Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe

Overview

General Information

Sample name:SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
Analysis ID:1432124
MD5:fcf252f884324dab8d0831f3edde05bf
SHA1:b9a566b4a184ed0435e026a9724774245204eccd
SHA256:d92ffd29ee3f93e059c8efda75e4886be9c48f0eb0335cb21ebc563e95d85df1
Infos:

Detection

Score:12
Range:0 - 100
Whitelisted:false
Confidence:40%

Signatures

Machine Learning detection for dropped file
Binary contains a suspicious time stamp
Creates a process in suspended mode (likely to inject code)
Dropped file seen in connection with other malware
Drops PE files
Found dropped PE file which has not been started or loaded
PE file contains an invalid checksum
PE file contains sections with non-standard names
PE file does not import any functions
Queries the volume information (name, serial number etc) of a device
Uses 32bit PE files

Classification

Analysis Advice

Sample drops PE files which have not been started, submit dropped PE samples for a secondary analysis to Joe Sandbox
Sample searches for specific file, try point organization specific fake files to the analysis machine
Sample tries to load a library which is not present or installed on the analysis machine, adding the library might reveal more behavior

Process Tree

  • System is w10x64
  • SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe (PID: 6348 cmdline: "C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe" MD5: FCF252F884324DAB8D0831F3EDDE05BF)
    • javaw.exe (PID: 6544 cmdline: "C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe" -Dbootstrapper.version=11.0.0.0000-0617 -classpath SUMLauncher.jar com.softwareag.plm.sum.client.launcher.installer.Main MD5: 7A2EB33DFB02144D50E874B8844D204F)
      • cmd.exe (PID: 3624 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 5168 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 1276 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4724 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 1292 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 2072 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 6976 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 5468 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 7120 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 5044 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 4820 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar679868451359564232.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 6436 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 6624 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4072 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 1252 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 2636 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 2472 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 3836 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 1268 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4332 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 6204 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4724 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 3652 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4676 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 5376 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 1880 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 4912 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 3364 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 5652 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 2200 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 2820 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 5644 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 1888 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 5084 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
      • cmd.exe (PID: 3208 cmdline: CMD /C C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.bat MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE)
        • conhost.exe (PID: 4368 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Machine Learning detection for dropped file
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\SUMlauncher.jarJoe Sandbox ML: detected
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeStatic PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\readme.txtJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\README.txtJump to behavior
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeStatic PE information: certificate valid
Source: Binary string: java.pdb source: java.dll.0.dr
Source: Binary string: api-ms-win-core-localization-l1-2-0.pdbGCTL source: api-ms-win-core-localization-l1-2-0.dll.0.dr
Source: Binary string: api-ms-win-core-util-l1-1-0.pdb source: api-ms-win-core-util-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-heap-l1-1-0.pdbGCTL source: api-ms-win-core-heap-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-crt-math-l1-1-0.pdbGCTL source: api-ms-win-crt-math-l1-1-0.dll.0.dr
Source: Binary string: javaw.pdb source: javaw.exe, 00000002.00000000.2165491630.00007FF7B1382000.00000002.00000001.01000000.00000007.sdmp
Source: Binary string: jrunscript.pdb source: jrunscript.exe.0.dr
Source: Binary string: api-ms-win-core-sysinfo-l1-1-0.pdbGCTL source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr
Source: Binary string: lcms.pdb// source: lcms.dll.0.dr
Source: Binary string: lcms.pdb source: lcms.dll.0.dr
Source: Binary string: api-ms-win-core-sysinfo-l1-1-0.pdb source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-util-l1-1-0.pdbGCTL source: api-ms-win-core-util-l1-1-0.dll.0.dr
Source: Binary string: java.pdbzz source: java.dll.0.dr
Source: Binary string: api-ms-win-core-interlocked-l1-1-0.pdb source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-localization-l1-2-0.pdb source: api-ms-win-core-localization-l1-2-0.dll.0.dr
Source: Binary string: api-ms-win-crt-math-l1-1-0.pdb source: api-ms-win-crt-math-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-interlocked-l1-1-0.pdbGCTL source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-heap-l1-1-0.pdb source: api-ms-win-core-heap-l1-1-0.dll.0.dr
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.iniJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\userJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start MenuJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\RoamingJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppDataJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\ProgramsJump to behavior
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2252392924.0000012E684CF000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2324954708.0000012E68504000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2257130686.0000012E684D0000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2258058074.0000012E684F9000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2329070912.0000012E6850F000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/allow-java-encodings
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/continue-after-fatal-error
Source: javaw.exe, 00000002.00000003.2328124352.0000012E684C1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/disallow-doctype-decl
Source: javaw.exe, 00000002.00000003.2328124352.0000012E684C1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/dom/create-entity-ref-nodes
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/dom/create-entity-ref-nodes#
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/generate-synthetic-annotations
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/generate-synthetic-annotationsc.
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/honour-all-schemaLocations
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/internal/parser-settings
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/internal/tolerate-duplicates
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/internal/tolerate-duplicatesKF
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/internal/validation/schema/use-grammar-pool-only
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/namespace-growth
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/nonvalidating/load-external-dtd
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/nonvalidating/load-external-dtd3
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/scanner/notify-builtin-refs
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/scanner/notify-char-refs
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/standard-uri-conformant
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validate-annotations
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validate-annotationskG
Source: javaw.exe, 00000002.00000003.2328124352.0000012E684C1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/balance-syntax-trees
Source: javaw.exe, 00000002.00000003.2328124352.0000012E684C1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/dynamic
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/id-idref-checking
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/id-idref-checking$
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/identity-constraint-checking
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema-full-checking
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/augment-psvi
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/element-default
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/element-defaultcI
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/ignore-xsi-type-until-elemdecl
