a0
|
| SSDeep |
384:VPeKPrUNycpDKk1u6OdYaDXqN7Gr7n8UfE4v9fw4ewrrT8:VWb9KkfmtqN7GHn8UN9f5E
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099152.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 11.42 KB |
| MD5 |
e631437deb53cb8661255c92580ca9bf
|
| SHA1 |
223f97d547b352d88a6bbb5877514b49138ee1db
|
| SHA256 |
8113c2797cdffdc61db46a0443cffbf174db4781efdeafefb7e0699e3148ed67
|
| SSDeep |
192:VCeKDdfvHziNJtEyLary0xp2fbL2Vua6sK9BoP4ZSIZE1lT:VCeKpnON0yLarlpjVX8BZE1lT
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099155.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 8.62 KB |
| MD5 |
aeeecb98888af6d0fe3d0bf8d7ce222f
|
| SHA1 |
21ca646b63ec6f46af1e84ea6d18206b9ba9f87b
|
| SHA256 |
f920e5a642d1bd52802cd6188461b8614dacb0ac75b4b790e5217330d12933aa
|
| SSDeep |
192:VFeK2b3ZrZUofzbSjL+DgpczP787RggoEoME+P2vxM8:VFeK83rUofzmqgOzjpEoMPZ8
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099156.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 13.63 KB |
| MD5 |
03915fe5c98d41b6521c1e158f4afe77
|
| SHA1 |
4885603e6b9cc17244945ceb17ee8f2ae6fe0d98
|
| SHA256 |
b7281e31d940e6da990759a3f011970ef3aff550b5aa425f72e5feca65dd38b9
|
| SSDeep |
384:VQeKUJH9hTbtKpqPLmE2vZ0xdP/0pZ5jHAJncVM:VNfhTbtBLmd0xdP/adHWX
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099162.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 19.20 KB |
| MD5 |
fb6b7c2a0cf3d1fde3eb0f8fb1c5d1aa
|
| SHA1 |
18e0d752fff0981295464d65156de166781d6c24
|
| SHA256 |
135f98993e82d973a14fe5d5f46b2a6f9c13469ec05512b6343c96870287c917
|
| SSDeep |
384:VEeKibqdjBcDjG3qM/Y3+yryr7Z7lE48l8jmHUuWlivyttZMLZK:VR5+/5qMgmZ7QlUYnRvyas
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099165.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 49.31 KB |
| MD5 |
e1b11c890e6f1d9cfecad69606bf9a1b
|
| SHA1 |
f8f68ba811b5c61323e8235dc815eebb74b7c111
|
| SHA256 |
31a492bbfd6718baf0e3f50736fdb743299c472b480cae62376e389c89a5c4a5
|
| SSDeep |
1536:Ky/Q8YMpvNDgO16iFMeg2Xlp0slipIKIRsL1QtQLhhJMh8:B/XJFMeg2XvrJjRy148
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099186.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 16.35 KB |
| MD5 |
6a91edef1f13efe73b1f46baa7c809bb
|
| SHA1 |
40182ed802a5887ea4e81242c8742449a88d9fd1
|
| SHA256 |
1b92ba2694528c4fe3243dfb0bd32f45d4b8bc06280fe5c5fb217444d27dbf4a
|
| SSDeep |
384:o4XjTSVF+mWnlFSoJmn7Yb0wO3sAe/iuBnQXwqw43c:o4zwpcF5wJ3E75QAqw43c
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099188.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 8.87 KB |
| MD5 |
4c79f71115bd3b0a0029f7d4ac2ce294
|
| SHA1 |
577bf412e1908f477e46dd846c6be763326d9fcc
|
| SHA256 |
93b2d79e29f6ab83dbd2e7dd800d3a1789d285ec6059c8587aae0f4bce84d3ba
|
| SSDeep |
192:VteKvyHNid4KC/R6mUZL3fH22iezP1d24zBowAm/jk:VteKv6ivBLv4eBnzBTAm7k
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099190.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 42.86 KB |
| MD5 |
7d5e399bb344110a1a274d224971969f
|
| SHA1 |
997c27b7e36555f8c4ac42e5044c87b383535d0b
|
| SHA256 |
019e2070ae954e32aa6240cea09f130dabf227d3d7ef02e692d568a83929a2f7
|
| SSDeep |
768:YXOp786Qsx+Ed8SGc2cO5LbSn+CWLGvPxm5Nt9IFtGXqGzSLcaSeja0y:Y+hPXFM2n+CaGnuL9IFtGXqCWR9y
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099192.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 17.54 KB |
| MD5 |
db964a3bcedd2a3cef2a538559f9578d
|
| SHA1 |
6d23bcbbda92bae5c6ee69efb0589a75ffaea334
|
| SHA256 |
50910245a4ba0c38aa6428102598349a22d78155d357edfacc8bb0ab94e83078
|
| SSDeep |
384:IU58yLOPJyDObDagkk9Yr+sw82tfAbBwxcGGN6ZODmIqt1zAfHsZA6T+kz:oyLmSObDiCffAbBwxcbWOCVtVAfdkz
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099194.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 24.67 KB |
| MD5 |
50d94d71df5fe016dc782d2b339c25c8
|
| SHA1 |
f00fa5ae8a32857dfb5eaf42956b0377b7c10626
|
| SHA256 |
7926a10a44b9cbdc47ae8f1b4c0ab6e8d171c97212a789f946691ade851b6039
|
| SSDeep |
384:ChgHxPL0/1/W6JPDqTS0x+MZNtkYNTLSfkJdY/cg6JTw3INr2Y6hjPa:COTupGS0x+MZ4YZSfJ0g6JkM56Va
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099196.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 14.00 KB |
| MD5 |
1f3813fd951e60ec807d31a7cdb6c13c
|
| SHA1 |
7db963d9a93afae73bf1c6efee42338acdf7a62c
|
| SHA256 |
e712a7db13af3f7c03413711855578736eedc4c2d6e50455a2fa19845eb32eea
|
| SSDeep |
384:xox8LDPoz1VUg+tZbDxfWAaZUt95RizCj2aV4:xJyL+tZ4Aa+iOj2aV4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099197.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 10.64 KB |
| MD5 |
a13bcf275d1222fc04eeded3b1f87b94
|
| SHA1 |
01dfef3eaef19ffeea3b33a5de99dda9b4812c77
|
| SHA256 |
dc11f21f128b65deeed21608d0cc6393893c3cb901de6c8bc420a72726fde414
|
| SSDeep |
192:6nM8C/8TczIqOU4Z2T4da0mgFsaVoS7ym+Pqy2VCqtk61:6S04zYU4Z2sd5TFJVoztPqy2Vf1
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099198.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 5.14 KB |
| MD5 |
c615bc9cdc04093063c8334ec3d803f7
|
| SHA1 |
bbde8f50615e5740467cbbc35dbb0fcc9ca94a3f
|
| SHA256 |
a7dbe0fbd9cf4780c17ff69807ebc22d0c582ca2c2b9f16babed7723a919ce2c
|
| SSDeep |
96:TPAu+yr8aRawiFOMh5Y9GqIxvEKjwhPx4Zylajwa1rFOumFlYGpf1:TAuHr8SPiFO85F441evdp9
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099200.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 16.16 KB |
| MD5 |
0ba853b3706d793f25d878f1d03f69d0
|
| SHA1 |
506db298148bbecfb069fc01e4bae3a6e7688d67
|
| SHA256 |
1d9c077bb15501ce195e73bbe023129b16f87b79eb15608aee67f3dcb286c82b
|
| SSDeep |
384:eQ+BWzShhgjfA8+CKVpaFvSQTkb0jEi9VAMdHnXpc:eHEj4UepgvSQTrjE+VAknq
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099203.GIF.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 3.81 KB |
| MD5 |
ebbdd4c2ec302fc340c99ccb71cbfaa8
|
| SHA1 |
b54e4421f2fe8f5dd2a1becacc2042abd469d746
|
| SHA256 |
d8cbc014f1dd7ffb9f68b0d864c3eb2e501f3c30a83c448937efab8c711f10a0
|
| SSDeep |
96:KpSZ725JnGj2B26p0pTLHwS3W2Lkszv5o8I:Kps7mGqoJTLHFBtNFI
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101856.BMP.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 76.99 KB |
| MD5 |
e20790a6a0a8b6eab40d75f31e19a167
|
| SHA1 |
0d7a386635bbef66b8cb84a42f7cbfb5ed6da17f
|
| SHA256 |
3efb6e468bd7c4820859e964fe1b27f4a1157b5fc35ce53ba7e795c86c738eeb
|
| SSDeep |
1536:LqpbpCbNYWIIL8Y8jB3AjTqiofAZzJrjVV/bJh4c1yeTt9:+Rp8zCEFofIxnh4heTt9
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101860.BMP.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
67bcb15ead11f986c8c08758fa8efbce
|
| SHA1 |
0aba121b36d3fe9a83d4aed51da42a7fe5e3238d
|
| SHA256 |
97576db3f80b1c6a0eada994799b752d9f86fbdf73bc4a6c2c343d70a5ca1a0c
|
| SSDeep |
768:w+vavXcB/+iz+ejl+AjYpoOYtMLI8FNmck2dpF:wRcBGi+poOYxFmpF
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101861.BMP.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
98c56b8839f348f3f9efe60ba633c07d
|
| SHA1 |
f4db2fe85909a6a158a17915d2618a96607243d9
|
| SHA256 |
eb54c434e05ac0db563ad0dbbc399330b5e52cf370016e1253250e5487bf9481
|
| SSDeep |
768:nfHAoCLw+vpxdYR49S6ocsASYeb4DxDJj3rnV0aFbNy6CJi7nue:PNCvvpxdYG06o2SYeb4H/nnFue
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101867.BMP.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.85 KB |
| MD5 |
d265e08a18235266754383f9682b2093
|
| SHA1 |
032d9265d4cad2be5a16e94f14c6745f73ef8431
|
| SHA256 |
2d5014b33d6941da63ab1bdc70316faf2c99a39486059c58488aff2ea8afdddb
|
| SSDeep |
768:FN3qE1yrtz6Z7wpGgcp4g5K5Oz2tvFy9DAWlc6QAQX9t98Hp:FNdK+Z7wp3g5K5W2tvFyxXl5G9tu
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145168.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 32.87 KB |
| MD5 |
3598fe9f340f6462a280af88f3d69600
|
| SHA1 |
86e4b881a92fa91eb2aa64a18ce309a825831e5a
|
| SHA256 |
190cdda16dbaf5c552f634de63d65933a81c2f988a93de2a1cfcb3e048c9a141
|
| SSDeep |
768:xqTtwSTeL5F1YkrWQ42nS2v9riEQX6YMsLDqXE:oTtpu5FdKQ496Hod
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145272.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 48.08 KB |
| MD5 |
b7c2047136f02027812ba74d739f3e7f
|
| SHA1 |
07977b4322aefe4d3b9105240a2bd2f81b41fe49
|
| SHA256 |
3bf029a0606c802f3e609f553624ece9abda1ef250573aa8fe0291090b3fec50
|
| SSDeep |
1536:/2sTRwWjmGEXJ77sT4LosicNvjo8MgMkbR/:hTRwT97ikH1NqY
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145810.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 35.93 KB |
| MD5 |
d5b33e1e6f2ff4c547cd3a8219446b40
|
| SHA1 |
6c8baada025204c93c3cc9ab98462f2e7f6cd283
|
| SHA256 |
d75ca833049797883fd18f6151b97f817267b928d888b6da7688e420bda37e91
|
| SSDeep |
768:aoifm01BjovpO5MHKnyRAIyFgyO27XmwRAj6DXYaGrfpPDICM4/IOG:L01Bjo4sWyR+FdDXYdhPsCM4/lG
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145895.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 33.16 KB |
| MD5 |
521b8c4674eb7376661f99bb010db731
|
| SHA1 |
1b1294462ae0733d617039a26aad86ccd06f4b8f
|
| SHA256 |
da7cc29080283e193ce23246554d8b01f1c8f3a754c556f2ee5a6c5a6fee5121
|
| SSDeep |
768:Xy4LSO4fK3H/YEgwRsVmzRZNrrlAgM1IFMTzJJE0TXLNz0Oxpg6Qh7:Cm3HkSsVyd+giICPJ9TLNz0pr7
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148309.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 42.65 KB |
| MD5 |
235bb0d5a0226b72723c48f9a430e58c
|
| SHA1 |
2d301ef82422c8f114eb01af67c4de703d21e038
|
| SHA256 |
0d70f319f72ad9a49ee9c5c0d6689114ea2b08ae14b6005beda8d2ece085bc0c
|
| SSDeep |
768:TsWUYqRc/YkyNwRmoKGncXWASL+chbxMiXBKdZ9cPnuIbBJj5jI:gRYVAho3n41cdjsdZ9diXa
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149018.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 26.75 KB |
| MD5 |
0481c3d25a84d1e1b623afe55895f129
|
| SHA1 |
efa9d4226d149134b6f4d800f5a6f52948a2c6f9
|
| SHA256 |
0773be8c920ff2269ad0f1452b86ab803bb04edca007a5a1e43dbb90034dc482
|
| SSDeep |
384:haIlXRh7eTK3re7lunYCytfTnmJ54rBsHkzih63JGKqYk7geHjxMkS79n:hflj7eTKC7CytETEzih2GKqYQ1SkShn
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0174952.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 24.40 KB |
| MD5 |
90d909a9bd19ae6fc75e424560eb5b78
|
| SHA1 |
25987d817af8a468995d33777ca09a9791955d49
|
| SHA256 |
ff4db0f0d2ad0aa1ed2acbb9a43bb7f4226a617d7e89ec3bd76bcdafa853eab4
|
| SSDeep |
768:XKKdzRu5tNRDLUCmRmU/U51xhEKaKtGCWNAysNBGaJ6:XPRCNRD/zvEtkoA7Ot
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175428.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 14.21 KB |
| MD5 |
4960603c693301946f9464ba83fa328d
|
| SHA1 |
2a491ded8448babe336358651353842c180856a9
|
| SHA256 |
3d7227c56698ba45499196787d16b16153a1c4a94b0a75109a3251c01eb977db
|
| SSDeep |
384:LoowZb2xGnZZ9qdO5HpVpvXO9jk5YHQOG6l68LDJ:LZgdRPn5YH06l68p
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178459.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 28.52 KB |
| MD5 |
8a47da8ae3ef91f61039e847dab35375
|
| SHA1 |
3f2ebe19a5f5c0f85c849d35579ecb088ee37162
|
| SHA256 |
a8b0065e2209e25db5f45dd89cfd23ff6ad915a0c55abc75435a9ee096c038b7
|
| SSDeep |
384:71U9dg7XUVtF39S+H7el1NeUAK55v/nyWo1A82446CLKjJXuFXh3txGap1K5cz:fkVjH7eJe7qZPy724ZjQ39xxpA5g
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178523.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 23.47 KB |
| MD5 |
a70eb0da8d3f5c49edf7166b2cf55e4d
|
| SHA1 |
52f370630661a620255053bd3dc7c3f5c3d4b227
|
| SHA256 |
5cf7656927e18a86d309d945ebe2b748244c7b1e1efdd7ae217117fa4e71af3f
|
| SSDeep |
384:ebtAKcNa0VYgfCtClANLD0Lqmk6A+7KBa6O0O1wRN4OOuDkphZPvz4KidokOW6OF:MtPEVagfENUkuKC0OyN/OuIl3Y/7dkzM
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0179963.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 31.36 KB |
| MD5 |
3543c3c7abb2781498d936b0cb0f132c
|
| SHA1 |
c6b34346f24651933c34ec32b2368ca58b4e9759
|
| SHA256 |
46b37b7af7600ae2a500a75c7b8ed880e5f646709f459712cab196d7e587bbe6
|
| SSDeep |
768:UAr1F/GBxMMuejcKbYpwanCkBw90sQYWRtGOrc:TF6Ju6cK0pwktHb+
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287641.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 34.41 KB |
| MD5 |
9f302ed386f0f95591317238cb9a1908
|
| SHA1 |
c3d82ae20968c4fa3efb376def622886c21f990a
|
| SHA256 |
2f4557d242d71ac8b813f1ed3aabc9baf0cafd1d299f6898bd217040b47c5ff8
|
| SSDeep |
768:lQptv1WcSV1AG9M0xFVhiCtKyyZNGRKB967ObMLVSsvmxGSIMJB0czsvdq:YNoL9xdQ6QW7O68YY+czsFq
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287642.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 16.70 KB |
| MD5 |
3f4ee4e76c1bec8bc84d93dcfcc5f844
|
| SHA1 |
b619005175cf686ed3c80315909cd338cd5a9d39
|
| SHA256 |
a643409ce0bc3d1c730589e9e610f6a33d7f8995c03051fa07f4e226aa70912f
|
| SSDeep |
384:JQz8dPK3RpYoE+G7UTyHDcj6gRTDb+xj1ZgQT3LeoveXRm:egdPxd+G75S6glH+xj7gSiaB
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287643.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 15.64 KB |
| MD5 |
ba02d0869fa24ff976fdc51709aed7f8
|
| SHA1 |
