Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848h

Overview

General Information

Sample URL:https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-Yc
Analysis ID:1427747
Infos:

Detection

Score:60
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Malicious sample detected (through community Yara rule)
Allocates memory in foreign processes
Query firmware table information (likely to detect VMs)
Writes to foreign memory regions
Checks if the current process is being debugged
Creates a process in suspended mode (likely to inject code)
Drops PE files
Drops files with a non-matching file extension (content does not match file extension)
Enables security privileges
Found dropped PE file which has not been started or loaded
Installs a raw input device (often for capturing keystrokes)
One or more processes crash
Queries the volume information (name, serial number etc) of a device
Sample execution stops while process was sleeping (likely an evasion)
Sigma detected: Usage Of Web Request Commands And Cmdlets
Stores files to the Windows start menu directory
Very long cmdline option found, this is very uncommon (may be encrypted or packed)
Yara signature match

Classification

Process Tree

  • System is w10x64
  • cmd.exe (PID: 6288 cmdline: C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1 MD5: D0FCE3AFA6AA1D58CE9FA336CC2B675B)
    • conhost.exe (PID: 6548 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
    • wget.exe (PID: 6672 cmdline: wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" MD5: 3DADB6E2ECE9C4B3E1E322E617658B60)
  • explorer.exe (PID: 2580 cmdline: C:\Windows\Explorer.EXE MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 1700 cmdline: C:\Windows\system32\WerFault.exe -u -p 2580 -s 9996 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 3696 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 6812 cmdline: C:\Windows\system32\WerFault.exe -u -p 3696 -s 4220 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 6952 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 6760 cmdline: C:\Windows\system32\WerFault.exe -u -p 6952 -s 4872 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 5928 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 3164 cmdline: C:\Windows\system32\WerFault.exe -u -p 5928 -s 4328 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 6596 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 4220 cmdline: C:\Windows\system32\WerFault.exe -u -p 6596 -s 4360 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 2300 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 2720 cmdline: C:\Windows\system32\WerFault.exe -u -p 2300 -s 2264 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 2996 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 4392 cmdline: C:\Windows\system32\WerFault.exe -u -p 2996 -s 1440 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 2060 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 1460 cmdline: C:\Windows\system32\WerFault.exe -u -p 2060 -s 4488 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 4988 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 1612 cmdline: C:\Windows\system32\WerFault.exe -u -p 4988 -s 4528 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • explorer.exe (PID: 4484 cmdline: explorer.exe MD5: 662F4F92FDE3557E86D110526BB578D5)
    • WerFault.exe (PID: 5024 cmdline: C:\Windows\system32\WerFault.exe -u -p 4484 -s 4352 MD5: FD27D9F6D02763BDE32511B5DF7FF7A0)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

Memory Dumps

SourceRuleDescriptionAuthorStrings
Process Memory Space: explorer.exe PID: 2300ironshell_phpSemi-Auto-generated - file ironshell.php.txtNeo23x0 Yara BRG + customization by Stefan -dfate- Molls
  • 0x10ce94:$s2: ~ Shell I
  • 0x1177bc:$s2: ~ Shell I

Sigma Signatures

System Summary

barindex
Sigma detected: Usage Of Web Request Commands And Cmdlets
Source: Process startedAuthor: James Pemberton / @4A616D6573, Endgame, JHasenbusch, oscd.community, Austin Songer @austinsonger: Data: Command: C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1, CommandLine: C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1, CommandLine|base64offset|contains: , Image: C:\Windows\SysWOW64\cmd.exe, NewProcessName: C:\Windows\SysWOW64\cmd.exe, OriginalFileName: C:\Windows\SysWOW64\cmd.exe, ParentCommandLine: , ParentImage: , ParentProcessId: 5500, ProcessCommandLine: C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1, ProcessId: 6288, ProcessName: cmd.exe

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeRegistry value created: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{113DD42F-AE80-489B-8F15-FB8499306C48}Jump to behavior
Source: Binary string: C:\projects\src\out\Default\electron.exe.pdbZ source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\libGLESv2.dll.pdbP'`'p' source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\electron.exe.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\vk_swiftshader.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2519962921.00000000059B0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\libGLESv2.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdbH source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.000000000502E000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.0000000004F4C000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.000000000502E000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdbp source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.0000000004F4C000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\vulkan-1.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2514589399.0000000004AB0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2519962921.00000000059B0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2514973484.0000000004D30000.00000004.00001000.00020000.00000000.sdmp
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\userJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppDataJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\Programs\Cricut Design Space\Cricut Design Space.exeJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\LocalJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\Programs\Cricut Design SpaceJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\ProgramsJump to behavior
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1085
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1423136
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1423136dumpTranslatedShadersWrite
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1452
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1452expandIntegerPowExpressionsThe
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1512
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1637
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/1936
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2046
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2152
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2152skipVSConstantRegisterZeroIn
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2162
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2273
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2517
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2894
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2970
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/2978
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3027
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3078
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3205
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3206
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3246
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3246allowClearForRobustResourceInitSome
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3452
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3498
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3502
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3577
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3584
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3586
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3623
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3624
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3625
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3682
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3682allowES3OnFL100Allow
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3729
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3832
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3862
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3965
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3970
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/3997
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4214
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4267
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4324
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4384
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4405
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4428
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4551
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4633
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4646
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4722
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/482
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4836
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4901
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/4937
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5007
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5007disableDrawBuffersIndexedDisable
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5055
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5061
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5281
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5371
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5375
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5421
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5430
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5469
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5535
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5577
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5658
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5658forceGlErrorCheckingForce
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5750
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5750forceRobustResourceInitForce-enable
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5881
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5901
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/5906
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6041
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6041forceInitShaderVariablesForce-enable
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6048
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6141
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6248
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6439
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6651
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6692
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6755
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6860
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6876
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6878
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6929
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/6953
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7036
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7036dumpShaderSourceWrite
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7047
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7172
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7279
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7279cacheCompiledShaderEnable
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7370
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7406
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7488
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7527
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7553
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7556
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7724
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7724disableAnisotropicFilteringDisable
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7760
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7760enableShaderSubstitutionCheck
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7761
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/7761disableProgramCachingDisables
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8162
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8172
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8215
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8229
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8280
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8280enableTranslatedShaderSubstitutionCheck
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8291
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://anglebug.com/8297
Source: explorer.exe, 00000008.00000000.1873938631.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootG2.crt0
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt0
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1830927394.0000000000AD3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://cldr.unicode.org/index/downloads
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://code.google.com/p/smhasher/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://code.google.com/p/v8
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1094869
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/110263
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1144207
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1171371
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1181068
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1181193
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1420130
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1434317
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/1456243
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/308366
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/403957
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/550292
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/565179
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/642227
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/642605
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/644669
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/650547
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/672380
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/709351
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/797243
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/809422
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/830046
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/883276
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/927470
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/941620
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crbug.com/941620allowTranslateUniformBlockToStructuredBufferThere
Source: explorer.exe, 00000008.00000000.1873938631.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootG2.crl07
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl0
Source: wget.exe, 00000002.00000003.1830927394.0000000000AD3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedRootG4.crl0
Source: explorer.exe, 00000008.00000000.1873938631.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootG2.crl0
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://devel.freebsoft.org/speechd
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://developer.android.com/tools/extras/support-library.html
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://exslt.org/common
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://exslt.org/commonnode-set..
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://freedesktop.org
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://git.linuxtv.org/v4l-utils.git
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://google.github.io/snappy/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://icl.com/saxon
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://icl.com/saxonorg.apache.xalan.xslt.extensions.RedirectxsltDocumentElem:
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://issuetracker.google.com/200067929
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000000.1873444325.000000000040A000.00000008.00000001.01000000.00000004.sdmp, explorer.exe, 00000008.00000002.1940681568.0000000009F20000.00000002.00000001.01000000.00000004.sdmp, explorer.exe, 0000000C.00000002.1995553770.0000000009050000.00000002.00000001.01000000.00000004.sdmp, explorer.exe, 00000010.00000002.2147060788.0000000009E30000.00000002.00000001.01000000.00000004.sdmp, explorer.exe, 00000013.00000002.2153178516.0000000008F40000.00000002.00000001.01000000.00000004.sdmp, explorer.exe, 00000019.00000002.2200687079.0000000007B90000.00000002.00000001.01000000.00000004.sdmp, explorer.exe, 0000001C.00000002.2234133113.00000000073B0000.00000002.00000010.01000000.00000004.sdmp, explorer.exe, 0000001F.00000002.2266079466.0000000000E80000.00000002.00000010.01000000.00000004.sdmpString found in binary or memory: http://nsis.sf.net/NSIS_ErrorError
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1830927394.0000000000AD3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0A
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0X
Source: explorer.exe, 00000008.00000000.1870905533.00000000078AD000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.comhttp://crl3.digicert.com/DigiCertGlobalRootG2.crlhttp://crl4.digicert.com/Di
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://opensource.perlig.de/rjsmin/
Source: explorer.exe, 00000008.00000002.1939795415.00000000098A8000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1875158530.00000000098A8000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://schemas.mi
Source: explorer.exe, 00000008.00000002.1939795415.00000000098A8000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1875158530.00000000098A8000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://schemas.micr
Source: explorer.exe, 00000008.00000000.1875621075.0000000009B60000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 00000008.00000000.1873192394.0000000008720000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 00000008.00000000.1872600926.0000000007F40000.00000002.00000001.00040000.00000000.sdmpString found in binary or memory: http://schemas.micro
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://source.android.com/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://source.android.com/compatibility)
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://src.chromium.org/viewvc/chrome/trunk/deps/third_party/xz/COPYING
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://tukaani.org/xz/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://valgrind.org
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://webkit.org/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.apache.org/licenses/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: explorer.exe, 00000008.00000000.1878908217.000000000C964000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000003.1885722208.000000000C978000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000003.1886201113.000000000C9AE000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: http://www.autoitscript.com/autoit3/J
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.chromium.org
Source: wget.exe, 00000002.00000003.1761479811.0000000000AC9000.00000004.00000020.00020000.00000000.sdmp, wget.exe, 00000002.00000003.1761479811.0000000000AD1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.digicert.com/CPS0
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.freedesktop.org/wiki/Software/xdg-user-dirs
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.gutenberg.org/ebooks/53).
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.jclark.com/xt
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.linux-usb.org/usb-ids.html
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.mozilla.org/MPL/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.opensource.org/licenses/bsd-license.php
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.ploscompbiol.org/static/license
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.strongtalk.org/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.suitable.com
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.suitable.com/tools/smslib.html
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.suitable.com/tools/smslib.html>
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.unicode.org/copyright.html
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.webrtc.org
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xmlsoft.org/XSLT/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xmlsoft.org/XSLT/namespace
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xmlsoft.org/XSLT/namespacehttp://www.jclark.com/xtxsl:key
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xmlsoft.org/XSLT/xsltNewExtDef
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://zlib.net/
Source: explorer.exe, 00000008.00000003.1886685708.000000000C893000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1878908217.000000000C893000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1952626656.000000000C893000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://activity.windows.com/UserActivity.ReadWrite.CreatedByAppcrobat.exe
Source: explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007A8E000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2140824182.0000000008B15000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2146848502.000000000802E000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2276167747.000000000957A000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2246603460.000000000957A000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2246926625.000000000957A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/Vh5j3k
Source: explorer.exe, 00000019.00000002.2189883224.0000000007255000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/Vh5j3kSF;.WSd
Source: explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/Vh5j3kh;
Source: explorer.exe, 0000000C.00000002.1986513480.0000000007A8E000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2140824182.0000000008B15000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.0000000007255000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2276167747.000000000957A000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2246603460.000000000957A000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2246926625.000000000957A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/odirm
Source: explorer.exe, 00000013.00000002.2146848502.000000000802E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/odirmG
Source: explorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/odirmr
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://android.com/pay
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://android.googlesource.com/platform/external/puffin
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://android.googlesource.com/platform/external/setupdesign/
Source: explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://android.notify.windows.com/iOS
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/4674
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/4830
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/4849
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/4966
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/5140
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/5536
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/5845
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/6574
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7161
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7162
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7246
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7246enableCaptureLimitsSet
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7308
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7319
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7320
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7369
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7382
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7405
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7489
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7604
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7714
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7847
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/7899
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/8308
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/8315
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://anglebug.com/8319
Source: explorer.exe, 00000008.00000002.1937177858.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.00000000097D4000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/
Source: explorer.exe, 00000008.00000002.1937177858.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.00000000097D4000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/q
Source: explorer.exe, 00000008.00000002.1925866224.0000000001240000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1868865125.0000000003700000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1929543551.0000000003700000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1866708286.0000000001240000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/v1/News/Feed/Windows?apikey=qrUeHGGYvVowZJuHA3XaH0uUvg1ZJ0GUZnXk3mxxPF&ocid=wind
Source: explorer.exe, 00000008.00000000.1873938631.00000000096DF000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.00000000096DF000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/v1/news/Feed/Windows?&
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/v1/news/Feed/Windows?activityId=0CC40BF291614022B7DF6E2143E8A6AF&timeOut=5000&oc
Source: explorer.exe, 00000008.00000002.1937177858.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com:443/v1/news/Feed/Windows?
Source: explorer.exe, 00000008.00000000.1873938631.00000000096DF000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.00000000096DF000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://arc.msn.comi
Source: explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.msn.com/staticsb/statics/latest/traffic/Notification/desktop/svg/RoadHazard.svg
Source: explorer.exe, 00000019.00000002.2189883224.00000000070F6000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.msn.com/weathermapdata/1/
Source: explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.msn.com/weathermapdata/1/static/finance/1stparty/FinanceTaskbarIcons/Finance_Earnings
Source: explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.msn.com/weathermapdata/1/static/weather/Icons/JyNGQgA=/Condition/AAehR3S.svg
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://assets.msn.com/weathermapdata/1/static/weather/Icons/JyNGQgA=/Teaser/humidity.svg
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons.gcp.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons.gcp.gvt2.com/domainreliability/uploadhttps://beacons.gvt2.com/domainreliability/uplo
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons2.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons3.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons4.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons5.gvt2.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://beacons5.gvt3.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://bit.ly/audio-worklet)
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://bit.ly/audio-worklet)ScriptProcessorHandler::ProcessScriptProcessorHandler::Process
Source: explorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.n
Source: explorer.exe, 00000010.00000002.2105850271.0000000004C26000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query
Source: explorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.m
Source: explorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13f2DV
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13f2DV-dark
Source: explorer.exe, 00000008.00000000.1870905533.00000000078AD000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gHZu
Source: explorer.exe, 00000008.00000000.1870905533.00000000078AD000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gHZu-dark
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gMeu
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gMeu-dark
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gTUY
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gTUY-dark
Source: explorer.exe, 00000010.00000002.2105850271.0000000004C26000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://cdn.queryP
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://chromium.googlesource.com/angle/angle/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://chromium.googlesource.com/chromium/src/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://chromium.googlesource.com/vulkan-deps/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://chromium.googlesource.com/webm/libwebm
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://chromium.googlesource.com/webm/libwebp
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://clients2.google.com/domainreliability/upload
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1042393
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1046462
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1060012
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1091824
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1137851
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1144908
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1144908.
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1144908.The
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1144908Changing
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1300575
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1356053
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/1429681
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/593024
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/593024selectViewInGeometryShaderThe
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/650547
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/650547callClearTwiceUsing
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/655534
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/655534useSystemMemoryForConstantBuffersCopying
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/705865
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/710443
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/811661
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://crbug.com/848952
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://creativecommons.org/licenses/by/3.0/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://datatracker.ietf.org/doc/draft-ietf-rtcweb-ip-handling.
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://developers.google.com/android/guides/setup
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://example.org
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://example.orgExpired
Source: explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://excel.office.com
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/Cyan4973/xxHash
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/GPUOpen-LibrariesAndSDKs/VulkanMemoryAllocator
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/GoogleChromeLabs/text-fragments-polyfill
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/KhronosGroup/SPIRV-Headers.git
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/KhronosGroup/SPIRV-Tools.git
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/KhronosGroup/Vulkan-Headers
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/KhronosGroup/Vulkan-Loader
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/Maratyszcza/pthreadpool
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/SeleniumHQ/selenium/tree/trunk
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/Squirrel/Squirrel.Mac
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/WebBluetoothCG/web-bluetooth/blob/main/implementation-status.md
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/aawc/unrar.git
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/facebook/zstd
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/diff-match-patch/tree/master/javascript
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/distributed_point_functions
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/google-api-cpp-client/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/pprof/tree/master/proto
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/private-join-and-compute
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/protobuf
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/re2
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/ruy
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/securemessage
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/sentencepiece
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/shell-encryption
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/ukey2
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/woff2
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/wuffs-mirror-release-c
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/google/xnnpack
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/gpuweb/gpuweb/wiki/Implementation-Status#implementation-status
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/gpuweb/gpuweb/wiki/Implementation-Status#implementation-statusFailed
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/intel/libva
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/jrmuizel/qcms/tree/v4
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/protocolbuffers/protobuf/blob/master/java/lite.md
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/puppeteer/puppeteer/tree/main/packages/puppeteer-core
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/simplejson/simplejson
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/tensorflow/models
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/tensorflow/tensorflow
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/tensorflow/text.git
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/tensorflow/tflite-support
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/wasdk/wasmparser
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://github.com/xiph/rnnoise
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://gitlab.freedesktop.org/xdg/xdgmime
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://gitlab.freedesktop.org/xorg/proto/xproto/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimX
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimXAccess
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimXOrigin
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimXgetDescriptor(s)
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimXreadValue()
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/4NeimXwriteValue()
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/EuHzyv
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/HxfxSQ
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/HxfxSQOrigin
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/HxfxSQrequestDevice()
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/J6ASzs
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://goo.gl/J6ASzsBluetooth
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://google.com/pay
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://hg.mozilla.org/mozilla-central/file/tip/netwerk/base/nsURLParsers.cpp
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/AA15Yat4.img
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1hlXIY.img
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/AAKSoFp.img
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/AAXaopi.img
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/AAgi0nZ.img
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://img-s-msn-com.akamaized.net/tenant/amp/entityid/BBqlLky.img
Source: explorer.exe, 00000008.00000000.1870905533.00000000078AD000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://img.s-msn.com/tenant/amp/entityid/AAbC0oi.img
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/161903006
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/166809097
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/184850002
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/187425444
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/220069903
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/220069903emulatePixelLocalStorageEmulate
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/229267970
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/250706693
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/253522366
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/255411748
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/258207403
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/274859104
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/284462263
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://issuetracker.google.com/issues/166475273
Source: explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://outlook.com_
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://pay.google.com/authentication
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://play.google.com/billing
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://play.google.com/billinghttps://google.com/payhttps://android.com/payhttps://pay.google.com/a
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://polymer-library.polymer-project.org
Source: explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://powerpoint.office.comcember
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://quiche.googlesource.com/quiche
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://simpleflying.com/how-do-you-become-an-air-traffic-controller/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sites.google.com/site/gaviotachessengine/Home/endgame-tablebases-1
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://skia.org/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://source.corp.google.com/piper///depot/google3/third_party/tamachiyomi/README.md
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sourceforge.net/projects/wtl/files/WTL%2010/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sqlite.org/
Source: wget.exe, 00000002.00000003.1830927394.0000000000AD3000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1867894946.00000000018A0000.00000002.00000001.00040000.00000000.sdmpString found in binary or memory: https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expi
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://swiftshader.googlesource.com/SwiftShader
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://w3c.github.io/manifest/#installability-signals
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://w3c.github.io/manifest/#installability-signalsVideoFrameProviderClientImpl::StartRenderingVi
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://webrtc.googlesource.com/src/
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://windows.msn.com:443/shell?osLocale=en-GB&chosenMarketReason=ImplicitNew
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://windows.msn.com:443/shellv2?osLocale=en-GB&chosenMarketReason=ImplicitNew
Source: explorer.exe, 00000008.00000000.1878908217.000000000C557000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C557000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://wns.windows.com/L
Source: explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://word.office.com
Source: explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://wsn.c
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.apache.org/licenses/
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.apache.org/licenses/LICENSE-2.0
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.bluetooth.com/specifications/gatt/characteristics
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.bluetooth.com/specifications/gatt/descriptors
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.bluetooth.com/specifications/gatt/services
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.chromestatus.com/feature/5644273861001216.
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.chromestatus.com/feature/5682658461876224.
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.chromestatus.com/feature/5718547946799104
Source: explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-u
Source: explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-uay/g
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/lifestyle/lifestyle-buzz/biden-makes-decision-that-will-impact-more-than-1
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/lifestyle/travel/i-ve-worked-at-a-campsite-for-5-years-these-are-the-15-mi
Source: explorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/money/companies/a-devastating-financial-blow-california-s-so-called-dracon
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/money/personalfinance/13-states-that-don-t-tax-your-retirement-income/ar-A
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/money/personalfinance/no-wonder-the-american-public-is-confused-if-you-re-
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/politics/clarence-thomas-in-spotlight-as-supreme-court-delivers-blow-
Source: explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/politics/exclusive-john-kelly-goes-on-the-record-to-confirm-several-d
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/topic/breast%20cancer%20awareness%20month?ocid=winp1headerevent
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/us/a-nationwide-emergency-alert-will-be-sent-to-all-u-s-cellphones-we
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/us/metro-officials-still-investigating-friday-s-railcar-derailment/ar
Source: explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/us/when-does-daylight-saving-time-end-2023-here-s-when-to-set-your-cl
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/news/world/agostini-krausz-and-l-huillier-win-physics-nobel-for-looking-at
Source: explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/play/games/archery-king/cg-9n5gkc4t7lzz
Source: explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/play/games/hurdles/cg-9mwwt4x116lw
Source: explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/play/games/resolve-a-math-game/cg-9nq4jgnq8d5n
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/weather/topstories/rest-of-hurricane-season-in-uncharted-waters-because-of
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com/en-us/weather/topstories/us-weather-super-el-nino-to-bring-more-flooding-and-win
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.msn.com:443/en-us/feed
Source: explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rd.com/list/polite-habits-campers-dislike/
Source: explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://www.rd.com/newsletter/?int_source=direct&int_medium=rd.com&int_campaign=nlrda_20221001_toppe
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://www.unicode.org/copyright.html.
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: GetRawInputDatamemstr_825ade7d-1