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/ignore-xsi-type-until-elemdeclkE
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/normalized-value
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/schema/normalized-value3Q
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/unparsed-entity-checking
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/warn-on-duplicate-attdef
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/warn-on-duplicate-attdef#
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/warn-on-undeclared-elemdef
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/validation/warn-on-undeclared-elemdef3
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/warn-on-duplicate-entitydef
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/xinclude
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/xinclude/fixup-base-uris
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/features/xinclude/fixup-language
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/input-buffer-size
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/input-buffer-size;-
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/datatype-validator-factory
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/datatype-validator-factory36
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/datatype-validator-factoryGER
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/document-scanner
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/document-scanner3
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/dtd-processor
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/dtd-processord-e
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/dtd-scanner
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/dtd-scanner/stri
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/entity-manager
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/entity-managerC
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/entity-managerSt
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/entity-resolver
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/error-handler
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/error-reporter
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/error-reporterrs
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/grammar-pool
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/namespace-binder
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/namespace-binder3M
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/namespace-context
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/stax-entity-resolver
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/symbol-table
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validation-manager
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validation-managercL
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validation/schema/dv-factory
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validation/schema/dv-factoryCJ
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validation/schema/dv-factorylHan
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validator/dtd
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validator/dtd-ht
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validator/dtdSP
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/validator/schema
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/internal/xinclude-handler
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/locale
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/localeal/
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/n
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/schema/external-noNamespaceSchemaLocation
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/schema/external-schemaLocation
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/schema/external-schemaLocationibu
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/security-manager
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/validation/schema/root-element-declaration
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/validation/schema/root-element-declaration3K
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/validation/schema/root-element-declarationmentHan
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/validation/schema/root-type-definition
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/properties/validation/schema/root-type-definitionsol
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://apache.org/xml/xmlschema/1.0/anonymousTypes
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0E
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://cps.chambersign.org/cps/chambersroot.html
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://cps.chambersign.org/cps/chambersroot.html0
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://cps.chambersign.org/cps/chambersroot.htmlr
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.certigna.fr/certignarootca.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.certigna.fr/certignarootca.crl01
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.chambersign.org/chambersroot.crl0
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.chambersign.org/chambersroot.crlkwell
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.chambersign.org/chambersroot.crlm
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.chambersign.org/chambersroot.crlme
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl06
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crlght
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crlghtK
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl0
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/SGCA.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/SGCA.crl0
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/SGCA.crln
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/STCA.crl
Source: javaw.exe, 00000002.00000003.2296906258.0000000087606000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087783000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087646000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/STCA.crl0
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/STCA.crler
Source: javaw.exe, 00000002.00000003.2296906258.0000000087783000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.securetrust.com/STCA.crlerCDG
Source: javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl1.softwareag.com/Software%20AG%20CA%202.crt
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl1.softwareag.com/Software%20AG%20CA%202.crt0A
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl1.softwareag.com/Software%20AG%20Root%20CA%202020.crl
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl1.softwareag.com/Software%20AG%20Root%20CA%202020.crt
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl1.softwareag.com/Software%20AG%20Root%20CA%202020.crt0K
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20CA%202.crt
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20CA%202.crt0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crl
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crlK
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crt
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crt0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl0
Source: lcms.dll.0.drString found in binary or memory: http://crl3.digicert.com/DigiCertTrustedRootG4.crl0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3283989553.0000000000028000.00000004.00000001.01000000.00000003.sdmpString found in binary or memory: http://documentation.softwareag.com/legal/general_license.txt
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/dom/properties/
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/3
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/ax
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/schemaLanguage
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/schemaLanguage;H
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/jaxp/properties/schemaSource
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/schema/features/
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/schema/features/report-ignored-element-content-whitespace
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/stream/properties/
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/stream/properties/ignore-external-dtdh.
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/stream/properties/reader-in-defined-state
Source: javaw.exe, 00000002.00000003.2328124352.0000012E684C1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://java.sun.com/xml/stream/properties/report-cdata-event
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/feature/secure-processing
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/feature/useCatalog
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/feature/useCatalogpa
Source: javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/property/
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/property/accessExternalDTD
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/property/accessExternalSchema
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://javax.xml.XMLConstants/property/accessExternalSchemas:
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2330076875.0000012E63301000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.00000000878DE000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3287463619.0000012E483F0000.00000002.00000001.00040000.00000019.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://null.oracle.com/