51800c5991776436bfa7f516ad0c082b0a0536fb
|
| SHA256 |
f9ccf7a052403da599d35415cce88f62bc1a6802703623a227a8b9dabd7cca4d
|
| SSDeep |
384:OMPh1DVXuLob7B0+0D7+tFlYyEASt6t7Cql:F1DVeLQFyH+zl29Y0s
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287644.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 16.94 KB |
| MD5 |
4d777bb51131d49626160153d6e18361
|
| SHA1 |
3f7f112cbbccac4a6aea1256d1965d3a56370e1a
|
| SHA256 |
892667c86e1ccae2ad42d3b8641849ebc726a7d2cc0a1137892158536ed5ff72
|
| SSDeep |
384:CWticTG4RQKOg6nwDW6ddRbl5+pd+5xgYNpS:0lafOg6nwld3cdOxgJ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0287645.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 35.38 KB |
| MD5 |
4619c3655b80802625af1510e2f3a7cc
|
| SHA1 |
f25df6504381322715f308581fcba1fd09ff2dc8
|
| SHA256 |
38ee4503e225c624887b4392673013805f6b023713b6f13b00156fab1cad5213
|
| SSDeep |
768:L9CK+039GdiiIBmKmBPOp/bNGJcvFAzuyoyBeWCXBYGdpipOHe:JM0NTiMmBPOZbNRWzUEeNXBYYiE+
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309480.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 10.44 KB |
| MD5 |
2e31030f7b0246968f23f10d9b9b78bf
|
| SHA1 |
74de8c0673d9d130e580ca638037567ee38b139c
|
| SHA256 |
43ea969a0abde354c93e0b5a26c826bd019627151769994cb75d4e2a1e28f224
|
| SSDeep |
192:kDMxhh9PIJNkc4PiZdK3tzo+MzwmDRkUCQADdzmoOo3iLc9kpQePJzu9Kz:Lxj9AJNkc46ZdutE+MFD+Qwdzm5HLAkR
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315580.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 18.75 KB |
| MD5 |
adc54d4d11cab9ea7f88154c08a3ee0c
|
| SHA1 |
2fbe72ae5399ffe2b6b4d13e8ba0ee759701af44
|
| SHA256 |
0eef79fd2fe9ef4345f9c1411027eafba2ac2777995f69d78cad8245fd37fce3
|
| SSDeep |
384:+eTv42woFZRMpkKhdm1lH4SSArWariBxa:+eM2X3zsdmvTXWQQa
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0337280.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 12.59 KB |
| MD5 |
36f7b7fbdd7de8b31124d0c5c47d7e12
|
| SHA1 |
64ec9273e39e088d3ae0690678bcebf2702c97c8
|
| SHA256 |
70e576e13aff839430a992f143d33bbcb8365bd4fb5ba8960f3b4a0ae0add288
|
| SSDeep |
192:kDtAESKGfr8f8xHlarcB94f1pXJZEGGbz7GpB7p7YwggD5qMQ0bHb4ZtYS4e2:zbr8QFarGmjrEG2zqRm+pAZtO
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341344.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 11.22 KB |
| MD5 |
4d2900d9d6a782ffab0e81c4394f872b
|
| SHA1 |
8aaf12944318d01411aa784b634701f08ae63c22
|
| SHA256 |
3cf0312f17c01d5798dc2d25b80a2aa568d2dcf58aacd191540ddafef87f1fe4
|
| SSDeep |
192:klT7qLskuPpNOaCbfrjjjnQViSYQXZXRoek/vOU6eVP2dWX1RKKfcekWNUpx:KeLHVf3MVVjXZX2mU/4YRKO7kWqv
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341448.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 20.69 KB |
| MD5 |
1d7ab2fe3799191b0eb04d018a60894c
|
| SHA1 |
fe6fa197120fc8f7ea37baf499eb98bf9b8cf4c5
|
| SHA256 |
00f5c481d7481cf4f26d9de1acd8eb1b305296e6504abcc28b6b5cbc025f55c9
|
| SSDeep |
384:TupWyc9EPdHydpOqgnsB1jwjN4gH4xHkiyLoCSXjISJOAGPX1EPM:QeKdifyBjN4gQXy0CKI4zPM
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341455.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 29.08 KB |
| MD5 |
656a97bad6db4a3c79b1116f56418709
|
| SHA1 |
feecb4cbb63f75415e9b4da958c880d2284500a7
|
| SHA256 |
03ee11178eb43981ed0bead12162823f87acefe8e62a221bb1d8a32502eaa8c8
|
| SSDeep |
768:6+459ye11qh/2d+J5sbGKlQZ8ve8eJpTBS1jLC:ResQSKy+vUJpdwjLC
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341551.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 22.58 KB |
| MD5 |
686e4a7c7d12db076eab0cc5592db85b
|
| SHA1 |
f2dcdb299ad27b4cceeed0c1652f27239f18f90d
|
| SHA256 |
537b242522eada05deca8ad86957b53ffe72e2474bd3e2741e71053eb6c4d9c5
|
| SSDeep |
384:dbEmc1pTbyH86a7C1SJWfm3gXAkn8mHq+HuJsdTowO2KCy9DlilUITlaT:reTjY1sWoPmKWdTKj9DlIU4lO
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341559.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 26.11 KB |
| MD5 |
2801f4ee841a84e57a9865559332fc9a
|
| SHA1 |
7c3b2df8e1eb309be3b128014f4370e87dc66129
|
| SHA256 |
cca65dee8babfa2b17697337aac94e4b66067e1d14ff012bae690b2a84a5d67c
|
| SSDeep |
768:j5a5eSV2Hj2pYnBZSrycSLUdYdD7pRU2E:SoDZBZEELsali2E
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341653.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 15.49 KB |
| MD5 |
c628dc60f6b422725d06d02e65972b5f
|
| SHA1 |
99feadf18ed58554cb325be5cc36051909f403fc
|
| SHA256 |
64c1f2f9bf037bc8fc8794c3c94a131ede49a7713d65d3c212a93105f6358c43
|
| SSDeep |
384:1m9H6H0nr+h5jVOoSRo+Gzq0S7XRAcHf0sanpARzr2HUIW7:irA5cxP4q0GBV/kAd0w
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341654.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 15.37 KB |
| MD5 |
a2474f259a3a849814a7acf866e39563
|
| SHA1 |
d3b4484d157f98eec9eee5e1697abafe06e3a271
|
| SHA256 |
d3a93b13bef510cd40b2aaabea25fcbc56b50fa7d201401b5f588bc899358008
|
| SSDeep |
384:EnZq74sRXfwd5BB+su3b2HFgteSWR6Dlg0aMRGt6vANIMMu6+T/:URgfwdcs1OASfDnh0t6oNsu6C
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341742.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 18.43 KB |
| MD5 |
e48a2a0d327635e1cf07662f4b296165
|
| SHA1 |
480450f3101524227a3e22f7fdbc41f8a7cc05b6
|
| SHA256 |
253706236c57144f47567242bd4adc00bb1efc1e7c0bae64a3571672e5204f4b
|
| SSDeep |
384:M4FQ0lX0tYJy0QDv1pia9L82kzZA44VnS3DechgC+apo6laT2zh:g0qtYJ5QeaN8FzZA44SfhpK6lXzh
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382925.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 115.59 KB |
| MD5 |
9b927e38160d5b63efc62ff634604c76
|
| SHA1 |
ccdd629ccc6732c6f5117035e9cd34615ec7e86b
|
| SHA256 |
c0b2ef28277c2a83b87926a4be196b316ac6e9efaa28a7e3240b315f48cfc47d
|
| SSDeep |
3072:Pn/+MN1D2uCUqJNBJqjrcHL9gmT5UGN+g7ePG:f/+85UJqULSvVG
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382927.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 126.11 KB |
| MD5 |
de3acc190f58deaf2cb11c64ac85de37
|
| SHA1 |
1c1dce4747ef007aeba5e8dfdbc85546c1436ca2
|
| SHA256 |
9a320a33b617d10cd5dbcc41619cec09e30a35c5328e0fd55de4c5a0cba5ff3d
|
| SSDeep |
3072:b2ivjLVXi8L1wHeAPkPPsuGKFKoyV5PXAFoGgxosbZrjmkdmwIT:b2qQ8BBdsuBHw5PIofbpfUR
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382930.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 110.06 KB |
| MD5 |
32e493ccee1007de6fddf2169fefabe3
|
| SHA1 |
e6bb6c7be36ce16a93a37d93789c866c1aed859f
|
| SHA256 |
13237dcdf0bc8d40d81439339777690cf86a344234715f165c3f5bb875fa44b0
|
| SSDeep |
3072:xTrcdBzS3U84Pc3GNyhAZJvmgWz1qpSK639bq2:idBOt3Gzv/WZqpSKwb/
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382947.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 84.78 KB |
| MD5 |
c5b4e169b54c83af8c14236b90e3f8ab
|
| SHA1 |
37f51fe1a617d63cf55702d4033d6309df8ee06b
|
| SHA256 |
02ec1a003d7017946a816104a9a40ab5eab5eb7caf209aef08599a5cc3b381f5
|
| SSDeep |
1536:ab5znnfZbB21u8FjzkjvNwUfW4geytbdnBQu4ozwun4xn+TOC5P+yDl5L4tk0xmU:aFznGDSDNSjemKu1e+Tp5GWl58wha
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382948.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 107.30 KB |
| MD5 |
c81764cd98c23a5528ed13cdb89d1777
|
| SHA1 |
9a2d1faedbbe1dc92a8ae5ffd462430fa4c39db4
|
| SHA256 |
f4bc35d0f59546a8362d2ef7b4990286d31289d971321804447a20433f1400b1
|
| SSDeep |
1536:ZaV/m0OxedbQGZmishoBgIy8ZylKY+vpUz0nbGCUcuNW/6xIHfiIRa/foLiH830N:o/WxeWnn+hE0bGbcuNW/6+6IAox30N
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382950.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 94.21 KB |
| MD5 |
88b1070bf58d27dc5feed778e0d0442a
|
| SHA1 |
1a4a25593a6548c335611625e37dff4d7e6b1c53
|
| SHA256 |
7e400d9e3546273219bece7cb4fd9f256096eee177eed013aac79400cfdf39e5
|
| SSDeep |
1536:leSkHuqNr2/8U0MGU+aWy9w9vvS7hO552gSsuGFWWYKVpkG3hEh7rbOw:loH9NS/SM/vlu9vvSFOtS/8BYKVpkG3K
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382954.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 86.62 KB |
| MD5 |
280b79f51e29a549cd0b0a5c1add9ed1
|
| SHA1 |
bfeba8689dcfb9835afe6dfdcfe6a8e6a04dfe21
|
| SHA256 |
bff9a4ca598d98f527b5d9725d8178f77a2f9f028f6049fc4883c8ff60b43a93
|
| SSDeep |
1536:P7jWp49rERe1Wd+7GyWf4YfktAXxGKddIWW4zOk1OFrvdT44v+vOEEXD2g:TjsRe1WVy8xjhGKdKWW4dWlT44vLEO2g
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382955.JPG.crypton | Dropped File | Stream |
Unknown
|
|
| Mime Type | application/octet-stream |
| File Size | 87.98 KB |
| MD5 |
1bd8a1da78e765abe146bf67695824e7
|
| SHA1 |
c9b0d9af7838b4c07d6db630cb44146454ad0a91
|
| SHA256 |
c5b14420ba7c11d5b875da9e9bbe35b5d0d1491e00b46ab2e98e8bcf98335158
|
| SSDeep |
1536:4hqChvtPxkXjdhs3fU4j8wjfoZqgj/z8gvzaZMxNZqfYdNxTfqzkgl/ocWpELe:QqChVPizdc8i1jfWHYiaZcq01fqpl/JC
|
| c:\windows\system32\catroot2\dberr.txt | Modified File | Text |
Not Queried
|
|
| Mime Type | text/plain |
| File Size | 127.35 KB |
| MD5 |
f69465c11454e569a8c5b773496d36c8
|
| SHA1 |
3894bf1ddfd6fde04bd7045cce420888c8cb013c
|
| SHA256 |
2965bdf7fd5c6c3651237ce0075d9eec72131dc5b5378e33561029261a9411f9
|
| SSDeep |
1536:PLSsSGF22UPU+lSvg6kwEcctTdjh9iyBRsYuMpvTFlVZn5HvJ/ZTFQi9wiGK:I
|
| C:\\Boot\BOOTSTAT.DAT.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 64.00 KB |
| MD5 |
6d4adc8162a841ebe9b9af322fa62fb8
|
| SHA1 |
030503d614d372bd1a47458ca656d4dc862108e3
|
| SHA256 |
33cb1379b0c3cb7c4c89f5855061d97d4278fd9a979feec033053c15a7189658
|
| SSDeep |
6:xShxQED3EugjnW1J3reh+ghBtPDesvRGQN2g///////////////////////////1:0hxQEDzgjnYI+gD1FGtG
|
| C:\\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\ExcelMUI.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\ExcelMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.53 KB |
| MD5 |
9072ca4801b52bb17af425ff431a658d
|
| SHA1 |
181c2f7f2b12abc16f16a904eae428387f5b9820
|
| SHA256 |
8ec40c208cec7c48a21399f395404a6d913f762523a3d772171241f68d8b5bfe
|
| SSDeep |
48:AzXKGBFNj21jhLDkkyqw6SQiB7Tb5M24B7T+OpD6WzYn:sXKGBFaC6KxB7UjpDvq
|
| C:\\MSOCache\All Users\{90140000-0016-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Excel.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 2.24 KB |
| MD5 |
6719d31c7404abe95e669af261314990
|
| SHA1 |
b649293e83994b8fcae7cfb0c08ca9a156d0e2d1
|
| SHA256 |
8d9c04d2f8b7ed5579082798bbf342326b5c385066339cca53e5b8e88d6d4a57
|
| SSDeep |
48:Azn/7A5grML0dvuOXPMVZ1wijQZETrzYp1wi84zrPkdJ1ZnrU6Zl8zDc82b:snogo6hW5TfO8WCrbMo
|
| C:\\MSOCache\All Users\{90140000-0018-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PowerPoint.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.84 KB |
| MD5 |
3192908c3ac0048cfe3a06be62a21d58
|
| SHA1 |
c69f5fa79c53d1369905c13955f2c9a05f814716
|
| SHA256 |
6a0ec13b4f796cc7cd7b931d0bf3d64d668610a0dd1e5cd12fe11eb4e5a630ac
|
| SSDeep |
24:AzT6kgxHShopCRpsWNTzFV39AKEQ7OeVkeJKd43kN1iI3n39AHCq0L6WP/7MsanN:AzTqHCRSyVqQ7hZL3kS8hLL2v9Quthn5
|
| C:\\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\OutlookMUI.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\OutlookMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 3.11 KB |
| MD5 |
dcb241d31256cf9ebca9b600427c9f4c
|
| SHA1 |
376a6ff0100a185ed4007ba3843738afd23ff81d
|
| SHA256 |
9279b08f7aff93d101a6fbcfd31dad8b1f279904b1879714130b95d42b2fbafa
|
| SSDeep |
48:AzXyXOcaiS5XKDxLzplwzMcjv49RQOnBxlrBSy2V9na9t62PXfcuteR2onu:sXEEiSJszoMmf+jfSRnoPXfUu
|
| C:\\MSOCache\All Users\{90140000-001A-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Outlook.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 4.11 KB |
| MD5 |
abbc40b3ae79211f65caee6734621667
|
| SHA1 |
3517851de1a75f52a17bf92a9ae69d6d83ccb61c
|
| SHA256 |
566cca478de2fa3a2e23a6b69764c542362173fb227913bf8c34b9f53ee1f246
|
| SSDeep |
96:sXwvNui08XI2fDNJWkwW4COkZXIb7hXEAugDrg/pjRYI:qWL3D+aA9rctYI
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Word.en-us\SETUP.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-001B-0409-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 2.37 KB |
| MD5 |
70ca465d6fe6838dbe584a4080b6f231
|
| SHA1 |
bc63f2e86646a796911a201a96f1a47964187bbb
|
| SHA256 |
c23ee20e2ad1bec48522e35a8a79b843bcdc86bbfbe54fce364cac08e2b881c0
|
| SSDeep |
48:AzPneaPj6CZdphVcfUX2Tkp1wi0hxLoZKCjm8lwizpSy38C8V7YDbb:sPeKj6OdphKfGgk3+9cdjm81My3H8w
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.en\Proof.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.en\Proof.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.32 KB |
| MD5 |
da96adcdcfdc8032ea489190b8520b81
|
| SHA1 |
33666ddbd3a9455a6b9629e91792d8a425ccfe8a
|
| SHA256 |
0e2538df20ab04f66afadcf0829d06a866404801c44fe0616eaeaff423bb0d83
|
| SSDeep |
24:AzX16OWia/KOicqjWYlqLIca6MWLDkjP+epoY5erBcMpd4/ac+xIFn6:AzdiQTqcmMWLDkjWqRgrzpA+
|
| C:\\MSOCache\All Users\{90140000-002C-0409-1000-0000000FF1CE}-C\Proof.es\Proof.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Proof.es\Proof.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
2262f5452b00d0ec1fb8a6b6e91a31b8