System Summary

barindex
Malicious sample detected (through community Yara rule)
Source: Process Memory Space: explorer.exe PID: 2300, type: MEMORYSTRMatched rule: Semi-Auto-generated - file ironshell.php.txt Author: Neo23x0 Yara BRG + customization by Stefan -dfate- Molls
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess token adjusted: SecurityJump to behavior
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 2580 -s 9996
Source: Process Memory Space: explorer.exe PID: 2300, type: MEMORYSTRMatched rule: ironshell_php author = Neo23x0 Yara BRG + customization by Stefan -dfate- Molls, description = Semi-Auto-generated - file ironshell.php.txt, hash = 8bfa2eeb8a3ff6afc619258e39fded56
Source: explorer.exe, 00000010.00000003.1999281291.0000000004D87000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000003.2002871366.0000000004D87000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000003.1999654679.0000000004D94000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Users\user\AppData\Local\Microsoft\WindowsApps;PATHEXT=.COM;.EXE;.BAT;.CMD;.VBP
Source: classification engineClassification label: mal60.evad.win@25/114@0/1
Source: C:\Windows\SysWOW64\cmd.exeFile created: C:\Users\user\Desktop\cmdline.outJump to behavior
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess2060
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess6596
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess2580
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess4484
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:6548:120:WilError_03
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeMutant created: \Sessions\1\BaseNamedObjects\{113DD42F-AE80-489B-8F15-FB8499306C48}
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess4988
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess5928
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess6952
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess3696
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess2300
Source: C:\Windows\System32\WerFault.exeMutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess2996
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nse6116.tmpJump to behavior
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: unknownProcess created: C:\Windows\explorer.exe
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile read: C:\Users\desktop.iniJump to behavior
Source: C:\Windows\SysWOW64\wget.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiersJump to behavior
Source: unknownProcess created: C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1
Source: C:\Windows\SysWOW64\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Windows\SysWOW64\cmd.exeProcess created: C:\Windows\SysWOW64\wget.exe wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI"
Source: unknownProcess created: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe "C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe"
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 2580 -s 9996
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 3696 -s 4220
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 6952 -s 4872
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 5928 -s 4328
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 6596 -s 4360
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 2300 -s 2264
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 2996 -s 1440
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 2060 -s 4488
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 4988 -s 4528
Source: unknownProcess created: C:\Windows\explorer.exe explorer.exe
Source: C:\Windows\explorer.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 4484 -s 4352
Source: C:\Windows\SysWOW64\cmd.exeProcess created: C:\Windows\SysWOW64\wget.exe wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" Jump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 6596 -s 4360Jump to behavior
Source: C:\Windows\SysWOW64\cmd.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: rsaenh.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: msasn1.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: dnsapi.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: rasadhlp.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: fwpuclnt.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Windows\SysWOW64\wget.exeSection loaded: explorerframe.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: userenv.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: propsys.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: oleacc.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: version.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: shfolder.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: textshaping.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: riched20.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: usp10.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: msls31.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: windows.staterepositoryps.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: windows.fileexplorer.common.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: linkinfo.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: ntshrui.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: cscapi.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: sxs.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: appresolver.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: bcp47langs.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: slc.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: sppc.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: twext.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: policymanager.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: msvcp110_win.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: starttiledata.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: acppage.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: sfc.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: msi.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: aepic.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: sfc_os.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: edputil.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: netutils.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: onecorecommonproxystub.dllJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeSection loaded: msasn1.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: workfoldersshell.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: aepic.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: twinapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: userenv.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: powrprof.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dxgi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: propsys.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wtsapi32.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wininet.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: twinapi.appcore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wldp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: netutils.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: umpdc.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: ninput.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: appresolver.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: bcp47langs.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: slc.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: sppc.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: profapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: onecoreuapcommonproxystub.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: starttiledata.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: usermgrcli.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: idstore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: usermgrproxy.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryps.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wlidprov.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: samcli.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.applicationmodel.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: appxdeploymentclient.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: policymanager.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: msvcp110_win.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: winsta.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: appextension.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: sndvolsso.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: mmdevapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: devobj.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: oleacc.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: textshaping.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windowscodecs.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.ui.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windowmanagementapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: inputhost.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryclient.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.schema.shell.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dcomp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: d3d11.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: resourcepolicyclient.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: d3d10warp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dxcore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: d2d1.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dwrite.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: xmllite.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cldapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: fltlib.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dataexchange.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: tiledatarepository.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: staterepository.core.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.staterepository.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: explorerframe.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositorycore.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: mrmcorer.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: languageoverlayutil.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: bcp47mrm.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: thumbcache.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: edputil.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: twinui.pcshell.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wkscli.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: wincorlib.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cdp.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: dsreg.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: windows.immersiveshell.serviceprovider.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: onecorecommonproxystub.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: photometadatahandler.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: ntshrui.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cscapi.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: linkinfo.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: secur32.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: version.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: ehstorshell.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: cscui.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: provsvc.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: iconcodecservice.dllJump to behavior
Source: C:\Windows\explorer.exeSection loaded: aepic.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.dll
Source: C:\Windows\explorer.exeSection loaded: userenv.dll
Source: C:\Windows\explorer.exeSection loaded: iphlpapi.dll
Source: C:\Windows\explorer.exeSection loaded: powrprof.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: dxgi.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: propsys.dll
Source: C:\Windows\explorer.exeSection loaded: coremessaging.dll
Source: C:\Windows\explorer.exeSection loaded: urlmon.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: wtsapi32.dll
Source: C:\Windows\explorer.exeSection loaded: wininet.dll
Source: C:\Windows\explorer.exeSection loaded: uxtheme.dll
Source: C:\Windows\explorer.exeSection loaded: dwmapi.dll
Source: C:\Windows\explorer.exeSection loaded: sspicli.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: ntmarta.dll
Source: C:\Windows\explorer.exeSection loaded: cryptsp.dll
Source: C:\Windows\explorer.exeSection loaded: wldp.dll
Source: C:\Windows\explorer.exeSection loaded: iertutil.dll
Source: C:\Windows\explorer.exeSection loaded: srvcli.dll
Source: C:\Windows\explorer.exeSection loaded: netutils.dll
Source: C:\Windows\explorer.exeSection loaded: umpdc.dll
Source: C:\Windows\explorer.exeSection loaded: ninput.dll
Source: C:\Windows\explorer.exeSection loaded: appresolver.dll
Source: C:\Windows\explorer.exeSection loaded: bcp47langs.dll
Source: C:\Windows\explorer.exeSection loaded: slc.dll
Source: C:\Windows\explorer.exeSection loaded: sppc.dll
Source: C:\Windows\explorer.exeSection loaded: profapi.dll
Source: C:\Windows\explorer.exeSection loaded: onecoreuapcommonproxystub.dll
Source: C:\Windows\explorer.exeSection loaded: starttiledata.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrcli.dll
Source: C:\Windows\explorer.exeSection loaded: idstore.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrproxy.dll
Source: C:\Windows\explorer.exeSection loaded: wlidprov.dll
Source: C:\Windows\explorer.exeSection loaded: samcli.dll
Source: C:\Windows\explorer.exeSection loaded: policymanager.dll
Source: C:\Windows\explorer.exeSection loaded: msvcp110_win.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.dll
Source: C:\Windows\explorer.exeSection loaded: appextension.dll
Source: C:\Windows\explorer.exeSection loaded: appxdeploymentclient.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryps.dll
Source: C:\Windows\explorer.exeSection loaded: winsta.dll
Source: C:\Windows\explorer.exeSection loaded: windows.applicationmodel.dll
Source: C:\Windows\explorer.exeSection loaded: sndvolsso.dll
Source: C:\Windows\explorer.exeSection loaded: mmdevapi.dll
Source: C:\Windows\explorer.exeSection loaded: devobj.dll
Source: C:\Windows\explorer.exeSection loaded: oleacc.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryclient.dll
Source: C:\Windows\explorer.exeSection loaded: textshaping.dll
Source: C:\Windows\explorer.exeSection loaded: windows.ui.dll
Source: C:\Windows\explorer.exeSection loaded: windowmanagementapi.dll
Source: C:\Windows\explorer.exeSection loaded: textinputframework.dll
Source: C:\Windows\explorer.exeSection loaded: inputhost.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: windowscodecs.dll
Source: C:\Windows\explorer.exeSection loaded: dcomp.dll
Source: C:\Windows\explorer.exeSection loaded: d3d11.dll
Source: C:\Windows\explorer.exeSection loaded: resourcepolicyclient.dll
Source: C:\Windows\explorer.exeSection loaded: d3d10warp.dll
Source: C:\Windows\explorer.exeSection loaded: dxcore.dll
Source: C:\Windows\explorer.exeSection loaded: d2d1.dll
Source: C:\Windows\explorer.exeSection loaded: dwrite.dll
Source: C:\Windows\explorer.exeSection loaded: xmllite.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.schema.shell.dll
Source: C:\Windows\explorer.exeSection loaded: cldapi.dll
Source: C:\Windows\explorer.exeSection loaded: fltlib.dll
Source: C:\Windows\explorer.exeSection loaded: dataexchange.dll
Source: C:\Windows\explorer.exeSection loaded: explorerframe.dll
Source: C:\Windows\explorer.exeSection loaded: twinui.pcshell.dll
Source: C:\Windows\explorer.exeSection loaded: wkscli.dll
Source: C:\Windows\explorer.exeSection loaded: wincorlib.dll
Source: C:\Windows\explorer.exeSection loaded: cdp.dll
Source: C:\Windows\explorer.exeSection loaded: dsreg.dll
Source: C:\Windows\explorer.exeSection loaded: apphelp.dll
Source: C:\Windows\explorer.exeSection loaded: tiledatarepository.dll
Source: C:\Windows\explorer.exeSection loaded: staterepository.core.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepository.dll
Source: C:\Windows\explorer.exeSection loaded: windows.immersiveshell.serviceprovider.dll
Source: C:\Windows\explorer.exeSection loaded: onecorecommonproxystub.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositorycore.dll
Source: C:\Windows\explorer.exeSection loaded: mrmcorer.dll
Source: C:\Windows\explorer.exeSection loaded: languageoverlayutil.dll
Source: C:\Windows\explorer.exeSection loaded: bcp47mrm.dll
Source: C:\Windows\explorer.exeSection loaded: thumbcache.dll
Source: C:\Windows\explorer.exeSection loaded: edputil.dll
Source: C:\Windows\explorer.exeSection loaded: photometadatahandler.dll
Source: C:\Windows\explorer.exeSection loaded: twinui.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: twinui.dll
Source: C:\Windows\explorer.exeSection loaded: pdh.dll
Source: C:\Windows\explorer.exeSection loaded: applicationframe.dll
Source: C:\Windows\explorer.exeSection loaded: ntshrui.dll
Source: C:\Windows\explorer.exeSection loaded: cscapi.dll
Source: C:\Windows\explorer.exeSection loaded: rmclient.dll
Source: C:\Windows\explorer.exeSection loaded: linkinfo.dll
Source: C:\Windows\explorer.exeSection loaded: holographicextensions.dll
Source: C:\Windows\explorer.exeSection loaded: virtualmonitormanager.dll
Source: C:\Windows\explorer.exeSection loaded: resourcepolicyclient.dll
Source: C:\Windows\explorer.exeSection loaded: windows.ui.immersive.dll
Source: C:\Windows\explorer.exeSection loaded: abovelockapphost.dll
Source: C:\Windows\explorer.exeSection loaded: provsvc.dll
Source: C:\Windows\explorer.exeSection loaded: secur32.dll
Source: C:\Windows\explorer.exeSection loaded: version.dll
Source: C:\Windows\explorer.exeSection loaded: cryptbase.dll
Source: C:\Windows\explorer.exeSection loaded: ehstorshell.dll
Source: C:\Windows\explorer.exeSection loaded: cscui.dll
Source: C:\Windows\explorer.exeSection loaded: npsm.dll
Source: C:\Windows\explorer.exeSection loaded: windows.shell.bluelightreduction.dll
Source: C:\Windows\explorer.exeSection loaded: mscms.dll
Source: C:\Windows\explorer.exeSection loaded: coloradapterclient.dll
Source: C:\Windows\explorer.exeSection loaded: windows.internal.signals.dll
Source: C:\Windows\explorer.exeSection loaded: tdh.dll
Source: C:\Windows\explorer.exeSection loaded: windows.web.dll
Source: C:\Windows\explorer.exeSection loaded: iconcodecservice.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositorybroker.dll
Source: C:\Windows\explorer.exeSection loaded: mfplat.dll
Source: C:\Windows\explorer.exeSection loaded: rtworkq.dll
Source: C:\Windows\explorer.exeSection loaded: taskflowdataengine.dll
Source: C:\Windows\explorer.exeSection loaded: actxprxy.dll
Source: C:\Windows\explorer.exeSection loaded: structuredquery.dll
Source: C:\Windows\explorer.exeSection loaded: windows.security.authentication.web.core.dll
Source: C:\Windows\explorer.exeSection loaded: windows.data.activities.dll
Source: C:\Windows\explorer.exeSection loaded: windows.system.launcher.dll
Source: C:\Windows\explorer.exeSection loaded: windows.shell.servicehostbuilder.dll
Source: C:\Windows\explorer.exeSection loaded: windows.internal.ui.shell.windowtabmanager.dll
Source: C:\Windows\explorer.exeSection loaded: notificationcontrollerps.dll
Source: C:\Windows\explorer.exeSection loaded: windows.devices.enumeration.dll
Source: C:\Windows\explorer.exeSection loaded: windows.globalization.dll
Source: C:\Windows\explorer.exeSection loaded: icu.dll
Source: C:\Windows\explorer.exeSection loaded: mswb7.dll
Source: C:\Windows\explorer.exeSection loaded: aepic.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.dll
Source: C:\Windows\explorer.exeSection loaded: userenv.dll
Source: C:\Windows\explorer.exeSection loaded: iphlpapi.dll
Source: C:\Windows\explorer.exeSection loaded: powrprof.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: dxgi.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: propsys.dll
Source: C:\Windows\explorer.exeSection loaded: coremessaging.dll
Source: C:\Windows\explorer.exeSection loaded: urlmon.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: wtsapi32.dll
Source: C:\Windows\explorer.exeSection loaded: wininet.dll
Source: C:\Windows\explorer.exeSection loaded: uxtheme.dll
Source: C:\Windows\explorer.exeSection loaded: dwmapi.dll
Source: C:\Windows\explorer.exeSection loaded: sspicli.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: ntmarta.dll
Source: C:\Windows\explorer.exeSection loaded: cryptsp.dll
Source: C:\Windows\explorer.exeSection loaded: wldp.dll
Source: C:\Windows\explorer.exeSection loaded: iertutil.dll
Source: C:\Windows\explorer.exeSection loaded: srvcli.dll
Source: C:\Windows\explorer.exeSection loaded: netutils.dll
Source: C:\Windows\explorer.exeSection loaded: umpdc.dll
Source: C:\Windows\explorer.exeSection loaded: ninput.dll
Source: C:\Windows\explorer.exeSection loaded: appresolver.dll
Source: C:\Windows\explorer.exeSection loaded: bcp47langs.dll
Source: C:\Windows\explorer.exeSection loaded: slc.dll
Source: C:\Windows\explorer.exeSection loaded: sppc.dll
Source: C:\Windows\explorer.exeSection loaded: profapi.dll
Source: C:\Windows\explorer.exeSection loaded: onecoreuapcommonproxystub.dll
Source: C:\Windows\explorer.exeSection loaded: starttiledata.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryps.dll
Source: C:\Windows\explorer.exeSection loaded: idstore.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrcli.dll
Source: C:\Windows\explorer.exeSection loaded: windows.applicationmodel.dll
Source: C:\Windows\explorer.exeSection loaded: wlidprov.dll
Source: C:\Windows\explorer.exeSection loaded: samcli.dll
Source: C:\Windows\explorer.exeSection loaded: appxdeploymentclient.dll
Source: C:\Windows\explorer.exeSection loaded: policymanager.dll
Source: C:\Windows\explorer.exeSection loaded: msvcp110_win.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrproxy.dll
Source: C:\Windows\explorer.exeSection loaded: winsta.dll
Source: C:\Windows\explorer.exeSection loaded: sndvolsso.dll
Source: C:\Windows\explorer.exeSection loaded: mmdevapi.dll
Source: C:\Windows\explorer.exeSection loaded: devobj.dll
Source: C:\Windows\explorer.exeSection loaded: oleacc.dll
Source: C:\Windows\explorer.exeSection loaded: textshaping.dll
Source: C:\Windows\explorer.exeSection loaded: windows.ui.dll
Source: C:\Windows\explorer.exeSection loaded: windowmanagementapi.dll
Source: C:\Windows\explorer.exeSection loaded: textinputframework.dll
Source: C:\Windows\explorer.exeSection loaded: inputhost.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: windowscodecs.dll
Source: C:\Windows\explorer.exeSection loaded: dcomp.dll
Source: C:\Windows\explorer.exeSection loaded: d3d11.dll
Source: C:\Windows\explorer.exeSection loaded: resourcepolicyclient.dll
Source: C:\Windows\explorer.exeSection loaded: d3d10warp.dll
Source: C:\Windows\explorer.exeSection loaded: dxcore.dll
Source: C:\Windows\explorer.exeSection loaded: d2d1.dll
Source: C:\Windows\explorer.exeSection loaded: dwrite.dll
Source: C:\Windows\explorer.exeSection loaded: xmllite.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryclient.dll
Source: C:\Windows\explorer.exeSection loaded: cldapi.dll
Source: C:\Windows\explorer.exeSection loaded: fltlib.dll
Source: C:\Windows\explorer.exeSection loaded: dataexchange.dll
Source: C:\Windows\explorer.exeSection loaded: apphelp.dll
Source: C:\Windows\explorer.exeSection loaded: tiledatarepository.dll
Source: C:\Windows\explorer.exeSection loaded: staterepository.core.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepository.dll
Source: C:\Windows\explorer.exeSection loaded: explorerframe.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositorycore.dll
Source: C:\Windows\explorer.exeSection loaded: mrmcorer.dll
Source: C:\Windows\explorer.exeSection loaded: languageoverlayutil.dll
Source: C:\Windows\explorer.exeSection loaded: bcp47mrm.dll
Source: C:\Windows\explorer.exeSection loaded: thumbcache.dll
Source: C:\Windows\explorer.exeSection loaded: edputil.dll
Source: C:\Windows\explorer.exeSection loaded: twinui.pcshell.dll
Source: C:\Windows\explorer.exeSection loaded: wkscli.dll
Source: C:\Windows\explorer.exeSection loaded: wincorlib.dll
Source: C:\Windows\explorer.exeSection loaded: cdp.dll
Source: C:\Windows\explorer.exeSection loaded: dsreg.dll
Source: C:\Windows\explorer.exeSection loaded: windows.immersiveshell.serviceprovider.dll
Source: C:\Windows\explorer.exeSection loaded: appextension.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.schema.shell.dll
Source: C:\Windows\explorer.exeSection loaded: onecorecommonproxystub.dll
Source: C:\Windows\explorer.exeSection loaded: photometadatahandler.dll
Source: C:\Windows\explorer.exeSection loaded: ntshrui.dll
Source: C:\Windows\explorer.exeSection loaded: cscapi.dll
Source: C:\Windows\explorer.exeSection loaded: linkinfo.dll
Source: C:\Windows\explorer.exeSection loaded: secur32.dll
Source: C:\Windows\explorer.exeSection loaded: version.dll
Source: C:\Windows\explorer.exeSection loaded: cryptbase.dll
Source: C:\Windows\explorer.exeSection loaded: ehstorshell.dll
Source: C:\Windows\explorer.exeSection loaded: cscui.dll
Source: C:\Windows\explorer.exeSection loaded: provsvc.dll
Source: C:\Windows\explorer.exeSection loaded: iconcodecservice.dll
Source: C:\Windows\explorer.exeSection loaded: aepic.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.dll
Source: C:\Windows\explorer.exeSection loaded: userenv.dll
Source: C:\Windows\explorer.exeSection loaded: iphlpapi.dll
Source: C:\Windows\explorer.exeSection loaded: powrprof.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: dxgi.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: propsys.dll
Source: C:\Windows\explorer.exeSection loaded: coremessaging.dll
Source: C:\Windows\explorer.exeSection loaded: urlmon.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: windows.storage.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: wtsapi32.dll
Source: C:\Windows\explorer.exeSection loaded: wininet.dll
Source: C:\Windows\explorer.exeSection loaded: uxtheme.dll
Source: C:\Windows\explorer.exeSection loaded: dwmapi.dll
Source: C:\Windows\explorer.exeSection loaded: sspicli.dll
Source: C:\Windows\explorer.exeSection loaded: kernel.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: twinapi.appcore.dll
Source: C:\Windows\explorer.exeSection loaded: ntmarta.dll
Source: C:\Windows\explorer.exeSection loaded: cryptsp.dll
Source: C:\Windows\explorer.exeSection loaded: wldp.dll
Source: C:\Windows\explorer.exeSection loaded: iertutil.dll
Source: C:\Windows\explorer.exeSection loaded: srvcli.dll
Source: C:\Windows\explorer.exeSection loaded: netutils.dll
Source: C:\Windows\explorer.exeSection loaded: umpdc.dll
Source: C:\Windows\explorer.exeSection loaded: ninput.dll
Source: C:\Windows\explorer.exeSection loaded: appresolver.dll
Source: C:\Windows\explorer.exeSection loaded: bcp47langs.dll
Source: C:\Windows\explorer.exeSection loaded: slc.dll
Source: C:\Windows\explorer.exeSection loaded: sppc.dll
Source: C:\Windows\explorer.exeSection loaded: profapi.dll
Source: C:\Windows\explorer.exeSection loaded: onecoreuapcommonproxystub.dll
Source: C:\Windows\explorer.exeSection loaded: starttiledata.dll
Source: C:\Windows\explorer.exeSection loaded: idstore.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrcli.dll
Source: C:\Windows\explorer.exeSection loaded: usermgrproxy.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryps.dll
Source: C:\Windows\explorer.exeSection loaded: windows.applicationmodel.dll
Source: C:\Windows\explorer.exeSection loaded: appxdeploymentclient.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.dll
Source: C:\Windows\explorer.exeSection loaded: appextension.dll
Source: C:\Windows\explorer.exeSection loaded: wlidprov.dll
Source: C:\Windows\explorer.exeSection loaded: samcli.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepositoryclient.dll
Source: C:\Windows\explorer.exeSection loaded: policymanager.dll
Source: C:\Windows\explorer.exeSection loaded: msvcp110_win.dll
Source: C:\Windows\explorer.exeSection loaded: wintypes.dll
Source: C:\Windows\explorer.exeSection loaded: winsta.dll
Source: C:\Windows\explorer.exeSection loaded: sndvolsso.dll
Source: C:\Windows\explorer.exeSection loaded: mmdevapi.dll
Source: C:\Windows\explorer.exeSection loaded: devobj.dll
Source: C:\Windows\explorer.exeSection loaded: windows.cloudstore.schema.shell.dll
Source: C:\Windows\explorer.exeSection loaded: oleacc.dll
Source: C:\Windows\explorer.exeSection loaded: textshaping.dll
Source: C:\Windows\explorer.exeSection loaded: windows.ui.dll
Source: C:\Windows\explorer.exeSection loaded: windowmanagementapi.dll
Source: C:\Windows\explorer.exeSection loaded: textinputframework.dll
Source: C:\Windows\explorer.exeSection loaded: inputhost.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: coreuicomponents.dll
Source: C:\Windows\explorer.exeSection loaded: windowscodecs.dll
Source: C:\Windows\explorer.exeSection loaded: dcomp.dll
Source: C:\Windows\explorer.exeSection loaded: d3d11.dll
Source: C:\Windows\explorer.exeSection loaded: resourcepolicyclient.dll
Source: C:\Windows\explorer.exeSection loaded: d3d10warp.dll
Source: C:\Windows\explorer.exeSection loaded: dxcore.dll
Source: C:\Windows\explorer.exeSection loaded: d2d1.dll
Source: C:\Windows\explorer.exeSection loaded: dwrite.dll
Source: C:\Windows\explorer.exeSection loaded: xmllite.dll
Source: C:\Windows\explorer.exeSection loaded: cldapi.dll
Source: C:\Windows\explorer.exeSection loaded: fltlib.dll
Source: C:\Windows\explorer.exeSection loaded: dataexchange.dll
Source: C:\Windows\explorer.exeSection loaded: apphelp.dll
Source: C:\Windows\explorer.exeSection loaded: tiledatarepository.dll
Source: C:\Windows\explorer.exeSection loaded: staterepository.core.dll
Source: C:\Windows\explorer.exeSection loaded: windows.staterepository.dll
Source: C:\Windows\SysWOW64\wget.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InProcServer32Jump to behavior
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeRegistry value created: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{113DD42F-AE80-489B-8F15-FB8499306C48}Jump to behavior
Source: Binary string: C:\projects\src\out\Default\electron.exe.pdbZ source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\libGLESv2.dll.pdbP'`'p' source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\electron.exe.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\vk_swiftshader.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2519962921.00000000059B0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\libGLESv2.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdbH source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.000000000502E000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.0000000004F4C000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.000000000502E000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: DpInst.pdbp source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2458111189.0000000004F4C000.00000004.00001000.00020000.00000000.sdmp
Source: Binary string: C:\projects\src\out\Default\vulkan-1.dll.pdb source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2514589399.0000000004AB0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2519962921.00000000059B0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2514973484.0000000004D30000.00000004.00001000.00020000.00000000.sdmp
Source: C:\Windows\SysWOW64\wget.exeFile created: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\System.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\SpiderBanner.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\StdUtils.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsProcess.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsis7z.dllJump to dropped file
Source: C:\Windows\SysWOW64\wget.exeFile created: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cricut Design Space.lnkJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\explorer.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: FAILCRITICALERRORS | NOGPFAULTERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Windows\System32\WerFault.exeProcess information set: NOOPENFILEERRORBOX

Malware Analysis System Evasion

barindex
Query firmware table information (likely to detect VMs)
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformationJump to behavior
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Windows\explorer.exeSystem information queried: FirmwareTableInformation
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\System.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\SpiderBanner.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsProcess.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsis7z.dllJump to dropped file
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsl657C.tmp\StdUtils.dllJump to dropped file
Source: C:\Windows\System32\conhost.exeLast function: Thread delayed
Source: C:\Windows\System32\conhost.exeLast function: Thread delayed
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\userJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppDataJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\Programs\Cricut Design Space\Cricut Design Space.exeJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\LocalJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\Programs\Cricut Design SpaceJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeFile opened: C:\Users\user\AppData\Local\ProgramsJump to behavior
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: (IsLinux() && isVMWare) || (IsAndroid() && isNvidia) || (IsAndroid() && GetAndroidSdkLevel() < 27 && IsAdreno5xxOrOlder(functions)) || (!isMesa && IsMaliT8xxOrOlder(functions)) || (!isMesa && IsMaliG31OrOlder(functions))
Source: explorer.exe, 00000008.00000000.1875158530.00000000098A8000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: k&Ven_VMware&Prod_Virtual_disk\4&1656f219&0&000000
Source: explorer.exe, 00000010.00000003.1999281291.0000000004DE9000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}8b}\
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: VMware
Source: explorer.exe, 0000000C.00000002.1966774046.0000000001158000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&000000I
Source: explorer.exe, 0000001F.00000002.2266274739.0000000000F56000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}]9
Source: explorer.exe, 00000008.00000000.1866708286.0000000001240000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&0000000}
Source: explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: \\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000000100000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000006500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000C5E500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000007500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_Msft&Prod_Virtual_DVD-ROM#2&1f4adffe&0&000001#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}
Source: explorer.exe, 0000001F.00000003.2242459411.0000000004D47000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}9507e
Source: explorer.exe, 0000001C.00000003.2192287492.0000000008650000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000000100000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000006500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000C5E500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000007500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_Msft&Prod_Virtual_DVD-ROM#2&1f4adffe&0&000001#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}ers\jo
Source: explorer.exe, 00000022.00000002.2315645433.0000000000C64000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&000000*K&>T
Source: explorer.exe, 00000010.00000002.2105850271.0000000004D29000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: lnkr&Prod_VMware_SATA_CD00#4&
Source: explorer.exe, 00000013.00000002.2127742166.0000000000C43000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: #CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}
Source: explorer.exe, 00000019.00000003.2153176402.00000000073A5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\iles (xb
Source: explorer.exe, 00000008.00000000.1873938631.000000000982D000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1937177858.000000000982D000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW
Source: explorer.exe, 00000019.00000003.2153176402.00000000073A5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\
Source: explorer.exe, 00000008.00000002.1939795415.0000000009977000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: SCSI\CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00\4&224f42ef&0&000000
Source: explorer.exe, 0000001C.00000002.2226162517.0000000000875000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: #CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}~
Source: explorer.exe, 00000010.00000003.1999491199.0000000004D29000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: CloudData.UploadPolicyp3MWar&Prod_VMware_SATA_CD00#4&
Source: explorer.exe, 00000019.00000002.2178707878.0000000000573000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&000000'
Source: explorer.exe, 00000010.00000003.2002834014.0000000008A58000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 05117-2476756634-1002_Classes\.outmFileAssociations\.out11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000006500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000C5E500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000007500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_Msft&Prod_Virtual_DVD-ROM#2&1f4adffe&0&000001#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\Windo
Source: explorer.exe, 00000008.00000002.1937177858.0000000009815000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: NECVMWar VMware SATA CD00\w
Source: explorer.exe, 00000008.00000002.1937177858.0000000009815000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: \\?\scsi#cdrom&ven_necvmwar&prod_vmware_sata_cd00#4&224f42ef&0&000000#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}$
Source: explorer.exe, 0000001F.00000003.2242459411.0000000004D47000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}8b}}
Source: explorer.exe, 00000008.00000000.1875158530.00000000098A8000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: SCSI\Disk&Ven_VMware&Prod_Virtual_disk\4&1656f219&0&000000
Source: explorer.exe, 00000008.00000002.1939795415.0000000009977000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: VMware SATA CD00
Source: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: IIAMDARMAppleBroadcomGoogleIntelMesaMicrosoftNVIDIAImagination TechnologiesQualcommSamsung Electronics Co., Ltd.VivanteVMwareVirtIOTest
Source: explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: NXTTAVMWare
Source: explorer.exe, 00000008.00000002.1937177858.0000000009815000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: SCSI\CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00\4&224f&0&000000
Source: wget.exe, 00000002.00000002.1831550318.0000000000D08000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll=
Source: explorer.exe, 00000008.00000000.1870905533.0000000007A34000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.0000000007A34000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWen-GBnx
Source: explorer.exe, 00000010.00000003.1999846184.0000000008A63000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000000100000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000006500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000C5E500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000007500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_Msft&Prod_Virtual_DVD-ROM#2&1f4adffe&0&000001#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}x86)\W
Source: explorer.exe, 00000019.00000003.2153176402.00000000073A5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\ha
Source: explorer.exe, 00000010.00000002.2027498492.0000000001183000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&000000R
Source: explorer.exe, 0000001C.00000003.2192287492.0000000008650000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000000100000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000006500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000C5E500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\STORAGE#Volume#{a33c735c-61ca-11ee-8c18-806e6f6e6963}#0000000007500000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}\\?\SCSI#CdRom&Ven_Msft&Prod_Virtual_DVD-ROM#2&1f4adffe&0&000001#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}monProg_
Source: explorer.exe, 00000008.00000000.1873938631.0000000009660000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: SCSI\CDROM&VEN_NECVMWAR&PROD_VMWARE_SATA_CD00\4&224F42EF&0&000000er
Source: explorer.exe, 00000022.00000002.2315645433.0000000000C64000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SCSI\DISK&VEN_VMWARE&PROD_VIRTUAL_DISK\4&1656F219&0&000000
Source: explorer.exe, 00000019.00000003.2153176402.00000000073A5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \??\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}oEE
Source: explorer.exe, 00000019.00000003.2153176402.00000000073A5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: \\?\SCSI#CdRom&Ven_NECVMWar&Prod_VMware_SATA_CD00#4&224f42ef&0&000000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess information queried: ProcessInformationJump to behavior
Source: C:\Windows\explorer.exeProcess queried: DebugPortJump to behavior
Source: C:\Windows\explorer.exeProcess queried: DebugPortJump to behavior
Source: C:\Windows\explorer.exeProcess queried: DebugPortJump to behavior

HIPS / PFW / Operating System Protection Evasion

barindex
Allocates memory in foreign processes
Source: C:\Windows\explorer.exeMemory allocated: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe base: 1C0000 protect: page read and writeJump to behavior
Writes to foreign memory regions
Source: C:\Windows\explorer.exeMemory written: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe base: 1C0000Jump to behavior
Source: C:\Windows\explorer.exeMemory written: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe base: 3742D8Jump to behavior
Source: C:\Windows\explorer.exeMemory written: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe base: 3751E8Jump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeProcess created: C:\Windows\System32\WerFault.exe C:\Windows\system32\WerFault.exe -u -p 6596 -s 4360Jump to behavior
Source: unknownProcess created: C:\Windows\SysWOW64\cmd.exe c:\windows\system32\cmd.exe /c wget -t 2 -v -t 60 -p "c:\users\user\desktop\download" --no-check-certificate --content-disposition --user-agent="mozilla/5.0 (windows nt 6.1; wow64; trident/7.0; as; rv:11.0) like gecko" "https://staticcontent.cricut.com/a/software/win32-native/cricutdesignspace-install-v8.24.60.exe?expires=1713405575&signature=2wqc5y2n-hrvfbwcmsuj2aepxckgrbtsxedzfqttcjsjikwz48xduv2do7skzljzwbg3r4qt-ycgccenll4u8k~rztlf1sign5lbzqz-qwq6nwqhfqogi~2azpwflka5z0znnvk2qubem0ncobxntjbnifuhxcxro~pkphmlp-y848hu1zn-5isx5oqnww3wiyg3k44dibqxyvphee2jduyuttrcwjluobokhph6e~rd6qkswmjzulgyxmseyq2fgqou~bs4amtekggt4ngqgr237r7z6ozi4w27o~lpiogwmp1ozkypzpyfxwtvddirswrwsgedi6epgo8ifcsj4g__&key-pair-id=k2w1aj47iqwioi" > cmdline.out 2>&1
Source: C:\Windows\SysWOW64\cmd.exeProcess created: C:\Windows\SysWOW64\wget.exe wget -t 2 -v -t 60 -p "c:\users\user\desktop\download" --no-check-certificate --content-disposition --user-agent="mozilla/5.0 (windows nt 6.1; wow64; trident/7.0; as; rv:11.0) like gecko" "https://staticcontent.cricut.com/a/software/win32-native/cricutdesignspace-install-v8.24.60.exe?expires=1713405575&signature=2wqc5y2n-hrvfbwcmsuj2aepxckgrbtsxedzfqttcjsjikwz48xduv2do7skzljzwbg3r4qt-ycgccenll4u8k~rztlf1sign5lbzqz-qwq6nwqhfqogi~2azpwflka5z0znnvk2qubem0ncobxntjbnifuhxcxro~pkphmlp-y848hu1zn-5isx5oqnww3wiyg3k44dibqxyvphee2jduyuttrcwjluobokhph6e~rd6qkswmjzulgyxmseyq2fgqou~bs4amtekggt4ngqgr237r7z6ozi4w27o~lpiogwmp1ozkypzpyfxwtvddirswrwsgedi6epgo8ifcsj4g__&key-pair-id=k2w1aj47iqwioi"
Source: C:\Windows\SysWOW64\cmd.exeProcess created: C:\Windows\SysWOW64\wget.exe wget -t 2 -v -t 60 -p "c:\users\user\desktop\download" --no-check-certificate --content-disposition --user-agent="mozilla/5.0 (windows nt 6.1; wow64; trident/7.0; as; rv:11.0) like gecko" "https://staticcontent.cricut.com/a/software/win32-native/cricutdesignspace-install-v8.24.60.exe?expires=1713405575&signature=2wqc5y2n-hrvfbwcmsuj2aepxckgrbtsxedzfqttcjsjikwz48xduv2do7skzljzwbg3r4qt-ycgccenll4u8k~rztlf1sign5lbzqz-qwq6nwqhfqogi~2azpwflka5z0znnvk2qubem0ncobxntjbnifuhxcxro~pkphmlp-y848hu1zn-5isx5oqnww3wiyg3k44dibqxyvphee2jduyuttrcwjluobokhph6e~rd6qkswmjzulgyxmseyq2fgqou~bs4amtekggt4ngqgr237r7z6ozi4w27o~lpiogwmp1ozkypzpyfxwtvddirswrwsgedi6epgo8ifcsj4g__&key-pair-id=k2w1aj47iqwioi" Jump to behavior
Source: explorer.exe, 0000000C.00000003.1940530754.0000000007A8E000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007A8E000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd^
Source: explorer.exe, 00000008.00000000.1867894946.00000000018A0000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 00000008.00000002.1932896762.0000000004CE0000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.0000000009815000.00000004.00000001.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd
Source: explorer.exe, 00000008.00000000.1867894946.00000000018A0000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 0000000C.00000002.1966774046.0000000001150000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986446625.00000000050C0000.00000004.00000800.00020000.00000000.sdmpBinary or memory string: Progman
Source: explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: ProgmancesJP
Source: explorer.exe, 0000001F.00000003.2236366585.00000000050B1000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2271543513.00000000050B1000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Shell_TrayWndE
Source: explorer.exe, 0000000C.00000002.1966774046.0000000001158000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Progmanrce
Source: explorer.exe, 0000001C.00000002.2226162517.0000000000858000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: *Progman
Source: explorer.exe, 0000001F.00000002.2266274739.0000000000F39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2315645433.0000000000C49000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 0Progman
Source: explorer.exe, 00000008.00000002.1925866224.0000000001240000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1866708286.0000000001240000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 1Progman$
Source: explorer.exe, 00000008.00000000.1867894946.00000000018A0000.00000002.00000001.00040000.00000000.sdmpBinary or memory string: Progmanlock
Source: explorer.exe, 00000008.00000000.1867894946.00000000018A0000.00000002.00000001.00040000.00000000.sdmpBinary or memory string: }Program Manager
Source: explorer.exe, 00000019.00000002.2189883224.00000000070D1000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Progmanq
Source: explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd1
Source: C:\Windows\SysWOW64\wget.exeQueries volume information: C:\Users\user\Desktop\download VolumeInformationJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\SysWOW64\wget.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuidJump to behavior