Source: javaw.exe, 00000002.00000003.2296906258.00000000878DE000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://null.oracle.com/C
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://ocsp.accv.es
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://ocsp.accv.es0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://ocsp.digicert.com0
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://ocsp.digicert.com0A
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://ocsp.digicert.com0C
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://ocsp.digicert.com0X
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3283989553.0000000000028000.00000004.00000001.01000000.00000003.sdmpString found in binary or memory: http://ocsp.example.net:80
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://pki.corp.softwareag.com/CertEnroll/Software%20AG%20-%20Root%20Certification%20Authority(4).cr
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://pki.corp.softwareag.com/CertEnroll/cps.txt
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://pki.corp.softwareag.com/CertEnroll/cps.txt0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://pki.corp.softwareag.com/CertEnroll/cps.txtS
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://pki.corp.softwareag.com/CertEnroll/cps.txtp
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.com
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.com0
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.come
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.comeng
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.comhtm
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://policy.camerfirma.comk
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/55
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/6
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/SC
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/m
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/mb
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/nla
Source: javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/t
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://repository.swisssign.com/ttokD
Source: javaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://softwareag.com/licenses
Source: javaw.exe, 00000002.00000003.2289356610.0000000087993000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://softwareag.com/licenses.
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt#Y
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl0
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crlcale
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crlcale;d
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/legislacion_c.htm
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/legislacion_c.htm0U
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es/legislacion_c.htms_
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.es00
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.esS
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.accv.eska
Source: javaw.exe, 00000002.00000002.3283965661.0000000080000000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3287463619.0000012E479F0000.00000002.00000001.00040000.00000019.sdmpString found in binary or memory: http://www.azul.com/
Source: javaw.exe, 00000002.00000002.3283965661.0000000080000000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3287463619.0000012E479F0000.00000002.00000001.00040000.00000019.sdmpString found in binary or memory: http://www.azul.com/support/
Source: javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.cert.fnmt.es/dpcs/
Source: javaw.exe, 00000002.00000003.2296906258.0000000087646000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.cert.fnmt.es/dpcs/0
Source: javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.cert.fnmt.es/dpcs/s
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.chambersign.org
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.chambersign.org1
Source: java.dll.0.dr, jrunscript.exe.0.dr, lcms.dll.0.drString found in binary or memory: http://www.digicert.com/CPS0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.firmaprofesional.com/cps
Source: javaw.exe, 00000002.00000003.2289356610.0000000087683000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087646000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.firmaprofesional.com/cps0
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.firmaprofesional.com/cpsc
Source: javaw.exe, 00000002.00000003.2289356610.0000000087683000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.firmaprofesional.com/cpsi
Source: javaw.exe, 00000002.00000003.2296906258.00000000873C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.fontbureau.comhttp://www.fontbureau.com/designers/NormalNormaaliNormalNorm
Source: javaw.exe, 00000002.00000003.2289356610.0000000087346000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.fontbureau.comhttp://www.fontbureau.com/designers/cabarga.htmlNegritaMagneto
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.fontbureau.comhttp://www.fontbureau.com/designersCursivaCalifornian
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087383000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.fontbureau.comhttp://www.fontbureau.com/designersNormalNormaaliNormalNorm
Source: javaw.exe, 00000002.00000003.2289356610.0000000087306000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.galapagosdesign.com/NormalNormaaliNormalNorm
Source: javaw.exe, 00000002.00000003.2289356610.0000000087306000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.galapagosdesign.com/http://www.galapagosdesign.com/staff/dennis.htmPlease
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/feature/use-service-mechanism
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/is-standalone
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/is-standalones
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/elementAttributeLimit
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/enableExtensionFunctions
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/enableExtensionFunctionss
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/entityExpansionLimit
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/entityReplacementLimit
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/getEntityCountInfo
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/getEntityCountInfoK
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/isStandalone
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxElementDepth
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxElementDepth;
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxGeneralEntitySizeLimit
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxOccurLimit
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxParameterEntitySizeLimit
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxParameterEntitySizeLimits
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/maxXMLNameLimit
Source: javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/totalEntitySizeLimit
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/xsltcIsStandalone
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.oracle.com/xml/jaxp/properties/xsltcIsStandalone#
Source: javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.quovadisglobal.com/cps
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.quovadisglobal.com/cps0
Source: javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.quovadisglobal.com/cpss
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3284773324.0000000002260000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.skaro.net
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3284773324.0000000002260000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.skaro.net/zipfusion/contact.html
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3284773324.0000000002260000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.skaro.net/zipfusion/regn.html
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3284773324.0000000002260000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.skaro.net/zipfusion/regn.html:
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeString found in binary or memory: http://www.skaro.net/zipfusionD
Source: javaw.exe, 00000002.00000003.2296906258.0000000087383000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.tiro.comMicrosoft
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.urwpp.deNormalNormaaliNormalNorm
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.urwpp.dePlease
Source: javaw.exe, 00000002.00000003.2289356610.0000000087306000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.zhongyicts.com.cn
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2252782431.0000012E63984000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2586697815.0000012E6396C000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2328414279.0000012E63981000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2327338703.0000012E6397B000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/allow-dtd-events-after-endDTD
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/external-general-entities
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/external-general-entities3)
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/external-parameter-entities
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/external-parameter-entitiess(
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/namespace-prefixes