|
| SHA1 |
2549e6b7db237c290d04d5be275fdca7c3add0f2
|
| SHA256 |
8d093c8d6c336a1c038d63457a8af9c0cf514059264498f02879830a8f149ee9
|
| SSDeep |
24:AzxXtFvOo/MMke44a3j7WLYlqLIBcuKHfEK76ZGWxaX1R9c9PYITcF5MpdeTgKP1:AzxXtR0+aXWaqcBcuK/EKpWM1R9KwacX
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\InfoPathMUI.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0044-0409-1000-0000000FF1CE}-C\InfoPathMUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.20 KB |
| MD5 |
6aba2cf9f68a4f799248070ca91e847a
|
| SHA1 |
247a698d450614a8ec7921c229a18e00ddd9d782
|
| SHA256 |
68cd67d5334245d490e01f5e1c4acbe7e2c8c7c3275a1e6c5ed245e4b957bcb8
|
| SSDeep |
24:Az3v6Pj9aCUMLvKM56tNDaY7XV2R5KpM0IrRq7NlSKiqMA6tPlaSuY5/tt:AzvCVQnPIR5KppIr8SAMTx5Vt
|
| C:\\MSOCache\All Users\{90140000-0044-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\InfoPath.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.81 KB |
| MD5 |
485d7b50cb4cc2b00ca8a672b8f47afe
|
| SHA1 |
cabed545a98b0b30e0687219d8fd136ec93d0e9b
|
| SHA256 |
da69bb3567f5274f3b9030416a7ae3ecaf033e2c28127e1cbc2b15fcbd4cba26
|
| SSDeep |
48:AzjTm7We6CZqx1wimvUKJUwPbHF15Yf+mLr8Ef:sj67We6Ow/HfTPT
|
| C:\\MSOCache\All Users\{90140000-0054-0409-1000-0000000FF1CE}-C\VisioMUI.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Visio.en-us\VisioMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 9.28 KB |
| MD5 |
a264209610984d1eba34a929b7af6b9d
|
| SHA1 |
5eb915003d59e0dc6e257d626ef446c372fe2da2
|
| SHA256 |
fcebee1705f69f61a552993fefd63273603ef9a190c3d84ed3f1937b7ccb941c
|
| SSDeep |
192:gFyxPBTLBLNwaPGKmqSPnodrITaXH0VEI:tBaaP/mq+4qeI
|
| C:\\MSOCache\All Users\{90140000-00A1-0409-1000-0000000FF1CE}-C\OneNoteMUI.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\OneNote.en-us\OneNoteMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.57 KB |
| MD5 |
1c72868da31d96a58f41460886879106
|
| SHA1 |
85d2612bd636a38eb91c4d4045e75e5231d1af7e
|
| SHA256 |
1782fd02ea2937459c58bb614daca5500d9358199521d5be630df81047fa5ce1
|
| SSDeep |
48:AzwFknfcYfLDkSfFMNSDuXulOzWI6aa8m:swFYfRo+uelOqh9
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Project.en-us\ProjectMUI.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-00B4-0409-1000-0000000FF1CE}-C\ProjectMUI.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.42 KB |
| MD5 |
77d8b7ae88af2de400dad2be43eead2c
|
| SHA1 |
bc6b3f7c50207776d61fe9259e4d9958217d63d0
|
| SHA256 |
a7241e6e63c3378a8ed5dd78f088d7cabd2c2da80251a0d17f72502d5b24b9bc
|
| SSDeep |
24:AzM47yZpXJbeRwUq8RbPPJQQUWmiAvMfspwpQ7nTIp7tvMfplw2a:AzhapXM913JQQUXiAkf6wpQnO7tkfplK
|
| C:\\MSOCache\All Users\{90140000-00B4-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Project.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.83 KB |
| MD5 |
e2882c3b72ec2ff44c64afbdb577cff6
|
| SHA1 |
48050bf1e4502179f248fec810c97b1622575ddb
|
| SHA256 |
2a5f4199e4e32b70ffb0489e845791f1fec0b3424d0abd0e40d8d5557b1ac5ff
|
| SSDeep |
48:AzEs//yg1KMBQZgJFvi7IEom+OeTItUIaDb:sEPzIEo3BT+6
|
| C:\\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Access.en-us\branding.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As |
C:\\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\branding.xml.crypton (Dropped File)
C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\BRANDING.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 582.36 KB |
| MD5 |
2ee6047bd02a7daa22830746540d66b4
|
| SHA1 |
c2ffb06b1cd319147bd8295fc8418ef68f7f7b5f
|
| SHA256 |
58217b9ee4a41b2e60c02832b63744408068d2c64f33557e39b4c29feb42b39c
|
| SSDeep |
12288:KSqgEZjuuhgnNw/Xmyu0HPRNldaXjKW4MgJD:FkZjuuhgnO/X+0xd5
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\OfficeMUISet.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\OfficeMUISet.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 819 bytes |
| MD5 |
7465bf97a76b963a734952faa1c64a35
|
| SHA1 |
0acbef98517022f293cba58724970798087fd430
|
| SHA256 |
a3b59404707b759f94a97145c8c0b311f17eae69ea17c6b07b0d77d5f9bf8c22
|
| SSDeep |
12:AcgLsGeT85XBDIxOZIWK8MA0jrLsJAYA0YYNo3fkoaSuSpR/VJ9AZFhpDWan6:AzLsVsXBDIvW+jsHnluPlaSuYWZjn6
|
| C:\\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 9.13 KB |
| MD5 |
478fe23dc3f11f821ba40d1db5a746b1
|
| SHA1 |
cb2ee514d23fe772221b36b4f7e387eca742529a
|
| SHA256 |
f85a62a1022c7e7218bf5ad8d933c43434951eac67a9e79672437c35f609bbf9
|
| SSDeep |
96:sx+mho9iqL+5XukhONHGOUvXf8C2RLQIEF+1p9rkWsMt38IFDJUAmJGL6DUFmNRY:12o9+5xm1r9NJCsL6emobPCsq2r
|
| C:\\MSOCache\All Users\{90140000-0115-0409-1000-0000000FF1CE}-C\ShellUI.MST.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 3.50 KB |
| MD5 |
7f86bbbb7cb70e685eebd873d882cc4f
|
| SHA1 |
2e989274291a280c6e2b42f6d2a10030a0221751
|
| SHA256 |
8840bd7455b5d71ca96f47e5dd2b7cb559fc9212a6a3af4db51b1395ba5a992b
|
| SSDeep |
24:bGuPMAvUGQk+hLLM8xUxLE5qfG+HDoePuUUP04hhkRsRiyjQ7p9:b9vdQk+hkX++HLuUUaGRiXt9
|
| C:\\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Access.en-us\AccessMUI.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUI.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 1.32 KB |
| MD5 |
df5d4c5b80743a9c635748e90f8f5ad3
|
| SHA1 |
ed3a4be512225ee0f3a4ddfe39bcdeece51c5359
|
| SHA256 |
2f639c7d9b5cf62c2cbbbc302028cb59f240e5690e78eb0572c1aeb0d9b95e25
|
| SSDeep |
24:Az8dVtlhkNLO0zyYlqLIPjq9s68RbPttjbMp1T2b267bPPYoDWZ/EvMfpmw:AzIVn4lDqcPOo1Ft8pp2b267TNDW5Ekh
|
| C:\\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\AccessMUISet.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\AccessMUISet.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 819 bytes |
| MD5 |
a954f340300ad3048ee45cfcab228142
|
| SHA1 |
0482561698704bf7f566afb5d0b98ed5f019f065
|
| SHA256 |
c36b1b36264c2a0372d45fcfc57842f4da1c27aacc62cb403491788205306a43
|
| SSDeep |
12:AcgkxWDhzutNqzI/QIRTxMA0jrLsJAYA0YYNo3fkoaSuSpR/VJ9AZFhpDWan6:AzkxEhzioYDOjsHnluPlaSuYWZjn6
|
| C:\\MSOCache\All Users\{90140000-0117-0409-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Access.en-us\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 2.56 KB |
| MD5 |
9b10ef3157f98ca23809f87498233ca2
|
| SHA1 |
98da0ea27d57b8fed0fce659faeb28e95b97c512
|
| SHA256 |
61417108e82ffcc0e37cd78d4a7cffe66c9fb568aa05e76a07c60344842a6672
|
| SSDeep |
48:AzjnJQyVqQ7hmp2hvv0kOdZ2ZrhOu7wnHHgZKeZBY/1MYvLD/fDuUAIMb:sLKmhU2hvMkOrOoHHgoeZeMYDLLztY
|
| C:\\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\Office32WW.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As |
C:\\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\Office32WW.xml.crypton (Dropped File)
C:\\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\Office32WW.xml.crypton (Dropped File) C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Office32.WW\Office32WW.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 4.17 KB |
| MD5 |
f4cf22ec2ab85d60fb50f787e3d035a2
|
| SHA1 |
4922b6c0cb376111e90eee86b2ca76936fe79659
|
| SHA256 |
7c78496b5e31748bf40d0b4e8b171aae64e9f71b58c38cfa479da89712f3d4da
|
| SSDeep |
96:srQT7g6xR6dPE412PmU7xu4ZiJanrT1HYvzUg4Z/:DfPf6FkRDMJantnZ/
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUSR\ProPlusrWW.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\ProPlusrWW.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 16.46 KB |
| MD5 |
fe06f74994ecb5d023434eebcbe13ac9
|
| SHA1 |
c75cf093c2203ee60ff97f6da3546d3e7cbb7ae3
|
| SHA256 |
b25c6a503c1a9ee58081621a85326c21d89e58da6113c4db44ecd717f6abb2db
|
| SSDeep |
384:463ZFLKU52yiVUGVBJQRIy+93Tg+vMibTt:4KLKU52ZVDJQRx03E+v3/t
|
| C:\\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PROPLUSR\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 30.37 KB |
| MD5 |
f701c19b0332868d71da2cb5638673ac
|
| SHA1 |
64f04f713413404ab99106b00a69146c0368ccac
|
| SHA256 |
5c22b6e1de0f4bd75201c6d2f5ae6a6fb8b4990821b3c0f78990055960bb3c01
|
| SSDeep |
384:GKtK44kJKA+CYs5LnQ8z5f5soRCuVSgbWdQu2R5U4gnS+m8D6VzJbpuSEjqTRE:p4kZVYsQ80oRSgiEXX8D69mjqTRE
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PRJPROR\PrjProrWW.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\PrjProrWW.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 6.27 KB |
| MD5 |
01613b66f79f42a6ab271c9bc3704ab4
|
| SHA1 |
c45dd74ff5b3471c2342be79b392a11ea433ee18
|
| SHA256 |
81e6ba27352bc01cadde065aedb5c73ebec487f0243b7ae91b980ddb7257b3e6
|
| SSDeep |
96:s8aAs3Dzpp7pAsDVaSDpypTmjL4pcXyLpReuvUFE07FmsxPtkzSE/4ngeLSLBYPN:Ha33DzDuspVmOL4WCLDeeetxJgieW
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\PRJPROR\SETUP.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{91140000-003B-0000-1000-0000000FF1CE}-C\Setup.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 16.29 KB |
| MD5 |
c7ddf9598a246e1e7130a64dea60d931
|
| SHA1 |
ea3cbf98dd8c917ae4ec112d2540e437e25f3daa
|
| SHA256 |
8d4cb1166f08c69141d75e5b3031e6b9a94fcb7534f82f592628aec4f5c81141
|
| SSDeep |
192:pwpSF1Fsxm5bvFTw0c5VN64w6l+S4fmg3owH+9yZYPYGq/urLZSs:pb1J5uz51w4+S4+g4wH+eC5
|
| C:\\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\Setup.xml.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\VISIOR\SETUP.XML.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 20.09 KB |
| MD5 |
444edde9d35045133e05ded824e1c5fe
|
| SHA1 |
7ecfb02e93778f2d3fbd8060c7e41d494a8cd345
|
| SHA256 |
9258e117b391d0d3b0741baf7755406fbc6cc675ba9efe83ecafceac59bb9867
|
| SSDeep |
384:mFPB7hDdpDBNrt3w5uz5Yu/DRoiR4k3JlWe5MWuvs:mhHDdjNrtBuixrqvs
|
| C:\\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\VISIOR\VisiorWW.XML.crypton | Dropped File | Stream |
Not Queried
|
|
| Also Known As | C:\\MSOCache\All Users\{91140000-0057-0000-1000-0000000FF1CE}-C\VisiorWW.xml.crypton (Dropped File) |
| Mime Type | application/octet-stream |
| File Size | 8.52 KB |
| MD5 |
2f01aafc5ce05e399e70de2659d7e54d
|
| SHA1 |
c4e8eee0c9c91dfe8725d51cd16f3906cabb5edb
|
| SHA256 |
58ab10942a535fa33c296ec3927674dc538ac409a7130aa7edb76d5c8c600701
|
| SSDeep |
192:AzofzvGXDig2ORg5e4mIa9cUoSGJNWcNm09WTQ4Rv:AEfz903h/JIYcNm7
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\CGMIMP32.CFG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.65 KB |
| MD5 |
fd6072f805d2efba1024ac8d3002f0c0
|
| SHA1 |
4c4df183d9352d549e238bbfe989677775aeef66
|
| SHA256 |
d72b1b4589cf1e6f058bec08a0f321f26409db0756d06c011e5bd96472f532cb
|
| SSDeep |
96:SzIlwgxyXFb8h7F6OKZX0FIZ+q5O2sObTf2IQhDIhOPPAIUMCCoto77p/cU:kKgOgHT5OQGIQmOPP5qtoBcU
|
| C:\\Program Files\Common Files\Microsoft Shared\GRPHFLT\MS.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.64 KB |
| MD5 |
5ed2f3d63ee415738786d8c032417aed
|
| SHA1 |
d404dd8c7ca7882f8c014e6814991f102d7153ad
|
| SHA256 |
635cd1d8485f7ce0020dc4021df6271510603e883d3046692eb2c42263e7ea5a
|
| SSDeep |
48:ky4IJ9fRCTwpAyCm6okrVfcr3T6c0fTYVKAt8Fn:5dfGyCm6Er3T6lfTYd8
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\LISTS\1033\DATES.XML.crypton | Dropped File | Compressed |
Not Queried
|
|
| Mime Type | application/zlib |
| File Size | 8.71 KB |
| MD5 |
afe6b929bc1556dde5e5750476818ece
|
| SHA1 |
1baf90e3c5c6f09e9972fc39857752db03043c4b
|
| SHA256 |
039197714e25ec0d89b7ae6e3f632c8611fbeecb7f7e92b1cd10aadbe3b67346
|
| SSDeep |
192:YEd3qFpTvvM60n6GIQ6aovtm8IuWji6TLI6A9m6OBtIzivzpv/tk:NdmTbtm8I+UBtIz6z1/tk
|
| C:\\Program Files\Common Files\Microsoft Shared\Smart Tag\METCONV.TXT.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.13 MB |
| MD5 |
66c0b264320cd3226f9444794c5ebc7c
|
| SHA1 |
7d7c3127a50f7d1f2efd574af7fd22ba94828c3c
|
| SHA256 |
72290b74c81525b384bb25b6468a377d9daba7924f03cf8a700a01041f91d52d
|
| SSDeep |
24576:jUBJE1jXmRORrRaRLRLRiIi/A/N/RxRGR6LRARlRTRj:KJo
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\AFTRNOON\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.53 KB |
| MD5 |
47eb19e216aaf2511793818456829024
|
| SHA1 |
0721cf6fc77209027dc0e69825ef941be29f4c1e
|
| SHA256 |
3bc9b8cd9eac303a409db96f8579062c53d860d165bea0783973305acbf76b1b
|
| SSDeep |
24:OkhY7gIjQohkQRe8pPzCY1VKdX61Hg+d9D71s4ui6mtDR+6AlRm0PdRYV3hB3gWF:OkC7C8ekPJ9a+dNS49k6AHmaLYV3hB39
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.92 KB |
| MD5 |
b7e1c9dfb5d9718c3cc0be1b369de706
|
| SHA1 |
0b03e07154f63e2aee6d04d0d7e58548573aaac9
|
| SHA256 |
49a6ced3903d052a4e906f31f94a3db7782df51aeea0f270e2d543d0a78ef021
|
| SSDeep |
48:K1jUN57r3nSdSWl6BOEhTOn38UDeEZdV+XjH38QhG6TYWwpbw7VmWukvgBNNtZ53:yjUNhnqSWl6BOEy38UfLVIb38cNEem7J
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ARCTIC\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.32 KB |
| MD5 |
1227fd3fea6e18ef17f7c35838759104
|
| SHA1 |
50d0a188a20a9dfcf63ef5acf694f56de3417d30
|
| SHA256 |
5045665ec5329760cf7cb0bcf649a8c5d1a2d1276d480d4f450af48d34092f78
|
| SSDeep |
384:12KwetCCidsMrzmA3+oCcmSr+NVxMkWj8lpDVJXtnONayE7kVRf4:p5CBd3UoCcmI+yGXxJ9ONayEIVJ4