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid Accounts1
Command and Scripting Interpreter		1
Windows Service		1
Windows Service		11
Masquerading		11
Input Capture		111
Security Software Discovery		Remote Services11
Input Capture		Data ObfuscationExfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/Job1
DLL Side-Loading		212
Process Injection		11
Virtualization/Sandbox Evasion		LSASS Memory11
Virtualization/Sandbox Evasion		Remote Desktop ProtocolData from Removable MediaJunk DataExfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAt1
Registry Run Keys / Startup Folder		1
DLL Side-Loading		212
Process Injection		Security Account Manager2
Process Discovery		SMB/Windows Admin SharesData from Network Shared DriveSteganographyAutomated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin Hook1
Registry Run Keys / Startup Folder		1
DLL Side-Loading		NTDS2
File and Directory Discovery		Distributed Component Object ModelInput CaptureProtocol ImpersonationTraffic DuplicationData Destruction
Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon ScriptNetwork Logon ScriptSoftware PackingLSA Secrets13
System Information Discovery		SSHKeyloggingFallback ChannelsScheduled TransferData Encrypted for Impact

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1427747 URL: https://staticcontent.cricu... Startdate: 18/04/2024 Architecture: WINDOWS Score: 60 44 Malicious sample detected (through community Yara rule) 2->44 6 explorer.exe 10 7 2->6 injected 9 explorer.exe 90 2->9         started        11 explorer.exe 2->11         started        13 9 other processes 2->13 process3 file4 46 Writes to foreign memory regions 6->46 48 Allocates memory in foreign processes 6->48 16 WerFault.exe 21 6->16         started        50 Query firmware table information (likely to detect VMs) 9->50 18 WerFault.exe 9->18         started        20 WerFault.exe 11->20         started        34 C:\Users\user\AppData\Local\...\nsis7z.dll, PE32 13->34 dropped 36 C:\Users\user\AppData\Local\...\nsProcess.dll, PE32 13->36 dropped 38 C:\Users\user\AppData\Local\...\System.dll, PE32 13->38 dropped 40 2 other files (none is malicious) 13->40 dropped 22 wget.exe 2 13->22         started        26 conhost.exe 13->26         started        28 WerFault.exe 13->28         started        30 6 other processes 13->30 signatures5 process6 dnsIp7 42 13.32.151.60 AMAZON-02US United States 22->42 32 CricutDesignSpace-...pwFlKa5Z0ZnNvk2QuBE, PE32 22->32 dropped file8

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

No Antivirus matches

Dropped Files

SourceDetectionScannerLabelLink
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\SpiderBanner.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\SpiderBanner.dll1%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\StdUtils.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\StdUtils.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\System.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\System.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsProcess.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsProcess.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsis7z.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsis7z.dll0%VirustotalBrowse
C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE0%VirustotalBrowse

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
http://anglebug.com/46330%URL Reputationsafe
http://anglebug.com/46330%URL Reputationsafe
https://anglebug.com/73820%URL Reputationsafe
https://crbug.com/13560530%URL Reputationsafe
http://crbug.com/1102630%URL Reputationsafe
http://anglebug.com/69290%URL Reputationsafe
https://anglebug.com/72460%URL Reputationsafe
https://anglebug.com/73690%URL Reputationsafe
https://anglebug.com/74890%URL Reputationsafe
https://crbug.com/5930240%URL Reputationsafe
http://exslt.org/common0%URL Reputationsafe
https://crbug.com/13005750%URL Reputationsafe
https://crbug.com/7104430%URL Reputationsafe
https://crbug.com/10600120%URL Reputationsafe
http://anglebug.com/39970%URL Reputationsafe
http://anglebug.com/47220%URL Reputationsafe
http://anglebug.com/47220%URL Reputationsafe
http://crbug.com/6426050%URL Reputationsafe
http://anglebug.com/14520%URL Reputationsafe
https://outlook.com_0%URL Reputationsafe
https://crbug.com/650547callClearTwiceUsing0%URL Reputationsafe
http://anglebug.com/35020%URL Reputationsafe
http://anglebug.com/36230%URL Reputationsafe
http://anglebug.com/36250%URL Reputationsafe
http://anglebug.com/36240%URL Reputationsafe
http://anglebug.com/28940%URL Reputationsafe
http://anglebug.com/38620%URL Reputationsafe
http://anglebug.com/48360%URL Reputationsafe
http://schemas.micro0%URL Reputationsafe
http://anglebug.com/39700%URL Reputationsafe
http://anglebug.com/59010%URL Reputationsafe
http://anglebug.com/39650%URL Reputationsafe
https://anglebug.com/71610%URL Reputationsafe
https://anglebug.com/71620%URL Reputationsafe
http://anglebug.com/37290%URL Reputationsafe
http://anglebug.com/59060%URL Reputationsafe
http://crbug.com/8300460%URL Reputationsafe
http://anglebug.com/25170%URL Reputationsafe
http://anglebug.com/49370%URL Reputationsafe
http://crbug.com/6723800%URL Reputationsafe
http://crbug.com/941620allowTranslateUniformBlockToStructuredBufferThere0%URL Reputationsafe
http://anglebug.com/38320%URL Reputationsafe
https://crbug.com/8116610%URL Reputationsafe
http://devel.freebsoft.org/speechd0%URL Reputationsafe
https://crbug.com/10918240%URL Reputationsafe
http://anglebug.com/10850%URL Reputationsafe
http://anglebug.com/66510%URL Reputationsafe
https://anglebug.com/48300%URL Reputationsafe
http://anglebug.com/5007disableDrawBuffersIndexedDisable0%URL Reputationsafe
http://anglebug.com/30270%URL Reputationsafe
http://anglebug.com/21620%URL Reputationsafe
http://anglebug.com/54300%URL Reputationsafe
http://anglebug.com/82970%VirustotalBrowse
http://anglebug.com/8280enableTranslatedShaderSubstitutionCheck0%VirustotalBrowse
https://w3c.github.io/manifest/#installability-signals0%VirustotalBrowse
http://anglebug.com/81720%VirustotalBrowse
http://anglebug.com/82910%VirustotalBrowse
https://crbug.com/11449080%VirustotalBrowse
https://beacons4.gvt2.com/domainreliability/upload0%VirustotalBrowse
http://crbug.com/14201300%VirustotalBrowse
https://beacons.gcp.gvt2.com/domainreliability/upload0%VirustotalBrowse

Domains and IPs

Contacted Domains

No contacted domains info

URLs from Memory and Binaries

NameSourceMaliciousAntivirus DetectionReputation
https://aka.ms/odirmrexplorer.exe, 00000008.00000000.1870905533.00000000079FB000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000079FB000.00000004.00000001.00020000.00000000.sdmpfalse
    		high
    https://github.com/gpuweb/gpuweb/wiki/Implementation-Status#implementation-statusCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
      		high
      https://github.com/simplejson/simplejsonCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
        		high
        http://anglebug.com/8280enableTranslatedShaderSubstitutionCheckCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
        https://api.msn.com:443/v1/news/Feed/Windows?explorer.exe, 00000008.00000002.1937177858.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1873938631.00000000097D4000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1931650941.0000000007AE2000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181901400.000000000430B000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
          		high
          https://www.bluetooth.com/specifications/gatt/servicesCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
            		high
            http://anglebug.com/4633CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
            • URL Reputation: safe
            • URL Reputation: safe
            		unknown
            https://anglebug.com/7382CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
            • URL Reputation: safe
            		unknown
            https://github.com/WebBluetoothCG/web-bluetooth/blob/main/implementation-status.mdCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
              		high
              https://crbug.com/1356053CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
              • URL Reputation: safe
              		unknown
              https://cdn.nexplorer.exe, 0000001F.00000002.2268429382.0000000004BFD000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmpfalse
                		unknown
                https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gTUYexplorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                  		high
                  http://crbug.com/110263CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                  • URL Reputation: safe
                  		unknown
                  http://anglebug.com/6929CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                  • URL Reputation: safe
                  		unknown
                  https://github.com/google/pprof/tree/master/protoCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                    		high
                    https://assets.msn.com/weathermapdata/1/explorer.exe, 00000019.00000002.2189883224.00000000070F6000.00000004.00000020.00020000.00000000.sdmpfalse
                      		high
                      https://github.com/jrmuizel/qcms/tree/v4CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                        		high
                        https://chromium.googlesource.com/chromium/src/CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmp, CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                          		high
                          http://www.autoitscript.com/autoit3/Jexplorer.exe, 00000008.00000000.1878908217.000000000C964000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000003.1885722208.000000000C978000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000003.1886201113.000000000C9AE000.00000004.00000001.00020000.00000000.sdmpfalse
                            		high
                            https://anglebug.com/7246CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                            • URL Reputation: safe
                            		unknown
                            https://anglebug.com/7369CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                            • URL Reputation: safe
                            		unknown
                            https://anglebug.com/7489CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                            • URL Reputation: safe
                            		unknown
                            https://crbug.com/593024CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                            • URL Reputation: safe
                            		unknown
                            https://w3c.github.io/manifest/#installability-signalsCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                            https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gHZuexplorer.exe, 00000008.00000000.1870905533.00000000078AD000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1933244130.00000000078AD000.00000004.00000001.00020000.00000000.sdmpfalse
                              		high
                              http://exslt.org/commonCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                              • URL Reputation: safe
                              		unknown
                              https://github.com/tensorflow/modelsCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                		high
                                https://github.com/KhronosGroup/SPIRV-Headers.gitCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                  		high
                                  https://www.msn.com/en-us/weather/topstories/us-weather-super-el-nino-to-bring-more-flooding-and-winexplorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                                    		high
                                    https://issuetracker.google.com/161903006CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                      		high
                                      https://crbug.com/1300575CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                      • URL Reputation: safe
                                      		unknown
                                      https://crbug.com/710443CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                      • URL Reputation: safe
                                      		unknown
                                      https://aka.ms/odirmGexplorer.exe, 00000013.00000002.2146848502.000000000802E000.00000004.00000020.00020000.00000000.sdmpfalse
                                        		high
                                        https://github.com/tensorflow/tflite-supportCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                          		high
                                          https://sqlite.org/CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                            		high
                                            https://crbug.com/1060012CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                            • URL Reputation: safe
                                            		unknown
                                            https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gMeuexplorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                                              		high
                                              http://anglebug.com/3997CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                              • URL Reputation: safe
                                              		unknown
                                              http://anglebug.com/4722CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                              • URL Reputation: safe
                                              • URL Reputation: safe
                                              		unknown
                                              http://crbug.com/642605CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                              • URL Reputation: safe
                                              		unknown
                                              http://anglebug.com/1452CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                              • URL Reputation: safe
                                              		unknown
                                              https://github.com/gpuweb/gpuweb/wiki/Implementation-Status#implementation-statusFailedCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                		high
                                                https://outlook.com_explorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpfalse
                                                • URL Reputation: safe
                                                		low
                                                https://crbug.com/650547callClearTwiceUsingCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                • URL Reputation: safe
                                                		unknown
                                                http://crbug.com/1420130CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                http://anglebug.com/3502CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                • URL Reputation: safe
                                                		unknown
                                                http://anglebug.com/3623CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                • URL Reputation: safe
                                                		unknown
                                                https://gitlab.freedesktop.org/xdg/xdgmimeCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                  		high
                                                  http://anglebug.com/3625CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                  • URL Reputation: safe
                                                  		unknown
                                                  http://anglebug.com/3624CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                  • URL Reputation: safe
                                                  		unknown
                                                  http://www.unicode.org/copyright.htmlCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                    		high
                                                    https://beacons.gcp.gvt2.com/domainreliability/uploadCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                    http://anglebug.com/2894CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                    • URL Reputation: safe
                                                    		unknown
                                                    http://anglebug.com/3862CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                    • URL Reputation: safe
                                                    		unknown
                                                    http://anglebug.com/4836CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                    • URL Reputation: safe
                                                    		unknown
                                                    https://issuetracker.google.com/issues/166475273CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                      		high
                                                      http://schemas.microexplorer.exe, 00000008.00000000.1875621075.0000000009B60000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 00000008.00000000.1873192394.0000000008720000.00000002.00000001.00040000.00000000.sdmp, explorer.exe, 00000008.00000000.1872600926.0000000007F40000.00000002.00000001.00040000.00000000.sdmpfalse
                                                      • URL Reputation: safe
                                                      		unknown
                                                      https://github.com/google/shell-encryptionCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                        		high
                                                        https://github.com/wasdk/wasmparserCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                          		high
                                                          https://goo.gl/4NeimXOriginCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                            		high
                                                            https://www.msn.com/en-us/lifestyle/travel/i-ve-worked-at-a-campsite-for-5-years-these-are-the-15-miexplorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                                                              		high
                                                              http://anglebug.com/3970CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                              • URL Reputation: safe
                                                              		unknown
                                                              https://android.com/payCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                		high
                                                                http://anglebug.com/8297CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                                http://anglebug.com/5901CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://anglebug.com/3965CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                https://anglebug.com/7161CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                https://anglebug.com/7162CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://anglebug.com/3729CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://anglebug.com/5906CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://crbug.com/830046CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://anglebug.com/2517CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://anglebug.com/4937CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                https://crbug.com/1144908CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                                https://datatracker.ietf.org/doc/draft-ietf-rtcweb-ip-handling.CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                  		high
                                                                  https://issuetracker.google.com/166809097CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                    		high
                                                                    http://crbug.com/672380CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                    • URL Reputation: safe
                                                                    		unknown
                                                                    https://goo.gl/EuHzyvCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                      		high
                                                                      http://crbug.com/941620allowTranslateUniformBlockToStructuredBufferThereCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                      • URL Reputation: safe
                                                                      		unknown
                                                                      https://assets.msn.com/weathermapdata/1/static/weather/Icons/JyNGQgA=/Teaser/humidity.svgexplorer.exe, 00000008.00000002.1933244130.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000000.1870905533.0000000007900000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1930716052.0000000007AE5000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000002.1986513480.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1939065378.0000000007AF6000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000000C.00000003.1936817598.0000000007AE8000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000010.00000002.2105850271.0000000004C49000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000013.00000002.2139715069.00000000075A0000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000002.2189883224.000000000710D000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000019.00000003.2133998542.000000000710C000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2181268443.0000000004323000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000002.2228296044.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001C.00000003.2187479795.00000000042EC000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000003.2238816521.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                        		high
                                                                        http://anglebug.com/3832CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                        • URL Reputation: safe
                                                                        		unknown
                                                                        https://beacons4.gvt2.com/domainreliability/uploadCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                                        https://crbug.com/811661CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                        • URL Reputation: safe
                                                                        		unknown
                                                                        https://github.com/GPUOpen-LibrariesAndSDKs/VulkanMemoryAllocatorCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                          		high
                                                                          https://goo.gl/HxfxSQOriginCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                            		high
                                                                            https://www.msn.com/en-us/news/politics/exclusive-john-kelly-goes-on-the-record-to-confirm-several-dexplorer.exe, 0000001F.00000003.2238816521.0000000004C12000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 0000001F.00000002.2268429382.0000000004C39000.00000004.00000020.00020000.00000000.sdmp, explorer.exe, 00000022.00000002.2327303370.0000000007473000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                              		high
                                                                              http://devel.freebsoft.org/speechdCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                              • URL Reputation: safe
                                                                              		unknown
                                                                              http://anglebug.com/8172CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                                              http://anglebug.com/8291CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalseunknown
                                                                              http://developer.android.com/tools/extras/support-library.htmlCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2030351301.0000000005BB0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                		high
                                                                                https://crbug.com/1091824CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                http://anglebug.com/1085CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                http://anglebug.com/6651CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                https://anglebug.com/4830CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                http://anglebug.com/5007disableDrawBuffersIndexedDisableCricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                http://anglebug.com/3027CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                • URL Reputation: safe
                                                                                		unknown
                                                                                https://chromium.googlesource.com/angle/angle/CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                  		high
                                                                                  https://excel.office.comexplorer.exe, 00000008.00000000.1878908217.000000000C5AA000.00000004.00000001.00020000.00000000.sdmp, explorer.exe, 00000008.00000002.1949159778.000000000C5AA000.00000004.00000001.00020000.00000000.sdmpfalse
                                                                                    		high
                                                                                    http://anglebug.com/2162CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                    • URL Reputation: safe
                                                                                    		unknown
                                                                                    http://anglebug.com/5430CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe, 00000005.00000003.2526329092.00000000066F0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                    • URL Reputation: safe
                                                                                    		unknown

                                                                                    World Map of Contacted IPs

                                                                                    • No. of IPs < 25%
                                                                                    • 25% < No. of IPs < 50%
                                                                                    • 50% < No. of IPs < 75%
                                                                                    • 75% < No. of IPs

                                                                                    Public IPs

                                                                                    IPDomainCountryFlagASNASN NameMalicious
                                                                                    13.32.151.60
                                                                                    		unknownUnited States
                                                                                    		16509AMAZON-02USfalse

                                                                                    General Information

                                                                                    Joe Sandbox version:40.0.0 Tourmaline
                                                                                    Analysis ID:1427747
                                                                                    Start date and time:2024-04-18 03:51:51 +02:00
                                                                                    Joe Sandbox product:CloudBasic
                                                                                    Overall analysis duration:0h 11m 35s
                                                                                    Hypervisor based Inspection enabled:false
                                                                                    Report type:full
                                                                                    Cookbook file name:urldownload.jbs
                                                                                    Sample URL:https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI
                                                                                    Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                                                                    Number of analysed new started processes analysed:42
                                                                                    Number of new started drivers analysed:0
                                                                                    Number of existing processes analysed:0
                                                                                    Number of existing drivers analysed:0
                                                                                    Number of injected processes analysed:1
                                                                                    Technologies:
                                                                                    • HCA enabled
                                                                                    • EGA enabled
                                                                                    • AMSI enabled
                                                                                    Analysis Mode:default
                                                                                    Analysis stop reason:Timeout
                                                                                    Detection:MAL
                                                                                    Classification:mal60.evad.win@25/114@0/1
                                                                                    EGA Information:Failed
                                                                                    HCA Information:
                                                                                    • Successful, ratio: 100%
                                                                                    • Number of executed functions: 0
                                                                                    • Number of non-executed functions: 0

                                                                                    Warnings

                                                                                    • Behavior information exceeds normal sizes, reducing to normal. Report will have missing behavior information.
                                                                                    • Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, WerFault.exe, SIHClient.exe, conhost.exe, svchost.exe, SearchApp.exe
                                                                                    • Not all processes where analyzed, report is missing behavior information
                                                                                    • Report size exceeded maximum capacity and may have missing behavior information.
                                                                                    • Report size getting too big, too many NtEnumerateKey calls found.
                                                                                    • Report size getting too big, too many NtEnumerateValueKey calls found.
                                                                                    • Report size getting too big, too many NtOpenFile calls found.
                                                                                    • Report size getting too big, too many NtOpenKey calls found.
                                                                                    • Report size getting too big, too many NtOpenKeyEx calls found.
                                                                                    • Report size getting too big, too many NtProtectVirtualMemory calls found.
                                                                                    • Report size getting too big, too many NtQueryAttributesFile calls found.
                                                                                    • Report size getting too big, too many NtQueryValueKey calls found.
                                                                                    • Report size getting too big, too many NtSetInformationFile calls found.
                                                                                    • Skipping network analysis since amount of network traffic is too extensive

                                                                                    Simulations

                                                                                    Behavior and APIs

                                                                                    TimeTypeDescription
                                                                                    03:53:01API Interceptor71x Sleep call for process: explorer.exe modified
                                                                                    03:53:30API Interceptor21x Sleep call for process: CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe modified

                                                                                    Joe Sandbox View / Context

                                                                                    IPs

                                                                                    No context

                                                                                    Domains

                                                                                    No context

                                                                                    ASNs

                                                                                    No context

                                                                                    JA3 Fingerprints

                                                                                    No context

                                                                                    Dropped Files

                                                                                    No context

                                                                                    Created / dropped Files

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_Explorer.EXE_30b8aeca5aa8662f4a40dbd0fd9a29f7169b1d84_f78a65ed_c0e20fbf-ccdc-45f2-bec4-0580145f96d3\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):2.3876235305512976
                                                                                    Encrypted:false
                                                                                    SSDEEP:384:7iC1YhXSEjAWMo+hiRicd8dvzuiFIY4lO8k:7iPhXSEj0o4QBd8VzuiFIY4lO8
                                                                                    MD5:078F43E1F417F044E5C5D9E545CFD95B
                                                                                    SHA1:E9450D2964A143095302C5062D069533B73E8AB2
                                                                                    SHA-256:0A740776ED80ADBB61D0B0C6D5C762423169BA24A3669BE6865FF68BA070219B
                                                                                    SHA-512:FFFC6169123B29B14567FFCA2826C4D958BA97070AAAE319E949236033B54C32925AF09B77AC70055ABE48760008F2182056B706AAAADBC95DEF3DB10D8993A7
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.7.8.5.3.2.5.5.4.8.1.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.c.0.e.2.0.f.b.f.-.c.c.d.c.-.4.5.f.2.-.b.e.c.4.-.0.5.8.0.1.4.5.f.9.6.d.3.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.5.3.0.d.f.8.5.f.-.8.2.0.9.-.4.8.c.5.-.b.d.c.5.-.5.f.2.3.9.0.2.c.4.6.c.8.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.E.x.p.l.o.r.e.r...E.X.E.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.0.a.1.4.-.0.0.0.1.-.0.0.1.4.-.b.4.2.e.-.d.2.e.2.2.6.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_260da228-fc52-4137-9ec6-a5af3f8e1133\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.6725606721222663
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:XgTeCpUC0HJ8Sj9B5+CZ752hvbNZFG/KDzuiFZZ24lO8k:XgKCpYHJ8Sj1525g/IzuiFZY4lO8k
                                                                                    MD5:B7168140D0E903C80AAAE0247B743858
                                                                                    SHA1:FD99D6A9B69E625314B84120837F2868B275E0C3
                                                                                    SHA-256:F88EB3B3F624B36A99DE55AB4B69A627B12A1F83736505B8AB515E2ADE5112B9
                                                                                    SHA-512:721B8126E88C62680BA3F99F9909651E8D7119EF2A5F397E004A6C906D081FA8C16B58A7C7751E490FAEBE5182656B7AC59642EA3B5FCF8F3A238EE10CE03223
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.3.1.4.7.5.3.4.8.4.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.6.0.d.a.2.2.8.-.f.c.5.2.-.4.1.3.7.-.9.e.c.6.-.a.5.a.f.3.f.8.e.1.1.3.3.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.c.4.b.1.6.4.9.-.c.3.5.4.-.4.5.f.5.-.b.8.6.d.-.2.2.f.6.7.c.3.4.2.7.d.7.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.3.7.c.-.0.0.0.1.-.0.0.1.4.-.1.d.d.8.-.e.7.3.f.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_278d70e9-509c-47e8-bd86-e59e7df398c5\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.5255816223021614
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:GSr0eCxUC0HJ8SjyaV+CJ7xsRHSZF6zuiFZZ24lO8kW:GSrtCxYHJ8Sj1xsDzuiFZY4lO8kW
                                                                                    MD5:73A17A1A8D0541F251BBEB5AE2FA1CF3
                                                                                    SHA1:9CECD404F85269D181B1E71BFE83310E221F11B1
                                                                                    SHA-256:1B8B0CEA444F867BE0835399C793EE029DD18D2F168BE5FF8D6B8065B8B0019A
                                                                                    SHA-512:D5D5582B012789F2FBD5B06ADD9E91704A20C0328C40338C4BF2E190D29585950EDD4A7EC4266847F8D2A39018FC07C7841067C9972500184D7B119F4EBC2A94
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.0.5.7.9.3.3.7.2.1.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.7.8.d.7.0.e.9.-.5.0.9.c.-.4.7.e.8.-.b.d.8.6.-.e.5.9.e.7.d.f.3.9.8.c.5.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.e.d.1.3.6.7.7.b.-.2.3.b.5.-.4.5.2.2.-.9.4.a.9.-.2.7.0.b.1.9.8.c.7.a.6.b.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.7.2.8.-.0.0.0.1.-.0.0.1.4.-.c.2.d.a.-.b.6.2.e.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_2bf35a4a-e428-470f-80d3-448479483fab\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.5256598074087457
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:49reC1UC0HJ8SjZo++CJLwthNtZFLzuiFIZ24lO8k:oiC1YHJ8SjlwtJzuiFIY4lO8k
                                                                                    MD5:1FF75338973126DE827BC8323DAC251D
                                                                                    SHA1:E610DB7D522CD1A95499A5611D36B028A6B3CA8B
                                                                                    SHA-256:DBC924933AD419D2EA928B8DE7E9938DAFFED5717974C459EE7BA7ECFC258C7F
                                                                                    SHA-512:A0BAC500D95E2107EB67B9E705090BFD5F47B1DE7AED9CEB809F32D4882A32038405976D7D3BBB1333EDB7558CB657062A43A115178CE7979EEE5360D4EDAFA2
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.7.9.0.3.1.4.6.2.7.4.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.b.f.3.5.a.4.a.-.e.4.2.8.-.4.7.0.f.-.8.0.d.3.-.4.4.8.4.7.9.4.8.3.f.a.b.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.b.6.d.5.8.5.f.0.-.e.2.a.5.-.4.a.6.1.-.b.5.4.b.-.6.1.4.c.4.d.f.f.5.7.f.5.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.0.e.7.0.-.0.0.0.1.-.0.0.1.4.-.7.e.b.9.-.a.0.2.8.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_313101d7-52ed-405e-b9f6-2e8c2433cda8\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.721499735700791
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:rBeCtUC0hXSEjSaV+CZLCbh6+jZFU/KQKzuiFZZ24lO8k:rYCtYhXSEj1CbIh/ezuiFZY4lO8k
                                                                                    MD5:921533FAE31597809DA5B62FF2F96E04
                                                                                    SHA1:ECC9C95698D851385A55A7F8CDECFF9958C55983
                                                                                    SHA-256:4E2D9EB9213B3DAA5E10B6775238FB9F159C699FEADDE983DF275718B2A6D82F
                                                                                    SHA-512:F444B2259670FE7359252AA7474A9CC0CF534AD1085AF940F27B89E34B7E75B42E2DE0F8217A5D1E6AAFA3B8DBD9BE486F1532C8C968162C66FA00C3E2854CDC
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.3.8.0.1.4.3.1.7.9.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.1.3.1.0.1.d.7.-.5.2.e.d.-.4.0.5.e.-.b.9.f.6.-.2.e.8.c.2.4.3.3.c.d.a.8.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.a.a.9.4.0.1.3.-.e.9.e.d.-.4.a.3.e.-.8.d.4.a.-.4.2.2.5.4.1.7.d.f.9.9.c.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.1.8.4.-.0.0.0.1.-.0.0.1.4.-.8.7.6.d.-.1.2.4.4.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_4ae6c052-630c-4411-81ed-992ec2950817\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.5556770640738862
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:5WVeC6+UC0HJ8SjyaV+CR+vVhJZFlwzuiFZZ24lO8k:UsC7YHJ8Sj4vVGzuiFZY4lO8k
                                                                                    MD5:72BD8E22230779222D003293881A882D
                                                                                    SHA1:339F7107472A5BCE9C35C7BDEFF6AD2EA23455B0
                                                                                    SHA-256:EA7EC4C5C754FF5CB45CBBA9307C4452156ECDBA7665BA3A909444132C9E9197
                                                                                    SHA-512:F30473F2F62482001CB3107A39EBDB6D2DC5693CE2CD8A46B79815290DED4DB29AE1C93F2370BCA490717D2B79349A70C2BCC36781C13D3BDA6FDBE17D2B2C3C
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.1.1.4.1.3.1.9.7.4.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.4.a.e.6.c.0.5.2.-.6.3.0.c.-.4.4.1.1.-.8.1.e.d.-.9.9.2.e.c.2.9.5.0.8.1.7.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.0.d.5.3.3.1.2.-.e.d.2.6.-.4.8.d.7.-.b.2.2.8.-.9.4.d.7.7.0.b.3.b.b.8.e.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.9.c.4.-.0.0.0.1.-.0.0.1.4.-.8.b.d.e.-.a.d.3.4.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_741c8546-adff-4f01-97ff-b945035cdc76\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.754205234890582
                                                                                    Encrypted:false
                                                                                    SSDEEP:384:fWj5CsYHJ8SjNw6j+23RGzuiFIY4lO8k:Oj5OHJ8SjFjZGzuiFIY4lO8
                                                                                    MD5:EBDC53ACA9020E8F51B495B3ADB803F0
                                                                                    SHA1:1BD9488A9718409D1CAA44D468A4ADA49B3A4190
                                                                                    SHA-256:EE287C07456E1242BE6697EE67C16B9CE47ECED326BFD726C0FAB403C18BDE5F
                                                                                    SHA-512:5CC57203ACDCF6D17F6585A5CFEFD54B55372B7D4C4686741EF4FC386AFA6C9BA82E61AE8698FDAC3DE0A41506F3AB65B96F06DDBE48840647F2866AAC1A1448
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.7.9.6.2.5.9.2.9.7.1.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.7.4.1.c.8.5.4.6.-.a.d.f.f.-.4.f.0.1.-.9.7.f.f.-.b.9.4.5.0.3.5.c.d.c.7.6.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.2.8.7.7.6.4.1.5.-.e.5.7.2.-.4.f.8.e.-.9.e.8.f.-.0.4.1.3.0.c.d.b.0.5.6.5.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.b.2.8.-.0.0.0.1.-.0.0.1.4.-.4.0.4.2.-.1.a.2.b.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_83c674cc-7d88-48f1-8a2a-c1f602ca8507\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:modified
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.7548771479887268
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:pneCWUC0hXSEjuSh+CJLA51A/ZFIfnk1xRtSzuiFZZ24lO8k:peCWYhXSEjVA5BfGxRAzuiFZY4lO8k
                                                                                    MD5:8AE49DDC6D7A28E874A146569EE92BFD
                                                                                    SHA1:09B652B8733907086D73C6A27BF7B7276AB00D65
                                                                                    SHA-256:2741CA4D4AB02D32F807638693CE4906FC5158537B4D1DC92F13067C7D7F1417
                                                                                    SHA-512:1BF8A8E62091BDBE4B7C581444A89C9CC5DB109CFE7FD9C438950D4B0C1E3A1D2EE0576758E875B001DB75FF5FE8EAE582B9519D4F75A44064F426B49349AB08
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.2.4.6.2.9.7.4.2.5.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.8.3.c.6.7.4.c.c.-.7.d.8.8.-.4.8.f.1.-.8.a.2.a.-.c.1.f.6.0.2.c.a.8.5.0.7.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.b.c.9.3.a.d.4.8.-.5.5.5.b.-.4.f.e.2.-.a.1.6.b.-.b.7.0.2.6.c.3.e.3.0.b.7.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.0.8.0.c.-.0.0.0.1.-.0.0.1.4.-.1.2.1.8.-.f.3.3.c.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_b5a8f54b-c615-4aca-a88f-4b208a7dd387\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.7540736432632265
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:iSeCSUC0HJ8Sjj7V+CJ+4YhJrZFi+PkCWRpYzuiFZZ24lO8k:irCSYHJ8SjQ4Yq+JWRGzuiFZY4lO8k
                                                                                    MD5:2A2DD2AC50FB7BA1EBD03DC9FC013B18
                                                                                    SHA1:5E861764401E64068535FC2ABBDE7C0D50504F80
                                                                                    SHA-256:59881337B7554B2A73AADB7F9BFA830D24130D8E7B9E49F413164A796A9F44E1
                                                                                    SHA-512:9C9D2CFE08AA8D4225372B23423513A5A20D7D6DBB1D4D3618CB17BDC2E25BF14CBB71819B9316770AA162B9BA0839930F379A82F0D78346EDBB7BA812F981D8
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.2.0.1.9.1.9.9.9.3.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.b.5.a.8.f.5.4.b.-.c.6.1.5.-.4.a.c.a.-.a.8.8.f.-.4.b.2.0.8.a.7.d.d.3.8.7.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.3.4.f.b.c.5.1.0.-.0.0.5.3.-.4.c.a.f.-.b.6.1.5.-.7.8.b.d.1.b.a.9.a.c.3.7.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.0.b.b.4.-.0.0.0.1.-.0.0.1.4.-.2.1.2.9.-.8.7.3.a.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_explorer.exe_cff6b4738afde0348919af8c934d74ecbb7b35e_07ad8ade_d79898f3-9059-4ff4-bd0f-d124400504cf\Report.wer