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/namespace-prefixes.
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/namespaces
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/string-interning
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/validation
Source: javaw.exe, 00000002.00000003.2257625434.0000012E63532000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/features/validation.
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2252782431.0000012E63984000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2586697815.0000012E6396C000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2328414279.0000012E63981000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2327338703.0000012E6397B000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/
Source: javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/C
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/declaration-handler
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/dom-node
Source: javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/lexical-handler
Source: javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/lexical-handler39
Source: javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/xml-string
Source: javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://xml.org/sax/properties/xml-stringar
Source: javaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://documentation.softwareag.com/legal/general_license.txt
Source: javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://repository.luxtrust.lu
Source: javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://repository.luxtrust.lu0
Source: javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://repository.luxtrust.luk
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/cgi-bin/dataserveMASTER.cgi
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/cgi-bin/dataserveMASTER.cgi#
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/auth
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-service
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-service/actuator/health
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-service/actuator/healthc
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-service/components/updates/GA_Fix_Repo
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-service1
Source: javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/services/sum-repository-serviceJ
Source: javaw.exe, 00000002.00000002.3283965661.0000000080216000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.00000000879F7000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://sdc.softwareag.com/sumv2/api/version
Source: javaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://softwareag.com/licenses
Source: unicode.md.0.drString found in binary or memory: https://www.unicode.org/copyright.html.
Source: javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://wwww.certigna.fr/autorites/
Source: javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://wwww.certigna.fr/autorites/0m
Source: Joe Sandbox ViewDropped File: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dll 191E08DEA0AD5AC02E7E84669D9FFFA5AA67DC696E36077C5FA20D81C80B6A56
Source: Joe Sandbox ViewDropped File: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dll 9E04918D9E751DBC56D0251D3ADA573381B469A012599554D72AA4AFFDA9658A
Source: api-ms-win-core-processenvironment-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-interlocked-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-util-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-stdio-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-errorhandling-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-private-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-console-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-process-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-synch-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-timezone-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-file-l2-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-debug-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-string-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-handle-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-synch-l1-2-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-localization-l1-2-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-profile-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-datetime-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-math-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-locale-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-time-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-fibers-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-1.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-utility-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-namedpipe-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-filesystem-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-multibyte-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-console-l1-2-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-rtlsupport-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-conio-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-heap-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-convert-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-runtime-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-string-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-2-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-memory-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-sysinfo-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-libraryloader-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-core-heap-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: api-ms-win-crt-environment-l1-1-0.dll.0.drStatic PE information: No import functions for PE file found
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeStatic PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
Source: classification engineClassification label: clean12.winEXE@56/388@0/0
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-2246122658-3693405117-2476756634-1003\83aa4cc77f591dfc2374580bbd95f6ba_9e146be9-c76a-4720-bcdb-53011b87bd06Jump to behavior
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2072:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5044:120:WilError_03
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeMutant created: NULL
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2200:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:3364:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5644:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:1880:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4368:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4724:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4676:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5468:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2636:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:6436:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5084:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:3836:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5168:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4072:120:WilError_03
Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4332:120:WilError_03
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.bat
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeKey opened: HKEY_CURRENT_USER\Software\Borland\Delphi\LocalesJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile read: C:\Users\desktop.iniJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiersJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile read: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeJump to behavior
Source: unknownProcess created: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe "C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe"
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeProcess created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe "C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe" -Dbootstrapper.version=11.0.0.0000-0617 -classpath SUMLauncher.jar com.softwareag.plm.sum.client.launcher.installer.Main
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar679868451359564232.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.bat
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.bat