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\AXIS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 34.10 KB |
| MD5 |
89352fa215d36ca35d3a36f1f2b689fd
|
| SHA1 |
9e88f4c31e4dd786ae4a318777e67c860574f46f
|
| SHA256 |
5c048ffc50b1e9a5a6bda6ae9573687775d0bc0af55f9370d3fd054225163728
|
| SSDeep |
768:kMwLYUEXByUOqHH9AaPXr6d+5+XwgtEuMakKKHwyg9o/qpnFncph:kZ2XQU3n9xfr6E5+XwRb1pQygYqnncph
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.13 KB |
| MD5 |
83a4f81bd8aeb28f339ce178787692f5
|
| SHA1 |
b319432ce80b8f09dba5b6bde81dcb95ace2a4e9
|
| SHA256 |
7b63319ffa9f0178dac9b4b016f5d2abcb67e1c7a005f7865ad8d405541cf928
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr50wxYW/T3gFiwCUQY3Rx:4jBIDchp44EzW/zgFCUQYBx
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLENDS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 20.14 KB |
| MD5 |
df1fa11e5287405b9783e2818a19dd1a
|
| SHA1 |
a103cbb2d6820cfd99a72b62997a04be2d2ee1ca
|
| SHA256 |
a19de04f4e0b7ab3a22366c14888de152f97649c993a714538c0de9cee90c4fe
|
| SSDeep |
384:OIxD1jc/P03rk5VSrKDhRiExC0DxCMQ3nJ7EsLC62L0YYpv595SLA1:PzgE7kr4uFoy+3nhEsLC6xr5Ss1
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.52 KB |
| MD5 |
62050f42a21588c28317b7043ca11b28
|
| SHA1 |
78bb3f658c68dfdc0532617d51213a55a4198bdf
|
| SHA256 |
4a4fc93ff675b2b32762efc1805ecce470d5a2b36348438e90ee6ed6bcd79243
|
| SSDeep |
48:XKMZWpI5xrjqtfCNmrOgb7b+avVW9pptD:aMSSxrjqtzrOS0NN
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLUECALM\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.24 KB |
| MD5 |
734cbe6b277ddf7d48c0710243ae3436
|
| SHA1 |
c33be3d4c74436fc0f0619a65c1dacebbfb49a72
|
| SHA256 |
cc696516693462fc76a72643304f78e12739ac1725d04100938df4a72307d6b3
|
| SSDeep |
768:MGk8yZw1bS6+TtAJ8duOTPR3KPDiLklwcMQPkmUC0fqk:MGHOaGTtNuuKPDiglbM0k2M
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BLUEPRNT\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.88 KB |
| MD5 |
b99eec4409d02fb2c310905bebdceecc
|
| SHA1 |
1fbf255d49fc6fc3b3bb00d870a0f12e3f2ec045
|
| SHA256 |
e74965267dfdd71e6706402040ad3f7713ed48aaf7c2cba221be1633218eec2b
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5Z72czS6bjj6mZs6S4EpK90IX17XII:4jBIDchp44J2Abjjzsz4EGD
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 3.40 KB |
| MD5 |
a55b4303d5c7adf441c7299c87506586
|
| SHA1 |
2b6b585cb8c8fc692f7338b3bdd2358cd7dfcca3
|
| SHA256 |
59568a57c6345663741ba195741ee2a0428ba9d71b77ca55e56888bbd6913763
|
| SSDeep |
96:4jBIDchp44pZ1Sp5A3e0iRhYnu92wIh7hMiXIO2ujN:4jBge4bqO0iR41MqIIN
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BOLDSTRI\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.09 KB |
| MD5 |
66dca5e393e98e3d426a3f43f1cfc61e
|
| SHA1 |
564cb7349bacc9887bcf32b30731051b8baa3f58
|
| SHA256 |
86c57bacffd31d457a46afd6e890094b6ffec39a9462f0f3d2a607f7e430dbae
|
| SSDeep |
768:yV31eoptFRp37NnCrN05oOq4Qu5pMuAnxkR6Wa+tO:ueovF/Jg25OuUB+E
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.66 KB |
| MD5 |
491428d655b4366ed1d12617723282e4
|
| SHA1 |
a70e2bff1e36a60d816155a9da48f29ac325a00f
|
| SHA256 |
6bd4e39926df80485a2c66655a13af94d8343f28249d03a4fa35c13bdb34640e
|
| SSDeep |
48:FZHsxc9zi+ezwbBYJ7tlV/PBD+Y7jdG9vMTlHJ9cUZebWPtjexuitSuDX8mbhg:FGxYzL6pznBDvGuv9RKkt+TSJmba
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\BREEZE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 42.26 KB |
| MD5 |
558a826477f65cead487e4ec82fd4996
|
| SHA1 |
9ac45858cab568a0d706d4bdf580d7eb1488a6f5
|
| SHA256 |
4c4a42192377d7cb44e105fe790ed1c647c74affc14eebbb3eae016c0ef48c45
|
| SSDeep |
768:ONLaumrtpVHPD/JbqJ9XaBWzDqeg3XkD7mOJbqd+nNeJ5a/v28VYWqX6nlp:vjvbxAaBWzDqeg3XomOJ8+Ne2/vd2RkH
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CANYON\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 945 bytes |
| MD5 |
3747079cbe6be501d050f66b910ce542
|
| SHA1 |
94cb7c165bd9e878904cebf7470008b7dfa45e18
|
| SHA256 |
d25cf9b0d0d7c73a06cb33a9c031d98df86f94532d59a781d9824bcbe086d47d
|
| SSDeep |
24:SsL+wmBPd10NQ/2Kbi5B4yK5Is8BlfnRGtJzPw4P:BStf0S/2Kctn4JbzP
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\COMPASS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 20.09 KB |
| MD5 |
118548e088157ae4060184ee0a8a971d
|
| SHA1 |
13d456563e289b9cdc7be464e7c0219220eea7cf
|
| SHA256 |
a5e53255ac47de2639123455c38a8895cd4bbc2335cb5a6f9315add017adbeab
|
| SSDeep |
384:PBWEsmGCz2yylb+ki7tgLzF+S0dDPsjK+wyoz+EUHFRuEqqDGcAEvF:PBWBTL3FedrKKwoznyFRjqUJF
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\CONCRETE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 27.92 KB |
| MD5 |
274bc5b4e5d40eef4e32e83401d6020a
|
| SHA1 |
e9c27296be12a33f642bc199c4e56e2d9a0cfcf1
|
| SHA256 |
5d888fd6816748712da633a0dcb467f3bedc62337789cf8eba49bee41694fcc9
|
| SSDeep |
768:w+pGZh9PEqux1qMkvpQv/qokkAvxUp4xzjS67XBycFTCr:FpGZh9PQvTkvpoQkAJUp4BjS6jByc5Cr
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\DEEPBLUE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.50 KB |
| MD5 |
3dd79513e5347925b9edf8748dbdfe94
|
| SHA1 |
a233ee22766505140a8dcc8d66bc4dd451f8bab4
|
| SHA256 |
24f20b3eb3c991c29bf27e2a9b650218df1adf596646c1584e5ae4abdc1644e2
|
| SSDeep |
768:C5ctJBpJuBPBOnZKO2iIoVymqF+7IT/jGln541PKk4FrZoHpWrq:CsJBuFBOTn5bmH2q
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.32 KB |
| MD5 |
8768a9d8f955969bcb20b5f4a8ddb693
|
| SHA1 |
4c94d49b14b4adcfb2376ab080e7195de1722ac3
|
| SHA256 |
cb1e504f6a2fa1eea1a2db39450d2fd9bdd797426f7c5677cd298217cda4a446
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97nYAFvHQmQlED+KVbKbM:lCBVhwjwImuJsh5hp4XIBr5UOHtQlE/P
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ECLIPSE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.64 KB |
| MD5 |
41a83c3c21b4aa31508785107ceeeea1
|
| SHA1 |
d1027e81235868f33e0d0d3e3ebc2579c580608c
|
| SHA256 |
495282596ad6615bf6f3cfcf38fc521b1bf8ef4c891c223520fa378278c9e383
|
| SSDeep |
768:KQsTaC2QKJWyVCP52XnjOML9ZofGNB9Cg3KvKcJGBh:JbVk3QZofGdC48KcJGBh
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.32 KB |
| MD5 |
3971ce20742a89ddf650b69a0582b612
|
| SHA1 |
6489b3fc9ad1ee14d747da1c4124607eb5662b53
|
| SHA256 |
d77cadf5cbebf15024cf3c7eb6b297b9e37462c7c7ef04a7e585fbc99e5df668
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97+PwyusKoUlfhitctSeFEPk:lCBVhwjwImuJsh5hp4XIBr5hSKoUlf0Q
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EDGE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 25.78 KB |
| MD5 |
a7e7f2831df9b5f4d448b576766821ee
|
| SHA1 |
5eb168d2d5a66f812d9ac30fcbd0e0ccd8a9499b
|
| SHA256 |
54ef65cb2f83e2edc80e23a11aecfa49e647ba83a0ac7a48320aa362ddb18367
|
| SSDeep |
384:tFJAur45CxWNNLr4wsiBCpP1ZJ80++X2IREG5EjLCrSvSTMtKGyN5ebBtN+YH:tF2j8mL0riCPXJ80Z2IRLBMQ35IYYH
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.32 KB |
| MD5 |
c6333bee6b1fe8d8efd06b02cc90a7d2
|
| SHA1 |
3d75a8e73c5cff991aa9de717ebd5a20780306e4
|
| SHA256 |
b7b5d09a064c66e538393a6a3f458c90b9f2b85442847fe0956f25ed11154e27
|
| SSDeep |
24:/UJ6PEUZmzmBxgJZ5Wn/2Apaxkv39iTH7vvczqgICgNqiUavHs5/4TR:bPJZbx05W+AIxO9ijb/7q+Ps5wTR
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EVRGREEN\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.67 KB |
| MD5 |
bd491df366c057e86a5a13bcbeecc2db
|
| SHA1 |
75258af2648013754bbecc3f263c0f8199a31085
|
| SHA256 |
35a2ecd36c6449bd88aebc8094876593c5089899dec8d4756b0a7a5525a4fe26
|
| SSDeep |
768:NwgtROS2I/ETV0nck89pvcdGL35+mlHFm3j3qoaP:Nw+8S2JTV0nAj7LBlY+oS
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\EXPEDITN\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 5.00 KB |
| MD5 |
8da5c91a130de811ee4e66594f08c802
|
| SHA1 |
a697beb7eb95fe3a4eb78276817cc9f2a67f9777
|
| SHA256 |
cd9aff2ae76c0576065da77812b07dd46149d31d487623e54b8d81a28f705ea5
|
| SSDeep |
96:4jBIDchp44jCu5I0+kZdX4VtV8g8gSgaehco431bZtBOnbQ+4QEgnpVq:4jBge4I5zXwr8gHSSco431bAncgnpU
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\ICE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.49 KB |
| MD5 |
878eea77bba70dab643a7acd277db0f8
|
| SHA1 |
e4b82d98fc93e44a854e91c81c3b159f635be184
|
| SHA256 |
f11bf546e48d530002d529b7844c7636d03bdc980fc39d418fb17aa463e33646
|
| SSDeep |
48:n+LjD5xfEYN1yNoBp17UgwdQhowcCkwdV05mxSMNHw6/wr:IlxfEYyOp14gwdU7kC658/hv/wr
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 5.06 KB |
| MD5 |
6e889291e7ff300e9fb0e34f1152304b
|
| SHA1 |
5c6665558771a9476c0415f6b11d2b50758fb9a0
|
| SHA256 |
1b1835e56b1cd3afcf33583fc3da7d27e716408c68c9d1bb2f977525a42e0411
|
| SSDeep |
96:4jBIDchp44lSsMfXrjwm1SgTFKF17qxhW8RhXlxZZAQn5sVgRKdlHeQiI:4jBge48SsMJLmOHRhXlx3AQagAlviI
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\INDUST\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.77 KB |
| MD5 |
ff77e00caa472e31a4742f1e10ed151d
|
| SHA1 |
5f172e26676852bddafb46c8d68064732d447804
|
| SHA256 |
a473d65f900f9381b27f96ec7b0935eef36c638aa4b3a667faf387e295e08605
|
| SSDeep |
768:j4t8ex7m4esOuC6+YRqWdErfZxTExyV6l8161fJBSA8G0tXiezWhXj9:j4t53esL2YYWdE7wA0oa0NDcJ
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\IRIS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.03 KB |
| MD5 |
d8f8afbf2321bb8a6315f7d4ae0cb5ca
|
| SHA1 |
c2df543307bd18770694cb005f71228b5dab19ad
|
| SHA256 |
04672265c547d6b9347f6c852a56faa4887e3770c2eafbd9707a31b2809b4f39
|
| SSDeep |
384:wwUNgdiIjInv1to7cuopZ4M+x+cidSBBd4haazv2I7qOPq8d4GoxkoN:9UNgQ5nv4cuoz4M+w+5NQv2CdoxkoN
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.20 KB |
| MD5 |
8e54ab598da9cb35b66a6fd14e721982
|
| SHA1 |
84600446508ab3ddb5287eb095ad14bef5f6b8e1
|
| SHA256 |
529bfa87f3c0b54cf35bb7b83641c60db5ff2ef342a4dd61b2353a61fcc170d6
|
| SSDeep |
24:/uoZ7Jwp2EImBxhRhow4NKnXxYYcb6Gy9sthE/qXZt9tdttHcFp:PZCp9xhRAkBYsd9EBNxWFp
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\JOURNAL\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 17.98 KB |
| MD5 |
72c58637591d3a0b0ce9d9d7c5582b04
|
| SHA1 |
6981064f6277e3f351ae74f67fc01800e8481762
|
| SHA256 |
abf8fccf90088140e6dd4814b921e4d6acc19860f791709ae213b9098a1fbc47
|
| SSDeep |
384:TcRkbaGhrgWkaYh+Tv3BXR0cdectuxZj9rMTsFThX03Y9N0T2igx:TcRkbazF/+bxXRhdectuDjIsFTyW/
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.62 KB |
| MD5 |
b11012cbcb152f1146c2753066c08382
|
| SHA1 |
98b4c176c905842d7d7c40a9479326a5ca19c854
|
| SHA256 |
67094099204c93ed2a551352d49bc480945ca0f0d02d302cea0ffde3b3a0dace
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5qjM/H4BFSCMRFTTYP:4jBIDchp44Bv4BIVTO
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\LAYERS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 43.80 KB |
| MD5 |
f7840a110e2e2ed9f739818fb7acce20
|
| SHA1 |
b7e36d5bd680f60f7c269292bfddd945ba7be39e
|
| SHA256 |
14ffd5fd5a57fc70fabf833b5305b4fa92f5556b8b6d81da4fd0fb9f4f38a500
|
| SSDeep |
768:mc7LQOL8+Wy4W58zECCYWxtYaW+zJNt9b1V44Ml8DP+JJm/CZQ5mfbGWeH13e:ZIjbzBWfxW+17bVI8iJ7ZQWGVc
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.51 KB |
| MD5 |
40ba0337f55b072a59d8a4cb9f045c2b
|
| SHA1 |
cbf4bb136d3f34b9d7761672aef18f13dfca9bfe
|
| SHA256 |
a54ac3a61259a0b3709d3fe1d59b8a99b37bbc1ea29b3ce681de0619a67135f2
|
| SSDeep |
48:RtH3HQx0cA1n6pKfHC1OPLeqS3ctLcZEWqDkQCsMnnx9hhh:XHAxEnGKPoOP3WUcZEBfyxZh
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PAPYRUS\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 36.56 KB |
| MD5 |
723971432009ff1a204a28a41a5e9f5e
|
| SHA1 |
ce7d005add839dd1892ad1dc3a6b256cfc5ddd0a
|
| SHA256 |
2de78d86efca85e6ad1ef90ae0ec9966ef1829cf9f1b9538db74ff1b30ec96a1
|
| SSDeep |
768:CCHVrJuYrNOMR++EW9uWAINFPdVuyfRS4Gv0N/:xHPRcMRucu/I/PdgyfQ4PN/
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\PROFILE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 16.35 KB |
| MD5 |
93a93005cc38c00157fa47029f67abf4
|
| SHA1 |
e7a2ede6d51d6939e5c293f6bf1c341f9c1ec2e0
|
| SHA256 |
6a2ba98410dbe97a241b986d1b49ffff21b4601651bf7ebd68f671bec65ee0b6
|
| SSDeep |
384:8isUEVyPH5DSO0z5/ji/Hvswx/MMLnHt94fa38:+vy4rz5/2LxUMLnEf+8
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RADIAL\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.63 KB |
| MD5 |
45a4d776ac47f0d07b93c48dab4fa1a0
|
| SHA1 |
87b266f86c11e364593f9e984cea000658ace893
|
| SHA256 |
3036485b90fd4c431508b663d33e556b75b66adeaa5bad938f3ddf70c4f93c13
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5gVd8At5HaFREW/ce/1ympb:4jBIDchp44wVdjravvdysb
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.39 KB |
| MD5 |
24b7838d42978b447e7d7def7d26096b
|
| SHA1 |
1f026e8a02d69f284a2ac7e730c90dad94aeb141
|
| SHA256 |
8ffa495a6292891fc16133a60997c92b606f5311447f8f489b8c2d8ada7ffc1c
|
| SSDeep |
24:lCBkeh1H2jwIRF0huUEXmXh5lgIp4oL1aIBr5uva97V6V9YtOYXFXw32aqRlQNcW:lCBVhwjwImuJsh5hp4XIBr5satO4gyQN
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\REFINED\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 15.37 KB |