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):65536
                                                                                    Entropy (8bit):1.6387459317352213
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:h9xfmeC6iUC0hXSEjyaV+CR+EGblSZF8fszuiFZZ24lO8k:h9BCnYhXSEj4EGPfszuiFZY4lO8k
                                                                                    MD5:08C4A8B54A2BE6B145A5F1C2ACE12D87
                                                                                    SHA1:DBF53A4358322FB9649883B5B15817E1C7D10A0D
                                                                                    SHA-256:1B5412FC85BD3E5803D81AFF3CA08875DD41ADB7B1E47DAD64177B01AD12EF13
                                                                                    SHA-512:81AF6BC3053F58BCD094C2393A7CAC79357AA03F00E7484A6A8F9E1314D7D8B593AC175EE98F442EA5CB459A967157A6A140F2F2E941A6F9B5CD18652D883613
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.5.7.8.7.8.8.1.5.9.8.9.7.3.8.4.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....R.e.p.o.r.t.F.l.a.g.s.=.5.2.4.2.8.8.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.d.7.9.8.9.8.f.3.-.9.0.5.9.-.4.f.f.4.-.b.d.0.f.-.d.1.2.4.4.0.0.5.0.4.c.f.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.a.1.1.4.a.d.6.7.-.9.f.7.c.-.4.2.3.7.-.a.8.1.0.-.3.3.a.d.4.2.6.8.8.c.b.4.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....N.s.A.p.p.N.a.m.e.=.e.x.p.l.o.r.e.r...e.x.e.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e.=.E.X.P.L.O.R.E.R...E.X.E.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.0.8.f.c.-.0.0.0.1.-.0.0.1.4.-.2.9.7.8.-.a.7.3.7.3.3.9.1.d.a.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.0.f.5.1.9.f.e.e.c.4.8.6.d.e.8.7.e.d.7.3.c.b.9.2.d.3.c.a.c.8.0.2.4.0.0.0.0.0.0.0.0.!.0.0.0.0.9.0.b.0.8.0.e.0.6.5.5.7.2.0.c.a.d.8.c.1.c.a.e.4.b.8.1.9.3.c.9.3.8.2.c.9.a.c.9.2.!.e.x.p.l.o.r.e.r...e.x.e.....T.a.r.g.e.t.A.p.p.V.e.r.=.2.0.0.2././.1.2././.2.1.:.2.0.:.5.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER2233.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:52 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):581940
                                                                                    Entropy (8bit):1.5548443908162657
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:7mKLg/4sHMmlp4hh4erh3u7uYYhK0kQS:SKLg/4sWn4eK8sD
                                                                                    MD5:E3B7172341708E11AC671E32E01B69E8
                                                                                    SHA1:D2258C69240C5EF12FAD8CECB3E41EC7230E9D93
                                                                                    SHA-256:F648A33CC13657C655E5C02448CF73A1519714CEFC8B40D070F170E7A98ACAC0
                                                                                    SHA-512:4E36A990A514FD7ACA3D3840A7735980628C005CA88F60F6C320A5FFA4532827DE72B6662BE401A31FE0229F6067D980A43A20FA6305484043160EFB70930965
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... .......0} f.........................@..........$...hN......t...|...........`.......8...........T...............<............N..........xP..............................................................................eJ.......Q......Lw......................T.......|...*} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER264B.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8208
                                                                                    Entropy (8bit):3.7193806952644817
                                                                                    Encrypted:false
                                                                                    SSDEEP:96:RSIU6o7wVetbzX7i7zYtczboXqUGgaM4Us89bjUhLuELuq9R8O+rfOIBm:R6l7wVeJfi7zYqzbo1prs89bjU6fOIBm
                                                                                    MD5:5DF30001E4BB2B937818EED90073952C
                                                                                    SHA1:6A3765F9D5EE6361C5D93B3DEB686DBA63AB3698
                                                                                    SHA-256:ADE7B678092BE3B0F95B06F15304EFC3AFB2437E6B2279884663FE8C0A885FEF
                                                                                    SHA-512:4140F99C0BAA8715E252E74371C2699E17DF7E02411BC264E3C7329CBF2301B000EC70D24736549526E0C078533520C655C718C934C6E667185B9697747C38EF
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.4.9.8.8.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER269A.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.460389036294906
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VYiYm8M4JYxFEWNjyq85cUb9Q3Nfd:uIjfHI7Fc7V+JJWNjaba3Nfd
                                                                                    MD5:699156EBEC07709114680E5FCE7D461F
                                                                                    SHA1:0A5B470EAE6B81DC97F899DC4C8C0C495026E83B
                                                                                    SHA-256:A46BD5DF949641410F79152919A82359098F9FF6FDF3B7233829B7C07324E23E
                                                                                    SHA-512:884843F5CBD96294FAAC17C877F4FFCC0CF37D0ABA9B72255DA27EF70B7BF41AF4DAAAE8CBA6E73A0F9182951699833A52A2B3BA90950E6AFB291C8C5D4CC718
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER3BB7.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:58 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):678124
                                                                                    Entropy (8bit):1.5847460996087697
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:rhWf7/s0mkjwRbCTdCjisxuxfve6gRxqxYFKoTGaJGL6wfC:rhWf7/stk15sxuxfv06xOKvS
                                                                                    MD5:99480DE2D83AA19D7BBA81F0FFE90642
                                                                                    SHA1:AA4C71DA989C26904ABF4D22A60962D0746D7E38
                                                                                    SHA-256:2EBADA396F626F7F5345289E40F1EF46526B7C306250E8D11DF7C9E757C9CA84
                                                                                    SHA-512:8D65B8AD19B75E22602C3A82DCDFACB5DCF1BDF43087FCF37FEEB49B7AAF6925557C460ABE7DEAF347B114742F9F8B1672827E5AB0138456FDBE51BB8FB84DAE
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... .......6} f.........................C..........$...LR......4....5..........`.......8...........T........... ..............pR..........\T..............................................................................eJ.......T......Lw......................T...........1} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER3E58.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8208
                                                                                    Entropy (8bit):3.7219787149783796
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJmMz9P7YqzboJpr089b5JVfKzm:R6lXJV57YqzUF5Lf3
                                                                                    MD5:C61E15A71A919D6DF59244F9D7190BFF
                                                                                    SHA1:2259FD945E7E9F78B329C9DA688490B3D41A940B
                                                                                    SHA-256:2220451879E0D998A1599A5AFB17A5A603D1F44239A3A99F2EE0F340024BD81A
                                                                                    SHA-512:886DFA55D5E963F67AC8A4D1D3E95539D597C3910972186CB95605C6D92017D2FA4205F3AD31A67F8E9DE0E9A57954E317E264CB11807AEE187795BF981B120D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.4.4.8.4.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER3E87.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.455509498750319
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VYIYm8M4JYxFSbyq85c8b9Q39d:uIjfHI7Fc7VQJdb2ba39d
                                                                                    MD5:E6AF78AE0FD6FC70BDCAF604516C728E
                                                                                    SHA1:3C21F26C93079360B7F95BC7E24BD4AA2018368D
                                                                                    SHA-256:FB464DF126FB5D9759ACD5334B8210DE3DA19730326BAAEE389F7F26FC8A8957
                                                                                    SHA-512:2B6BCE0D183649DB7A314DE87D01272E0C216B04A32075DC918A44959CCEA92360E95A3051208EF1473A2EDC31D0E66E15292D9EC286FBBDA61B302657FC5D27
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER6DE7.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 17 streams, Thu Apr 18 01:53:06 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):1071550
                                                                                    Entropy (8bit):1.5742275104504972
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:Dr942zsg4UbfsDjA7pOKdrGpHubhcKAXZAHl2hI:Dr9tV4Ub0jFKdn42
                                                                                    MD5:82602CC46D589DDF4D2C906AEDA8853D
                                                                                    SHA1:12245426286D05B76DF65FA20F2C98DA9A07D7B4
                                                                                    SHA-256:B5CF5F421084C69236C25D244079E2321EEA03167268298D8ED05D55232AA464
                                                                                    SHA-512:2FF405D16F7C63F9B65983177D62829BAFA1FB7D8E34FCBB890D05C3ADED2557F30595DB8D583054B94261E130E4FED9A19D6DAB53F467E221D5ABB620EE3E84
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ........} f............4... ........p..`...............................d...............x.......8...........T...$..............................................d...............................................................................eJ..............Lw......................T...........lh f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6...............................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER7366.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):10830
                                                                                    Entropy (8bit):3.704260025238639
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJdp02kh6YXGIgmfqzboJprK89bSqwfj+e+Tfamm:R6lXJT02kh6Y2IgmfqzUHStfj+e+TfC
                                                                                    MD5:CC468B524BD3D5CC826EF8BF81C7B668
                                                                                    SHA1:5877ACB3F4F0ABB2605EA7065F02C6CB4DF86BB7
                                                                                    SHA-256:8253D6FD544C7CD8B9F04C1D559EC3B5EAE0209DD3B418D2840E025BBE12C495
                                                                                    SHA-512:5AE841423CB313EA3E423D57A60F5AEBA5A0F67D509A717CA86659FDEAA9D435E2A35DACE968570A8B98C0456DF066AD5CA6D012056415C7648016C4CBB270C3
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.2.5.8.0.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER7396.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4724
                                                                                    Entropy (8bit):4.464441308805952
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zs8Jg771I9ytWpW8VYoYm8M4JYxFOyq85cR2b9Q3jd:uIjf6I7Fc7VAJFX2ba3jd
                                                                                    MD5:79B21CA0FB64B8495F626343E5194E11
                                                                                    SHA1:E99E506AADC9F46A3D0ED12A4346BFAEA4D0A2A7
                                                                                    SHA-256:D5564A97E7D34EE36998390F08B45D2CC4FE7BDD0017B1D04125B2C5BCC906FB
                                                                                    SHA-512:233383299A57BDC9594B85814D903C38E2A46B3EE143DD763F3CEF8319D1476F276353EF9F8E55263BC896AB4605CA1EF90BAC6EB79A6A6CA47D585396D086B4
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284695" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER758.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:44 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):620100
                                                                                    Entropy (8bit):1.6595325216578183
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:rxUYTUAksbNWjXIm14YX43K1y/7vM3xQ/28wc38tsuW/:rxUYTUhsMDr1493K1ybSQ/Vn3a1W
                                                                                    MD5:025557F1C5AC1D0AA270F28AE3ACA675
                                                                                    SHA1:5ED008D20A2326F8BF008AD224E51E5B41B3C5C6
                                                                                    SHA-256:C272D18EF9E50D101225DFBD0E306A09C4B15B2894FA016BFAE66B9920B47C04
                                                                                    SHA-512:63B1865ED34385B6F63D0DA634431AD2D3AB85DFE2B9FF137E49A02468076D2D3A452011D831E6FF6776DE9B790CDABF02263F92193E23BEAB27CA40410FB259
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... .......(} f........................4E..........$....S......D...............`.......8...........T...........................0S...........U..............................................................................eJ.......U......Lw......................T...........%} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER8160.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:10 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):641388
                                                                                    Entropy (8bit):1.759536251041149
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:snrbgsgSr8SfI2JEAUyPbuBu5EWV5QcKRCwt7ihva2hswkW:IrbgsFfrNU4buwrKB2zaI
                                                                                    MD5:DB4EBB01DAA36B03F4F88F8DC3142AC4
                                                                                    SHA1:8757DD1C1D46449CFD371106C3E52100003F29EC
                                                                                    SHA-256:AC26FEB11C0903C575FC79BF93547B4CD6E1BABCC0B7C004C97C4B8BE9D17CBA
                                                                                    SHA-512:C8CAAFD6329E23E5BD8400B488C97ED00FFCFE39F19BE814CEE69E9C560A67729D2410F94DEA12CD7821215949FE44D94262F5DF37DF07BCD8D99CF8173DA250
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ........} f............d...........H7..x.......$....D..........n...........`.......8...........T...........@...,............D...........F..............................................................................eJ......hG......Lw......................T.......p....} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER83D2.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8202
                                                                                    Entropy (8bit):3.718437331747206
                                                                                    Encrypted:false
                                                                                    SSDEEP:96:RSIU6o7wVetbE7CQI0kYtczboXqUGgaM4UQ89b19dhwu0wuaclBebrf1iHm:R6l7wVeJQCQIHYqzbo1prQ89b1vRf0Hm
                                                                                    MD5:D16807E35EE41B643D12B12D15177AC2
                                                                                    SHA1:32DB237D961DAF08F2C3786E04D9086CFB745062
                                                                                    SHA-256:82C1A2D384F61CC79663B7D4FE5467116646A399F6C8BF066A7A5F3F1C0E9173
                                                                                    SHA-512:D5A21FD5C30400D74A76D705D7FA0EAB1A84816112CA0433502659049D7C5BFF9E293861D43F10C0F99BFD9FFDCC6AAEB6EF4226306C7CC033F92F2C1FBBC665
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.3.6.9.6.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER8401.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.4572220253357635
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zs8Jg771I9ytWpW8VYJYm8M4JYxF6yq85c/Eb9Q39d:uIjf6I7Fc7VZJVSba39d
                                                                                    MD5:6EA111EC86D8BB00E22DA1C300102AFA
                                                                                    SHA1:B320572B41B2AE71E2EE0077C2FC12038BAEF76D
                                                                                    SHA-256:E4240B4D13C731660A0EB2680AE9D1F5F74CE35D466F716E72A35CCC4CCF421B
                                                                                    SHA-512:75052C3CEE0CFAAF5470641A00113A837B19EAB29AE4549354C6FDDD85F39DD61D80589A7B74A8D3E28781D2C0FCA9E4D96CAC7F8896173FD7F6E3894000FD6D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284695" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER98A1.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:16 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):660280
                                                                                    Entropy (8bit):1.5859681410022488
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:WV16ORs0fxA2KiWw8El+EculbcFGc+R1:+16ORsmxKVw8El+EcIgEf
                                                                                    MD5:6FB32351BCB16E065A6105FF18F52246
                                                                                    SHA1:269F9F174FB41EDFC04F426BEC22D431850AAFCC
                                                                                    SHA-256:5E8301CBA404A531891C648768D95212F4F4B6A5094689CF6EA502CD71B280F7
                                                                                    SHA-512:8679D536A47A40EAFFC6264358505287FF87CDE8FF419896BB227678ECBAAFA5F03AA70AED815FB27AD1017548BF198654EB900BE478527B9F9B1ADCBF76120E
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ........} f........................4E..........$....S......D....3..........`.......8...........T...............p?...........S...........U..............................................................................eJ......tV......Lw......................T.......(....} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER9B61.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):7904
                                                                                    Entropy (8bit):3.7220623623504183
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJKt6eAbYqzbo1pr189b6d0fTOem:R6lXJo7AbYqzU66ufTe
                                                                                    MD5:AC6930AE8BAA87C2D8AEFCC7750F6598
                                                                                    SHA1:BE886E8B0E70678F2DFD4C1F22C20C649167C7F9
                                                                                    SHA-256:E5E9004DAFAA76936325C79F0B25ABCF7897D042F3DAF8C2F85E9B855128C219
                                                                                    SHA-512:209E89268034A967D9FF76001D3DD73F43CDB224827F0D53F270BECF7D3607B353FC56818C3823370F1D104DA5DC455450C7A26CBEE2409D76115702605B17DA
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.6.9.5.2.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER9BCF.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.459114322919937
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zs8Jg771I9ytWpW8VYyYm8M4JYxFwLyq85clb9Q3Wd:uIjf6I7Fc7VGJrPba3Wd
                                                                                    MD5:D46DB7152DCD076649A8EC7C720D81AB
                                                                                    SHA1:679BBA4EA99D3E3E881E389D3E6A9DA2F36CEB37
                                                                                    SHA-256:48F21DC74591687F3B3D5CE810EE5264C5FB782EC1148577EA4E171B286B2889
                                                                                    SHA-512:1B329FCEC7D2CDE2EC92A92BB556A24E7D293AE601EB5A3D9D87E82A2103E4A9ED6938BDF44779114726701C2E9FB75B1C636D6C227B8FCF97299F66EFF9D70B
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284695" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WER9F9.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8202
                                                                                    Entropy (8bit):3.724290648568911
                                                                                    Encrypted:false
                                                                                    SSDEEP:96:RSIU6o7wVetbq74Ms0YtczboGUGgaM4UF89btChDuEDuqtZBBu+fDOvm:R6l7wVeJO4Ms0YqzboJprF89btC5fSvm
                                                                                    MD5:4A326D179A4AA0B20C7DE572C37B6BCD
                                                                                    SHA1:0DE3BB2B0133706790F5045CF2F2E524190AB898
                                                                                    SHA-256:8B284009010A3A48CF0F407399E5409E04EC270FF7AA4836E3BCD2E135BEF969
                                                                                    SHA-512:4281683CFB4AFFFF0719A084F551F80901AFD621D957B43A6411C18551FC0BC7DDC7AA0FE5BF0FBD588B410AD5A045BD7820EDB6D537A33D0BBDAE746FA42FE7
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.2.0.6.0.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERA87.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.458476497545259
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VYdYm8M4JYxFUIyq85c6b9Q32/d:uIjfHI7Fc7VpJWQba32/d
                                                                                    MD5:65D7CA80927A0E021C799613021040CC
                                                                                    SHA1:674F3012B6EEF30F2CAF9188AA7B5232C568BED4
                                                                                    SHA-256:1651756E1AE8E6F07B6C068D91610E216B19E7B57182D61F1C8C315B552E2C0C
                                                                                    SHA-512:3B184D924648B4D0A9B8C0C3E19DD1E46D7DB0B7065993F4A264E8B4062F7C38650D9766BECB238CE6DA1F63F91C61314D0971C87F350B070140BBC635F2FE63
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERBDCC.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:26 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):661870
                                                                                    Entropy (8bit):1.7272521796777616
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:k3uBsvPmAnB0b8ophhzRTxfcLQDWEPkcu3WQ8V+3ehSAlqMODnl:k3uBspnWbJlffPPPcKjWl
                                                                                    MD5:6E747B7B47A10B5D0941BEC9F8218133
                                                                                    SHA1:8EEB2006A2AE0C7603F08647046BC99E2C72E504
                                                                                    SHA-256:53EA69D61CA23DA7CCA6ED86945C73EBD0005E07EC3BE05CA72063E5942EDB12
                                                                                    SHA-512:BCFEE009745B26C484BBA4DEF36A99D7A1F95BF50E3DD1622CCBA6E5F05C5C5C5D6DAEBA8D4D0A7621AF968ADB48009DCA2AD78F732C1E46ECC1659EE1E17F68
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ........} f........................H7..........$....D......t...n...........`.......8...........T................m...........E...........G..............................................................................eJ.......G......Lw......................T.......(....} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERC0DB.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8212
                                                                                    Entropy (8bit):3.722986595706941
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJpan/UCmYqzbo1prr89bQ/2fNwm:R6lXJpi/ULYqzUEQefP
                                                                                    MD5:8CD86051A8C7B344F568C70E9CBCE196
                                                                                    SHA1:DEE524A2301247D1CB1044D196F897CAFD658601
                                                                                    SHA-256:E297DD3CCD97940FEE00133B2B8154C8A5CAA87CF43B79F59F16EA37D8C36B39
                                                                                    SHA-512:D7C12E102E6FF98DBEB01105D0C8679C5CE6BEA7A8391EB281C248CC0CAA371B5A2AE71358F703607CA88CF7D539AC0D179B210742223C130F93551E256350FD
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.5.9.2.8.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERC12A.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.456584867870778
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VYEoYm8M4JYxF/syq85csB2b9Q3nd:uIjfHI7Fc7VHFJ//ba3nd
                                                                                    MD5:B9D38F5950B38153C4900D1A90BC8CF5
                                                                                    SHA1:02A95B91E8057A36F9F31ABEDDC51022CB224B29
                                                                                    SHA-256:A8E446A9BDB011D455685F8233DFCE470F7105580C4F9F1433F7EDD0DB079884
                                                                                    SHA-512:CCFAC38F7E13FF6A056A346BB633E8DDCA8F00F75DD6E4771A0D96AC9C66ED541114D334D4F4BDBEB70D33B1A1A4765B8489A37DD8B09BF79887C19E61632714
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERD3C5.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:31 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):585620
                                                                                    Entropy (8bit):1.5091164585265437
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:P37HiIyGstqh+kQfLknubvXendOCCCCBv+H10F67F75xG4f6o:DHiIyGsUpQfLknubvXendQv+CF6hf5f
                                                                                    MD5:073C41F2D4F72E2307B3C7CFC57D8968
                                                                                    SHA1:CAD0F0967268D56BC1FA398015BB9FBA05126DD4
                                                                                    SHA-256:3312BFC5CEEE52A8BE4B077A1DD21595D465F3222860EBADC72A09EA7003B8D7
                                                                                    SHA-512:77996ADC809A0CB0EE9A0AC46213C58F40F28F63694BD57EA388A2C2644F89B5DAA6D962285C66B440F2905C1EB3147128AB4783B262AB8D8DD7E3DF2F049FE6
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ........} f........................d9..........$...lG......4...............`.......8...........T........... ...tA...........G..........|I..............................................................................eJ.......J......Lw......................T............} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERD56C.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8198
                                                                                    Entropy (8bit):3.7187886458923396
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJOWDrlLYqzbo1prt89bOPGfTam:R6lXJnDrlLYqzUyOefv
                                                                                    MD5:23F548A0A129A37BE4A4C166D321945A
                                                                                    SHA1:6BB3757449C14121415C92224683FDF81FBDE986
                                                                                    SHA-256:A3D8C54C4244E1A7C3443BB7388E8984EF8A78691631C472548D71B089886550
                                                                                    SHA-512:66EDCC1EB7AD5B26D4A74C196B7E75FEE02F71EB95E276C77FF87069BA1CD1366DCB9E53AC3C202DC48C9A35575877683D93ADCCC0E8EAD1FFA066CEE329C4E6
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.6.5.9.6.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERD5AC.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.457122476749142
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VYHYm8M4JYxFcqyq85csb9Q33d:uIjfHI7Fc7VTJgeba33d
                                                                                    MD5:44EAF63FDD6F5546EC4E9A173768955A
                                                                                    SHA1:8586112139EC6661D0156CCA04CF51257E37FE72
                                                                                    SHA-256:2B59D637A7F158BD36A41741AF9D94B104BA3093EE5F9DEE9F0728F84CB4DB5C
                                                                                    SHA-512:89BA7CC5378DFAADC5452C813CC61E8DE1B4DB91385E136DD9A00F3E55BDA3BF4CAE8C96C60A2564FF46AF76FE23899A175D08949A7DC326243E4D0A4C25F3FF
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERE5A7.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:36 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):568782
                                                                                    Entropy (8bit):1.5315179972776443
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:Rw/HSIsZ5hYwHORjaq/hxsE7srDSH6K2R:Rw/HxsBYwHqja+hC3HSP2
                                                                                    MD5:E7DC62A72BAFC413A71424A32C15C02D
                                                                                    SHA1:21AC2D19612AF1D4E202E1FA307975F853B78DE1
                                                                                    SHA-256:E92F3D065E47F9C0DF0AEC845FC719D617D7283133095A4BCE1E47EC45C276A6
                                                                                    SHA-512:5D5CB0F30A215EF7BBC862173DFE9B198BC72443C76C0D609A7B133207B37A77B746A12155C14AF5A2B727E9121C8D9403E9623785D98527506A4D0DA6AFC28A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... ....... } f........................t>..........$....L......d...l...........`.......8...........T...............F...........@L..........,N..............................................................................eJ.......N......Lw......................T............} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERE877.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8196
                                                                                    Entropy (8bit):3.7221780656701116
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:R6l7wVeJDxF3PEYqzboJprl89bBe7fzrm:R6lXJ1FfEYqzUGBCfu
                                                                                    MD5:7E7783103DD2E17DF876B37DD3A5D4D9
                                                                                    SHA1:E16D7EBCFD5579AE987DD245B2FD2A8B71C22747
                                                                                    SHA-256:26D61BDFEBB99641ED3F2C910A861A7B4593ABC627F0A45C128EF3207F9D746D
                                                                                    SHA-512:C9087765F6B016424AEB4C2C9DAD5124CF0F5A1CC4B400765A304A22F3C156AEF38BEBFC2ED167AB28D6E7F59BFFB9BF75E4E24535A7FBFD0AE40478798BFF77
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.2.3.0.0.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERE8B7.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.457159013388965
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VY0Ym8M4JYxF5xyq85c11b9Q3zd:uIjfHI7Fc7VsJyxtba3zd
                                                                                    MD5:5D318ACA8F2A18480CBA64DE917AF57B
                                                                                    SHA1:80F736DE8E7C0FE734002D4925EF9F0FB0F56824
                                                                                    SHA-256:7F1127E5360DBC903F6015EE9360510571C24EAC1CB305B06962E8365386E2B6
                                                                                    SHA-512:1F1E724B8637111065271B2EC0274436F362528F8CECCF2C69447D4A08125E25C53A799582C0773B30256048175E34D4182C71314A91A862D637FCE1D59D8A7A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERF603.tmp.dmp

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:Mini DuMP crash report, 15 streams, Thu Apr 18 01:53:40 2024, 0x1205a4 type
                                                                                    Category:dropped
                                                                                    Size (bytes):643938
                                                                                    Entropy (8bit):1.5962810634186564
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:jpbLGFsY0vroooot8LcCL6ErlSYI1mFyBun:lbL6qEn3cJu
                                                                                    MD5:58496E7B61FD2DD660E39F13267EB320
                                                                                    SHA1:29690B34276E16649E2DD143163CCA73CB25D804
                                                                                    SHA-256:C576A1FBA66B992B0D8CDD9E0608DBC58E12C7CA4EBC0A7FE5B5BA1ECD3FA41B
                                                                                    SHA-512:CBF7EEEC05EFB0ACA615F2CDEC587EB6B9DFC86FBBF781F1BEDBD844C7E666769A11D454A1152927F6C742CBF444665F1E43DDC1F15731D3666FABDAE550AEDF
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:MDMP..a..... .......$} f............T...........4E..h.......$....S......D...............`.......8...........T............................S...........U..............................................................................eJ......DV......Lw......................T...........!} f............................. ..................W... .E.u.r.o.p.e. .S.t.a.n.d.a.r.d. .T.i.m.e.......................................W... .E.u.r.o.p.e. .S.u.m.m.e.r. .T.i.m.e...........................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERF846.tmp.WERInternalMetadata.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):8392
                                                                                    Entropy (8bit):3.71663546088688
                                                                                    Encrypted:false
                                                                                    SSDEEP:96:RSIU6o7wVetbC7ta7YtczboXqUGgaM4Uu89bAmhzuWzuQtkBBuNqffvgm:R6l7wVeJGta7Yqzbo1pru89bAmwf3gm
                                                                                    MD5:4F5F59A41735D2FF792221AA1C63078E
                                                                                    SHA1:0CD1BEE7D6EB947D92785600B48A5319C8C815FC
                                                                                    SHA-256:593185C685B46D63EDC4491A5CDA8C0E9548B54A254997784BF3B58E2EA2B70F
                                                                                    SHA-512:C6D842D62B08BCAA901172C110B3A1AEB2DCABE57693FE3451CE2BEC8A0465EA13A2AEB900CC86CC21955B5B5751D926ECB6D093A07242321F85B76BDA4D0029
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.2.9.9.6.<./.P.i.