Source: C:\Windows\System32\cmd.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeProcess created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe "C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe" -Dbootstrapper.version=11.0.0.0000-0617 -classpath SUMLauncher.jar com.softwareag.plm.sum.client.launcher.installer.MainJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar679868451359564232.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.batJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: winmm.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: propsys.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: linkinfo.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: ntshrui.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: cscapi.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: winmmbase.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: mmdevapi.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: devobj.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: ksuser.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: avrt.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: audioses.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: powrprof.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: umpdc.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: msacm32.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: midimap.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: riched32.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: riched20.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: usp10.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: msls31.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: textshaping.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: edputil.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: netutils.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: windows.staterepositoryps.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: appresolver.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: bcp47langs.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: slc.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: userenv.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: sppc.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: onecorecommonproxystub.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeSection loaded: onecoreuapcommonproxystub.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: jli.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: vcruntime140.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: powrprof.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: wsock32.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: winmm.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: version.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: umpdc.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dbghelp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dbgcore.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: winhttp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: opengl32.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: glu32.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: rsaenh.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: userenv.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dpapi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dhcpcsvc6.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dhcpcsvc.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dnsapi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: windowscodecs.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dataexchange.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: d3d11.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dcomp.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: dxgi.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: twinapi.appcore.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Windows\System32\cmd.exeSection loaded: cmdext.dllJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{00021401-0000-0000-C000-000000000046}\InProcServer32Jump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeWindow found: window name: RICHEDITJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Windows\SysWOW64\RICHED32.DLLJump to behavior
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeStatic PE information: certificate valid
Source: SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeStatic file information: File size 41718784 > 1048576
Source: Binary string: java.pdb source: java.dll.0.dr
Source: Binary string: api-ms-win-core-localization-l1-2-0.pdbGCTL source: api-ms-win-core-localization-l1-2-0.dll.0.dr
Source: Binary string: api-ms-win-core-util-l1-1-0.pdb source: api-ms-win-core-util-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-heap-l1-1-0.pdbGCTL source: api-ms-win-core-heap-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-crt-math-l1-1-0.pdbGCTL source: api-ms-win-crt-math-l1-1-0.dll.0.dr
Source: Binary string: javaw.pdb source: javaw.exe, 00000002.00000000.2165491630.00007FF7B1382000.00000002.00000001.01000000.00000007.sdmp
Source: Binary string: jrunscript.pdb source: jrunscript.exe.0.dr
Source: Binary string: api-ms-win-core-sysinfo-l1-1-0.pdbGCTL source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr
Source: Binary string: lcms.pdb// source: lcms.dll.0.dr
Source: Binary string: lcms.pdb source: lcms.dll.0.dr
Source: Binary string: api-ms-win-core-sysinfo-l1-1-0.pdb source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-util-l1-1-0.pdbGCTL source: api-ms-win-core-util-l1-1-0.dll.0.dr
Source: Binary string: java.pdbzz source: java.dll.0.dr
Source: Binary string: api-ms-win-core-interlocked-l1-1-0.pdb source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-localization-l1-2-0.pdb source: api-ms-win-core-localization-l1-2-0.dll.0.dr
Source: Binary string: api-ms-win-crt-math-l1-1-0.pdb source: api-ms-win-crt-math-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-interlocked-l1-1-0.pdbGCTL source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr
Source: Binary string: api-ms-win-core-heap-l1-1-0.pdb source: api-ms-win-core-heap-l1-1-0.dll.0.dr
Source: api-ms-win-core-errorhandling-l1-1-0.dll.0.drStatic PE information: 0xAEAB7D2A [Sat Nov 11 12:38:02 2062 UTC]
Source: ktab.exe.0.drStatic PE information: real checksum: 0xcf85 should be: 0xc43d
Source: javaw.exe.0.drStatic PE information: real checksum: 0x1afa2 should be: 0xfde6
Source: jrunscript.exe.0.drStatic PE information: real checksum: 0xce21 should be: 0xc2d9
Source: keytool.exe.0.drStatic PE information: real checksum: 0xb910 should be: 0x10753
Source: kinit.exe.0.drStatic PE information: real checksum: 0x11a97 should be: 0x68db
Source: jabswitch.exe.0.drStatic PE information: real checksum: 0x1116d should be: 0x15fb3
Source: freetype.dll.0.drStatic PE information: real checksum: 0x86b0c should be: 0x8be2e
Source: jfr.exe.0.drStatic PE information: real checksum: 0x15298 should be: 0xa0dc
Source: klist.exe.0.drStatic PE information: real checksum: 0x143ba should be: 0x91fe
Source: java.exe.0.drStatic PE information: real checksum: 0x17f81 should be: 0x16242
Source: rmiregistry.exe.0.drStatic PE information: real checksum: 0x1393c should be: 0x8780
Source: jsvml.dll.0.drStatic PE information: section name: _RDATA
Source: fontmanager.dll.0.drStatic PE information: section name: _RDATA
Source: vcruntime140.dll.0.drStatic PE information: section name: _RDATA
Source: javaaccessbridge.dll.0.drStatic PE information: section name: _RDATA
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jabswitch.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\net.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sspi_bridge.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\lcms.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\vcruntime140.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-utility-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-string-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2gss.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jrunscript.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-math-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pkcs11.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-heap-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jli.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-multibyte-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-errorhandling-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_ext.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\ktab.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-debug-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\keytool.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\WinFallbackLookup.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jimage.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jdwp.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-conio-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\vcruntime140_1.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\klist.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-runtime-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processenvironment-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-handle-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-environment-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-private-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-time-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\windowsaccessbridge-64.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaas.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-convert-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\mlib_image.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaaccessbridge.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-interlocked-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_agent.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pcsc.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javajpeg.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-string-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-libraryloader-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\ucrtbase.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-fibers-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-timezone-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\kinit.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccesswalker.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\prefs.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jfr.