| MD5 |
c5a2b33078494e76b36253a8fcdca10d
|
| SHA1 |
23efb5a3e75f85bfedbda70bb36cb428b1b2eca5
|
| SHA256 |
857b90d940d5c5380fa15c2888417e2f54902497194483152069286c9a632ccd
|
| SSDeep |
384:/s64mXBbWv2ZGvnH7tpP4KHdAoeFAZcsufS/o:/s64mBG2Ebtl4YdAoeFcdo
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.00 KB |
| MD5 |
3fb7c30235c8d95d0551d2ed0c322a02
|
| SHA1 |
92a144a8e812cb418777f85cf355b11450838e72
|
| SHA256 |
6e904a89915f717ea8002583f57de6323171c4437afc37a62ab96199cae9539f
|
| SSDeep |
96:4jBIDchp44dwTYfI//WImHkGXGbMMF05GSrMrDgrJnlA8PfZXtX:4jBge4PB8HkGX4JyGS48nlA8nvX
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\RMNSQUE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 46.84 KB |
| MD5 |
a5e6cebdae7592a5495033bd23f33381
|
| SHA1 |
b2214f2d65d4a65902494b4de6e6021a14316290
|
| SHA256 |
b6fd1a8d1d27ac3446d3c1fba4f3d17fbaa80be3b8bb2979685160dad8754914
|
| SSDeep |
768:R/R0Iw6E0d3W94HYuvOsqeNg/XNpXPokYRLN1Fuiq23RVshBp/7bVrtKt+20B1do:R/eaE0d3fHg0MNpFYR5nqMV2B9zqh0Bc
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SATIN\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 3.53 KB |
| MD5 |
a2f47df6293cbb513fac381b49eecdbb
|
| SHA1 |
d2e055a75d0a3d634bc1df8149e805ffdc84469a
|
| SHA256 |
7ac933d015997fd981825505fc39cfd9c148a3db148412e5eaf76286157ad619
|
| SSDeep |
96:T7zx+GOg/93CdUdK4SLb7AOLHqTLWIKq7EF042I:XzsGOGSUdoLtrq3T7EF9
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 937 bytes |
| MD5 |
11beff2aaa41c3de29a2915281c1178d
|
| SHA1 |
0178460f29622ea1adfd0095622e77a2b0ee91ac
|
| SHA256 |
c2e287c817a507c751dc6469ca0665b75887f4efb19b028699d826d7e997163d
|
| SSDeep |
24:npW5xmBNUaTll99ci7IOrV7SVym7e9BLJdYSBitMzd2MD2:ptBNUaTh9XIOra6PQ3tNw2
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SKY\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 28.62 KB |
| MD5 |
a3168d490184991d2f70f651cdde8da4
|
| SHA1 |
c337072c44c90b4c323ee275fd177b4df23a5323
|
| SHA256 |
dc51935bc7b4a12cb0480b2f2098d037d703a40392873ee66f7d6dbe90587e1e
|
| SSDeep |
768:GOo6JcRAI1fsUhhCwgXFKyAz6PPy/4M1DaTB2:OfeGzhw8EPagM1Ds4
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1009 bytes |
| MD5 |
76eed7b456e0ca88b2a39a2f669f6e2c
|
| SHA1 |
072e1ecd892329f77f318a1f5ddc925209c9f21a
|
| SHA256 |
d1cafcc7f017ee82aec73ef74359f98c412f73420973d3e93b28e24f89e0653b
|
| SSDeep |
24:IhXgbqsL+wmZtkxBs89jch8u4L3jq4nd3aK9a:IhkZSa1Yn4D2OqKa
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SLATE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 26.54 KB |
| MD5 |
1dc51228fff5dde8edc48339e926be76
|
| SHA1 |
fa2fdc36528a16b4aa079d235953c7c456b1ac1b
|
| SHA256 |
476768ee4b1d1fbbe9ef81520941ec307b50778771b57b4f86e98193804be7b2
|
| SSDeep |
384:LVYFqfrgeuwB7mRJiHhwlzar+9Sf0YjtyrkyhsI9MtJCSgdTS9iN1Nm0+tK:ByqrZBuJWSyOSHtp8FnSgdiiN1N0K
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SONORA\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 21.30 KB |
| MD5 |
af7f1feff001dce282cea87a50bb3c6d
|
| SHA1 |
2769095c89122fbf8240ce5e44f49b634a88af23
|
| SHA256 |
6ea4e87d620b4af2e2454516710b8f3c5a34d38307adbb47a99b0c8aad013460
|
| SSDeep |
384:FyAYB6fPV/Xjlg18NqXVvCu20yhCKpTLU3Gm+rAFAn/VD3rdzSpt1jB0WYswgL:Fy1B6fPZpg1sKgutyhFVU3Gm+UGrrd2r
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SPRING\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.07 KB |
| MD5 |
5593cb51cfc4a528ceabac186ef810da
|
| SHA1 |
8c3f1818aa86f70b9fe7aafa412b958409944bbf
|
| SHA256 |
36ee803e01754b55260ab7359a9401e533250843414d28a3aa5e65b981a2c367
|
| SSDeep |
384:rZkUuhP4LI2dT3PT1bYQ+W9Sqo5jfNdBLhgvsPlIk9OL4ankpjrdHLDO0IntE0/2:ryZh4L3T3PTmqoJT4s9IIOLtnkZRHLDL
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\STRTEDGE\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.69 KB |
| MD5 |
5bb66a387396320d55b30b13dca433e4
|
| SHA1 |
cbf780be15719d67ac18cf587ca933194c82e72e
|
| SHA256 |
2845da87d7a3eec93c99f21b9b2778ba2c7fbe86c58c4f8e986537d0f9c72f38
|
| SSDeep |
768:vm5FMtbb9NhAqwU4YQM1lvzZf3XAF31Mm4IRVdNOPBNG:vm5FM1b/+U4Y91l53XAhbJEM
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\STUDIO\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 17.95 KB |
| MD5 |
12799349d824a34d8c7099de5eb40b2e
|
| SHA1 |
80652b7f885fc450fc1a143e595e4e00f8da3cc0
|
| SHA256 |
4227c2c15fa36f9a40c80a1c99f478a056b76b82ed99d25739cb67887d9072b9
|
| SSDeep |
384:8hwLXTdXIAq+G4gR9HJ5M0+hamD3JZ1IyQmUmitwy/pz3:bLjdsv4ElJ5M/hxDz1YXt9/p
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.87 KB |
| MD5 |
24427acc97ed6afe4e029e511e9fb6b1
|
| SHA1 |
96fefc56105d1aeff9794f73c68f7cc9dbc57804
|
| SHA256 |
8d433ecaaf09bc7f4e114bc62f6a691f7a3021a80d727a1467d396c197f1b549
|
| SSDeep |
96:4jBIDchp44hRpkKyHomRIbw3qpD5YJDnWdF0UHNM4FG9P1/sGjiTGU:4jBge49TH8bw3qAJDncWiN5u6X
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\SUMIPNTG\THMBNAIL.PNG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 43.26 KB |
| MD5 |
11b04739c9778d678b3e72bba0966be4
|
| SHA1 |
4b9df6dfbaed9d7a64c3fe0e7fea70b7e16f35f6
|
| SHA256 |
292b679d8f61f4c8671a49e42cac9a72eafff474f175c1a802e297d2d1fd14aa
|
| SSDeep |
768:oCSROQeGp6bjxjatnSTudVbqQeMAMlsGTdyFmS7cFyWu0LMwh8s6yAL:oCSRpeBv5S7nOZqZecF1u0LdhN6yo
|
| C:\\Program Files\Common Files\Microsoft Shared\THEMES14\WATERMAR\PREVIEW.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.53 KB |
| MD5 |
c8b26b5007995b01eaafdb810235a322
|
| SHA1 |
8a6ae5ddd69821b17867b0eff6329e4103084fc6
|
| SHA256 |
782fde46a2f1cb5d9169641c3a0a92c6ef1ca9dbd08a01dd64effcdfba567112
|
| SSDeep |
48:lCBVhwjwImuJsh5hp4XIBr5l0HRg36PGLLkXmnV7XOp2:4jBIDchp44uxgm0LbV7XOM
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\EXTFONT.SHX.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 426.47 KB |
| MD5 |
85f43db988d14ba6af91df8258a615e6
|
| SHA1 |
28b54d9c6aef718fb21492c8b75a317a8dd3a940
|
| SHA256 |
f2e3e11e1d7a932a5a437eea7affa5fd7238b6884c9586616c023fa41e02435a
|
| SSDeep |
12288:Z0OiFh/9RLN2fgYTwNYWaoX5NRUwP0CYI6:Z0jrNxIwNYWakUwcE6
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\WHGDTXT.SHX.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 218.46 KB |
| MD5 |
13616a3cef7de98a429d7098c10e4a68
|
| SHA1 |
0d3822947a7c3ee1b680089fac2abdfd28c9c310
|
| SHA256 |
d380d2a247bf7e7ca4e7d01100afb7d02c1aa6d04aa9e5cb5a91b6b0b15df9fd
|
| SSDeep |
6144:Fcc3FHSun8pt27mNX1CNKQtfciQ0yE2xjMJLbXAda3tgZDhVF6xla+X5NNQLgM:FceFHF87anTQvE4rZVYpW
|
| C:\\Program Files\Common Files\Microsoft Shared\Visio Shared\Fonts\WHGTXT.SHX.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 191.47 KB |
| MD5 |
2655dc71446482fe11ca915784b52b75
|
| SHA1 |
e6f21549f4ccae034e0380d25446dd5f1593f8ef
|
| SHA256 |
2d67818ccb960e2917cd69cb9987508892c95e88c3cdd7cd55be1e30a9ee080e
|
| SSDeep |
3072:GlrGu2MyavX15Jlb4AeFD9dEbfB0uiMi0bQcPaj+0p0MdAdGW+aF6a2Yi16JjVS4:cGT83Jlb4AeFD9dEd0cCvGi1mMh+MzeH
|
| C:\\Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOInstaller.config.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 716 bytes |
| MD5 |
41ffce9037c8aaf1dfdb164313736c93
|
| SHA1 |
387d64c9accb0eb433c14b283f9349c2e281e900
|
| SHA256 |
02282deca9e14b69db84c0c9cf9370c235a797a344c8f1440fc783e4435cd36c
|
| SSDeep |
12:Ac7EVFLQ/lBN8hBSssy0FEDwQnEqJHB8O2y2TzVKan52Ws8:AzNS6zsy/D7nnJH2O2hDXs8
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00004_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 8.81 KB |
| MD5 |
1408f615ea000b60775b4182bb88cf16
|
| SHA1 |
b3e203216e23a7b05b1988ed000adfadab375f9f
|
| SHA256 |
ab06536af2a76bd121331cd2553d714d5068ed33e671f656b58912a0ae7a3d21
|
| SSDeep |
192:clfG0fdmONQMd4WaTgRmHE2aTk/2wGFWaTgRmh:clOAdbNBd3R6TRg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00011_.GIF.crypton | Dropped File | Compressed |
Not Queried
|
|
| Mime Type | application/zlib |
| File Size | 7.05 KB |
| MD5 |
017806f9fd887a72cc4ef9f7e208b66b
|
| SHA1 |
341e1b332466177448730baed1436af0eaf13a26
|
| SHA256 |
0ff50e1c15b900ec4a7374df6a43688c0da2545e5ea0802d84434e441f0744de
|
| SSDeep |
192:gm6BCvv3J5SXTCFm2/4xpWt8TgstMK2oGf7oUfMx:d6BCvR5CW/CpWTyGEH
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00021_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 14.52 KB |
| MD5 |
a7775a64ab39ff66e878d8588c27f817
|
| SHA1 |
1b10099a41d8012a44557e13c0e8c66300bb8d28
|
| SHA256 |
3a0cd46759c8fd7d1f249b79df350bc43c192a9c38e9910269b7c5cdeef653ba
|
| SSDeep |
384:XPvCNEOBV9vck66dFqm55K0p5d4yVRh5FRGpEVrQAzj/N/r+:X+xBT096R55Np5nXFwp1AzrN/S
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00092_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 502 bytes |
| MD5 |
9bd6f9fafb5bc67a6f23a94cf1a4eedf
|
| SHA1 |
793c6fa3269d3e4806197484131336966a66cfeb
|
| SHA256 |
bd83bf6842f2b898b7e97b9dc651da7f7391be3a951de9cfd3ac2bc82e9875d7
|
| SSDeep |
12:qIuea75cA4DZSDS0xxIGrO1icSR1okRRImY+PY6cSR1okRRzR:f27MFSDS8mGrOwfRBPVfRzR
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00103_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 12.40 KB |
| MD5 |
b3338c951a374c248aa01e05a07e504c
|
| SHA1 |
7bd4bd3fa1164f9411b6b5808e6cb6411598ee90
|
| SHA256 |
de7fd9472e8accbcb44f8a30b61d4232ab88a4c6bcd942d3a1e7da91446949cb
|
| SSDeep |
192:q0LnlBrzMkUPgUvnoyuQrrT2OiORjHwHLnlBrzMdUPgUvnoJ:7PM6Qn1jbHwHPMXQnc
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00120_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 3.40 KB |
| MD5 |
79d6b34cac9eaed8e0288df52af87209
|
| SHA1 |
5cb075d0c6ae44970d49c6102b5b36a74f81376d
|
| SHA256 |
f565e6eba80ddad33409b06a7fcffd22de6aa99b2edd7e66b10f3184a6562ccf
|
| SSDeep |
96:RM/VdOiP3iMlSBbdoxCo7EeCbEyAiERetHvQV:a/ai/iYvEzbzTw
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00129_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 12.19 KB |
| MD5 |
a4f7a4b5bf989f5db811c6a98ca57f98
|
| SHA1 |
8dcab58b81f25d7ad6e68c83c56f9e658dc3b892
|
| SHA256 |
d7b1e198a5fed4cfacc796de29ec5470b96d4bb31f0c862a27de14e1463c015f
|
| SSDeep |
384:dMmth93A7OpVu5jA9Dvgs0XiY6jP6L15gKwD:dRQyx1vSeuLzwD
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00130_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 5.13 KB |
| MD5 |
c5588c69131ca40ce2fb90e7f17307bd
|
| SHA1 |
4c713470b9b7f331b3c6e62d19ea29db455fafdf
|
| SHA256 |
cd5ac90ebbb2625f3d223b259035283837d2bd4c8f5015bf74ace6788eb48453
|
| SSDeep |
96:roO/e59mZiP59mZi1eoOzPkxl+fg7Xnn4U1HPbKu3aC8a8bqYK12nHum8E:roseFPF1ePPkrWC3dPb13aC85bxKgnHn
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00135_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 2.54 KB |
| MD5 |
4102a2c2e2cf2f706d46b4e641e0c295
|
| SHA1 |
d8b7751a43a5347ff9a7eeb930ceb26774b9ba38
|
| SHA256 |
9a8b2a223b87638191696d494b162bc8ae8d0a03ae8b5b9f7c5eef4a82e49477
|
| SSDeep |
48:RTd7IaI2s5KOc3vGJcFylLFdzYrYFDjHBan5s0/yXWy1hh5tVnOHV3dGOKSiEF7F:Vd7If2s5KOtEylLzSbnLkX1/7tOBFjwi
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00154_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 5.19 KB |
| MD5 |
ef5765cd8a6221b61a9440182b58fe6a
|
| SHA1 |
720947a685911bbcebd989cb6852574b54e9f097
|
| SHA256 |
acc2e21bb7ecbb239c6732b02bd4c75b2bb7f55d31c02fbfa9d9a19738020e85
|
| SSDeep |
96:xVqBMRICyEZO10XRPB0qRmY42XASrqTzaeuHEEvgk4X6fcczkttcswhbXh:x4eqCZZO6B0qcY42Q89HGk6czJ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00157_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.84 KB |
| MD5 |
3cf9ce03ee6eb9ae9ad7226c4819a573
|
| SHA1 |
a8d157e62b0967126049a6296e14e273d2c2660d
|
| SHA256 |
5468bbd1f4591abc6777fd81380b255dc357241f6268e55ff4622dcb1c2b2105
|
| SSDeep |
96:8Ca1tdOe/iwNJT7BRRNd9BkKDuiIumt01B1WXsC2ivO4cN:zSDFLv91Iuv16Xs6vOl
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00158_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.91 KB |
| MD5 |
32d5e61dd613fe9dc413d438bee5b578
|
| SHA1 |
0070556cba8c36ee7892ed3a61e81ddabe74f235
|
| SHA256 |
a7dbe9294343b39ad2385ba0b14b887e490569ad23bb7148bc4eaf7612cc3c0a
|
| SSDeep |
96:mCkcOK3l4IUectv/iqLm+7jXguAlAhDDYIsyohdRpL+J8fc:FfPIl/iC5Xg+DcIsy66JF
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00161_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 7.41 KB |
| MD5 |
ed4e76f9fa9630e6a014f577beba14f2
|
| SHA1 |
0bdaf6612c20f53a96a25274d8c8b7d9dd99d318
|
| SHA256 |
4dff6ad72e40b110297d431bbfd1b44b32cea6ea8378a4e612354146ca75e3b2
|
| SSDeep |
192:N8G1ypBmwz9VzO6sMS7zTIgT3hVBpfRnzoxzGaM9St:N8+OBmwz95cT3hJfR2bM9Y
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00165_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 8.38 KB |
| MD5 |
dc9bae6552803a5f996dab15a83e05a9
|
| SHA1 |
fc048d353b3abaeea3278aa9d655cc7a98896b64
|
| SHA256 |
93db03f70f51c5905816f47067ee54d9b3a3482421c7e05bb245bf659665ebb7
|
| SSDeep |
192:w8G1ymokS/aFwSfkOM8O63pBsxyjvsDf+gdY0kJMXGvzwpxUgk:w8+po3UwOM+bsxyjS+G8JbvUxUgk