                                                                                    C:\ProgramData\Microsoft\Windows\WER\Temp\WERF876.tmp.xml

                                                                                    Download File
                                                                                    Process:C:\Windows\System32\WerFault.exe
                                                                                    File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):4725
                                                                                    Entropy (8bit):4.456487473229568
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:cvIwWl8zstJg771I9ytWpW8VY1Ym8M4JYxFxceyq85cxnb9Q3ud:uIjfHI7Fc7VZJ2rba3ud
                                                                                    MD5:3261F94387A20FBFC9977C688A3BCFC3
                                                                                    SHA1:CC5FC11A83A55FB790D65893FD8F8A4781CCA429
                                                                                    SHA-256:B59B0133497BEA1F8CA37E8024EC2FF22901C4325892849D327CE7C8767BF9CE
                                                                                    SHA-512:438A6B871FC90AFC85EC34472C8E6B20862FE13B65804967F299A3005DB2CCB2BEAEA373CE06FE1A1D5737D0134AE8989EBD2909F302F9DB9BAC045131D1C48A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="284696" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

                                                                                    C:\Users\user\AppData\Local\Microsoft\PenWorkspace\DiscoverCacheData.dat

                                                                                    Download File
                                                                                    Process:C:\Windows\explorer.exe
                                                                                    File Type:JSON data
                                                                                    Category:dropped
                                                                                    Size (bytes):1019
                                                                                    Entropy (8bit):5.236946495216897
                                                                                    Encrypted:false
                                                                                    SSDEEP:24:YqHZ6T06Mhm4ymNib0O0bihmCetmKg6CUXyhmimKgbxdB6hmjmKgz0JahmcmKgbR:YqHZ6T06McoEb0O0bicCewHDUXycLHbR
                                                                                    MD5:5D20D9B3F928AC964E07C561FD8A3F42
                                                                                    SHA1:B702BE149FCF94831A975F2CD06B2DFE020D9632
                                                                                    SHA-256:59A4F22870D7A7DC3339917C89FF6AF09FA762AF39F0624338FDDFF631730492
                                                                                    SHA-512:30E5F275FFB475A403439C3A4DCC05F3E12A6914D93F20EB38AF3240A7F693A455C25C005A3681AB39C89BFAD9AE66FAAE3874B987FAC48BB6A5439194FDCEDC
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:{"RecentItems":[{"AppID":"Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge","PenUsageSec":15,"LastSwitchedLowPart":7763552,"LastSwitchedHighPart":31061488,"PrePopulated":true},{"AppID":"Microsoft.WindowsCommunicationsApps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail","PenUsageSec":15,"LastSwitchedLowPart":4292730848,"LastSwitchedHighPart":31061487,"PrePopulated":true},{"AppID":"Microsoft.Office.OneNote_8wekyb3d8bbwe!microsoft.onenoteim","PenUsageSec":15,"LastSwitchedLowPart":4282730848,"LastSwitchedHighPart":31061487,"PrePopulated":true},{"AppID":"Microsoft.Windows.Photos_8wekyb3d8bbwe!App","PenUsageSec":15,"LastSwitchedLowPart":4272730848,"LastSwitchedHighPart":31061487,"PrePopulated":true},{"AppID":"Microsoft.MSPaint_8wekyb3d8bbwe!Microsoft.MSPaint","PenUsageSec":15,"LastSwitchedLowPart":4262730848,"LastSwitchedHighPart":31061487,"PrePopulated":true},{"AppID":"Microsoft.WindowsMaps_8wekyb3d8bbwe!App","PenUsageSec":15,"LastSwitchedLowPart":4252730848,"LastSwitchedHighPart":31061487,"Pr

                                                                                    C:\Users\user\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x000000000000002d.db

                                                                                    Download File
                                                                                    Process:C:\Windows\explorer.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):108216
                                                                                    Entropy (8bit):4.005636734020178
                                                                                    Encrypted:false
                                                                                    SSDEEP:768:27F9oInjxkCGkzOPsjk0+ACWHpfnzbNyLYduJxP7pxoZsR1v9nvnFOOmdypfR3YE:ydkAzBrJvzgxhGiwGGnS5mFwiKuiNl+a
                                                                                    MD5:F5E22A85317B77BE17D92E555A93AF31
                                                                                    SHA1:4626195E2E03DCBE43ECD394678408A12694A89E
                                                                                    SHA-256:29327582AC401D6193197A71D4046B0DDD137F6E1319CE3CE17164B7100A08DD
                                                                                    SHA-512:1386834D3F1FC3FF7033ED3ABB8259A7F40BAA3BD4AF9B6526071F44C550B7C90791DFC166F860F1CD47E4A539519B8146B28373321304226F183B230FC49552
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:....h... .......p.......P...........p...Y......^...................P...W.......e.n.-.C.H.;.e.n.-.G.B...............8..............P.O. .:i.....+00.../C:\...................P.1...........Users.<............................................U.s.e.r.s.....P.1...........user.<............................................j.o.n.e.s.....V.1...........AppData.@............................................A.p.p.D.a.t.a.....V.1...........Roaming.@............................................R.o.a.m.i.n.g.....\.1...........Microsoft.D............................................M.i.c.r.o.s.o.f.t.....V.1...........Windows.@............................................W.i.n.d.o.w.s.....`.1...........Start Menu..F............................................S.t.a.r.t. .M.e.n.u.................. ..........P.O. .:i.....+00.../C:\...................P.1...........Users.<............................................U.s.e.r.s.....P.1...........user.<............................................j.o.n.e.s

                                                                                    C:\Users\user\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x000000000000002e.db

                                                                                    Download File
                                                                                    Process:C:\Windows\explorer.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):108216
                                                                                    Entropy (8bit):4.007844773768523
                                                                                    Encrypted:false
                                                                                    SSDEEP:768:tgF9oHnjxkvG0zOPsjk0+ACWHpfnzjNvLYduJxP7pxoZsR1v9esSFOOmdypfR3YL:fdkDzBrJvzUGhGiwGGnFEmFciKaiLl+a
                                                                                    MD5:B51F0B8ECB363A072A04E5985317B0B1
                                                                                    SHA1:9718461068312E0B73623A0B55B7772465606146
                                                                                    SHA-256:F717065766C45F54966415BE3C95D211273A4D44DB9C961982674CBAC4F5E00C
                                                                                    SHA-512:379F328458E21D4D03DECD9C2BC7CE715D471C87196E90475DF4FA65376D5BA9CBAEAD48ABBBD91CBD1CCE30AEAA2621FB9B36A5FAEE3D6A2213D8CCE1EEA51F
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:....h... .......p.......P...........p...Y......^...................P...W.......e.n.-.C.H.;.e.n.-.G.B...............8..............P.O. .:i.....+00.../C:\...................P.1...........Users.<............................................U.s.e.r.s.....P.1...........user.<............................................j.o.n.e.s.....V.1...........AppData.@............................................A.p.p.D.a.t.a.....V.1...........Roaming.@............................................R.o.a.m.i.n.g.....\.1...........Microsoft.D............................................M.i.c.r.o.s.o.f.t.....V.1...........Windows.@............................................W.i.n.d.o.w.s.....`.1...........Start Menu..F............................................S.t.a.r.t. .M.e.n.u.................. ..........P.O. .:i.....+00.../C:\...................P.1...........Users.<............................................U.s.e.r.s.....P.1...........user.<............................................j.o.n.e.s

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\LICENSE

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:Unicode text, UTF-8 text, with CRLF, LF line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):194869
                                                                                    Entropy (8bit):4.862878920471264
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:A91zrS91zrv91zrF91zrfdldwdOd1dodtdd91jrZ91RrnE911rgjJMF/Ty4911r4:AH2HTH5HynNFgR8MF/Ty4R/GtW20aOsD
                                                                                    MD5:85CE0854261CFCF05EF56A2E8C2C4125
                                                                                    SHA1:AF7BEED4BBF9F7FC886BA3DC006F36A6490A1937
                                                                                    SHA-256:AC2130F977B77C4F755BC34A3025E5E9FE2D263704F59104DFC5C89A2525AB36
                                                                                    SHA-512:92DAD6A97A5B52E88A2545F9003381E1B5AB2B13412BF704D7CE188FA95705DB8A46BA00F6E116C43D8B35CCCDEC3CD8B50AA49D580BEAD7E397C8717FC32E85
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:. 2021 Cricut, Inc. All rights reserved...Unauthorized reproduction is a violation of applicable laws. Cricut, among others, are registered trademarks and/or registered service marks of Cricut, Inc. Other parties' marks are the property of their respective owners.....This product uses the following components under their respective licenses. Portions of these components are the copyrighted material of their respective authors...@angular/animations.MIT..@angular/cdk.MIT.The MIT License..Copyright (c) 2022 Google LLC...Permission is hereby granted, free of charge, to any person obtaining a copy.of this software and associated documentation files (the "Software"), to deal.in the Software without restriction, including without limitation the rights.to use, copy, modify, merge, publish, distribute, sublicense, and/or sell.copies of the Software, and to permit persons to whom the Software is.furnished to do so, subject to the following conditions:..The above copyright notice and this permis

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\LICENSES.chromium.html

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:HTML document, ASCII text
                                                                                    Category:dropped
                                                                                    Size (bytes):9227221
                                                                                    Entropy (8bit):4.785730097444693
                                                                                    Encrypted:false
                                                                                    SSDEEP:24576:cpD6826x5kSWSsRinoHnmfm646a6N6z68SH4SApTJ:cHSek
                                                                                    MD5:2675B30D524B6C79B6CEE41AF86FC619
                                                                                    SHA1:407716C1BB83C211BCB51EFBBCB6BF2EF1664E5B
                                                                                    SHA-256:6A717038F81271F62318212F00B1A2173B9CB0CC435F984710AC8355EB409081
                                                                                    SHA-512:3214341DA8BF3347A6874535BB0FF8D059EE604E779491780F2B29172F9963E23ACBE3C534D888F7A3B99274F46D0628962E1E72A5D3FC6F18CA2B62343DF485
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview: Generated by licenses.py; do not edit. --><!doctype html>.<html>.<head>.<meta charset="utf-8">.<meta name="viewport" content="width=device-width">.<meta name="color-scheme" content="light dark">.<title>Credits</title>.<link rel="stylesheet" href="chrome://resources/css/text_defaults.css">.<link rel="stylesheet" href="chrome://credits/credits.css">.</head>.<body>.<span class="page-title">Credits</span>.<a id="print-link" href="#" hidden>Print</a>.<div style="clear:both; overflow:auto;"> Chromium <3s the following projects -->.<div class="product">.<span class="title">2-dim General Purpose FFT (Fast Fourier/Cosine/Sine Transform) Package</span>.<span class="homepage"><a href="http://www.kurims.kyoto-u.ac.jp/~ooura/fft.html">homepage</a></span>.<input type="checkbox" hidden id="0">.<label class="show" for="0" tabindex="0"></label>.<div class="licence">.<pre>Copyright(C) 1997,2001 Takuya OOURA (email: ooura@kurims.kyoto-u.ac.jp)..You may use, copy, modify this code for any purpose

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\architecture

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:ASCII text, with no line terminators
                                                                                    Category:dropped
                                                                                    Size (bytes):10
                                                                                    Entropy (8bit):2.721928094887362
                                                                                    Encrypted:false
                                                                                    SSDEEP:3:JsX:w
                                                                                    MD5:E92FDC1D8005088804C51111FC240390
                                                                                    SHA1:EA3FBFB6851F529C753115B5E3713426BF891628
                                                                                    SHA-256:0A86A9ED3BAD6C339FBBD0B1E2B24C99CFEB42857CE306E687CE4F97CA5FA1F3
                                                                                    SHA-512:5ABB8768D4F8761946F92882D7063EF5905CE5A5170447F2C72A68B85C41619156DBFD4A16D7180B72AE2E93C275A1BC03D077051D089582A1FFAE4B2388D8E3
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:win32-ia32

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\chrome_100_percent.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):135642
                                                                                    Entropy (8bit):7.916363227461705
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:tezwJCGIekwf9W2bg3yhPaL2o418Gb0+VRLf0ld0GY3cQ3ERVm2I:tezw1Iek+42k3yMK18Gb0OV8ld0GecQJ
                                                                                    MD5:A0E681FDD4613E0FFF6FB8BF33A00EF1
                                                                                    SHA1:6789BACFE0B244AB6872BD3ACC1E92030276011E
                                                                                    SHA-256:86F6B8FFA8788603A433D425A4BC3C4031E5D394762FD53257B0D4B1CFB2FFA2
                                                                                    SHA-512:6F6A1A8BFE3D33F3FA5F6134DAC7CD8C017E38E5E2A75A93A958ADDBB17A601C5707D99A2AF67E52C0A3D5206142209703701CD3FAB44E0323A4553CAEE86196
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:....................5...........r..........._.......................P.....J.................c!.....#....#......8.....;.....@....PC.....E.....G....8J....(L....XN.....R.....U..!..Y.."..Z..$..[..&..]..'..^....]_../.we..0..k..1./m..2..m.....n.....o.....q.....t....xw.....z.....~..........,...........................w.........0....{....@....C....y....v.......................................u"...K)....+.../...t3....=...!@...xH...]L....U...5`....pd.....f.....n....Lw....4x.....y.....{.....~....W.....l...........'...........b.......................`............................p................r.....w...0.|...1.<...2.....3.....4.$...5.....6....7.....8.....9.s...:....;.*...<.....=.r...>.`...?.x...@.~...A.8...C.....D.....E.....F.W...G.!...H.....I.....J.....K.....L.....O.....&.....'.....(.5...).....*.*...+.T...,.!...-.k........./.....0.Y...1.....2.....3.....4.....5.....6.!...7.....8.7...9.....:.P...<.....=.-...>.....?.....@.Y...A.....B.{...C.....D.-...E.....F...

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\chrome_200_percent.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):195396
                                                                                    Entropy (8bit):7.94178165609805
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:ADQYaE/N6Mrvy/3JP29W2bg3yhPaafR54x5GMR+F44ffbdZnYw9p4AbIVGYoDd+y:ADQYaSN6svyd242k3yxgx5GMRejnbdZR
                                                                                    MD5:C37BD7A6B677A37313B7ECC4FF01B6F5
                                                                                    SHA1:79DB970C44347BD3566CEFB6CABD1995E8E173DF
                                                                                    SHA-256:8C1AE81D19FD6323A02EB460E075E2F25ABA322BC7D46F2E6EDB1C4600E6537A
                                                                                    SHA-512:A7B07133FA05593B102A0E5E5788B29488CB74656C5EE25DE897C2BA2B2A7B05C0663ADE74A003F7D6DF2134D0B75F0AD25E15E9C9E0969E9453B7FC40B9F8BB
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:....................<..........................................$.....).....,....N4.....8.....@.....D....;Y.....m.....s....y}.........e...........W...........>.....b.....k...!.%...".}...$.....&.....'........../.#...0.....1.(...2.......$...........9.....-.....2.....q...........d...................................m.........&F...qP...6S....W....a....c...ff....k....v...sx..................~....`....*............F....r............r.....................s...................................*.....E.................W.............................. ....5#....2*....P-....i4.....<....[?.....f.....g....bl..0.Eq..1.sr..2..t..3..u..4.lv..5..w..6.ry..7..z..8.v|..9..~..:.....;.I...<.7...=.....>.....?.....@.....A....C.....D.....E....F.....G.9...H.Z...I.N...J."...K....L.....O.D...&.>...'.....(.....).[...*.....+.<...,.....-.k........./.)...0.}...1.....2.....3.....4.r...5.....6.....7.$...8.....9.U...:.....<.....=.....>.....?.P...@.....A.k...B.,...C.....D.*...E.....F.$.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\icudtl.dat

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):10717392
                                                                                    Entropy (8bit):6.282534560973548
                                                                                    Encrypted:false
                                                                                    SSDEEP:196608:hpgPBhORiuQwCliXUxbblHa93Whli6Z86WOH:n8wkDliXUxbblHa93Whli6Z8I
                                                                                    MD5:E0F1AD85C0933ECCE2E003A2C59AE726
                                                                                    SHA1:A8539FC5A233558EDFA264A34F7AF6187C3F0D4F
                                                                                    SHA-256:F5170AA2B388D23BEBF98784DD488A9BCB741470384A6A9A8D7A2638D768DEFB
                                                                                    SHA-512:714ED5AE44DFA4812081B8DE42401197C235A4FA05206597F4C7B4170DD37E8360CC75D176399B735C9AEC200F5B7D5C81C07B9AB58CBCA8DC08861C6814FB28
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:...'........CmnD........ Copyright (C) 2016 and later: Unicode, Inc. and others. License & terms of use: http://www.unicode.org/copyright.html ......E.......E.......E..P/...E.../...E..P7...E...7...E...h...F...h.. F..Pi..0F......DF.....WF.....jF..P...}F.......F..`....F.......F.. ....F.......F..0....F.......G......G......(G.....;G..@...NG......aG.....tG.......G.......G..@....G.......G.......G.......G..P....G.......H.......H..P...2H......EH..`...UH......hH......yH..P....H.......H.......H..`....H.......H.......H..P....I.......I......-I..@...=I......PI......aI..@...uI.......I...0...I.. 1...I..p1...I...e...I...e...I...i...I..`i...J...i..)J...K..BJ..p...^J..."'.uJ..P.'..J....'..J...5'..J..06'..J...>'..J..P?'..K...D'..K...F'.0K...H'.IK...V'.hK....(..K....(..K..P.)..K....)..K..pW*..K..P.*..L...*+.?L..p.+.bL....+..L...U,..L....,..L....,..L....,..L..@.,..M....,.-M..P.-.IM.. e-.`M...e-.~M...R/..M.../..M..0.0..M..@.0..M..P.0..M....0..N....0.!N...,0.9N...,0.NN..0-0.fN...-0.vN...Y0..N...Z0..N..

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\af.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):457927
                                                                                    Entropy (8bit):5.4171857958645475
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:/cqYYWk0o+wZiSMKVQ2uM2Z12JynA7PIrfsdgSTCSQ2fs37KQOb5t/tn6A/HiaHU:ynk0ofMSMaTuM2Z12JynA7PIrfsdgST4
                                                                                    MD5:917A688D64ECCF67FEF5A5EB0908B6D4
                                                                                    SHA1:7206B01BBC3FD8CC937DB9050DD8AC86CF44D8CC
                                                                                    SHA-256:6981249837AD767FC030EDC8838878A5E493FB08CC49982CFFAED16CFBEB564D
                                                                                    SHA-512:195DBEC8463CF89990232296C5C927E1501F0C2E01A7BE7C6A6ACAE651853CE1EDB23D639AF65979B39A3C61979119C3A305ACFA3AADF0CB93E241C5E57F4534
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........_#t.e.....h.$...i.,...j.8...k.G...l.R...n.Z...o._...p.l...q.r...r.~...s.....t.....v.....w.....y.....z.....|.....}.................................................!.....".....#.....(.....5.....D.....U.....h...........V.......................v.................1.......................`.......................Y.......................4.......................(.....v.................7.......................C.......................?.......................J.......................{...........-.....D.............................X.............................S.....r.....{.........../....._.....n...........#.....U.....e.................'.....0.............................J.......................D.......................d.......................D.......................".....h.......................p.................=.....{.......................\.......................T.................6.........................................P.................H.....[.............................x.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\am.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):744722
                                                                                    Entropy (8bit):4.880240690992002
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:LMlGLQXTZou76VIx2TERZ3ej5dMNzLY5S9ZSVrBO0Pcx30jH8+F:Lc9XTZsVIxJRZuj5dMNzLY5S9ZSVrBOg
                                                                                    MD5:3CFD7C5BB92AB72C63E003208A9E4529
                                                                                    SHA1:165D2F69AB6A6E237F0FEC943B5577123CEFEA87
                                                                                    SHA-256:12E9E1BEC1C46E5EA706157726E17A4429ACF288A5754FA183BD9B4CF7D3853B
                                                                                    SHA-512:CD7C7837D758EA66ABC871503CDA6FE99FF45990405E60C1133E7C1F4CB29EE69723C9558BB2D3ECCB42948DA57351F4F095062616686AB2E255ACD3C86236F0
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........s#`.e.D...h.L...i.W...j.c...k.r...l.}...n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}...................'...../.....7.....>.....E.....L.....M.....N.....S.....o.........................................8.................(.....T.....+...........q...........c...........n...................................q...........6.....L...........n.......................|.........................................L...........:....._.........................................7.....f...........;.....a.................l.................*.............................:.................^...........N.....d.............................}...........O.....n...........r.................~.....,.................N................. .................T.....|.....................................................H.............................*.....p...........J...........,.....U.................r ..... ....W!.....!....l"....."....j#.....$....~$.....$.....%....d%.....%.....%....V&.....&....T'

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ar.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):813209
                                                                                    Entropy (8bit):4.897933532023867
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:EyBYh5/N/RaWH4gzWvwU5Twikcb5uNi3+D2qeTT:E3aR/5D+M
                                                                                    MD5:3C2AB7363018DB1F20B90ACBC305CB4C
                                                                                    SHA1:60B9CF453178AD0E60FAF20D137A0C7EABDE65C9
                                                                                    SHA-256:3CA47B9C436723F837A53B2904B51EFDF13AB6CAD2F3EF4FE48A1115847ECCBF
                                                                                    SHA-512:589BEB3E95E93F30341933C9B9826210E6BF3E9C1AD8F113D9D8A98FA5A526F81E454EE3357FB55D60D67A4890CE33E964BA2FA810E1771A6B7E82746492313A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........4#..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.+...s.<...t.E...v.Z...w.g...y.m...z.|...|.....}...............................................................................B.....t.....^.....L.......................S.................{.....-.................r.....".................7.................(.................E.....\.......................-....................... .................S.............................5.......................,.....3..... .............................7.................u.................E.................'........................................._.....p......................."...........'.....h...................................y...........{...................................~...........%.........................................R.................l.................M.................:...........1.....~.................. ....4!....a!....."....."....."....(#.....#....6$....x$.....$.....$....X%....~%.....%....R&.....&....Y'....{'.....(

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\bg.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):848303
                                                                                    Entropy (8bit):4.65032463396985
                                                                                    Encrypted:false
                                                                                    SSDEEP:24576:T3ChsqKaElYMdAs1axUjHh373Zj93aAK5kVDgQwRunpKd2ao57JqueRSnQFwN/6B:TChsqKaElYtUjHh373Z53a1kVDgQw1dn
                                                                                    MD5:A69F6075863D47B564A2FEB655A2946F
                                                                                    SHA1:062232499FF73D39724C05C0DF121ECD252B8A31
                                                                                    SHA-256:A5EB7038ED956BAD7704A722F05691474FF709DFFBAD92B8E31DBB869AD58334
                                                                                    SHA-512:930CE3938AA02A8BCC609A64BD86B7E6164D63BAAD157A980FD079859A6BEE5DB87BD1F7A74A71108F8368BC9C6154BF14A2DBA1ABF269F572BC262614BCF1DB
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........c#p.e.$...h.,...i.4...j.@...k.O...l.Z...n.b...o.g...p.t...q.z...r.....s.....t.....v.....w.....y.....z.....|.....}...........................................".....).....*.....+.....0.....R.....k.............................-.....q.....5...........U.......................8.....v.....l.....).............................b........... ...................................*.....~.....z.....<.............................>.....t.....<...........Q.....{.....g.....'.............................j..........._.................E...........x.............................f...........C...........3.....a.........................................L.....l...........}.............................f.................o...........I...........z.................{...........;..........._...... ....z ..... .....!....O"....."....8#.....#....j$.....$.....$.....%....D&.....&.....&.....'....T(.....(.....).....).....*....t+.....+.....,....S-.....-................./...../.....0.....0....<1.....1.....1.....2.....3.....4

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\bn.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1094739
                                                                                    Entropy (8bit):4.273606074036768
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:PAUxhq6CLf6bXs8iQ2Zc2EadKZ0ZfQ0/QeIyTtPukkBBbpUDDM5JiXldW:4K46CjYYZ82IypPubBbf5IlI
                                                                                    MD5:D43CE80DDCA3FAB513431FA29BE2E60A
                                                                                    SHA1:3E82282E4ACFEC5F0ACA4672161D2F976F284A0C
                                                                                    SHA-256:87670FF2CEB1EBC38FCE2C3B745AC965F3DE5DE3133D99ED33933A8F3E99D874
                                                                                    SHA-512:1D33CA9BACB91EF328F89A14777A704000BF30FE59AA1CBBBFF34D8BAD266C98D78C9E411E289E834E76EB721DD98934426A565CD5B3436D5A103ABE37F7612A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........^#u.e.....h."...i.3...j.?...k.N...l.Y...n.a...o.g...p.t...q.z...r.....s.....t.....v.....w.....y.....z.....|.....}........................................... .....'.........../.....0.....5.....Z...........................................................h.....................................................Q.................?.....w.....,...........1.....T.....{.....Y...........E.....+...................................+.....Z.....'...........9.....n.....i.....S.................A.....9...........3...................................E.................D.................,.................%.....c.....!.................I...................................b.......................$.....u........................ ..... .....!....."....2#....z#.....$.....$.....$.....%.....%.....&.....'....1'.....(.....(.....).....*.....*....L+.....+.....+.....,....^-.....-.....-.........../....L0.....0.....1.....3.....3....14....i5....k6.....7....u7....W8.....9.....9.....9.....:....M;.....;.....;.....<.....=

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ca.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):515554
                                                                                    Entropy (8bit):5.412339344998089
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:KhBp7kcELygV3z5PAF4N3Mw2juwHzejm0t3lvq8E9oCRaIs3cmlLEY2CJkEydROC:Khh4V8RPS9lMN4MZRg5P56iq
                                                                                    MD5:2D30C5A004715BC8CD54C2E21C5F7953
                                                                                    SHA1:FED917145A03D037A32ABAC6EDC48C76A4035993
                                                                                    SHA-256:D9C45D55A9A5661063B9BBEBB0615DE8F567F3925D04FD10938DA9617C6220E0
                                                                                    SHA-512:B3803551F53D290D8839789F829AFC9C1E12052C81BA20D5E01FB3D2BACD5D1E97BD4C05074322EED17FDEC04C9176C655076FAEC8A3AEF17C39FB999E0C1FCF
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........e#n.e.(...h.0...i.8...j.D...k.S...l.^...n.f...o.k...p.x...q.~...r.....s.....t.....v.....w.....y.....z.....|.....}...........................................&.....-.........../.....1.....K.....d.................G...........C.....b...........7.....~...........,................./.................*.....G.................).....<................. .....1.................].................}.................X.......................t...................................<.....W...........w.................^.......................J.......................(.....y.................(.......................7.......................$.....s.......................H.....t.................8.....l.....}...........o.................5.......................0.....w.................G.....~.................y.................V.......................9.......................C...............................................&.......................t.......................k.......................d.................&.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\cs.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):530593
                                                                                    Entropy (8bit):5.852935430786663
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:ljXB+Hdo1ryvJvtQW5EK8VPDNOQ3SCmPs:ljXwHO1uvJ195EK8V5ObCmPs
                                                                                    MD5:06E3FE72FDC73291E8CF6A44EB68B086
                                                                                    SHA1:0BB3B3CF839575B2794D7D781A763751FE70D126
                                                                                    SHA-256:397134D1834F395F1C467A75D84EF2E8545CB0F81E94DBE78B841FBBDAAD802D
                                                                                    SHA-512:211594C30AD4F5CA8813596B59751168C60DFA0D13F24F2AA608FCE82D21C2DE3DE69FE007C4BDE1602DA8AA7EA81EC0F15E173ABC1224362C36B493B425B425
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........K#..e.....h.....i.....j.....k.....l.*...n.2...o.7...p.D...q.J...r.V...s.g...t.p...v.....w.....y.....z.....|.....}.....................................................................................1.....F...........t.................R...................................W.....p...........U.......................k.......................Z.......................j.................P.................A...........(.....a.....y...........L.........................................P.................-.............................d.......................E.......................4.......................H.......................C.......................8.......................P.......................|...........?.....V.............................g.......................m.......................s...........(....._................. .....4.................G.....\...........6.....w.................}.................[...........,.....M...........0.....Z.....o...........%.....J.....^...........8.....r.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\da.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):479902
                                                                                    Entropy (8bit):5.456625778597649
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:+luvzrGLXfBlzV0qV5cU3sVEs7a7wlTwUJwa7obRR2vJub51NrXBDUd4JTGqfwI:+HbzszaoQR5rrBTpz
                                                                                    MD5:1939FAA4F66E903EAC58F2564EEB910E
                                                                                    SHA1:BACE65EE6C278D01CCF936E227E403C4DFF2682D
                                                                                    SHA-256:0B9DA7BD6531A7EBE7D8188B320C0953ADCFBAF654037F8265261A12E63D3C87
                                                                                    SHA-512:51588D2FE724E6C407724EA6F46883DED39397AF744EFFAF672F75952A6A734E61E93E59F446080317F2A2B3FA1B45E7405F90FE0B226C44C9F3DD9A4E130A87
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........j#i.e.2...h.:...i.K...j.W...k.f...l.q...n.y...o.~...p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.........................#.....+.....2.....9.....@.....A.....B.....D.....R.....b.....v.................v.................5...................................U.....q...........A.....q.................4.....[.....h.................F.....T.................L.....f...........R.........................................B...................................T.....n.............................U.......................<.............................n.......................f.......................k......................._.......................>.....d.....n...........'.....T.....b...........].......................s.......................P.....n.................-.....J.....Z...........B.....|.................k.......................v.................*.....h.................&...................................3.....b.................^.....p.................$.....1.................*.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\de.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):512832
                                                                                    Entropy (8bit):5.50981730028679
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:Vsu6moWkxlRnY43K7UpHa63gXya/nOdxIHa3AnO1a265QM5GR6mszMRQI2Cga:VsU4e43K7UpxgCaPoCwM5Vmv2Cga
                                                                                    MD5:2163820CD081FDD711B9230DC9284297
                                                                                    SHA1:C76CC7B440156E3A59CAA17C704D9D327F9F1886
                                                                                    SHA-256:6D787033C94755CC80C187ED8A9DE65808BB4D7968354BBB94B7868AC2E8D205
                                                                                    SHA-512:920FA2A10F7AA7F1F6D911FE2A77EDED0384617D8FD863943AFD99A584DAB3FB2EA3E5D2E20BCA529689A99FDF303912007F2918C62482D8A90194A810F6E535
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.b...h.j...i.{...j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.$...}.6.....>.....C.....K.....S.....[.....b.....i.....p.....q.....r.....t...................................<.................)...................................B.....\...........R.........................................>...................................9.....[...........q.................L...................................[.....m...................................C.................(.......................9.......................L.......................{...........E.....\...........J.......................x.................*.......................Y.............................N.................%.......................................................................X.................D................./.....F...........+.....W.....j...........a.................8.............................7.....s.................................../.......................X.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\el.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):929418
                                                                                    Entropy (8bit):4.738354677437668
                                                                                    Encrypted:false
                                                                                    SSDEEP:24576:ovf5YcXPdGgx11hxi9c9N+JXDsSYSmqHMuD2fpoLwj3BAVH8+VdQ5tNDQo32Etfd:2f5YcXPdGgx11hxi9c9N+JXDsSYSmqHe
                                                                                    MD5:A14D8A4499A8B2F2F5908D93E2065BF7
                                                                                    SHA1:1473A352832D9A71C97A003127E3E78613C72A17
                                                                                    SHA-256:EB46D9860835B69D33B2583D1E52B20238B666B967BF00906424E3C8A161ED64
                                                                                    SHA-512:427271D12590F8EA3F11B83E4C0CE79C55C289573C5F6E5C70C789B28A5181F295A3C9B1A4BDD1F731F338E6EDB1E06318EA6410CEAC546128A84FF8F2EC0B40
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........f#m.e.*...h.2...i.:...j.D...k.S...l.^...n.f...o.k...p.x...q.~...r.....s.....t.....v.....w.....y.....z.....|.....}...........................................&.....-.........../.....1.....X.....}.....................................................8.....n.....v.....J...........(.....K...........`...........]...........C.....d.............................................../.....7.....1...................................,.................A.....l.....].....................................................I.................l...........b...........,.................V.....1...........w...........k.....7.......................i.......................s.......................k.......................................... ....^!.....!.....!.....".....#....V#....r#..../$.....$.....%....J%....7&.....&....s'.....'....p(.....)....V)....})....H*.....+....h+.....+.....,....5-.....-.....-...../....30.....0...."1....#2.....3....~3.....3.....4.....5....Q6.....6....=7.....8....q8.....8.....9.....:.....;