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-profile-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmiregistry.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-process-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsound.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccessinspector.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\verify.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sunmscapi.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\w2k_lsa_auth.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-locale-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-namedpipe-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-filesystem-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\freetype.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l2-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\fontmanager.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmi.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\zip.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jawt.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsvml.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-datetime-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\server\jvm.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-util-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-localization-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-heap-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\msvcp140.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\instrument.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\nio.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\awt.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-memory-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-stdio-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-1.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\splashscreen.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-sysinfo-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-rtlsupport-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\dt_socket.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\readme.txtJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\README.txtJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Windows\System32\cmd.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jabswitch.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\net.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sspi_bridge.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\lcms.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-utility-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-string-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jrunscript.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-math-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2gss.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pkcs11.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-heap-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-multibyte-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-errorhandling-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_ext.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\ktab.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-debug-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\keytool.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\WinFallbackLookup.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jimage.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jdwp.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-conio-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\vcruntime140_1.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-runtime-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\klist.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-handle-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processenvironment-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-time-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-private-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-environment-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\windowsaccessbridge-64.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-convert-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaas.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaaccessbridge.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\mlib_image.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-interlocked-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_agent.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pcsc.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javajpeg.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-string-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-libraryloader-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-fibers-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-timezone-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccesswalker.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\kinit.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\prefs.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jfr.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-profile-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmiregistry.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-process-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccessinspector.exeJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsound.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\verify.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sunmscapi.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\w2k_lsa_auth.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-locale-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-namedpipe-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-filesystem-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\freetype.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\fontmanager.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l2-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmi.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\zip.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jawt.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-datetime-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsvml.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\server\jvm.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-util-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-localization-l1-2-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-heap-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\instrument.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\msvcp140.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\nio.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-stdio-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\awt.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-memory-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-1.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\splashscreen.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-sysinfo-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-rtlsupport-l1-1-0.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\dt_socket.dllJump to dropped file
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.iniJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\userJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start MenuJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\RoamingJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppDataJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\ProgramsJump to behavior
Source: javaw.exe, 00000002.00000002.3287463619.0000012E479F0000.00000002.00000001.00040000.00000019.sdmp, classlist.0.drBinary or memory string: java/lang/VirtualMachineError
Source: javaw.exe, 00000002.00000002.3287463619.0000012E479F0000.00000002.00000001.00040000.00000019.sdmpBinary or memory string: VirtualMachineError
Source: javaw.exe, 00000002.00000002.3287109941.0000012E4612D000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeMemory protected: page read and write | page guardJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeProcess created: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe "C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe" -Dbootstrapper.version=11.0.0.0000-0617 -classpath SUMLauncher.jar com.softwareag.plm.sum.client.launcher.installer.MainJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar679868451359564232.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.batJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeProcess created: C:\Windows\System32\cmd.exe CMD /C C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.batJump to behavior
Source: C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dll VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\server\jvm.dll VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dll VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dll VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dll VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\modules VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\hsperfdata_user\6544 VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeQueries volume information: C:\Users\user\AppData\Local\Temp\logs\launcher_gui260424_14-40-28.log.lck VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Windows\System32\cmd.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuidJump to behavior