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\AG00167_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.78 KB |
| MD5 |
a5bd59026977fb18e30411d308b1506c
|
| SHA1 |
c00c76406339b03c2cc0691050d2e85cfcb36731
|
| SHA256 |
2c5eb3fdc29558c7c30567674abad7cf10d6c8d7b851047a2e92a492fb899a56
|
| SSDeep |
96:68ClN1ylr8vYt3CGI7QYsNQJGTKnzk7Rx1gK2OYiq0RiaaJe66ObyGK:68G1yOv/j7ps+xaH1g9OYiq4xaMNOby1
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\BD10890_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 13.20 KB |
| MD5 |
7369c7424d5ec0985d4b6512181b66ff
|
| SHA1 |
865a1cdd324d9a65704f462414f1fcca75374cf2
|
| SHA256 |
f44ddf03c3cfc8efcb19f472983eac9463acd3dd8cfaef1aec2a1e4084a5ad30
|
| SSDeep |
384:V4NJ5ELPzUXcKd/7WxEaoQFNoWCDhbsTwlBJ:VqeLIFK4rDhiwJ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19563_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.97 KB |
| MD5 |
17c8d1c60f566b37542b86f063a0c99c
|
| SHA1 |
b8ffb269a61f27b260a6f5d53c45f15bde6a9157
|
| SHA256 |
dbc4734e8af0b7652585fc0de728505986f201a62676177f20f07b98e5343f04
|
| SSDeep |
384:61jjIwxrBchGqGvoU5Lf9G7oZEwBTFSKuzKUu2tNNu/k4Kzlop3hKiBm:6VBr/VWifuzu2t/ok4Kz6334
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\BD19582_.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 15.36 KB |
| MD5 |
c6fcd50876ff9687c99f10f5e2f0bd74
|
| SHA1 |
b8743ec40fecae1c971177164ccc34a1a25f5108
|
| SHA256 |
45183110cd500c2d52820006a92d57466926634115bf188f3fc32f8f3cf6c906
|
| SSDeep |
384:Fuy6LZLjhcf7zB075v3rsizJussRFhAlzqU:FIdqTCssGw
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\CARBN_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 9.10 KB |
| MD5 |
4946ec4c734415ae950357a8185ae87b
|
| SHA1 |
5a0b83fa3eac00df6a5841d5412f0d77195d4f32
|
| SHA256 |
bf5256d9fef074cfe29dda9fe98809b11bc6bae84dfdb35a207c95aeab9c0df4
|
| SSDeep |
192:c4XXVZ8WDmWPceio7F2YPhQVNH/kl6yOWWu0cbExGtfGlUEg:znVZ5Dmu7FPOjkwyOWmcbntOlUl
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\CMNTY_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.81 KB |
| MD5 |
598a0a196909e2f6492fc9f18cbd3002
|
| SHA1 |
7a41832802ea4ac56c91b560b0172c1c24eb0d76
|
| SHA256 |
f6e4401e356180475a8278bae50a42e814646f35a0f000a80efe78abd7c53efb
|
| SSDeep |
192:9sFhwxBJXNvLv+EpxL0MTuJ+iCz5TuJ+iEFR4sR+scxn:qU3Vv+EpZ0Iu2uueO+sY
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\EAST_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.02 KB |
| MD5 |
3b29898f1f8a6e48ddc3fbab656bd233
|
| SHA1 |
40582ea99687ad600e1a5728a3150b914c4d992e
|
| SHA256 |
6770d9f8865e7565735409b04d7de3ad619452507e2dfdcf9b96c9d410449e96
|
| SSDeep |
96:dvhGZzWaRWRbKkxf/xW8CSmW8CSdtMDe9ZpwVicRNb7t4h/4WkJJpwb7tI+:dv47cdKYdTGTjwe9EXHK/PkJQR
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\EXPLR_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 10.31 KB |
| MD5 |
937630aa632a3cc178db0217e739a7b5
|
| SHA1 |
de6633c6c81a57d858a626a05c36d2445f428eb4
|
| SHA256 |
bfe711838f070fd0d9f7464461b9815c2da5af9aa2bef4a056bc7391b9dbc53d
|
| SSDeep |
192:ov8qUUUUUUUJZkiDwOZDwOlspgmwr0eFxIx1lHtttttwIcJc6GHNJ1ysVpRPdjCm:oHRRRUkuDwOQgmwr0eFAHtttttwI96G/
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\FALL_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.73 KB |
| MD5 |
78c8b77ad5be733d0b07adb02f52a9a9
|
| SHA1 |
caa681639ffe374377fc930815ce881c77ea0344
|
| SHA256 |
36342339109820c3e8be20ff4d13a49edc8a9290065474f7d57bac7743930902
|
| SSDeep |
96:w7vf8juizZqfMQhtiYmmoTzof5TzoIU9K9gFiRLnv9K9iET/eUwn:+vfEuOkhtiTzq1zy9lit9AiETcn
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\GRID_01.MID.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.18 KB |
| MD5 |
89a409c22a0dc4cd421557eff465d9ad
|
| SHA1 |
bac3dfe40c77c3933eea8472b30bda83c1a6598f
|
| SHA256 |
f61e30afafb2bd78ffd77a2ff12646774dbbb1e439c859e93311523297454185
|
| SSDeep |
192:rcKxNblqwgWdyjaorqeRMk0a5MOOS4yLFiqljh2dn:YKj0wvd2aorzPzOS4y1ljh2dn
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0075478.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 1.19 KB |
| MD5 |
4ae9509ded065627430b3ab48ca0b70b
|
| SHA1 |
d8f7164a26acb1e76aa98fb45cd08756501c665d
|
| SHA256 |
6c197f2ae01d55175dd56af80fb8a95ea66dafe87bc47b2c9090c35d013d1d5a
|
| SSDeep |
24:qP9I0syG9hFF+3A5g82kLRfM5O+aDyOdTGvf/Aie3dZs0NxMl:WMymFwAOY0N+yOdSHNevMl
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099150.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 21.40 KB |
| MD5 |
a2243b0594b2c43d4187330ee2ff3d9c
|
| SHA1 |
169151b1eb031ce9583fc17bc3af31b92c290896
|
| SHA256 |
bc174db328be499e328ff77ed53f185b315416838a25033ed22430e8c163d0a1
|
| SSDeep |
384:VPeKoBq0nJ1Q7Ej7rPZqVjRcTsOkQyU0EC/+A1saWsZtdja3ev:VW35nJeWrxqVdssOkBKC/rd9ZtQ3ev
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099154.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.77 KB |
| MD5 |
54d85f30c69006ac36e49b05e7a223a4
|
| SHA1 |
9d43f2d23e48871f7fed6f4a24ea97a2820c256f
|
| SHA256 |
62ee50cddf9dd8684d15d06426627bf80a3de1a7ada99eeb28c34e9f4d9b8810
|
| SSDeep |
192:VFeK6wXUKZ0X1hYEeX2zllcmRlql57jgn3JlCaQZ7Rok8i:VFeKXxWwE42HRlrJlCa8Vz
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099157.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 9.44 KB |
| MD5 |
4db909fc5c35df54acd88a5aac3e819e
|
| SHA1 |
73a67960febdf0ae8e55bf79867e44dfa3d74419
|
| SHA256 |
adc9b4bb6ee436fe32049b538775c088c5456a1b0c7130ecf1f3f5bd3636f3cf
|
| SSDeep |
192:VueKer4Zin/rFvB0/GwJF8caaiDzZd/fj001abGVVk4X:VueK4LJ4GCF8ca7rHj3DVH
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099160.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 14.79 KB |
| MD5 |
8e017776d3c02f8ef5efc6b2760640a7
|
| SHA1 |
772e30ab175d8dad3bba5ffe2dd6c24ce77a4bdc
|
| SHA256 |
4d2ad5677d9d80853eb95be560446d36c3a3072d9ef56d79087055208514660d
|
| SSDeep |
384:VNeK3T+m16RDiQf+zVLMpf06QDO2UgDMdV/Mf:VE84RZr06IO2t2E
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099161.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 6.99 KB |
| MD5 |
65ae2d28c297c7d3773226fb9b4f4e8c
|
| SHA1 |
84a548a0227c1e5d728b38584ea9dda5ffe18166
|
| SHA256 |
14b5ac70e2cd1be4716160b024d944550cdacce56f30594349896f607dfe8500
|
| SSDeep |
192:V4eKmbHCiskcmK+gQdkSEpBBKvCFqrw2j1PP1:V4eKEHMkXgQdgp/VY1
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099166.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 63.25 KB |
| MD5 |
d2719029800a5b3ad0f000564daa211c
|
| SHA1 |
d65b15cbba811ced96755956f67025bde719a05d
|
| SHA256 |
c9b51e40188320f9e03a278a0682114bfb040a2cacf0424991fd4e6c44762438
|
| SSDeep |
1536:fqmKXTLINijJeROHtd6kA6pTg84oHcrPlq4WoOuClZJ:SmuANijJecHvA84XrPOuCLJ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099167.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 42.92 KB |
| MD5 |
40250661af12db81daa3e49fb706f797
|
| SHA1 |
26ef08b5b6f5110c1c1ba4fe99cc1660e1dfa69f
|
| SHA256 |
53a1e06a0bb146dd330247534ffbaa2b48e512140352d2d929026d43335ece6a
|
| SSDeep |
768:VINiN/VsPF2B+PKm0cmwIrFIeBdYhgrEVAtbHvhLz+ao7/rlFaCyF7wnyHU24Uaq:OYtVLBtm0jJIeBauEV+L3o7/ZFacy0bU
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099168.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.71 KB |
| MD5 |
3fdb9b0c78aed6d2edf5178c39e5a98f
|
| SHA1 |
756b0c83df0cab7ac31d92a845a0392103064510
|
| SHA256 |
dc53df22dedc3826884fb4eae8b5925ce205a6e8935bef6701fcbd6197a40a54
|
| SSDeep |
384:Bgqjp0MeCcRaXBUVINEogxTsLo6k7jDjNlzOGToqIqhe/AvpGvDgxGDSTrq:2qF0MeQUVINEoMbHbzOGToqdeYvw7xDH
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099185.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 3.21 KB |
| MD5 |
286524193c061e9978575b66536453a7
|
| SHA1 |
efc5248e1e0bf4ee6c5c02a2cab5bd682b1ebcfb
|
| SHA256 |
8ee6871ce5cb461e4b6be507f3df178d1b5aef505105620dabd02b6249823c3c
|
| SSDeep |
96:23U2g5iBqkOf674nxOUaOzvsWIs3HtC+KD:2k2wiwkOy74nxxacvL8
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099187.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 23.95 KB |
| MD5 |
674c00f3a89053ff9fd535263018df25
|
| SHA1 |
773f4cb71c367e10fea342096db76a33191411bc
|
| SHA256 |
5393e74e09b091d62c65c41c24da704549723d1287c6b68fadb51a00f9ae2b0a
|
| SSDeep |
384:WVQYIXqqIg3XHOoQ5Ycb6Q0zB6JpIrNgkNA0h1iqnapCobPM/GoUCA3JlR1q:GDVCXuoQ5Ycb6Q0sJKNaEaHjCA5zU
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099189.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 7.89 KB |
| MD5 |
ea229973cce84b2a69559b4e516bec83
|
| SHA1 |
cc83c7604e7fcfb36dc260cd87f66be3a5c7f858
|
| SHA256 |
c93bed800470d13b0cbf215c2420be9ec4c8784ebf441b4c28ea80d9360bded9
|
| SSDeep |
192:8aeK5oHdK1x/sOV2NBuzEvHK5O0ik743VUr5y0sSULG+:jeKp1FUwzWHK5O7pmABS4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099191.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 60.91 KB |
| MD5 |
c0e731a012505c3c9f10d421417ad357
|
| SHA1 |
86e3f32fae2a99f91ba18327f9d5d25a1976f289
|
| SHA256 |
6ee476ab726d9459677ea7320f1e5902c295486aa01a40c5ee39c24b8dcd0393
|
| SSDeep |
1536:iNaqTriftHRy5OK09x6HnVCGfyUWnI3MadH87Qwk5BA:VqTA710nI+WnIcadHmQjTA
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099193.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 34.71 KB |
| MD5 |
0071075da2c814ec0fffa9b8a7b925d8
|
| SHA1 |
7eabba911448414a26c79ce3bde1776143eb272a
|
| SHA256 |
af81bfd7418f410249a3e622f97a31cd3d9f0c4bfc611d6e516f8a0d82ed8843
|
| SSDeep |
768:TlDX8MYb5uxV9CHumok+GkC0d8NAjpN34ktlu4pmDnC9GEESm:TlIMT3eGCO8qjp6kjVonupm
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099195.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.46 KB |
| MD5 |
95a2b9e7396bc416807063d326bf1424
|
| SHA1 |
fb8626acde4fbddb825d86e34a17e77c7524521f
|
| SHA256 |
1044180016ea3b186d1b2318c09976989bc885cafacebf8108e6399c9d1449f7
|
| SSDeep |
384:iQfONSrilW39zv5aF5i5CQfhHLc75a8iB7SqQmMv5nnTjVPJak+hLfeITCY0kCB:izsrilW/arjQfhHy5sB7XQmMv5PVBR+4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099199.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 33.18 KB |
| MD5 |
86f5e097b8aaa9fe6fd41e35187152a1
|
| SHA1 |
898f4fb5c71e8656b0875c9484d55064e06af098
|
| SHA256 |
c21f998cb36f86e0538b3ff5b4c23336109b7485a96bca4efcd09e4ffa69bbe5
|
| SSDeep |
768:9HfNvgOxxkfPGxpiD8ArfZC8Ci2J4kmT4lhDY63:91vjWiifZ3041iJ3
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099201.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 50.20 KB |
| MD5 |
556155fdd5a25971595a255a552f544c
|
| SHA1 |
99a35d652cfae2b581ef109dce55336e048fd402
|
| SHA256 |
8eba97fc502ceb03d195f7b447f18f98efdb02b248f7d052debc8bb142465fc8
|
| SSDeep |
1536:rg75Lcy3ayLFK0p3i4fyqco9/ei1d+96C9mrf:qhu0p3i4aqsiUvC
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0099202.GIF.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 4.85 KB |
| MD5 |
13635a3e8951a9c6ff559ee3478fd32b
|
| SHA1 |
bc50cea31d62d42a36aa0ba73d7e3ad91b613b55
|
| SHA256 |
0dfcc19c7b2825cd704a5d0dfc1771ad2a30d1b8926a0b4dac53bbb540e02b88
|
| SSDeep |
96:zRYzmfsAG4nlK3jo/5xVid7bqii5Y8KO56wlftPv/3ls+NQItGpEEk:1Yz+1Zn83jo/5jVi0Y8KOIwl1Pv/1FBP
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101857.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
a300619c501e7c966faf317432d938f1
|
| SHA1 |
b254175eb71da90d88dd0d74ccafe51d0055bd38
|
| SHA256 |
94758c1a0fecac4640458365377aa0263c856e8c53ad8264914c3fd327e5a3ec
|
| SSDeep |
768:sO0bdTQe+ErYdWkmIaG7UqYNJPjCPRw99dPH0llo0xpdi:4bBSEr2my7AD227dP0dXi
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101858.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
a68796a31f0485fac7bd06f70387ac9e
|
| SHA1 |
095e150af2d9c25c5584a959b1a3865f565daf55
|
| SHA256 |
ad75179a5af684af00e5790dd84f3d314fa8909fb6baceae95ddf01875ee6b02
|
| SSDeep |
768:FhidTe3NAH63hV077o4158LNI/VPi5a7yRaV2X//3c5:FhiFe3V3EYek5a28WQ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101859.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.22 KB |
| MD5 |
c9684706074893bf7c31c111ebbad85f
|
| SHA1 |
6a5fcc6b4b5a61f9721218003768458314b4194e
|
| SHA256 |
19317991909983bb78e6018a4fa4ad3c9588a31d92e0df5c099971f5de9762d9
|
| SSDeep |
768:CFZpdLQhYx6Nx4cfOponuxKcVoIoZH5XwYDXZsR32r0kRTLPVHaV/:CnDQRBcNL25ZZXwmiGr04/0V/
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101862.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
798338c635b4e440a6c501284c5243db
|
| SHA1 |
a962a821956911d1ef2beb17c11b92c1bfad018e
|
| SHA256 |
e6f88376797ca553b687186756d9d14f441bef2b2f3550017956df4ee417128f
|
| SSDeep |
768:fjpFxe0e2gQepXAknOYM1ELCnXSnW+avJu4kmZ9Z300MVU:fjpFwF2gQMbKan6vo4n30LU
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101863.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
8b9d42c78f9bf8da47b383c117d486fc
|
| SHA1 |
f5b7d31a73f02ce7d6250e9ce3402eff675c253b
|
| SHA256 |
b2d0b9e2cdb255a9caca5573d4bca489a503a787e4f5360d1b587d50d3c8de0c
|
| SSDeep |