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\en-GB.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):418411
                                                                                    Entropy (8bit):5.526282387769971
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:A8iCFs0mZ2dXipvrIQoqbh7GMP9eRT/LfaY1+/845prSQBE0RbhU:AJCyeXipvrI7IGMuT/7o5ZSsU
                                                                                    MD5:9D9121BDC9AF59B5899CE3C5927B55D8
                                                                                    SHA1:568626A374CD30237C55B72C74B708DA8D065EC1
                                                                                    SHA-256:F4D45CCC89834376F35D4D83FE5B2D5112B8CC315FCB03228720749AAE31C805
                                                                                    SHA-512:149A8ACF256DC12F62706F72AD8EC88CBFDF7F8DC874BCD9FACF484CDB00E7C5787F5E1BBC12B5BBE1B19B6524E7E8A1C7DBA2838ABEB9AAFA3CE89795FD22AE
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.....h.....i.....j."...k.1...l.<...n.D...o.I...p.V...q.\...r.h...s.y...t.....v.....w.....y.....z.....|.....}.....................................................................................>.....O...........".....i.....|........... .....Q.....a...........!.....].....s.................G.....\.......................%.....n.......................7.....|.......................o.......................].......................3.....^.....n.......................9.................D.....X.............................6.....q.............................:.....F................. .....3.............................L.............................Q.....y.......................;.....F.................<.....Q.............................a.............................a.......................5.....j.......................'.....6.....................................................~.................<.................3.....P.......................-.....t.......................C.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\en-US.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):421711
                                                                                    Entropy (8bit):5.516302021610083
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:MOoiE2KSqdBEuUu6/9meKMP9e7X9ifaY3yzq5J7SKn0F/lOSwH:n5EC2B4bKMwX9cj5hSwSwH
                                                                                    MD5:626F30CFD9AD7B7C628C6A859E4013BD
                                                                                    SHA1:02E9A759C745A984B5F39223FAB5BE9B5EC3D5A7
                                                                                    SHA-256:0FD74BB69AD35B3F9391FA760BF0EB0EE73D2BEA0066244577EF2ABD269513DE
                                                                                    SHA-512:9CE902F21FEF70C5B5AF444B532B36C9A00D896878CB4021C9B1DC07AA3277D956BCA65EE0ADB68467EEC113E535B60A8A5FB5414C7D0CA761CEAE5C43B7D9A9
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.Z...h.b...i.j...j.v...k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.%.....-.....2.....:.....B.....J.....Q.....X....._.....`.....a.....f.....s.............................w.................(.....u.......................u................. .....k.......................@.....i.....w.................*.....7.............................g.......................Y.......................5.....|.......................K.....w.................K.............................2.....A.............................%.....b.......................7.....i.....|.................@.....L.............................V.............................[.......................J.......................*.....M.....c.............................m.......................=.......................$.....[.....v.................$.....N.....^.................;.....S...........$.....m.....{...........7.....n.................-.....Y.....h.............................z.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\es-419.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):508230
                                                                                    Entropy (8bit):5.385230992997236
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:iEsyQDjcRy2VdU1P2BCA6bKVjnE4rHOniSb8p5Yl+lblmwoab5uIay5LlZi+SLFv:iEsyQvt2ECiOX3p5YWm85wLFaoImYA
                                                                                    MD5:6F4613A4A88AF6C8BD4EF39EDEEE3747
                                                                                    SHA1:C8850A276D390DF234258D8DE8C6DF79240C8669
                                                                                    SHA-256:8F7B8776E61E3ED5AA33B1A571AC834653B54B12A499D956B95D567B7E1BA987
                                                                                    SHA-512:E5933DCB2AAAA2018BA8B13F4AF3DC8A950640AC60ACB1B56AD6DE24541701D0FFC1F4CB28C7932AF924BFD673EDCEE20BF649156AB95EA9499EC43C703EA141
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........q#b.e.@...h.H...i.Q...j.]...k.l...l.w...n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}...................!.....).....1.....8.....?.....F.....G.....H.....J.....\.....k.................*.................9.................V.....n...........~.................u...........,.....G.......................'.........................................]...................................e.................).................<.....S...........?.................:.................9.............................p.......................g...................................2.....E.................G.....S.................0.....;.........................................,.....<.........../.....{.................V.......................X.................I.........................................t.......................j...................................).....C...........X.................c...........".....P...........6.....z.................'.....J.....]...........N.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\es.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):507855
                                                                                    Entropy (8bit):5.361522715042697
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:NPKK+SmGmQaXDFY1+hM03GgDE7pF+E8y1l4Fj05fYrK3osSl6PZjHu:ZKKDmXXDdq01ap4y1lEj05Qr0osTO
                                                                                    MD5:A24E01A4947D22CE1A6ACA34B6F2A649
                                                                                    SHA1:750C2550465C7D0D7D1D63AD045B811B4A26DC55
                                                                                    SHA-256:848D422BE1B8FAE74786ED6D6DFA7DD2E97B798B4A9BA1D929085E425B2A54E0
                                                                                    SHA-512:02FC4CE96AA523EBC204243BBEC3347B09CB20BCC0BA66CF9532A6FB26C48F7F2396BBB833F1916F8F081FFC9C6CD2DE07315E66C5115042A0B44270FA4468C1
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........q#b.e.@...h.H...i.P...j.\...k.k...l.v...n.~...o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}................... .....(.....0.....7.....>.....E.....F.....G.....I.....\.....l................./...........'.....B...........$.....j...............................................9.....T.................>.....N.................8.....I...........C.................7.......................{...........).....:.................F.....[...........O.................G.................0.....................................................v................. .......................2.......................'.....{.......................b.......................Y.......................h...........$.....>................. .....=.......................4.................@.....S...........H.................-.....y.................!.....w.................7.......................}...........a.....x.............................w...........!.....5.............................|...........$.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\et.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):460480
                                                                                    Entropy (8bit):5.4631405749616855
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:2Ve10hVbtjvP4cCJ1ONRCOeP+sEmThFC0jmFohH4fSpY0lgtim0DM5Oju43sPZCo:+eQtjvP4cnre/tHmFoh99M5Oj+x
                                                                                    MD5:82A07B154CB241A2EBE83B0D919C89E9
                                                                                    SHA1:F7ECE3A3DA2DFB8886E334419E438681BFCE36CF
                                                                                    SHA-256:84866CCAF2EC39486F78E22886BEF3FE75C1EB36E7A7C071471040E12018DB28
                                                                                    SHA-512:07319D155BDF9E27762ECB9EF6871430BEF88B1AF129450EB65AA798EBAA4E02B25B0CF9BDE3B12FF1B04A3D14241569B73D6AF895D2E85DD7B24D393E7317E9
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#T.e.\...h.d...i.u...j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.0.....8.....=.....E.....M.....U.....\.....c.....j.....k.....l.....n.....~.......................9...........0.....K.................J.....]...........?.....|.................[.......................S.......................B.....m.................A.....j.................f.........................................!.......................1.......................^...........!.....8.......................:.............................e.......................].......................i.................#.....s.......................j.......................j...................................5.....M.......................0.......................5.......................'.................#.....O...............................................!.................%.....@...........;.................)...................................&.....3.............................e.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\fa.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):756165
                                                                                    Entropy (8bit):5.0211117057378845
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:DCD38/+r28u313uyqoe+slXcfqEdvRmXzoT4WmdAQifaQ2XxFHGk62BtMX9OxRdn:DCDo+r28u313uyqoe+seqIvRmXzoT4Ws
                                                                                    MD5:C770CFB9FBABDA049EB2D87275071B54
                                                                                    SHA1:20E41B1802C82D15D41FADAF3DCD049B57891131
                                                                                    SHA-256:DAE7E7C87026CD4E8A4CD813CC71DEF32C86ED47865CE6DA5383B66B7021C5BC
                                                                                    SHA-512:CDA117A60C853F12ADE579C34FCE22D992B33DF1F5001A237767B6E642D5C775C3387BCEE05D6557FE5A2F6235F93258954A697D3B9812D2550C4801869F4751
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........##..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.#...v.8...w.E...y.K...z.Z...|.`...}.r.....z.............................................................................:.................q...........D...........[.....}.....E.......................o.......................G...........9.....L...................................%.....g...........P...........E.....m...................................L.................o...../.......................\.................{...........7.....[...........c.................9.................&...........^.................S...........3.....J...........V................................... ...........F.................F...........R.....u...........z.................t...........Y...........).................6.......................!.................<.....W......................./...........b........................ ....m!.....!....P"....."....R#.....#....=$.....$....3%....V%.....%....T&.....&.....&....J'.....'....6(....^(

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\fi.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):470482
                                                                                    Entropy (8bit):5.425789814492222
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:K+2JevEiMD19i//8e36bwFh20RtrZs6TIOEysaI9LL59YWyHrE5WacpoPWmMWO4C:K+9Hs19S/rKJam59YdHrE5WaipKYn
                                                                                    MD5:FE011231BBC8B3A74652F6A38F85BC88
                                                                                    SHA1:2B851E46738D466B3A5A470DE114D15051B6EB6B
                                                                                    SHA-256:7A3249514585491EB47FE4B579EDC27CCC48761E7AD6BC11D113B257132C5DD2
                                                                                    SHA-512:2A4E5C1409347B4B514556C81EF32C8AE118ADD28E3469717B13045C8424FED9B817C7988629050ED3E732E0CDCA181891B6A8B9E64E4C8D65F004D7C8DB9796
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.+...y.1...z.@...|.F...}.X.....`.....e.....m.....u.....}.................................................................o...........B.....U.................N.....a...........>.....x.................b.......................W.......................(.....H.....X.................*.....D...........'.....i.................5.....a.....w...........7.....f.....{...........8.....i.................q.................).....|.......................O.....r.......................4.....@.............................o.......................T.......................0.............................f.......................y.................&.....k.......................K.....m.................I.....m.....|...........H.......................1.....H.....W.................8.....J.................?.....Y...........\.................-.......................=.............................Z.....s.................7.....b.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\fil.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):531993
                                                                                    Entropy (8bit):5.200104622437094
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:VJPfDjGZPitD/ty3DQZIbpiWFevNnGFZ338mC5oVms68ARrq8:VhGAodn7C5Sm7
                                                                                    MD5:7354DE570C8132723C8E57C4CCB4E7C4
                                                                                    SHA1:177780FAF460E3C8A643A4D71C7A4621345A8715
                                                                                    SHA-256:91149190C856195FB330605686ACF09C7197E5B7EFE37FE2A7C76BB8FB08CC89
                                                                                    SHA-512:A8487A6A7FD46D62E78CA4262DE49E12C120268561EE61A642C45EFA48116EDEBEB40CF9E8BE229DB0BBF06BB6B5457CC54399A08EE6A603E5540EF5CA482798
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.....h.....i.0...j.<...k.K...l.V...n.^...o.c...p.p...q.v...r.....s.....t.....v.....w.....y.....z.....|.....}.................................................%.....&.....'.....,.....9.....N.....d.............................*...........!.....f...........#.................7...........,.....p.................P.......................c.................:.............................0.....~...................................n.................4.........../.....y...........(.................6................. .....=....................... .....u.......................z...........%.....;.................=.....L.................A.....O.................A.....O.................D.....R...........S.................$.............................p.......................m.................7.................'.......................2.................C.....^...........R.................[...........^.....t.............................{.................4.......................*........... .....\.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\fr.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):550280
                                                                                    Entropy (8bit):5.387288883804832
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:V06pImfHXFZLiQphDDq6QuaMV5wKzvOtXDZ/MYnYtgLXfyzEi5Qx0JSWkv40wCns:VNfqsVaC5WK
                                                                                    MD5:D8B4BC789A0C865FB0981611FB5DCDBC
                                                                                    SHA1:33F9F03117F0BBA56A696F2FA089BA893EE951A2
                                                                                    SHA-256:52AA0A18ACE6347B06A89E3851A1B116812C022DBE41DA8942278878B5409CEE
                                                                                    SHA-512:58D19E5A3C68C901FA2A0C327A45B410AB9B9E6C39298DB48EED25345453DCE1A4633AFE6277CF53ED558E160065B89C0E38A32CAECED47E79783DBDA4D74F26
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........S#..e.....h.....i.....j.)...k.8...l.C...n.K...o.P...p.]...q.c...r.o...s.....t.....v.....w.....y.....z.....|.....}.........................................................................&.....4.....F.....U.......................<...........#.....c.....{.........................................;.....d.................D.....T...........(.....c.....x...........m................._.................0.................M....._...........7.....t.................r.................a...........M.....m...........2.....c.....z...........,.....V.....h...........2.....h.....z...........J.......................a.......................\.......................I.....u.................H.....z...................................p.......................b.......................O...................................g.................J.....g.....}...........i.................H...................................m.................r.................j...........6.....O.................+.....?...........+.....p.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\gu.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1074089
                                                                                    Entropy (8bit):4.312676397057413
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:QIEt+9TXuSm4vSDnlrjqy5HIwjAwREJKVMjNiT7llj63rFWlPvpMi5eQWiYJ+WRc:QIEtYXuLUKlrjTa4/WP5c4h6vFX
                                                                                    MD5:225167DBDF1D16B3FAFC506EB63F6D1D
                                                                                    SHA1:8651B77F41E3C5B019CCB124A7C8F6449A04B96C
                                                                                    SHA-256:FF379DD77136B9B85E7E9FCB5B261ACE9C6D9184AF3BA2DEA35B1757B9BAB6D9
                                                                                    SHA-512:A353D36A87B6608578816056647DE45A456F9012D399B2CB5CB7B9DE867A370FCAF1A90D293F367B9B678D13991294425ABD85CF77E971AFA0D3E9C316952115
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........h#k.e.....h.6...i.P...j.\...k.k...l.v...n.~...o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}................... .....(.....0.....7.....>.....E.....F.....G.....L.....n.......................2...../...........<...../...........s.......................j.................1.............................b...........B...........,.....L...../...........J.......................&.....h.....>.............................e.................................................................k...........@.....g..... .................=...................................m.......................v.......................M.................a...........h...........:...........E.....d.....w...........,.....b...... ..... ...."!....K!.....!....P"....|"....."....Q#....2$.....$.....$.....%.....&....D'.....'....i(.....)....L)....~)....a*....'+.....+.....+.....,....t-..........6.....]/.....0....X1....y1.....2....y3.....4....`4....L5.....6.....6.....6.....7....C8.....8.....8.....9.....:....n;

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\he.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):661497
                                                                                    Entropy (8bit):4.632075612159233
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:9xsskchOxS28YeqhCdrNGmnSWqo/IQXOl60pACDXbheQCap125nVwo9Ps5plm7oM:9Bk7g5Wof
                                                                                    MD5:D8320B09C1E138B00655DB0802687BCA
                                                                                    SHA1:01616BDA6B22C70D5C6440B7451AE736EB1336CB
                                                                                    SHA-256:E3336668AAD9AD661E7F589F1A405B9C95FC771261CDF9328ACA88F4BE763374
                                                                                    SHA-512:5A91596D7E82DC3D692083AE45AFF6FDBDDD08CA17F49A020E0769F98C4218B6C9CD31E54524473B7CDCCBEBF4D7A7F0FF23B5075A1E1ADA5CC35C3FD0172BED
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........D#..e.....h.....i.....j.....k.....l.%...n.-...o.2...p.?...q.E...r.Q...s.b...t.k...v.....w.....y.....z.....|.....}...............................................................................(.....A.....^.....#...........b.........................................3.................8.................).................g.....x...........[.................;.............................*.....|...........:.................8.........../.....u.........................................S.................j.................).................E.....X...........t.................^.................#.................Z.....o...........U.........................................V.............................<.................-.......................]...................................O.....n.............................v.........................................4...........I.......................I.............................[...........;................./.................K.....o.....$.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\hi.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1128743
                                                                                    Entropy (8bit):4.289393956482131
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:CaaJyCmCd3RTaIEDOGV/BB0ZV1dsuOlRLXW3XHij0TByntDPtDlSp1s4u/8WLw3k:aQDa3RTaISOOz5j5thGM
                                                                                    MD5:9E1788B0F3E330BAF2B9356A6C853B20
                                                                                    SHA1:A2F4B37A418669E2B90159C8F835F840026128D9
                                                                                    SHA-256:C640313E10E985A58D16F928D2428AE278421A070D948733AC68FDF7312090FD
                                                                                    SHA-512:B9A577E084F8DAEB53FAD0A9423661C99CAB272125899A16B0B052606A2CB88F823137F3A21B5C06B10E0235321B7FACA84CD759BF406FB2DD02C2F598E92CB5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........0#..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.)...s.:...t.C...v.X...w.e...y.k...z.z...|.....}.....................................................................................B.....{................._.................}...........B.....p...................................&.....U.....(...........6.....f.......................<.....#...........&.....c...........l...........$.......................W.....>...........l.......................$.....V.................S...........g...........m...........Q...........U.....................................................3.......................#...................................B.................j.....".....|......................., ....\ .....!.....!....."....<"....."....X#.....#.....#....p$.....%.....%.....%.....&....a'.....'....;(.....(.....).....).....).....*.....+....[,.....,.....-....A............/....x0.....1.....2.....2.....3.....4....+5....m5.....6.....7.....8....t8....h9....&:.....:.....:.....;.....<....$=

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\hr.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):512611
                                                                                    Entropy (8bit):5.519796392618245
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:3byA6gCM6By7Nv7vr7hA8aBV08Iouo+wvxr0Xcp/AikOSAqb+HicHE0uP1P4NUFn:Ahwxfh+cwJPwd75or76l/4c
                                                                                    MD5:AF7AEC4B45EAD620463B732E16F63E47
                                                                                    SHA1:E6838C56B945C936FDB87389FDC80CDF7BC73872
                                                                                    SHA-256:BFEEAFE2F8A9F797D20C4209181C4768FBEA4A61FF2DC1F57F6CD18BC872FC13
                                                                                    SHA-512:784FF8DC6011883E931B4B8371E5ADA960120931BFDF24F81648F5092FA31DB1D03E5D3CF5CD16D57EA7FB7877BB25A28533085AB42BFE40DC25CA7D9CEE7ADE
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#T.e.\...h.d...i.u...j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.0.....8.....=.....E.....M.....U.....\.....c.....j.....k.....l.....n.....z.......................E...........3.....T........... .....X.....m...........d.................?.......................S.......................G.......................F...................................K.....m...........9.....}.................Y.....................................................s.................D.....k.......................@.....Q.............................u.................#.....y.......................x.................'.....y.......................].......................m...........-.....H.......................'.............................c.......................w.................P................. .....6.................5.....N.........../.................'...................................:.....^...........!.....P.....a.........................................H.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\hu.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):551843
                                                                                    Entropy (8bit):5.644800761543747
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:0sTpI7ceE8WnOL42HPs2P0Ar7ky1XB5VwFZfpadYGDuU1gGse33a5gRFxztGateg:0spI7Y8WQ+AXB5VwAtj/3a5t+D
                                                                                    MD5:B93BEEB1E35A29B310500FA59983F751
                                                                                    SHA1:45C0B2CAB4C4A820CFC2AED4B7236DDC79A0DB00
                                                                                    SHA-256:BAB09C3CB80130A4A288642633C2B31AB08B1757466D9A468BC36D276079F002
                                                                                    SHA-512:249DE5B8BD7C4755CAA8B9552254D353B0D885B63BD5F7C6C8E29B3F4E447C9E8D6C0E88D5AABA0B898AA26880592B3904E19CA4797A2AC1DD757AAEE782C37C
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........E#..e.....h.....i.....j.....k.....l.%...n.-...o.2...p.?...q.E...r.Q...s.b...t.k...v.....w.....y.....z.....|.....}...............................................................................!.....6.....J.......................7.................v...............................................8.....Q...........+.....R.....c...........9.....r.........................................).........................................K...................................`.....z.........................................:.....W.........../.....V.....n...........F.....q...............................................U.....k...........v.................-...................................X.....l.............................M.......................t.................)................./.....G...........C................./.......................%.....~.................R.................(...........V.................|...........L...................................b...................................Q.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\id.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):454027
                                                                                    Entropy (8bit):5.384059218448116
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:f91C6s7szabK6s1o8Jf+eVnjHF26miZ0FZ58VhrwkK5R3SzP7IEji40Hf:fu7Bu6F85VnjHFXmM0b58VhAf
                                                                                    MD5:BC719B483F20E9A0B4B88969941C869D
                                                                                    SHA1:4D926A9ABA7C350E9DA8AA570A9F52534C81AA88
                                                                                    SHA-256:F175E58BE47B228803AA32D2695E2FCFAF4655B65B96FB6B539B3E59593E6799
                                                                                    SHA-512:DDF6108888676C1A90865DAAA88198B681B685D9047B0E10F5AA08DAA39A628A84732A8518606176529297BEC51CE8BC39E910EEFFC8B88E9585FAFB694C35DB
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........[#x.e.....h.....i.-...j.9...k.H...l.S...n.[...o.`...p.m...q.s...r.....s.....t.....v.....w.....y.....z.....|.....}.................................................".....#.....$.....&.....4.....A.....Q.....c...........I.......................J.....w.................J.......................d......................._.......................0.....Q.....h...........'.....V.....z...........2.....d.....{.................H.....U.................*.....7.................8.....K...........&.....k............................./.....{.......................A.............................m.......................R.......................*.....V.....`.................0.....<.......................).......................%.....m.......................(.....h.......................F.....q.................*.....[.....}.......................)...............................................)...........!.....z.................S.......................Z.......................!.....@.....P.................F.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\it.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):501266
                                                                                    Entropy (8bit):5.293951985847116
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:ZckXLmyax92+fMiMNDYISIqRRRsO1StBWRT9Tjex6qipELqbPpzHi9fLwsQ2nbwb:iWmhH6mZD28HG4KUw05klot
                                                                                    MD5:AB160B6E8BBABA8F8BDE7E2D996F4F2E
                                                                                    SHA1:EB7EAE28A693337B8504E3E6363087B3B113BC72
                                                                                    SHA-256:E86BA661B3F6F7ECD2312FE90B873330C0D6516A5501A0F326875844E8D4B289
                                                                                    SHA-512:14E8919E2F5A7AD2B3F310FFEC590B221E6E0DC45F37EFC57FF9B8FF7A3CA674D6F4B9BD65E49A98AF6726FA953F2168E5C8E6101ED977E8C7FF4A51203F8D4D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........a#r.e. ...h.(...i.9...j.E...k.T...l._...n.g...o.l...p.y...q.....r.....s.....t.....v.....w.....y.....z.....|.....}..................................... .....'.........../.....0.....2.....E.....T.....m.....~.........................................&.....7.........../.................?.......................l.......................;.......................>...................................S.....x...........G.......................^.................".......................l...........3.....Q.................+.....I.............................e.......................H.......................P.......................0.....~.......................R............................._.....j...........Q.......................[.............................,.....B.......................1.................T.................2.....X.....m.................3.....F...........+.....~...........3...........#.....:...........4.................+.......................F.......................(.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ja.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):613077
                                                                                    Entropy (8bit):5.6866751137991765
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:a1AxTSuPJmsKRC/uGsDKNJL+iCrtZKQ2xM6bU5B7YxVD:a2xYsKRC2GsDa9StZKQ2xM75B7m
                                                                                    MD5:DEE9626A8D7CACC7E29CFF65A6F4D9C3
                                                                                    SHA1:5C960312F873AB7002ED1CCE4AFDB5E36621A3CE
                                                                                    SHA-256:63AD3974BAA8C160BA30448171F148D008AC19E80010FB13D3A65CF411B67AE0
                                                                                    SHA-512:EE80D58886F4AC378D6491E075062C171A715AF7C42DD1785952B25A572381ACD722764E8BE914ADBFCCF2A5FA4A51968B989B632EEFB9D636851F1B8FFB82E1
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."'.e.....h.....i.....j.....k.....l.....m.....o.....p.....q.....v.(...w.5...y.;...z.J...|.P...}.b.....j.....o.....w...................................................................................;...........a.................P.............................G.................{.....&.................;.......................\...................................3.....X...........g.................?......................._.......................}...........%.....4...........{.................b...................................>.....Y...........l.................{...........g...................................j...........*.....<...........'.....c.....r...........}.............................o...................................a...................................\.....z.............................q...................................<.....W...........,.....f.....|.....$...........,.....A...........Z.................b...........!.....B...........0.....i...............................

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\kn.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1231605
                                                                                    Entropy (8bit):4.220671500631487
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:UNHCRmR6fkA6GjYQnbY25l67c5qBUic+E+htyR:UNiRmR6Lr5mUJ
                                                                                    MD5:32E5F528C6CEE9DE5B76957735AE3563
                                                                                    SHA1:74A86191762739D7184B08D27F716CFA30823A98
                                                                                    SHA-256:CD297F7E872B34E63CA2D98DC2FA79085E8A2985BA8757601E4B901A3F30B013
                                                                                    SHA-512:92D100B1289E63FD0DC65657FB4B1E16F298735E6CD066E9122D04E3B79E0D286F15FC9F1DA2C3A05AF528B92BDE95FCFBC493C466DB2D94A0749ADFBF7FB8D5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#O.e.f...h.n...i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z."...|.(...}.:.....B.....G.....O.....W....._.....f.....m.....t.....u.....v.....{.................).....u...........(.....)...................................@.....Z.....4.................T...........1.........................................E.....t...........i...........\.........................................r.......................-.....j.............................V...........q...........x...........G.....y.....8.................0...........s...................................;.................D.....f...... ..... ....>!....m!....B"....."....s#.....#....i$.... %.....%.....%.....&.....'.....(.....(.....)....j*.....*....)+.....+....L,.....,.....,.....-....+..................0.....0....v1.....1.....2....y3.....3....(4....X5....$6.....6.....7....X8.....9.....9..../:.....;.....=.....>....I>.....?.....@....|A.....A.....C.....D.....D.....E.....E.....F.....F...."G....UH....>I.....I

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ko.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):517250
                                                                                    Entropy (8bit):6.059093259094021
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:Bv+8Jr3zNRTuTjXcq+t8OQ4EVh3IKACqX5K7GGZ+8BtPq7hUomrOedlO:x+8BWm5H86alO
                                                                                    MD5:38A95D783D627E9A83AD636FAA33C518
                                                                                    SHA1:CB57E8E9EF30EB2B0E47453D5EC4F29CEA872710
                                                                                    SHA-256:0D9B23E2981412D11ECEA3ADE8D521A073802D9431C39D72B88F62B98E50A96B
                                                                                    SHA-512:4119B8F82107473C941C9E10B6BAE97D60C9C47570CC2B40F429A95F4F5CCA77EECBACD7023AF439429026F6E55AD9DF19998C8B98BE0D04D384B310D025C0DC
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."A.e.....h.....i.....j.....k.....l.....m.....o.....p.....q.....r.....s.....t.....y.....z. ...|.&...}.8.....@.....E.....M.....X.....`.....o.....t.....{...............................................K.................#.................=.....P...........4.....z.................^.......................r.......................v.................).......................:.......................S.......................G.......................F.......................|...........?.....V.................,.....C.............................v.......................v.................7................./.....?.................:.....M.................9.....I.................8.....H...........=.......................H.....i.................C.....k.................N.....t.................z.................8.....u.......................V.......................J.....}...................................[.......................|.......................q.......................f.......................}.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\lt.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):556374
                                                                                    Entropy (8bit):5.6329747097065646
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:ciW9XReMAg80mI963AS56ziarWCB56SNU:xAAMVL7S5Xa6CBW
                                                                                    MD5:3E9119A712530A825BCA226EC54DBA45
                                                                                    SHA1:10F1B6BF2FA3A1B5AF894D51B4EB47296C0DBC36
                                                                                    SHA-256:3DA531A9A5870315823E74B23031CB81379D2D94AE9894A7FB1D8A8AD51A2DA9
                                                                                    SHA-512:765C872CAFA1B266575B0CAC09DFA796CDB860BD82E1C657397FE2AADA11771F306B0A1776E4D66FF41E94B153C812592430F31E7B1FF97ABE7D8E6B96D321F1
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........j#i.e.2...h.:...i.K...j.W...k.f...l.q...n.y...o.~...p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.........................#.....+.....2.....9.....@.....A.....B.....D.....R....._.....s.............................#...........9.................3.................'.................V.....p...........i.................'.......................z...........(.....M...........`.................8.......................m...........!.....1...........I.................:.................6.................?.....Z...........=.....m.................k.................+.......................p...........*.....9...........7.....r...................................9.............................(.....{...................................Z.................?...........1.....g...................................o.............................4.....v...........'.............................W.................J.................,...........^.......................u...............................