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity Information1
Scripting		Valid AccountsWindows Management Instrumentation1
Scripting		11
Process Injection		1
Masquerading		OS Credential Dumping1
Security Software Discovery		Remote ServicesData from Local SystemData ObfuscationExfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/Job1
DLL Side-Loading		1
DLL Side-Loading		1
Disable or Modify Tools		LSASS Memory2
File and Directory Discovery		Remote Desktop ProtocolData from Removable MediaJunk DataExfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)11
Process Injection		Security Account Manager12
System Information Discovery		SMB/Windows Admin SharesData from Network Shared DriveSteganographyAutomated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin Hook1
Timestomp		NTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput CaptureProtocol ImpersonationTraffic DuplicationData Destruction
Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon ScriptNetwork Logon Script1
DLL Side-Loading		LSA SecretsInternet Connection DiscoverySSHKeyloggingFallback ChannelsScheduled TransferData Encrypted for Impact

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1432124 Sample: SoftwareAGUpdateManagerInst... Startdate: 26/04/2024 Architecture: WINDOWS Score: 12 43 Machine Learning detection for dropped file 2->43 8 SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe 432 2->8         started        process3 file4 35 C:\Users\user\AppData\Local\Temp\...\zip.dll, PE32+ 8->35 dropped 37 C:\Users\user\...\windowsaccessbridge-64.dll, PE32+ 8->37 dropped 39 C:\Users\user\AppData\...\w2k_lsa_auth.dll, PE32+ 8->39 dropped 41 92 other files (89 malicious) 8->41 dropped 11 javaw.exe 43 8->11         started        process5 process6 13 cmd.exe 1 11->13         started        15 cmd.exe 1 11->15         started        17 cmd.exe 1 11->17         started        19 15 other processes 11->19 process7 21 conhost.exe 13->21         started        23 conhost.exe 15->23         started        25 conhost.exe 17->25         started        27 conhost.exe 19->27         started        29 conhost.exe 19->29         started        31 conhost.exe 19->31         started        33 12 other processes 19->33