768:rB5mdSYJm6SBUGFFfTyJEir1ZH47xyWPbewmpR:nISYoIGTfT8E7LSppR
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101864.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.22 KB |
| MD5 |
1c451554722ae85aedc19ab4a2cd67c2
|
| SHA1 |
57df0e604e20fa5f59eea136a5b8fde879d0bd44
|
| SHA256 |
861d08769f43684da66de415ca77e5293318c8339995dfd2b94e7c05cc70a8af
|
| SSDeep |
768:Ia3mMYqknHHYOQMEzIrehrCPmIzz6lLMdY:v2DBHHYjO82dOlX
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101865.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
b5dacca16e31d5bb23c92c52339fb297
|
| SHA1 |
f60448359df1b0fcc7d9233ee4edadac61d7d153
|
| SHA256 |
36cce962e95ecc2b036f7c3fdd174f89fae4e511c94a1f2193e2f340c54df18c
|
| SSDeep |
768:C0K/R2zf0fi3tSeqzA0zdtGlqEwMVk/sI+Mw/9QbeEot1QG1Jg+8fge:1KJ2L2iYb7XEwMVkV+jEotBG7fge
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0101866.BMP.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.43 KB |
| MD5 |
e60f27e745c32e18a97b7cc83db1c971
|
| SHA1 |
e4ea3f1a85fae4a3db31ba6a479323056964fc4e
|
| SHA256 |
cb4db5dddda078a83c1b96d3661cb0dbdabf55005bb5696fbcab1a2b5cc5c0e3
|
| SSDeep |
768:AKdQbVwL0WPKtMGP/R9xATn9TMFytu7g94sBSCyfJn666rdbGvSj0o:AKQwXKtMG/R9y5A2u2TSCkF6rdV
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0144773.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 39.29 KB |
| MD5 |
25f9ad2594c180a25c549423e7108eb7
|
| SHA1 |
0b7f563929efaa0cd6d6b566f8c13a4cb08531e3
|
| SHA256 |
021eb831d950e7a4be84b5e2c773f0dcdb71847cbe75e8f279eff92c2df13aa6
|
| SSDeep |
768:oSbQK0WS7chbTotAynMcG8HrtUkXEtAgDPxTa+ecDUOgazHn3V+:o81SchbTotAT8LtatASTaRcDUOZH3V+
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145212.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 60.19 KB |
| MD5 |
1983ab299ab53872c417605b75804bff
|
| SHA1 |
97d5c4e85331282c9dcf65a6886bba941fc5f198
|
| SHA256 |
e6a38fed93cb3bab55c5dda7dde4f008c37e5a81c794a4ef2d11d7fb5976e7f1
|
| SSDeep |
1536:e72HDsB5HDMKSdtS0iftOoWovcgBPx5HW9nWae6yn7:e72jwMKSdtS0iftOofBrHWZWa/I7
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145361.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 20.63 KB |
| MD5 |
2d910169ca0d134356e8e89421ff5cf5
|
| SHA1 |
51ddf421b1eea6a51128623dc5ce8a270d7e9bcf
|
| SHA256 |
046a19982749f25aa50741b3e5843d0ded15fa44fc612362f0fb9ef3a9cb7538
|
| SSDeep |
384:bggj3d+2LAYBiyLa4sNeEBk8DKHZxhaPzs0by+SJL2W/UzZ2:8gDd+gNgk827hEfbKL2W/R
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145373.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 17.45 KB |
| MD5 |
8684b6147cb5ccef77f230cf3ff7455f
|
| SHA1 |
efc26d99d18df846b13943cc1b3839a745ecb4ce
|
| SHA256 |
c8b95e7ff6f34387d116f0a0541ad91420ce79a393be74a6e3a2d5a0ab436445
|
| SSDeep |
384:6PxV0lYTUJm7wTSJFRfl61hUncgq/DW39DGeOF69dtl:6PxWaNESJPflZcgiW39DnwWdtl
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145669.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.10 KB |
| MD5 |
53f67d95a583d3a66a690427db05aec2
|
| SHA1 |
740d8ff690931e8e1b75e7cfaa24e2b48c2e0038
|
| SHA256 |
bfbe9c636f2420c47c84a36df9e2bb75a0a1635b87f606f14c8a35dfdbc46a28
|
| SSDeep |
768:s5Q3ABonEG7hW9BHojI8ePIOQ828BsayWipdJlcrkyrArqmYGW+5cAQyRc:x3ABWRW9BCINPGDfayplYTGYGDYye
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145707.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 35.96 KB |
| MD5 |
df73e0bb3d2d602e5e912eb216e227ec
|
| SHA1 |
28ba9bb3cef76191d6981ec81234349952365830
|
| SHA256 |
cb99449fffbc629dff6fcdcc44fbc47c7d89200dd8f7a8232a21deaf46dfebd4
|
| SSDeep |
768:WUd/ajO1huKIZxROh71/9vL53e7CZ6XGdPQaXURtedMrCo9oR+2zV:vd/H1wK+xROh71/9D5O+pdPQRR+BR+2p
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145879.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 34.59 KB |
| MD5 |
28c716114d7b9f727804314654d39e8b
|
| SHA1 |
ebf9395614de68e36c167d4ba5482b474139d06a
|
| SHA256 |
264656eaf8d9da2170490178e6c7e878616d983eb94979346445ce3927689188
|
| SSDeep |
768:qQVpTse313G7BA8AapB+tsYDqMseY6dfpsKDqkVW+RnO:dVprn8zoffssdxs2VFRO
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0145904.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 38.62 KB |
| MD5 |
e51b2392ed2d61bd66013381d47a4ee5
|
| SHA1 |
9080da4fe02a8b52a8fa3e65ecdb8196c372775d
|
| SHA256 |
abccb73a5ab44282cea50028ae42977361374cc7e18afc2099980b51a5012820
|
| SSDeep |
768:TBy2on0Cvj9UyGrG8FC8Gk1MYA4B+SwUd38ejhnAtpT:ta0o4rhFnGk1DVDh8SWtpT
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0146142.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 45.42 KB |
| MD5 |
046ed8ece5982c9589e808caedbdaf59
|
| SHA1 |
0b524f5b6954e2f5af8c697bc2b15cc468669245
|
| SHA256 |
6241454129028a48baf729be8db54706cec882e14bc46793930a6c4231ad2418
|
| SSDeep |
768:Bc3dvdBLVNY9H00G4ytaS7tl7rO5xYIdUJK30ry4zV4ECEZy5/KpLpgYI+xKNwuC:u37BRWG4NQtlPO4IGA3sp4ECEZiitiiB
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148757.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 65.96 KB |
| MD5 |
604bd5a02577309ef8d81929eeb8025d
|
| SHA1 |
cc69ac29586d9a84c91ac41d171e0d8a75ee1e79
|
| SHA256 |
472156a55603f4e9867e56a63f134d40a8034443f33beaab5bdb77caefe0a808
|
| SSDeep |
768:TsUbAKs8/XDcQ84DQVSPjo9fTrAcAXtoxyq8qjVtFXa+ri1B8tBbBilWS91Yiw4f:gyKoXDn/QVUQfPAXGyIFjI6t1BYWSY8R
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0148798.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 37.34 KB |
| MD5 |
e69db02dd0768fb38a1f0e04e8e7c550
|
| SHA1 |
1108bff9d9f452d69c2339e4e26ed5995afaf938
|
| SHA256 |
7d6fbc598f23c7f275628897a20e3677794dd640c06fef7d5e9607add43721d0
|
| SSDeep |
768:TsOqOJ902BXKphGH13x3sxJvIEqdZduPE9CF+RUUll1IRW6aV:g6ykaSH1h3sJbq4sO+5156aV
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0149118.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 63.28 KB |
| MD5 |
8353f6447f63d6c90f89a92b81839ada
|
| SHA1 |
908a0396098fb25180d825b3b1cc1896b29a25ec
|
| SHA256 |
b93150ff06729cc8530fbd121ba6dbc8204e6d31478ee1e29772d2bb199532a5
|
| SSDeep |
768:Ts7bv3IJYAw31nQbni66Z9oV0XbtbRqF2q/fRSLPANe1yXf1Xl8dyAbcaWhdQ44Y:g/4/qnQcbqvHoLP2OyNXicaR4K8
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0164153.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 45.39 KB |
| MD5 |
a510814b963f666b081e71a16182fccc
|
| SHA1 |
1433157017e546f81bcf81bd2dfddcc4367e4d8d
|
| SHA256 |
19123c407a2558d59e59751f956f00cce638649197be8deac766457e9783e0b2
|
| SSDeep |
768:TsUxaiLYqBdKRcyTibdxZU6XUyN1DeOeCopqIl6ycsagJPGWGaiSi+6wqYG200i:g1FRMbdf5XlXqWOqIwycfqGWyxOq/
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0175361.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 45.37 KB |
| MD5 |
719e420ffef32e3015953eb7e4257206
|
| SHA1 |
8fccd431145f1928d9d068e0ec92072ef4806ce8
|
| SHA256 |
400b04719f8801312a8aad32fa045b67087aecf8fc667dcbbdb55f2b0a779185
|
| SSDeep |
768:0VHqYxFBhS2grjh6pj2garbPck0hMBVlN2BqD+elLycWkKfq08lS:gXxFBy/h6p61zcPMBVKBqDLLycNM
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177257.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 44.29 KB |
| MD5 |
933fe3a0791e8739d0d10a4a7a3baf72
|
| SHA1 |
5cc54a3c4955f997530c239cc8333e582208219d
|
| SHA256 |
8516ff89b414272521bd01e139a11bab3c0fc3ef4ffffb8649a5cd7f36e38a18
|
| SSDeep |
768:uNfEaQsqP03ojS7UptZb15Px6NnxbOB0wBM2crM0G13yWc5pM4KMIvag:VnH0f7i4xyB7Nc4fUR2Sg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0177806.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 54.25 KB |
| MD5 |
6fac5b4be4f5bfab71ea88b61411f4d9
|
| SHA1 |
9924a70a2e86ee0cbaaba25c0b0f47af136f26c3
|
| SHA256 |
5017390fd19ed1ffe738873c081a53d4c4a843e56a1cabf5135444b7d69919e4
|
| SSDeep |
1536:tZzkk1yLajkvXSTldL0UD79zxbbnzYKV1oGr+nbdbo:vzkikPSBt0UD7d9zxV1nq6
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178348.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 36.12 KB |
| MD5 |
41fab0c8ea4fee394cc74eaac51e7bf4
|
| SHA1 |
58f767bb2fc70e36b8263e43a69aab790d2de162
|
| SHA256 |
209c0944a015f49e836ca421285482e94070e4037a98da5e87201a542ddea8a5
|
| SSDeep |
768:B5kgltcZIXVbjvFWt+g0qqc9tVrlN6IL5dl4lC62J3AwhRA5dCmoy:Bv4KvFWAqqOHT6ub+lCFp5hROdCw
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178460.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 25.91 KB |
| MD5 |
9576a64f870d2e970419e207c2cb1608
|
| SHA1 |
9bf521fc25fc0de4624855cfb3f3425c2f5b3867
|
| SHA256 |
94f6cd0a2cbd5e0042c94dd526ac154746f7aa17df0c378fe199ce1d8bb93fae
|
| SSDeep |
768:LgdwTCYZbYqCw/Qj3phebFBYUbWDtZJpZPHiWZtW6s:L6MxZbYfEQj3LqFFbWbJrHBxs
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178632.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 22.79 KB |
| MD5 |
395987be41981ae9a6a8f46a7177f8d1
|
| SHA1 |
f4e79633f6a0f7260695df23e07d772467c8c76e
|
| SHA256 |
3b5f218a4b0ff5f2ad44635bc9b7c5c588e7dbc90c926355cd9e40feea66857c
|
| SSDeep |
384:Zx7CAADBPBuV8Lqi08YETcUdr8Po3q4K3GFBy2iimXtioJkWCMM/iWv971iMB2Cb:nVAFZfLqsTcXPo3q4KWevwL971iWF49m
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178639.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 31.29 KB |
| MD5 |
79e402821285a8ba557aabe2bfcc3dc2
|
| SHA1 |
9b17ee34f46bc24cd64c0ba9f620a8dca955e28c
|
| SHA256 |
a1d2746eaf31355adabf3fe6fd43987d09b4f7909a8df7269b9ff88feb64c16e
|
| SSDeep |
768:JtZRqh+9hslFO8sbgNo/D48QglHCbNxWr:/Zkl45gYQg2A
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0178932.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 34.51 KB |
| MD5 |
5f2f812f551d5190d6df8e58d6d15036
|
| SHA1 |
1b5bf0744e0471587e2915da4f91c7f3bc2f28e4
|
| SHA256 |
9b6a6952bf3565ca088eaa5080915bbf1e426517e5c09c9bd569028bfb509a15
|
| SSDeep |
768:U831hXbl0rSqv591yYekW/77TRG+L5Pc3JN/at/S0tLZW5x:N1hXoSqx919W/77wcPKJ55x
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0182689.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 16.23 KB |
| MD5 |
913f1bab7d785a4b3f2bc8e9b3cbb24b
|
| SHA1 |
12ba6a7bd95e708c6b5371fd56f554ea8919c1ff
|
| SHA256 |
b586571a0f2d006054c3559b22ffad4831fe5d59cbb53c5a9bfb5433f85f21dc
|
| SSDeep |
384:fYeNsbHzzmTT+9uJIwcBRyt4O8/F0/3DP/CIZz8KwAQQRpG:fYe0HPmTTyBRyt4dKrXnZI7V2Y
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0202045.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 41.26 KB |
| MD5 |
51ea9d3c634a69ec3662ff9c5a994394
|
| SHA1 |
ab5d17bf9c0b93ef7b23e69a3f80038965ec8fe9
|
| SHA256 |
0353d5c3b544098084607537f6cc05e4c194ff6639982c751a4a02330d059bbe
|
| SSDeep |
768:R0s6G65sTr5mF//640g1xWw2WJ9UQYTYlynlzjmCJI4TlbymLoowwW:mf5g50904Ww2WTnontdVbfLK
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216112.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 41.88 KB |
| MD5 |
87cbcd8ad880c913c0539651602ca380
|
| SHA1 |
2fd8e7c576ba4630f4ee00f67920dd4a3ef9cb3f
|
| SHA256 |
5e1252ba16445ab93dd8b9c614c5f2f4f8d83c29f77baefc3c0dedac90141c70
|
| SSDeep |
768:6UGIc5OB+fq48ZWGUD6UHeMKy1cajkrq2XN6q14v3xC5zLYclr+qVP:RGI1B+i4p6Uvcajkruq1MxC5Yco0P
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0216153.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 21.11 KB |
| MD5 |
898208ef5cbd4dc8132c34b2913f11dd
|
| SHA1 |
71cd7619bcd9fe2ebb8f291f750a7a9f20a8b467
|
| SHA256 |
fe0accd26e514584f1d33895ddb81dadb55ef899b18a8e57a5167f5f9fb5e179
|
| SSDeep |
384:prQiBhMATWFVUNy8bHcxb/AbsvbPctchB7R1If+yNduCG+lszWbgdK:pkPAT4UPbAO+PwoDeNZG0HMg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227419.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 34.71 KB |
| MD5 |
1109ec0c6e520310609732bc12756c77
|
| SHA1 |
be337d92715119de29a908c72efdbb0f93307b69
|
| SHA256 |
45124adbddbb2c2ee959c946ec2566138fd2003d96465a1dfe10cd95f7321873
|
| SSDeep |
768:1FJE5Pn29fqG7Lozcu/FzUQ7bmnwCmhMsfXvx:tmf29vozcQwAKnHm6eX5
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0227558.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 56.73 KB |
| MD5 |
4dc1753d25c5c7dd191820a5ac5eb8f5
|
| SHA1 |
83e393fc82f81c21d2a6f41ee17825c2db725b2a
|
| SHA256 |
c29ffe184e61c3b8e6c4d2de19b99899bb9df0e542951d6fb20006c7c8bab738
|
| SSDeep |
1536:+T3Y0636f/F7ix7DcWHmIpo7scB+N3FFq30VI:+rY109c/TGIYAN3FYke
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0289430.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 11.28 KB |
| MD5 |
f1218a7a3aa0bd9e4cd19d562e46d045
|
| SHA1 |
f03dcf8c4764ad5461bcb81ce712d4f1cc79980c
|
| SHA256 |
dfb8346bc357184ffc18215ca60e5c9c09fc720c1ecf7804583de1ad013e982e
|
| SSDeep |
192:VFq4/+fMrGtoIKghzfh8fNbHz6eAcUUKp6GaOMVeEracAeweQl17Ns:fp/+fMrQvFh7IVHz6ZcUUKp6GaOMAErz
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309567.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 21.07 KB |
| MD5 |
249321c1395092e1bba8d78f2bf8a072
|
| SHA1 |
399ab56d7ae93266fe58329a092e3bb9fbb06e53
|
| SHA256 |
575b6ca7b350e8d89a9a93ba350b4251101eb0e13ea1c7d4481f48f25b0cc80e
|
| SSDeep |
384:K1LNoZc8ba4tXSizUzrwu0LpoSsV+e6EVhUY8jnCLoTI1y3TLig2Q7R:K1poZc8ba4tjzUz/01LEP+VjCLoTI1yT