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\lv.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):553985
                                                                                    Entropy (8bit):5.628621633625195
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:E4wNRkfYqooJw9bJ28DZyJxyNGtVF2tPlz7c4YbUSZbb3n5nygN9E9J5gosRyEAS:Okxw5P8iplzw4XkXn5vE350ypO19
                                                                                    MD5:E75CDDA386DD3131E4CFFB13883CDA5F
                                                                                    SHA1:20E084CB324E03FD0540FFF493B7ECC5624087E9
                                                                                    SHA-256:AE782F1E53201079CA555BAA5EC04B163188E5161242D185F04A606A49FC8C0D
                                                                                    SHA-512:D27BC61028031946ED6708918F921C3D681C8962B8D5507A91AB6576E3B2C462524E550305DB87EDE886E41FB0E49EDEC2D84CDBBAD675282105627E01D98BF5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#C.e.~...h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.%...y.+...z.:...|.@...}.R.....Z....._.....g.....o.....w.....~.................................................................D.................1.............................D.................0................. .....{...........;.....F...........;.....s.................u.................f...........^...................................A.............................>.................,...........".....C.................4.....J.................@.....R...........%.....L.....`...........q.................1.......................\.................(.................D.....U...........M.................*.................5.......................(...........'.....^.....~...........M.....r...................................{................."...........&.....[.....t...........r.................l.....$.................".......................v...........8.....H.................5.....W...........n.......

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ml.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1281970
                                                                                    Entropy (8bit):4.255584378467937
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:+okD5/VA2cMmsbbAxqInxblD/xn9mMRTAr6DuhQA+tHxy3ewh+5qR7dCds/fv38C:aPzqzXry3e75qR7qs/X3X
                                                                                    MD5:6E96EDDFE80DA6AAA87F677FEEF4D1D6
                                                                                    SHA1:8A998785D56BC32B15CEE97B172CD2DCDC8508D9
                                                                                    SHA-256:E2FB73353AB05EB78F9845BDBDF50B64C9FB776B7F08948F976FE64E683397C4
                                                                                    SHA-512:FEEA11DFC6EC153AB903B5828306617EEDEEE19DAA73BD046AE47757795FECB9ABCE6192BB3A9561AAACE7FC85EE442057B93081C6C986855B819FD38815E6F7
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#M.e.j...h.r...i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.&...|.,...}.>.....F.....K.....S.....[.....c.....j.....q.....x.....y.....z.......................<.................2...........e................./.....{...........J.....9.......................U...........v.....F.............................a.................[...........!.....o...........E.......................D.............................Q.................\...........6.....~.....u.................B.......................T.......................n...................................b.....F ..... ....]!.....!....u"....F#.....#.....#.....$.....%..../&....l&....;'.....(....q(.....(.....).....*.....+.....+.....,....}-.....-....1............/...../....,0.....1.....1....n2.....2.....3.....4....p5.....5.....6.....7.....7....28....T9....K:.....:....,;....k<....-=.....=....+>....Y?.....@....QA....zA.....B.....C....tD.....D.....F.....G.....G.....G.....H.....I....=J....wJ.....K.....L.....M

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\mr.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1052914
                                                                                    Entropy (8bit):4.286050307210063
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:3P5UK/LY0rHXWjViQm0vLJuVXrMHwrNf3FaMUCyGR93RkR3bntOubz1hzudmHwfZ:xUCY8qA0pJvC3SGINa5/pC7t2
                                                                                    MD5:FDA40999C6A1B435A1490F5EDCA57CCD
                                                                                    SHA1:41103B2182281DF2E7C04A3FFF23EC6A416D6AA9
                                                                                    SHA-256:0EBB125A0BDFD1E21B79914CA8E279790D41F7BAC35BF2D031DD7981F1C1C056
                                                                                    SHA-512:666CEB24D2E568A00A77512295E224A6545BF6ABCFA19C93AA823DB5330117FCB39FDE570E7601DBD41976950C3EC03634F89FC5D9203357515E6651AB0B6D32
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........<#..e.....h.....i.....j.....k.....l.....n.&...o.+...p.8...q.>...r.J...s.[...t.d...v.y...w.....y.....z.....|.....}...............................................................................8.....W.................3...........-.....j........... .....a...........................................................f.........................................&...........u...........>.....u.....E.......................V.......................9.....t.................|...........(.....b.....5...........q.....?.......................Z.................r..... .....a...........y.....V.............................%.....Q...... ..... ....9!....\!....."....."....5#....U#....($.....$....O%....u%.....&.....'.....(.....(.....)....X*.....*.....*....i+.....,....B,....d,....0-.....-....o............/.....0....W1.....1.....2....|3.....3.....4....K5....D6.....6.....7....^8....%9.....9.....:....e;.....<.....=.....=....#?....-@.....@....;A....DB...."C.....C.....C.....D....cE.....E.....E.....G.....G.....H

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ms.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):476479
                                                                                    Entropy (8bit):5.251439262040867
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:B304QirwGezQZU+JsxJwCuRlO0jlsUcSP5slGKsMSYlEFh:O49UzKU9xJqlOulj5VhMM
                                                                                    MD5:73096184D7BD6A9A2A27202D30A3CFA1
                                                                                    SHA1:EA711B29787AA8B9E9AF6BDE5B74103429E5855F
                                                                                    SHA-256:D1072514BAB63AF5DFBF923175D491787139F0C1B6361ACB23E67543836C84BA
                                                                                    SHA-512:E3FBEE4896554E502C222B5FFE38E9D61E9DB4D18CDC92CE5118B819DC60789BFD6D6C7F8444FF1763222455AB91E79BFE500E75C0E06B0DE70C2C64FB043C6F
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#A.e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w. ...y.&...z.5...|.;...}.M.....U.....Z.....b.....j.....r.....y...........................................................q...........C....._.................R.....b...........@.......................n.................!.....u.......................i.......................n.................=.......................^.......................;.......................).......................F.................%.....m.......................2.............................\.......................V.......................^.......................T.......................B.....r.....{...........5.....h.....s...........V.......................W.....|.................7.....[.....u.................C.....T.................8.....[.............................p........................................./...........&.....z.................W.......................d.......................4.....V.....f.................A.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\nb.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):463564
                                                                                    Entropy (8bit):5.426692701465118
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:8ba9K5cV3MpYuwOp7fdBia+c5Io42gz4vj:oa3D/a+c5z4hzE
                                                                                    MD5:28CC86C7204B14D080F661A388E7F2C0
                                                                                    SHA1:E0927EA3C4FD6875DAFD7946AFFB74AD2DB400F5
                                                                                    SHA-256:9253122D94CCEA904FB9363B8178CA9335B8380B7891F1A7A22AFB3113309E72
                                                                                    SHA-512:E2524E10D145F95C028D65E47CF06FC82C7A43FCF0ECF01202278C7FB14079C03E9434E8039FD96AAEE870872C9896D9F0ED575E50C19A3781CB0C94FE59B3A5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........r#a.e.B...h.J...i.a...j.m...k.|...l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.......$.....).....1.....9.....A.....H.....O.....V.....W.....X.....Z.....e.....t.................6...........).....>.................@.....S...........b.................3.......................4.......................".....~.................#.......................O.............................$.....q.................j.................:.............................9.......................D.....].....k.................>.....N.................!.....1.................0.....D.................2.....B.................<.....L.................(.....8.................$.....2.................a.....y...........*.....P.....c.................-.....F.......................'.................S.................>.....d.....}...........J.....v.................Q.......................}.................[...........!.....J.................>.....Q...........................................

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\nl.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):477660
                                                                                    Entropy (8bit):5.368696736425329
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:uerc6TeVRbZy3gihngHh9gog5HHnpo+h459tmxDGpF97358OTn:uf6Teuagog5nx459tmxDGpF97WOTn
                                                                                    MD5:7FC6AE561FD7C39FF8BA67F3DBAA6481
                                                                                    SHA1:2E3977403A204C6F0CA9A6856BB1734490A57E72
                                                                                    SHA-256:844031E1DE2B2872D12D5B7D42ADF633C9D4B48169B1B33B7492B3B060C73558
                                                                                    SHA-512:90294AE24B7DB003BC34A48F98D9E1887E87C6F605DEFE01DDCF9187429E8446C04A7F94BB6AADC8E61C98842163BC3702B414393AB836EB0BEE038F09481C2B
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........X#{.e.....h.....i.'...j.3...k.B...l.M...n.U...o.Z...p.g...q.m...r.y...s.....t.....v.....w.....y.....z.....|.....}................................................................... .....,.....<.....M....._...........i.................<.......................`...................................1.....H.......................+...............................................=.................L.....l...........*....._.....n...........9.....p.................e.................@.......................k.......................=.............................b.......................a.......................Z.......................:.....d.....n.................E.....R.................B.....Q...........-.....m.................<.....i.................".....C.....Z.................8.....J.................S.................!.....?.....S.................I.....Z...........,.....o...................................|...........).....N.................J....._.................&.....6.................&.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\pl.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):534366
                                                                                    Entropy (8bit):5.77011996675953
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:Hg1L9OZWoOB/oZU/FmXgvh6HA7b0mPeCUdVe3mbUbEmw1QhWRH5EdL4ftiJ:Al9OjtU01Qhc55y
                                                                                    MD5:BA7A9ABA68211D8639DFFAE0EF8B88DA
                                                                                    SHA1:A9A26B8F0902475CB576967CBE9013028CB21DA4
                                                                                    SHA-256:60AA08598A81BB46DDC64A5AB0852565554C6E6262E9C5DFEE09F4E3FC08D5FE
                                                                                    SHA-512:A1B8BFC3E19AA1267E31838E1C1F2B0B1CFCDF56F84E967088D626B58EC64B3305043A14B12FD080498EE1D74A4192453914C393CE8F848EA5616CF88ABC4EB5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........x#[.e.N...h.V...i.g...j.q...k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}. .....(.....-.....5.....=.....E.....L.....S.....Z.....[.....\.....^.....m.....{.................D...........?.....[...........).....c.....v.............................U.......................m.......................f.........................................C...........9.......................v.................,.......................X.................8...........I.................%.....b.....w.................1.....T.....d.......................&.................(.....<.................*.....<.................".....2.............................x...................................Q.....i................. .....7.......................'.......................,.................M.....~.................5.....L.................%.....A.................i.................v.................c.................>.................%.....6.....~.......................b.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\pt-BR.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):502496
                                                                                    Entropy (8bit):5.42724876798731
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:OrUbPq56NTyytNBXBLilIyMyE15aKJutiOsRhkxCp:Or6C5FyT5hJKsRKxM
                                                                                    MD5:53D5FB849C9BAB70878B3E01BFFAD65A
                                                                                    SHA1:E72AF1A76539E66CEF4A4EEF5844B067A4E1A79F
                                                                                    SHA-256:40DD24C5E225ED941BBAAB3DCFEFA993E39FBC75A1798F4F6E06424956698AC5
                                                                                    SHA-512:55357643D789D2EED72E009F08F72BA4895BA455CA00C8347A3C3790E43F8D7E4625FEDA438ECAC840BDC52C26D2135D89BEA693B61A293922B6056BDE6B4516
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........t#_.e.F...h.N...i._...j.k...k.z...l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.......".....'...../.....7.....?.....F.....M.....T.....U.....V.....[.....m.....}.................B...........*.....F.................F.....V...........s.................U.......................W.......................<.......................h.................H...........=.........................................=.......................k...........).....B...........N......................._.......................O.......................L.......................U.......................N.......................-.....[.....e.................5.....?.................4.....E...........@.......................H.....l.......................?.......................3...........,.....g.................5.....N.................N.....a...........1.....|...............................................Y.................6.....^.....q.................4.....I...........!.....^.....~.......

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\pt-PT.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):503874
                                                                                    Entropy (8bit):5.406123541333513
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:f3O/2bF2ozwfieJVJJxhoN4lCOfVY35NKimSRri:f+/2x2od35NKtSR2
                                                                                    MD5:0237374730FA1A92DEC60C206D7DF283
                                                                                    SHA1:62DBBD855D83EF982A15C647B5608DAFB748745A
                                                                                    SHA-256:2FB2FD2E32B952DCBC8914F9D3AAF02BF2750B72ABFEE2E8B2BB08062DDD9934
                                                                                    SHA-512:63EC4EC44002724E22703A3BD952D1FF4062B367C4F5E3F106349BD226AD1317BEF2E371FDA0E099EA5C0AFD32A9D2C1246C93C18D73DCCF8FC2C1644A6FB6B2
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#M.e.j...h.r...i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.&...|.,...}.>.....F.....K.....S.....[.....c.....j.....q.....x.....y.....z...................................W...........<.....W...........".....m...............................................5.....Y.................&.....6.........................................L.....z...........Z.................*.......................I.......................f.................0...........&.......................R.......................@.....q.................C.......................S.......................T.......................7.....d.....n.................=.....G.................2.....C...........!.....q.................1.....[.....w.......................!.......................,.................R.......................E.....W.................;.....P................._.....y.............................r...........).....M...........0.....p.................$.....I.....^...........,.....h.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ro.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):522785
                                                                                    Entropy (8bit):5.459461998642662
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:F5F0NqPzpwXg7XTLb/7FSmo/xOfinKdoGN5PBoC1s2e/m7O3:SI0g7XTL/FSmo5OqKdN5pop/53
                                                                                    MD5:4E692489E2AE74A4A11CA0A113048F15
                                                                                    SHA1:CB2B80217D5372242D656AC015C024FE1E5E77B7
                                                                                    SHA-256:4A2A305668F1926CFE4BB72E8FBFDE747C83AC4DD9CF535C13AE642D0B96FB79
                                                                                    SHA-512:8AD9E0A79137A862DEF24D6963536E75B87BB71AB74DBDD43531C5C95DDD3CD834F22C6A8E3A1E03AAD35ADE65ECD227D5101B5BE3CE3F0B7B471F5136CFD77C
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........j#i.e.2...h.:...i.K...j.U...k.d...l.o...n.w...o.|...p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}.........................!.....).....0.....7.....>.....?.....@.....B.....Q.....].....k.....}.............................l...................................p.................x.................-............................._.......................}.................j.................>.................d.....}...........@.....t................._.................L.................J.......................$.....s.......................D.......................).......................&.....{.......................c.......................9....._.....o...........!.....P.....d...........\.......................c.......................3.....S.....w...........8.....g.....z...........k.................B.......................3.......................^...................................U.....n..........._.................B.......................F.......................H.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ru.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):856355
                                                                                    Entropy (8bit):4.826212670448168
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:2oZ3aknfQjRo4YS7yMh/KgNzJ9fx+aAka2qSGsN8zqcnYH8eXN2hPO3j/zpbzvMX:hZ3GR/5X6Eq
                                                                                    MD5:1A9B38EC75CCFA3214BEF411A1AE0502
                                                                                    SHA1:DE81AF03FFF427DFC5FFE548F27ED02ACAE3402D
                                                                                    SHA-256:533F9E4AF2DCE2A6E049AC0EB6E2DBF0AFE4B6F635236520AEE2E4FA3176E995
                                                                                    SHA-512:05CF20AEA71CDD077B0FA5F835812809AD22C3DBEBC69E38AB2C9A26AD694AB50D6985AEC61633B99713E7F57408C1C64CE2FB9CCDAC26661B7167853BDD6148
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."..e.....h.....i.....j.....k.&...l.1...n.9...o.>...p.K...q.Q...r.]...s.n...t.w...v.....w.....y.....z.....|.....}.........................................................................!.....>.....V.....}.....>.......................O...........Q.....r.....T.......................O.................N.......................(.......................5.........................................T...........G...........,.....a.....................................................!...................................*.....g...........Z.................,.......................w...........%.....J...........{.................{...........-.....D...........A.....z.................x.............................,.....V...........R.................!.....x.................I...........Q.....j.....^...........\...........I...................................T...........R...........:.....d.....7...........l ..... .....!....`"....."....9#.....#....b$.....$.....$....E%.....%.....%.....&.....&.....'.....(

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\sk.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):539514
                                                                                    Entropy (8bit):5.818959197750725
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:zF2oXDdqsGk2Rspyzir+e/5CvHLg3HXLPxt9R:EoXDdqshpyk/5uLIltD
                                                                                    MD5:F117E58E6EB53DA1DBFA4C04A798E96F
                                                                                    SHA1:E98CEE0A94A9494C0CFC639BB9E42A4602C23236
                                                                                    SHA-256:B46DB20EEBA11F8365296B54469FDD001579852DC1D49A01FC59D2A8BCF880A3
                                                                                    SHA-512:DEA792A63E0557D9E868C0310EC2A68B713DAF5CF926389E05A0885CDB05433D20F35D087DE269F9584795DA50600966B8FF5DD95583861443A1E90564A89793
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........l#g.e.6...h.>...i.R...j.^...k.m...l.x...n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}...................".....*.....2.....9.....@.....G.....H.....I.....K....._.....g.....y...........>...........[.....v...........W.................1...................................).....@.................>.....Q.................3.....G........... .....U.....z.........................................6.....O...........2.....h.....y.............................n...........L.....g.................=.....R.................9.....K.................3.....E...........%.....c.....y...........V.......................b.........................................(.......................}...........N.....f.................!.....5...............................................-...........*.....o.................M.....i.....~...........\.................#.............................%................. .......................Y.......................V.......................i.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\sl.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):518515
                                                                                    Entropy (8bit):5.490293083588063
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:Gbsq8+s/u07QLr32zTMSB29i2iM8nnbrNjSdum4ocyxPbPD+DTubVmavfDszt5T0:sLWroSB2T+E+p578c0JHjcGi/fzzCqc
                                                                                    MD5:435A2A5214F9B56DFADD5A6267041BD3
                                                                                    SHA1:36BBC7CA3D998BFB1EDC2FF8A3635553F96CA570
                                                                                    SHA-256:341C33514C627501026C3E5B9620CF0D9F482AB66B10A7E0FB112C7620B15600
                                                                                    SHA-512:55271935E18AC27C753431AF86A7DCD1F4A768ADEF1B593BA8E218DA34856A5F9FAF9819A3ECCE3F21F0607BA95100C5CB18CD1A7138EC563090D0391AD5B52D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........X#{.e.....h.....i.'...j.1...k.@...l.K...n.S...o.X...p.e...q.k...r.w...s.....t.....v.....w.....y.....z.....|.....}.........................................................................0.....>.....N.....a...........~.................Y...................................].....|...........H.....|.................G.....r.................:.....e.....t...........V................./.......................l.................).................4.....H...........B.....y...........3.................*.............................c.......................N.......................Z.......................}.................#.................J....._.................I.....\.................Q.....`...........;.....x.................G.....g.................,.....J.....e...........'.....k.....}...........^.................).....{.................".......................B.............................>.................y...........O.................c.......................J.....h.....x...........X.......

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\sr.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):799241
                                                                                    Entropy (8bit):4.749887536690665
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:qCIVob4zA74dHLYbeHIdN4SGdEDWeUnLYA1785sXMx5xMd8G37gjemS/k/C:ZSe41A0x85nxQP
                                                                                    MD5:8F58B2463E8240EF62E651685E1F17D8
                                                                                    SHA1:6C9F302AED807A67F6B93BCB79577397A5AD3CF7
                                                                                    SHA-256:5A55320D6953EFB5B565893E32E01F6DAE781A16460DF5502C8BA012C893EDFD
                                                                                    SHA-512:6076D43A73D5FA5192CBE597E018B268CFDC7EFB94A6CB45DAD5B0DA9C3ABF68AAF2EA06F3AD650B28A993605917B6D356339D79F8DD6962D2C40DBF4653EF83
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........w#\.e.L...h.T...i.e...j.q...k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}. .....(.....-.....5.....=.....E.....L.....S.....Z.....[.....\.....^.........................................3.....g.....+...........8.....[.....V.....!.......................b.......................>.................=.............................w.............................R...........X...........W...........<...........5.....Z.....@...........w......................./.....k...........k.................W.................'...........$.....\.....{.....?...........@.....k.........................................f........... .............................3.................p.....!.................Z.................+...........:.....s...........Z...........9.....V.....&.................q...........z.................. ....,!.....!.....!.....".....#.....#.....#.....$....{%.....&..../&.....'.....'....6(.....(....:).....).....*....:*.....*....5+....m+.....+....[,.....-....p-

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\sv.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):465621
                                                                                    Entropy (8bit):5.545518715933861
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:kcCDD/pC1z11OBIrkn554FwxZf1Chn4RFcmi8G96iMXSOwDE/xWcqVR5sW7Y5FcJ:vecXwIrLFy+5E5FcJ
                                                                                    MD5:E4C9CED1A36EA7B71634E4DF9618804F
                                                                                    SHA1:C966C8EB9763A9147854989EA443C6BE0634DB27
                                                                                    SHA-256:E5CCCDB241938F4A6B9AF5A245ABE0E0218C72E08A73DB3ED0452C6DDFB9C379
                                                                                    SHA-512:D07A4D62F22A1830D3EC44F0C347E4A7D70B35CEBA126CBDC246A7B3EE7EDA85E2338BAB3EDC7223F579964868136BB10D42C05E0E0FF9F73447B3606D9B2C4E
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........?#..e.....h.....i.....j.....k.....l.....n.#...o.(...p.5...q.;...r.G...s.X...t.a...v.v...w.....y.....z.....|.....}.....................................................................................%.....9...........>.......................p.................A.................'.................0.....L.................1.....A.................2.....B...........&....._.................m.................+.......................5.......................s...........;.....Q...........|.................J.......................&.....}.......................[.......................`.......................d.......................V.......................F.....q.................D.....v.................X.......................S.....s.................).....G....._.......................-.................B.....r...........&.....E.....[.................?.....T.................H.....^...........b.................M.........................................*.....t.......................L.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\sw.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):490754
                                                                                    Entropy (8bit):5.340013612557628
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:/wmIzbIcvt54uCERdyU7bQg8Wo97pJ8zvgu352ub95Z4sKPe/BrufA:/azl5Bn
                                                                                    MD5:59FF4E16B640EF41100243857EFDD009
                                                                                    SHA1:F712B2D39618FFADCF68D1F2AB5A76DA5BE14D74
                                                                                    SHA-256:C18A209F8EC3641C90EA8CED5343F943F034E09C8E75466E24DCABC070D08804
                                                                                    SHA-512:0E721A6CBF209AC35272AD292B2E5000D4E690062DDB498DBF6E8E6EE5F6E86D034A7303A46C2B85750245381C78EFAFC416EAD13C1FE0EE5EC6088DD66ADCA2
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........k#h.e.4...h.<...i.G...j.S...k.b...l.m...n.u...o.z...p.....q.....r.....s.....t.....v.....w.....y.....z.....|.....}...............................'...........5.....<.....=.....>.....C.....U.....e.....y...................................e...................................\.....r...........&.....Y.....m.................B.....Q.................+.....9.................:.....`...........^.................5.......................C.......................D...................................Z.....v........... .....H.....c.............................j.......................\.................%.....}.......................~.................(.....|.......................h...................................2.....K.................*.....F.................9.....Z.................V.....f...........B.......................^.......................@.....h.....z...........V.................@.................).................N.....k...........`.................&.....z.................H.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ta.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1268483
                                                                                    Entropy (8bit):4.035580260221202
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:GeTVtPcVpmT9Yvh54P5TzotR1cA25tm1vYpiMyy:nViVITqzy5TzccA25tm1vYpiMyy
                                                                                    MD5:5F80C9DA0C09491C70123581A41F6DAD
                                                                                    SHA1:3FC9560A954271CF09AAA54EEC34963C72C06E85
                                                                                    SHA-256:30658D99D753946E9C9C02094C89BE25B710DB77251DF6CD1A8839C29DE5F884
                                                                                    SHA-512:072C5DB7FE1EB9E6C270D0E9B439CF84EBB3DC374D4F01F01F9341030883F2D6D9C6970FB6EF14BF96FCCB51EADE9CA762F396F89BA1D3DF1230DDA68557FD4A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........N#..e.....h.....i.....j.....k.....l.9...n.A...o.F...p.S...q.Y...r.e...s.v...t.....v.....w.....y.....z.....|.....}.........................................................................=.....k.........................................H...........2.....o...........T.....,.....g.........................................!.....U.....<...................................s...........?.....~.....G.........................................5.................c.......................i.........................................].....?.............................p............ ....6!....@".....".....#.....$.....%.....%.....%.....&.....'.....(....3(....,).....*.....*.....*.....+.....,....,-....`-...........0.....0....,1....'2.....3.....3.....3.....4....p5.....5.....6.....6.....7.....8.....8.....:....%;.....;....-<.....=.....=.....>....d>.....?.....@....-A.....A.....B.....D.....D....BE.....G.....I.....J.....J.....L....#M.....M....MN.....O.....P.....Q.....Q.....R.....S....^T.....T.....U.....W.....W

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\te.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):1173901
                                                                                    Entropy (8bit):4.287514680628642
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:/jAoZvA07McKNnCRWtgd49+agb0DQWp5B63p1Fm6OiTlC2pFg+NFqUZrOIoXAoIm:s5G35xM/1
                                                                                    MD5:17B858CF23A206B5822F8B839D7C1EA3
                                                                                    SHA1:115220668F153B36254951E9AA4EF0AA2BE1FFC4
                                                                                    SHA-256:D6180484B51AACBF59419E3A9B475A4419FB7D195AEA7C3D58339F0F072C1457
                                                                                    SHA-512:7B919A5B451EC2BA15D377E4A3A6F99D63268E9BE2865D674505584EED4FA190EAAE589C9592276B996B7CE2FDFAE80FDA20FEFF9EA9ADBB586308DFD7F12C2A
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#N.e.h...h.p...i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.....w.....y.....z.-...|.3...}.E.....M.....R.....Z.....b.....j.....q.....x..................................................... .....h.....R...................................U.....p.....<.........................................T............................./.....g...........W.........................................:.......................A.....8.................v.......................V.........................................".....K...........{.............................A...... ....|!....."....e".....#....n$.....$....5%....U&....&'.....'.....'.....(.....)....C*.....*.....+....~,.....,....<-.........../....(0....g0....h1.....2....x2.....2.....3.....4....Z4.....4....Q5.....6.....6.....6....^8....[9.....9.....:.....;....8<.....<.....<.... >.....>.....?.....?.....A.....A....yB.....B.....D.....F....GG.....G.....I.....J.....J....FK.....L.....M.....N....eN....lO....4P.....P.....P....6R....1S.....S

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\th.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):987501
                                                                                    Entropy (8bit):4.326923937635645
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:OgFN2HN9LyZYA1T6z1L/LLftDjsAnILwgv1V5UBGsL3fBj8BlzEdq3Ro9lGdI9uN:OgFYdK5J5j
                                                                                    MD5:4917873D8118906BDC08F31AFB1EA078
                                                                                    SHA1:49440A3B156D7703533367F8F13F66EC166DB6E9
                                                                                    SHA-256:D051B400096922089F6DAA723FAC18C9640BA203B2879AAC4CA89B05738DD32D
                                                                                    SHA-512:30E6446BAD54B86BE553FA293C7A92EC221ADB54B99624ED69702DF75347A98697158041A45F77ECE4E7ED0FDA41306EF21EB27981F24F0A4E42E8306175A88E
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."/.e.....h.....i.....j.....k.....l.....o.....p.....q.....r.....s.....t.....v.,...w.9...y.?...z.N...|.T...}.f.....n.....s.....{.......................................................................Y.......................<.....{.....C...........D.....n...........Q...........'.....`.....;.......................P.................Y...........".....;.....^.........................................[.....)...........T.....x.....C...........P.....w.....K...........d.......................k.................#.....{...............................................w...........p..... .......................@.......................Q.......................6.......................1.....................................................Z...........H ..... .....!....J!.....!....X".....".....".....$.....$....^%.....%.....&.....&....&'....V'....+(.....(.....)....J)....I*.....*....M+.....+.....,....t-..........=....../.....0....A1.....1.....2....L3.....3.....3.....4....D5.....5.....5.....6.....7...."8

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\tr.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):501122
                                                                                    Entropy (8bit):5.618531845968946
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:tgGjoIj9GAb0GKPRquxFX7gFZ7yMqPO4ppXHG42ge+54n/R+Pi1c2vdTAMTw/KUX:tgGHgo0G0RqU8wZHGe54n/C
                                                                                    MD5:55E06CD9356D0FB6F99932C2913AFC92
                                                                                    SHA1:AA5C532DDB3F80D2F180AD62CE38351E519A5E45
                                                                                    SHA-256:AFCBF02420DC724059F70D1DC6FFA51F5DD75136D9E1E8671D92D5D14955EDF9
                                                                                    SHA-512:813C180CB1AA205034497BE5FC8A631FF117E5ED17CDF0AC59B7569D74D849B385852A15BBADD3146F942C58BAB80D94BF0980D13CA4B4424D1CB1DF0CB1A2CD
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#1.e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.%...v.:...w.G...y.M...z.\...|.b...}.t.....|...............................................................................................2.......................v.................K.................!.......................0.............................o.......................y.................(.................^.....{...........@.....r.................7.....a.....q...........].................7.......................o.......................o.......................l.......................l.........................................,.......................,.......................$.......................*.........../.....}.................\.......................O.....q.................6.....n.................W.......................`.......................S.....~.................g.................n.......................(...................................T.....p...........4.....d.....y...........R.......