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309585.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 38.64 KB |
| MD5 |
acc93ba856936c976e2ca2f6f49ff1b9
|
| SHA1 |
7465e1cc5e96862ed246ba998dde057f96b12c3a
|
| SHA256 |
ff1d2f018bb9312ff4cb957c832fcd1f7bcd23c9f747a0a9b4a8b05b3b3ab1fb
|
| SSDeep |
768:xBOKo0UvpFf+ZjboFgA1J2xTw3X7mbQRHOAuxrQAhhiMK54oI8FktQvhz:xFo1vpF2dY3aqC8RHOAWiMkI8FktQZz
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309598.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.48 KB |
| MD5 |
2ff3edb845ee25bdebf2ae31b91efb27
|
| SHA1 |
a1f0fee52bee471826e01fbeaa9939434e84ddc0
|
| SHA256 |
6ca1f3a81842e5882411aed23050c8d9f78eac81f9a5cecda136daa11225a846
|
| SSDeep |
768:a2/oCbWV7uqR+vRTXcTxVvu2fWUg9fZBCy4lGYWGUPYOB3wTR3NiKf6qa70:5/pXqmcfuLdoXlGjG0YA3sRa70
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309664.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 42.68 KB |
| MD5 |
d28a17cebd75bc477fab877e506a44c0
|
| SHA1 |
d8de30919de69636f2964c1a651b50bbce160049
|
| SHA256 |
f3ea238c9fb4d5892e83200a908f32b6e98b4174346772cbea0402c33b0a6816
|
| SSDeep |
768:tz1lMGa+M4qrCgg5G1tCxHHSkhUKCAIis22aBWs5DTu2AVU31EP7r:BHqCHQt+SkhuWBWsRTwAEPP
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0309705.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 18.71 KB |
| MD5 |
74e5c9a2de775c223d7549f8189f0125
|
| SHA1 |
e9448bd8f9509ec074f798b8eda733ad92efbc98
|
| SHA256 |
803adb42468299bc26fd10e674dd5b0563929f17bccf789e7b0d8d9dbbca91e8
|
| SSDeep |
384:35eydvHdWsd1SwIYiKIUN/+7wfxHGAFz8UNko:JeK/d1StTUuwfVVFztr
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313896.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 36.28 KB |
| MD5 |
bbbb2df8fbc44f82182061ac8d95addf
|
| SHA1 |
80d764542832ad77c9d8771e79587a66acfb7c5a
|
| SHA256 |
0e6d6b73f36308cb10aada0064bdc66774bd53fe2a67b0b12d40095eff922e99
|
| SSDeep |
768:Ucqy/zjPRr6G0jo0LQPDnZFM0qTYM4UIGL9zwMs2k21jyAGDA7uJpL:UcR3cG0smQF4IGBzVk217yL
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313965.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 41.84 KB |
| MD5 |
b145783aab9bf1eff5e1c37323a0fb82
|
| SHA1 |
1b4685e04ffc024aa5b1e86774ad3ddab18339f4
|
| SHA256 |
e7c84bec924caf4d6002f54c610c40f40a9ed1003777f7a8413a447fe2ce6e60
|
| SSDeep |
768:P9ui+GjX6KH+V0BwzKr2kpYh7/HnLnackwXLoWaaPYXOZ23aR30sKju3z1pqJ:PIaLH+V0Ba02KYZHnBkaF/A623aDKqD4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313970.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 32.42 KB |
| MD5 |
b0f00c03bfbff2d7dc94ab480b6336dc
|
| SHA1 |
da84e031cd84f392e1f9678811ec2270e1fe05a7
|
| SHA256 |
9505da8eca76578b2e95db5285cf3d1e3bd2d7f562cd02cfd6125f247c5f75b2
|
| SSDeep |
768:GVT8FLFxZgYAtJS2Z99tgeOtA4qnCP+lj8W+B:GJtVvJCqCP+lj8W+B
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0313974.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 46.45 KB |
| MD5 |
c15f85bdcc7ed04c5870175944fbe146
|
| SHA1 |
55966b3ae368dfcc8339d64e7aa6be849c7351a5
|
| SHA256 |
d5ab1f3b1ee7af83f77ef94c358e64f528a1e3ba6b17486573a4ed89fd2accd5
|
| SSDeep |
768:fBilSKPInvyLxc3ykH8wswUtCXCt9M4G2zA9V7b8J+rW1CjszSy:bKouxGpdyal2wG51CAzSy
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0314068.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 16.24 KB |
| MD5 |
e494c647b70d0d1d15e8b1cd737b4edd
|
| SHA1 |
f4c80bc7f1904a9bb47fc60701ce443195231692
|
| SHA256 |
a175d9da362628bf8ecd27645e94048b72ad3d70959090e55a3db0f864b61e52
|
| SSDeep |
384:2eK1tE3x1ZMNYvLl4TzBbDHg2BOUCMahKfybXylos:bkWhU0Ll4T9lkUja06bXios
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0315612.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 16.56 KB |
| MD5 |
637b7c59347bb99e770c65d25d6ac4b9
|
| SHA1 |
6a5c997b6b54eed2b0c76bfc2a1349e3c6e10471
|
| SHA256 |
92df06fa7b00e23a5cbbae7c1674da5f252a54dff9b9c8e27bc717e9a304efbb
|
| SSDeep |
384:z21epd6h0U2UxxnWRPzqrDXWnSVCalrXutl59agX0AMAhZmhm37jqw:S1wg0U2Ux5W1qrDXj5ljuee/ZmhQ7jqw
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0321179.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 9.21 KB |
| MD5 |
1bc1e231f6fb449e7619b9220a4b15d4
|
| SHA1 |
c62b96f49e6ae51507efe8f4d50ef72c8063a9ff
|
| SHA256 |
6a2a836d50db86dc1dcfd06657fe8fb779c30cdd33defae013c72b7f8c06c099
|
| SSDeep |
192:Vi3JRJx+kUQZkuozdVr+XBPhEVT1n+qwmsHpR5V864m4mof:ITJtUQloTr+XZgRomsDkHmuf
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341328.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 9.96 KB |
| MD5 |
317a615e533d7bef82672c16cc68ad7a
|
| SHA1 |
d507af09bb8cb23419c4892cf7186442076da54c
|
| SHA256 |
754a401704113abec0fdd0bd118a49f057d7ce580bd033caff3296dfdc24389b
|
| SSDeep |
192:VlXIZ8TtnL4dK3ZwDkyCus+F+mjkq7Lhqbrx9h1sSq+peLK+Fw:X5JGswXV3+moq7LUbLh1sSvpeLnw
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341439.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.11 KB |
| MD5 |
b388c2545bda49b8ab1341f8e4c33aec
|
| SHA1 |
a93601261ba5187c046425bfc5e3dfe834854bee
|
| SHA256 |
5c39e735ec80a78fdc5a902d24432ab4291246b09b69c675c9a088d3c8bdda9b
|
| SSDeep |
384:tALQmVzxIcIZ4AAmJcBtrIyMDVkG3Q917/tSJLDIEgnxTD1YikwbvB:uQqmcU4a6iQ91D0V8nxTBLka
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341447.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 18.71 KB |
| MD5 |
d33383f44b3c7c44240b95003f0d1892
|
| SHA1 |
3586b62d9da1db451905456bf6cf62a043c4e3b8
|
| SHA256 |
63c93ca93f32cee28fd0900086360c1c303c614f6bca7b2a8d263c438c305801
|
| SSDeep |
384:KQWaHLTprVmjc/Tm1sI1y+zZP58qVDMsYCqor9PNIEZegPai7nsYTelI:K5aHPCGTmqYH1is/ZPoCT7X8I
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341475.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 42.47 KB |
| MD5 |
8e2833ce069d15721165db87f4f79e29
|
| SHA1 |
cd5e4f0cf33d89a8a54e6e5f689ae4fa578e2745
|
| SHA256 |
7302ba2394ab7641fc3f19dc2efacfb215ea5a0f2987bad939f4ee405bda6ad8
|
| SSDeep |
768:RpEARI5J3wfX4KRuSB+3p6Kyhwc4IzdHixj565hUVId4IOe7gJ1l:DRMJ3wfX9uSBChKwM3wVId5ml
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341499.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 15.72 KB |
| MD5 |
61499dd6c1d8c254bd49a1ed863f990f
|
| SHA1 |
d41fbcfed4da23d688292f4f2b028afb5e055363
|
| SHA256 |
7b3385826132e25a09d5be2a259d952a9d23e485eb5b26232d269df85ef60527
|
| SSDeep |
384:7EJt4WVD/06XttSV7LySn3sEdd+SABvQSG8oP:wJGWVz06XmtPZdMSSoH8oP
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341534.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 7.88 KB |
| MD5 |
0faeadf610e4890320a3484acab4839d
|
| SHA1 |
a0fa36988cfe1bccba719747e05473b01adf34d7
|
| SHA256 |
0383dcfa71b0bad2fbecedbaf16a95c97eab2f5a4258d2868c9ababc02fb44c0
|
| SSDeep |
96:jYerwiyftnFZTbWpm+tAY/sFnkg/TznyDaSnGwuXSmGxop+3CsuBThziMAaZsFvY:krlFVctwn5noaShmGxToG+sF7zXvspHZ
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341554.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 27.82 KB |
| MD5 |
101d25836830aff06a6e20102c7eb4c0
|
| SHA1 |
6b694eee35493e6c4e1844d0fc492d62ff62ff1e
|
| SHA256 |
6502fd3d6ade4f4dc0bf6ead366837356730bd151838227161095180feacf233
|
| SSDeep |
384:NgR2Ncu14jXRFCSuE90ALPwRhiT0TNldj6HLCZ4yxkZtEW97tMtvkSPUrfEoubE:NgRTlJLu7iTKNHWGeyxEEK7t7SPMnr
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341557.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 26.66 KB |
| MD5 |
511dd8b2177ece8ac2d038c55395d358
|
| SHA1 |
0d33f897a4f147f9ebce622e7b18904b6ad5bd2f
|
| SHA256 |
c9fefc2686fb12e420e1617edd10e6214ca8286d0276d26944758e272fbf9c4d
|
| SSDeep |
768:h9kBKq3O3nA2no6jVEAew3HF31mT9qg7OyXzeT:h9kBKq3wXnule1hgeT
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341561.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 41.15 KB |
| MD5 |
c6942b3df0ee4d6169a3a0494313351c
|
| SHA1 |
c16924c01bf4e2fb1c1d67c08522c9192184ef4a
|
| SHA256 |
056c1e4f7aa9a9de9733a35e2d367ce8d82f3deb80e2592dc79605abf5c7c7e5
|
| SSDeep |
768:GNNcs5wADzc2vWxMZROe8cPBcWBqui6g3WIMo1tb9RmPDCyRkgEumakCpew:GtyAvcLoOFcLBqu6H1fRmPDCyBeapew
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341634.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 7.62 KB |
| MD5 |
4999f54d86d8bc13721b728e2ff51b41
|
| SHA1 |
bd9c979b2dcf73582cd31aca6a9575a04fe703a5
|
| SHA256 |
cf42aac00c3beeb10819de1864d1e686a44c3a1f1731788bfa86d7d7e28c7151
|
| SSDeep |
192:krWNhMKni1avB7YJB3Ai83c5SWtiKcCM/KMatSYmWdCK+aBa53j:PsKni0B7kAi8QSW4cwKMMmWdl+ag53j
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341636.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 13.52 KB |
| MD5 |
71248540ca2df66243ab0ad25f14a7e6
|
| SHA1 |
b65f5381e48cc4b187393988d52eef33a5bee897
|
| SHA256 |
4c6a7d815538bed107276faf750866bbf888d5c689daa6f99f90915cb88c0359
|
| SSDeep |
384:akSB3qUnXFweVgZQVVkZ/1zaaAS/kYhNC9LVD7rL9HXp:aPqgXFweVgSniWS/kY3Cj7PJp
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341645.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 8.04 KB |
| MD5 |
668f4fe360447c5a02447cef03a8459e
|
| SHA1 |
02bfdef6681d2095794fdd5bcb812ed5a39411f3
|
| SHA256 |
a3eec6331fc495312e221ce52081f2ba92f00df0c8ce28111bf915b03f5153e0
|
| SSDeep |
192:kAq4koc5tzJweGgKcR/cMRHwVqucwa3rs9FZT+1lnYelvQj:HfYrdKc/cMRHYcFwFZT+LzvU
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0341738.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 19.69 KB |
| MD5 |
8f0b5e574055383a71f71270cf537e38
|
| SHA1 |
555ce7294c59136dd5526f6522cfe1b4888429d0
|
| SHA256 |
269a566b114e5d92db9fdf4f9c62ef2c975115f6c01483713a6a5150b7fe0aac
|
| SSDeep |
384:CU/u5/QTU/+HvRaZk4RyJLcOeYypOKJMDP2hJ3jiuXfSoWTlZcYDG25/UmoGq81s:CU/u5/EU/+PR4k4RAclYkhJjQ/T/cY9q
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382836.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 66.96 KB |
| MD5 |
ad4d0a99fa1892960f133d5e5fa91f11
|
| SHA1 |
c2ff855fdef0489d2e771d7da23b626db35cde6d
|
| SHA256 |
afd9631db8493f7541842ae63fe9eb2a17ae4db8af4bd5800786502609116c45
|
| SSDeep |
1536:fphWtejmWuXWfzJedfGGz+lxfer7LXxbevAU+KsCnGCZur0:fphWMzbJkug+jGnLXVIZlxI4
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382926.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 89.79 KB |
| MD5 |
666351bbe782207d0ae6f1a9078747ed
|
| SHA1 |
b1d7b943001b7e35292fbdf8fcaeecd581ac6298
|
| SHA256 |
c4cfd82fa55a5475e2dcf46bdd3f96354b8d3117852f7609d7c450ff046029ac
|
| SSDeep |
1536:iWF+HtyGoh8YWPIyOnsZJPfp/SleqA8/dnjoTPON6OrqOBUZPp9VbDud8g:wtyh8YWPIyOn2uNnMTPG6Orgp9VnVg
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382931.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 119.82 KB |
| MD5 |
040b178fc348adf578a6900f30052fdf
|
| SHA1 |
186ba288439120e23c78aa372ab2ab9319ea2844
|
| SHA256 |
d6f5b7d3523a06f6d6ea27fd68f8ca510879a190881637d300650cc8cf3b9732
|
| SSDeep |
3072:goINY6dwaemCV09+ntSX1unl9ruxhGRzyPxh5jdELof:iN3dwaeRV0MIX1Q9rySUxhHEM
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382938.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 97.21 KB |
| MD5 |
f5a8374b84cb28139f1cb31672aa97ec
|
| SHA1 |
93925b25d0b56f80186d6f6d6669cf048d6caf33
|
| SHA256 |
ae433c9328cac52a7a61740445ad29a9b41d7db033e7411a1b37517a00a1cb3b
|
| SSDeep |
3072:us8gW/RLRGlDwTbU8nyKWNJqGfgb6Yn5qr:Z8dZLSHuGfRYMr
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382939.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 106.91 KB |
| MD5 |
c68b569ddd4cd4f9c2447098abd91ca4
|
| SHA1 |
6db1b4c93c0156553d7814a1b40c98902471b2bb
|
| SHA256 |
9f74308706544acb15f66bbb422cc347ffaf20c5203b3072379ffb31f3b498e5
|
| SSDeep |
3072:Dv9SRIwPbKRTv87ARtdyhBVlekqrS77NUY4I:D1GKRTCAghPlekaI
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382942.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 89.31 KB |
| MD5 |
8b9ce950bc16ec91e2ac531449d403a5
|
| SHA1 |
6c47f9f51cb62061e8e07cd0f2cdf883f2849d03
|
| SHA256 |
df3328b933be606958c99484e9c7d02115c1dc2a1005d6e6f216514b4084cd75
|
| SSDeep |
1536:VuofdKdzvY2Fj0i6cy6wn8xAPGZeOUIKOXSkQnV29Jp0Si9oaWzfS5fK8GPz4vwb:8ofdKb+U4ZeeJ8wipW+f+5i8CzzpIgie
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382944.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 79.53 KB |
| MD5 |
5f844f564d03f2a21660d14f3d03553d
|
| SHA1 |
6cfba1e11a047c04c37f1ed4492343960ede3442
|
| SHA256 |
95fc9efde60a7d616fc1bb505ca55af87d58beed4894b238c7822cecdf1ef978
|
| SSDeep |
1536:hNoarx6jnyQpl/gg6WwlEJGKiH5zZRGenT3oPHH7TclNN:hBrxknyQs/qKH3T4Pn7gln
|
| C:\\Program Files\Microsoft Office\CLIPART\PUB60COR\J0382952.JPG.crypton | Dropped File | Stream |
Not Queried
|
|
| Mime Type | application/octet-stream |
| File Size | 93.82 KB |
| MD5 |
2ee54805e548001cb1d4d3bdb65654ca
|
| SHA1 |
533615b3b723fec7ff9ca8b1c142f8a48e10de4d
|
| SHA256 |
e1037bedb9d2800645e59a8fe273a0620ab55795931793581873eeb1c9077a55
|
| SSDeep |
1536:wLmVekVzx9NfzXyH78hUfRFiKmmY9OlnoV41Uh2iR8SV6fevu9ccGc3oL4gRH/AE:QmvFFbXyH78hUKKmmYklnkwUci846OOM
|