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\uk.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):856077
                                                                                    Entropy (8bit):4.859457960004309
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:8Jzdfzlw5Cgnbz/T0hoaiJITt5eB3IjeAjmEFIOuHLNiXEqqbo3/d:KdfhAw56EL
                                                                                    MD5:381CB33C2D4FD0225C5C14447E6A84E0
                                                                                    SHA1:686B888228F6DD95ADE94FEE62EB1D75F3E0FC93
                                                                                    SHA-256:C2A6B16ABEAB6E18276BC1636555E93218763B9C99CACD0B42481B35E3A11820
                                                                                    SHA-512:F7A2828AA4CD85F07A5D66832F247F70951ABF34F81A282DC41EC51875BA70D940353D010B605C56CC59BEE47309AA311099D4E6EBD17F3C1538521D0CDDF4B6
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........%#..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.$...t.-...v.B...w.O...y.U...z.d...|.j...}.|........................................................................................._.....C.......................^...........d...........Y.............................(.................s...........Z.........................................h.............................).....e.......................7...........v.......................c.............................:.....t...........m.................^.................;...........:.....x...........J...........H.....o.........................................T.....m...........|.................p...........>.....Y.....R.....".............................C.....e...........;.....d...........7...........V.....q.....f...................................>.....k........................ ..... ...._!.....!.....".....".....#....j$.....$....y%....=&.....&.....'.....'....F(.....(.....(....G).....).....*.... *.....*.....+.....,

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\ur.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):749985
                                                                                    Entropy (8bit):5.130337183789155
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:W2U9cmoa5DD8P4WrDD6yACLUj5DDPEFYW7BYcQYriwadcJKwUxuvco/9NjjFpvxR:1a8G5bWp
                                                                                    MD5:861FFD74AE5B392D578B3F3004C94CE3
                                                                                    SHA1:8A4A05317A0F11D9D216B3E53E58475C301D7EA5
                                                                                    SHA-256:B9F22A23368BF1E21F3085583ECB775CCE8045176721FF6AE798B06BD2810DBC
                                                                                    SHA-512:52EDE35B7ED1FB6E51B18E450B95C3245D326F2AFDA646E3642EE68B714DCF9A726AFE32E2759E9EA87A104F4A59E6FC2C60B3275AAD8332AE1C626231E6747B
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........e#n.e.(...h.0...i.8...j.D...k.S...l.^...n.f...o.k...p.x...q.~...r.....s.....t.....v.....w.....y.....z.....|.....}...........................................&.....-.........../.....4.....L.....f.................|.....>.......................T.......................z.....................................................j...............................................X...........N...........K...........,.................;...............................................5.................j.................{.................^.................*.................R.....l.........................................t...............................................I.....\...........g.......................C.............................@.....p...........Q.....~...........9.............................s.............................X.....{.....).................*...........z...........'............ .....!....T!....6"....."....`#.....#....j$.....%....g%.....%....-&.....&.....&.....'.....'....J(.....(

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\vi.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):592944
                                                                                    Entropy (8bit):5.79362677638915
                                                                                    Encrypted:false
                                                                                    SSDEEP:12288:9t12XV1+crwJ2roEw/aBuIZgsHXW0YYEDOr9g/C508jUmBnAi9wziMHQmwtm4:L12XX+crwJ2iaLZgsHG0Y3C508ImCi9v
                                                                                    MD5:4076D3C0C0E5F31CF883198C980D1727
                                                                                    SHA1:DB51B746216EA68803C98D7C1A5A2B45944359F3
                                                                                    SHA-256:F1458C4CE4CA708E849EB0C68A5157360EF003F3A9C95628D5CA12ADA303B379
                                                                                    SHA-512:80E4E960218F7D84423124C34352251411BAF008E821A344A0B6C2E7F1483694010F28B7DE21C7E2C69ABB4EC92E0D9CBDDEED6279B90C47245F4CBC500CDB77
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.........#..e.....h.....i.....j.....k.....l.....n.....o.....p.....q.....r.....s.....t.....v.1...w.>...y.D...z.S...|.Y...}.k.....s.....x.........................................................................................r.............................j...........3...........'.....M...........N.......................b.......................j.................U.................Q.................#.....Q...........b.................R.............................^.......................,.................0.......................J.......................e................."........... .....h.................U.......................g.......................t.................'.............................2.................7.......................y...................................N.......................B...........&.....[.....}...........z.................q...........'.....N...................................|.............................6.....O...........".....U.....i.........................

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\zh-CN.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):428244
                                                                                    Entropy (8bit):6.66612560644761
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:rnmNoByFw9qnvdNzuIaG/7C5ccJu7kzDg5CJTNY6BoHHulW:r2oBew9qvfz/aJ5ccJuAg50TNY6BoT
                                                                                    MD5:3210460A24F2E2A2EDD15D6F43ABBE5F
                                                                                    SHA1:608FF156286708ED94B7AE90C73568D6042E2DBD
                                                                                    SHA-256:0F8D42D7F0B0B01AAFAD6AE79F0BD0CA518B2DB94287B09DF088BC093F15F605
                                                                                    SHA-512:F97427DBA4217E01A7ED395C453D03DDA4F2258CBA589258DA0EACFDE427BF442CDDEF541A23E7782914433E70A9623E904A5070DEBA9F9D50DDA20732EB5E86
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."..e.2...h.:...i.B...j.E...k.T...l.[...m.c...o.i...p.n...q.t...r.....s.....t.....v.....w.....|.....}.......................................................!.....#.....(.....1.....=.....O.....a...........T.......................g.......................n.......................w.......................v.......................A.....h.....u...........".....H.....b...........=.....~.................L.......................2.....[.....g.................M....._...........4.....r.......................-.....G.............................V.......................3.......................;.............................s.......................Q.....y.................*.....S....._...........E.......................5.....U.....i.................6.....M.................(.....:.......................;.............................W.......................W.......................s...........,.....>.................B.....W.................-.....<.............................Z.......................V.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\locales\zh-TW.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):424179
                                                                                    Entropy (8bit):6.677156018886683
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:svATQ4LawqVPkG49+J+k2i2iurW4hcv50Ynzq1TfAyn7zeGTs:sY/2mG4+CW4hcv50YnzeNn7I
                                                                                    MD5:F466116C7CE4962FE674383D543C87F6
                                                                                    SHA1:F65BF0DC1F1B15C132674FB8FF540F7D2AFE1D6E
                                                                                    SHA-256:FF3A294FD1AFB1FA7AAF53FBC4396643A12ED132633C5C86F14C16B88FA94A7B
                                                                                    SHA-512:4851A08069FCAC75E4051E53D4526789BFE6C393AB963E8263803BBF6E96CB150E9BA741650EFB5EE500E8A757D8512EB17DC268CEC1AB6FD3ACFAC62F7DA27D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........."..e.....h.....i.....j.....k. ...l.+...n.3...o.8...p.@...q.F...r.R...s.c...t.l...v.....w.....y.....z.....|.....}...............................................................................'.................U.....g.................8.....D.................6.....H.................%.....7.............................`.......................<.......................0.......................(.............................e.......................`...............................................[.....o.......................9.....E.............................i.......................F.......................).............................e.......................>.....g.....s...........;.....p.......................0.....D.......................^.......................J.......................3.....s.......................=.....`.....r...........%.....T.....n...........Z........................................./.............................:.....O.....\.................-.....?.............

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\resources.pak

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):5483537
                                                                                    Entropy (8bit):7.995680005569416
                                                                                    Encrypted:true
                                                                                    SSDEEP:98304:+APFNXMmWPVctFCZcSENQjxh1Z/p6uNXrwrXRVunEVvXjAfz3hIkrT7s:+APFNXMddCM0Ghz/xpkrX2nEVvXGqkXA
                                                                                    MD5:E2088909E43552AD3E9CCE053740185D
                                                                                    SHA1:24B23DD4CAD49340D88B9CB34E54C3CA0EB0D27F
                                                                                    SHA-256:BBA36D4D18D64D9627F54C54FD645C5BA459D25A59ACC5228210BD707AEF67FD
                                                                                    SHA-512:DCEFACDDEC38D8941C7D2D7B971B6F22DD0ACB4116E48891D1D48A4D88968DA12B152CCB7591715C88F8E14C315E235D1C4E6852CC38B9246091C50226900DE6
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:........@...f.....{.2*..|..-..~..0.....C....;E....iF....rQ......................+.................V...........q...........L.....l.....J..........<.....<.....<.....<c....<.....<"....</....<.....<.....<`3...<V:...<a>...<.>..I=.>..J=.C..K=.D..R=XI..S=.S..T=.a..[=s...\="...]=....^=...._=...`=(...a=....b=<...c=...e=r...f=.....=.....=.....=.....=.....=.....=4....=3....=7....=.....=.....E....+E....,E@...-E.....E. ../E.+..8E.<..9E.N..:E.`..BJ.l..CJ)y..DJ=...EJ...FJ....GJ\...HJr...IJ....JJ...KJZ...LJ....(K...)K....J[*...K[....L[.)..M[.+..N[G-..O[.0..P[.2..Q[.5...[.D...[.I...[.N...[o]...[d`...[.e...[.f...[Ah...\.i...\.r...\!x...\.~...\y....\....\8....\....\.....\....\Z....\.....\.....\!....\,....\.....\.....\.|...\........................>.....t...........t.....e...........1..........G.....M...........?...........n...........".........9.........b.........y.........<.....u.......7..........O....................o.........................a...........-.....1.....y.

                                                                                    C:\Users\user\AppData\Local\Programs\Cricut Design Space\resources\app.asar

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:data
                                                                                    Category:dropped
                                                                                    Size (bytes):640222249
                                                                                    Entropy (8bit):6.878396450257119
                                                                                    Encrypted:false
                                                                                    SSDEEP:
                                                                                    MD5:C36976F326DF978F181E7A57FD78FFEC
                                                                                    SHA1:0FFF8E995F6C3A0E0A250FF7D43D68F07F05C9F2
                                                                                    SHA-256:F72F3492D2FB2AA93C56DDB6D1899E3AE6DA5D64B90CB58430018D0378B8F9FF
                                                                                    SHA-512:8431AB5FCD91097045F27E4151E40CB1C65B1FBF32C8534D669DB1344E79FD37945488CA072D5FCE70A9776B95F4A8BE315ECC251BCDD39F98B1FA3F592484CA
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:.....a...a...`..{"files":{"package.json":{"size":177,"offset":"0"},"cricut-ele-design-space":{"files":{"main.js":{"size":9291791,"offset":"177"},"config.bin":{"size":432,"offset":"9291968"},"preload.js":{"size":13977,"offset":"9339376"},"preload-plugin.js":{"size":1679,"offset":"139765597"}}},"static-asset":{"files":{"design3":{"files":{"translation":{"files":{"featureFlags.json":{"size":14888,"offset":"9292400"},"feature.json":{"size":3,"offset":"9307288"},"en_US.json":{"size":343582,"offset":"45330355"},"cs_CZ.json":{"size":377246,"offset":"620656439"},"da_DK.json":{"size":366448,"offset":"621033685"},"de_DE.json":{"size":393376,"offset":"621400133"},"es_419.json":{"size":384184,"offset":"621793509"},"fi_FI.json":{"size":372030,"offset":"622177693"},"fr_FR.json":{"size":396183,"offset":"622549723"},"hu_HU.json":{"size":393916,"offset":"622945906"},"it_IT.json":{"size":384120,"offset":"623339822"},"ja_JP.json":{"size":436193,"offset":"623723942"},"ko_KR.json":{"size":396249,"offset":"

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\SpiderBanner.dll

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
                                                                                    Category:dropped
                                                                                    Size (bytes):9216
                                                                                    Entropy (8bit):5.5347224014600345
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:5lkE3uqRI1y7/xcfK4PRef6gQzJyY1rpKlVrw:5lkMBI1y7UKcef6XzJrpKY
                                                                                    MD5:17309E33B596BA3A5693B4D3E85CF8D7
                                                                                    SHA1:7D361836CF53DF42021C7F2B148AEC9458818C01
                                                                                    SHA-256:996A259E53CA18B89EC36D038C40148957C978C0FD600A268497D4C92F882A93
                                                                                    SHA-512:1ABAC3CE4F2D5E4A635162E16CF9125E059BA1539F70086C2D71CD00D41A6E2A54D468E6F37792E55A822D7082FB388B8DFECC79B59226BBB047B7D28D44D298
                                                                                    Malicious:false
                                                                                    Antivirus:
                                                                                    • Antivirus: ReversingLabs, Detection: 0%
                                                                                    • Antivirus: Virustotal, Detection: 1%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........N.../../../..Wy./../../....../..Wi./..Wx./..W~./..W{./..Rich./..................PE..L...T{mW...........!................p!.......0...............................p............@..........................5..o...l1..P....P.......................`.......................................................0...............................text............................... ..`.rdata.......0......................@..@.data........@......................@....rsrc........P......................@..@.reloc..d....`....... ..............@..B........................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\StdUtils.dll

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:PE32 executable (DLL) (console) Intel 80386, for MS Windows
                                                                                    Category:dropped
                                                                                    Size (bytes):102400
                                                                                    Entropy (8bit):6.729923587623207
                                                                                    Encrypted:false
                                                                                    SSDEEP:3072:WNuZmJ9TDP3ahD2TF7Rq9cJNPhF9vyHf:WNuZ81zaAFHhF9v
                                                                                    MD5:C6A6E03F77C313B267498515488C5740
                                                                                    SHA1:3D49FC2784B9450962ED6B82B46E9C3C957D7C15
                                                                                    SHA-256:B72E9013A6204E9F01076DC38DABBF30870D44DFC66962ADBF73619D4331601E
                                                                                    SHA-512:9870C5879F7B72836805088079AD5BBAFCB59FC3D9127F2160D4EC3D6E88D3CC8EBE5A9F5D20A4720FE6407C1336EF10F33B2B9621BC587E930D4CBACF337803
                                                                                    Malicious:false
                                                                                    Antivirus:
                                                                                    • Antivirus: ReversingLabs, Detection: 0%
                                                                                    • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........q....C...C...C...C...C...C...C...C...C...C...C...C...C.[.C...C.[.C...C.[.C...C.[.C...CRich...C........................PE..L...I..[...........!.....*...b...............@.......................................+....@..........................}..d....t..........X............................................................................@...............................text....).......*.................. ..`.rdata..TC...@...D..................@..@.data...l............r..............@....rsrc...X............x..............@..@.reloc..j............~..............@..B................................................................................................................................................................................................................................................................................................................

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\System.dll

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
                                                                                    Category:dropped
                                                                                    Size (bytes):12288
                                                                                    Entropy (8bit):5.719859767584478
                                                                                    Encrypted:false
                                                                                    SSDEEP:192:1enY0LWelt70elWjvfstJcVtwtYbjnIOg5AaDnbC7ypXhtIj:18PJlt70esj0Mt9vn6ay6
                                                                                    MD5:0D7AD4F45DC6F5AA87F606D0331C6901
                                                                                    SHA1:48DF0911F0484CBE2A8CDD5362140B63C41EE457
                                                                                    SHA-256:3EB38AE99653A7DBC724132EE240F6E5C4AF4BFE7C01D31D23FAF373F9F2EACA
                                                                                    SHA-512:C07DE7308CB54205E8BD703001A7FE4FD7796C9AC1B4BB330C77C872BF712B093645F40B80CE7127531FE6746A5B66E18EA073AB6A644934ABED9BB64126FEA9
                                                                                    Malicious:false
                                                                                    Antivirus:
                                                                                    • Antivirus: ReversingLabs, Detection: 0%
                                                                                    • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......qr*.5.D.5.D.5.D...J.2.D.5.E.!.D.....2.D.a0t.1.D.V1n.4.D..3@.4.D.Rich5.D.........PE..L....~.\...........!....."...........).......@...............................p............@..........................B.......@..P............................`.......................................................@..X............................text.... .......".................. ..`.rdata..c....@.......&..............@..@.data...x....P.......*..............@....reloc.......`.......,..............@..B................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\app-32.7z

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:7-zip archive data, version 0.4
                                                                                    Category:dropped
                                                                                    Size (bytes):255060103
                                                                                    Entropy (8bit):7.9999110237584325
                                                                                    Encrypted:true
                                                                                    SSDEEP:6291456:+47uw4S1btMyWY0PPtMqvDTu3MechY61Q3Pk9kv82ic3UR:+4ybaRMvHtMqvR+MQ3Pj81R
                                                                                    MD5:EB949B60986F315D633B55669AC8A009
                                                                                    SHA1:72F1B9FEFB8046070DAD4DA9701FF96C8FB640AB
                                                                                    SHA-256:CDACD438B09B78C3858922D87D563B5E7581985A8CBA914EECC6268A1EB74355
                                                                                    SHA-512:4F4A32D92B6EC55005A0CFF630B9669294A21A90212387DBB10E292E12D63B1318CB56FD911981AD27B885178C0918C950E7E1C0609125A20CCE579D719506F5
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:7z..'....0.B.3.....%.............win32-ia32.....]...6...-g../B.&.....M.yC.._.MF........].(.vF.7...E....7.[;.R.a......7...M...;{.....P...+..Dh.:m...L=F.`Z...el.X.DX.....L..pN...>.A.|1.p.!PE..7.T\.F!....%.".....;..z|x.%r.....6.j..m......S.H\..f2.=......7..s..c...........q..um...G....%[e./^U.y..........{.o+.K.....I.4..0..j0..0<......B.2|......(.E...{..R.,.@..2.u.f..Z..+:...`.lA...;`....<....7.0kT. L._l.~>...Z"....~.B"......1~s.'9%...5U.V&~...^........c...]Lm.....C<....z..riF..>...<.6^.pRu.6.fc .ZI...R:`..@y{..i6...5.iRm.:.T....U.JN.....#.UJ.;d...x3..c>. ..n..}G.7.[.M.1...fTiV...I..a>......I......g..Q...@{..@z.s....3.Y...C}F+;...y..5..R......k;D....+4....d.-.....LQ..j.K.%..f.)....u.$..1I.4..J...Z:..Q_....C.{.k.|.'...x..tW.......3..].;..E.[a.;.1.z".X._..a.iT7}....^..z'R..o....E..{C.o...p.P...2%.b.....cWV.d<UqL?.mz..1....@...t.@....5.f....8.$..XH...SE.]...O.8tV..g.(.M.t.(B\...<...fZ...^w*0.<...n.++.Y....C.->.......0,0.m.w..dX....e..M..Qx.B.7.s...

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsProcess.dll

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
                                                                                    Category:dropped
                                                                                    Size (bytes):4608
                                                                                    Entropy (8bit):4.703695912299512
                                                                                    Encrypted:false
                                                                                    SSDEEP:48:Sz4joMeH+Iwdf8Rom/L+rOnnk5/OCnXeAdbdOAa4GPI+CJ87eILzlq7gthwIsEQW:64c/eFdfS/SSnkxNa4G+ueqPuCtGsj
                                                                                    MD5:F0438A894F3A7E01A4AAE8D1B5DD0289
                                                                                    SHA1:B058E3FCFB7B550041DA16BF10D8837024C38BF6
                                                                                    SHA-256:30C6C3DD3CC7FCEA6E6081CE821ADC7B2888542DAE30BF00E881C0A105EB4D11
                                                                                    SHA-512:F91FCEA19CBDDF8086AFFCB63FE599DC2B36351FC81AC144F58A80A524043DDEAA3943F36C86EBAE45DD82E8FAF622EA7B7C9B776E74C54B93DF2963CFE66CC7
                                                                                    Malicious:false
                                                                                    Antivirus:
                                                                                    • Antivirus: ReversingLabs, Detection: 0%
                                                                                    • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........s.I...I...I...n}f.L...I...P...@..K...@..H...@..H...RichI...........................PE..L...\..N...........!......................... ...............................`.......................................#....... ..<....@.......................P..|.................................................... ..d............................text............................... ..`.rdata....... ......................@..@.data... ....0......................@....rsrc........@......................@..@.reloc.......P......................@..B................................................................................................................................................................................................................................................................................................................................................

                                                                                    C:\Users\user\AppData\Local\Temp\nsl657C.tmp\nsis7z.dll

                                                                                    Download File
                                                                                    Process:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    File Type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
                                                                                    Category:dropped
                                                                                    Size (bytes):434176
                                                                                    Entropy (8bit):6.584811966667578
                                                                                    Encrypted:false
                                                                                    SSDEEP:6144:aUWQQ5O3fz0NG3ucDaEUTWfk+ZA0NrCL/k+uyoyBOX1okfW7w+Pfzqibckl:an5QEG39fPAkrE4yrBOXDfaNbck
                                                                                    MD5:80E44CE4895304C6A3A831310FBF8CD0
                                                                                    SHA1:36BD49AE21C460BE5753A904B4501F1ABCA53508
                                                                                    SHA-256:B393F05E8FF919EF071181050E1873C9A776E1A0AE8329AEFFF7007D0CADF592
                                                                                    SHA-512:C8BA7B1F9113EAD23E993E74A48C4427AE3562C1F6D9910B2BBE6806C9107CF7D94BC7D204613E4743D0CD869E00DAFD4FB54AAD1E8ADB69C553F3B9E5BC64DF
                                                                                    Malicious:false
                                                                                    Antivirus:
                                                                                    • Antivirus: ReversingLabs, Detection: 0%
                                                                                    • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......L.6a..X2..X2..X2m.[3..X2m.]3..X2Z.]3+.X2Z.\3..X2Z.[3..X2m.\3..X2m.Y3..X2..Y2..X2..\3#.X2..]3..X2..X3..X2...2..X2...2..X2..Z3..X2Rich..X2........PE..L.....\...........!......................... ...............................@............@..........................6.......7..d................................E.....................................@............ ...............................text............................... ..`.rdata..8"... ...$..................@..@.data........P... ...6..............@....rsrc................V..............@..@.reloc...E.......F...Z..............@..B........................................................................................................................................................................................................................................................................................

                                                                                    C:\Users\user\Desktop\cmdline.out

                                                                                    Download File
                                                                                    Process:C:\Windows\SysWOW64\cmd.exe
                                                                                    File Type:ASCII text, with very long lines (521), with CRLF line terminators
                                                                                    Category:modified
                                                                                    Size (bytes):387810
                                                                                    Entropy (8bit):2.182879631175894
                                                                                    Encrypted:false
                                                                                    SSDEEP:1536:D/aFiMSyrTNiN58Rlo4UpVLNyikzkDXifDOz/3:Bb7bVB
                                                                                    MD5:EFBBB3248DF148DBA297011BDCE1301D
                                                                                    SHA1:9AED7A1D3DCE29C45E528D86E423F8263F7B7CE8
                                                                                    SHA-256:39CD99BF1442BA3ACEFDF54E8B341AAD4ADE08D6E3C244FB3EEF0456901F5949
                                                                                    SHA-512:10FD6E00AC85D53BB2A0B7F93EA2176881946138AAB091A54825B997519EFEDE906AA4B6248D6BBD7D0A851DDE672385B35AF10AC10563BF2991014C0FA2473D
                                                                                    Malicious:false
                                                                                    Reputation:low
                                                                                    Preview:--2024-04-18 03:52:38-- https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI..Resolving staticcontent.cricut.com (staticcontent.cricut.com)... 13.32.151.60, 13.32.151.10, 13.32.151.121, .....Connecting to staticcontent.cricut.com (staticcontent.cricut.com)|13.32.151.60|:443... connected...HTTP request sent, awaiting response... 200 OK..The name is too long, 439 chars total...Trying to shorten.....New name is CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-Yc

                                                                                    C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE

                                                                                    Download File
                                                                                    Process:C:\Windows\SysWOW64\wget.exe
                                                                                    File Type:PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
                                                                                    Category:dropped
                                                                                    Size (bytes):255684008
                                                                                    Entropy (8bit):7.99988282277047
                                                                                    Encrypted:true
                                                                                    SSDEEP:6291456:947uw4S1btMyWY0PPtMqvDTu3MechY61Q3Pk9kv82ic3UI:94ybaRMvHtMqvR+MQ3Pj81I
                                                                                    MD5:D1DE89A112FE350F4BAF657026B0E02F
                                                                                    SHA1:83B166126B14F6D51AE5D13E24812A8B33412138
                                                                                    SHA-256:810D8962E8821C7754C8DB562A74E5530648DB8FEC7C50DD5B8DDEADBE9D2F3C
                                                                                    SHA-512:AB23E28472BD0370A045EADE0654F24F10D28270378EFCE95C89BC8FB1D67F3C77488FE6E1E54D4796DFE3942D545D8FEBF17DEC39F28F7933CA5D019785C0FE
                                                                                    Malicious:true
                                                                                    Antivirus:
                                                                                    • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                    Reputation:low
                                                                                    Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........1...Pf..Pf..Pf.*_9..Pf..Pg.LPf.*_;..Pf.sV..Pf..V`..Pf.Rich.Pf.........................PE..L......\.................h...........3............@..........................p......n.=...@.........................................................XE=.P(...........................................................................................text...'f.......h.................. ..`.rdata...............l..............@..@.data...............................@....ndata...@...P...........................rsrc...............................@..@................................................................................................................................................................................................................................................................................................................................................

                                                                                    Static File Info

                                                                                    No static file info

                                                                                    Network Behavior

                                                                                    Skipped network analysis since the amount of network traffic is too extensive. Please download the PCAP and check manually.

                                                                                    Statistics

                                                                                    CPU Usage

                                                                                    Click to jump to process

                                                                                    Memory Usage

                                                                                    Click to jump to process

                                                                                    High Level Behavior Distribution

                                                                                    Click to dive into process behavior distribution

                                                                                    Behavior

                                                                                    Click to jump to process

                                                                                    System Behavior

                                                                                    General

                                                                                    Target ID:0
                                                                                    Start time:03:52:38
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\SysWOW64\cmd.exe
                                                                                    Wow64 process (32bit):true
                                                                                    Commandline:C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI" > cmdline.out 2>&1
                                                                                    Imagebase:0x240000
                                                                                    File size:236'544 bytes
                                                                                    MD5 hash:D0FCE3AFA6AA1D58CE9FA336CC2B675B
                                                                                    Has elevated privileges:true
                                                                                    Has administrator privileges:true
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:1
                                                                                    Start time:03:52:38
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\conhost.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                    Imagebase:0x7ff7699e0000
                                                                                    File size:862'208 bytes
                                                                                    MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                    Has elevated privileges:true
                                                                                    Has administrator privileges:true
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:2
                                                                                    Start time:03:52:38
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\SysWOW64\wget.exe
                                                                                    Wow64 process (32bit):true
                                                                                    Commandline:wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://staticcontent.cricut.com/a/software/win32-native/CricutDesignSpace-Install-v8.24.60.exe?Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBEm0NcoBXnTJbNIFUhXCXRo~PkpHmlp-Y848hU1zn-5iSX5OQNww3WIYg3K44DIbQxYvphEE2jdUyUTtrCWjluOBokHPH6E~RD6qKswmjzuLGyXmsEyq2FGQou~BS4AMtEkggT4nGQgr237R7z6oZi4w27o~lPIOGwMp1OZKYPzPyFXWTVDDIRSWrWSGeDI6ePgo8Ifcsj4g__&Key-Pair-Id=K2W1AJ47IQWIOI"
                                                                                    Imagebase:0x400000
                                                                                    File size:3'895'184 bytes
                                                                                    MD5 hash:3DADB6E2ECE9C4B3E1E322E617658B60
                                                                                    Has elevated privileges:true
                                                                                    Has administrator privileges:true
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:5
                                                                                    Start time:03:53:02
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe
                                                                                    Wow64 process (32bit):true
                                                                                    Commandline:"C:\Users\user\Desktop\download\CricutDesignSpace-Install-v8.24.60.exe@Expires=1713405575&Signature=2WQC5y2N-HrvfbwCMSuJ2AepXckGrbtsXEdZfqTTcjsjIKwZ48XDUv2do7SKzLJZWbg3r4Qt-YcgcCEnlL4U8K~rZtlF1Sign5lBZQZ-qWq6nwQhfqOgI~2AzpwFlKa5Z0ZnNvk2QuBE.exe"
                                                                                    Imagebase:0x400000
                                                                                    File size:255'684'008 bytes
                                                                                    MD5 hash:D1DE89A112FE350F4BAF657026B0E02F
                                                                                    Has elevated privileges:true
                                                                                    Has administrator privileges:true
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:8
                                                                                    Start time:03:53:01
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\Explorer.EXE
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:9
                                                                                    Start time:03:53:04
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 2580 -s 9996
                                                                                    Imagebase:0x7ff72bec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:12
                                                                                    Start time:03:53:07
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:15
                                                                                    Start time:03:53:10
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 3696 -s 4220
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:16
                                                                                    Start time:03:53:11
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:18
                                                                                    Start time:03:53:15
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 6952 -s 4872
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:19
                                                                                    Start time:03:53:17
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:21
                                                                                    Start time:03:53:25
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 5928 -s 4328
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:25
                                                                                    Start time:03:53:27
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:27
                                                                                    Start time:03:53:31
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 6596 -s 4360
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:28
                                                                                    Start time:03:53:32
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:30
                                                                                    Start time:03:53:35
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 2300 -s 2264
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:31
                                                                                    Start time:03:53:37
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:33
                                                                                    Start time:03:53:39
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 2996 -s 1440
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:34
                                                                                    Start time:03:53:41
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:36
                                                                                    Start time:03:53:44
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 2060 -s 4488
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:37
                                                                                    Start time:03:53:46
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:39
                                                                                    Start time:03:53:51
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 4988 -s 4528
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:40
                                                                                    Start time:03:53:53
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\explorer.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:explorer.exe
                                                                                    Imagebase:0x7ff72b770000
                                                                                    File size:5'141'208 bytes
                                                                                    MD5 hash:662F4F92FDE3557E86D110526BB578D5
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    General

                                                                                    Target ID:42
                                                                                    Start time:03:53:57
                                                                                    Start date:18/04/2024
                                                                                    Path:C:\Windows\System32\WerFault.exe
                                                                                    Wow64 process (32bit):false
                                                                                    Commandline:C:\Windows\system32\WerFault.exe -u -p 4484 -s 4352
                                                                                    Imagebase:0x7ff7f6ec0000
                                                                                    File size:570'736 bytes
                                                                                    MD5 hash:FD27D9F6D02763BDE32511B5DF7FF7A0
                                                                                    Has elevated privileges:false
                                                                                    Has administrator privileges:false
                                                                                    Programmed in:C, C++ or other language
                                                                                    Reputation:low
                                                                                    Has exited:true

                                                                                    Disassembly

                                                                                    No disassembly