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe3%ReversingLabs
SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe0%VirustotalBrowse

Dropped Files

SourceDetectionScannerLabelLink
C:\Users\user\AppData\Local\Temp\ZFI_3536\SUMlauncher.jar100%Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\WinFallbackLookup.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\WinFallbackLookup.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-datetime-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-datetime-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-debug-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-debug-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-errorhandling-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-errorhandling-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-fibers-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-fibers-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-2-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-2-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l2-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l2-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-handle-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-handle-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-heap-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-heap-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-interlocked-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-interlocked-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-libraryloader-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-libraryloader-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-localization-l1-2-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-localization-l1-2-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-memory-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-memory-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-namedpipe-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-namedpipe-l1-1-0.dll0%VirustotalBrowse
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processenvironment-l1-1-0.dll0%ReversingLabs
C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processenvironment-l1-1-0.dll0%VirustotalBrowse

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
http://crl.dhimyotis.com/certignarootca.crl00%URL Reputationsafe
http://www.chambersign.org10%URL Reputationsafe
http://java.sun.com/xml/dom/properties/0%URL Reputationsafe
http://java.sun.com/xml/dom/properties/0%URL Reputationsafe
http://crl.dhimyotis.com/certignarootca.crl0%URL Reputationsafe
http://policy.camerfirma.com00%URL Reputationsafe
https://wwww.certigna.fr/autorites/0m0%URL Reputationsafe
https://wwww.certigna.fr/autorites/0m0%URL Reputationsafe
http://cps.chambersign.org/cps/chambersroot.html0%URL Reputationsafe
http://crl.securetrust.com/STCA.crl0%URL Reputationsafe
http://www.accv.es000%URL Reputationsafe
http://javax.xml.XMLConstants/property/0%URL Reputationsafe
http://crl.securetrust.com/SGCA.crl00%URL Reputationsafe
http://java.sun.com/xml/stream/properties/reader-in-defined-state0%URL Reputationsafe
http://javax.xml.XMLConstants/property/accessExternalDTD0%URL Reputationsafe
http://ocsp.accv.es00%URL Reputationsafe
http://www.zhongyicts.com.cn0%Avira URL Cloudsafe
http://javax.xml.XMLConstants/feature/useCatalog0%Avira URL Cloudsafe
http://javax.xml.XMLConstants/feature/useCatalogpa0%Avira URL Cloudsafe
http://javax.xml.XMLConstants/property/accessExternalSchemas:0%Avira URL Cloudsafe
http://www.fontbureau.comhttp://www.fontbureau.com/designersCursivaCalifornian0%Avira URL Cloudsafe
http://policy.camerfirma.come0%Avira URL Cloudsafe
http://policy.camerfirma.comk0%Avira URL Cloudsafe
http://crl.chambersign.org/chambersroot.crlme0%Avira URL Cloudsafe
http://crl.securetrust.com/STCA.crlerCDG0%Avira URL Cloudsafe
http://www.zhongyicts.com.cn1%VirustotalBrowse
http://www.galapagosdesign.com/NormalNormaaliNormalNorm0%Avira URL Cloudsafe
http://www.fontbureau.comhttp://www.fontbureau.com/designers/NormalNormaaliNormalNorm0%Avira URL Cloudsafe
http://crl.securetrust.com/SGCA.crln0%Avira URL Cloudsafe
http://crl.securetrust.com/SGCA.crln0%VirustotalBrowse
http://www.galapagosdesign.com/NormalNormaaliNormalNorm0%VirustotalBrowse

Domains and IPs

Contacted Domains

No contacted domains info

URLs from Memory and Binaries

NameSourceMaliciousAntivirus DetectionReputation
http://apache.org/xml/features/validation/schema/augment-psvijavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
    		high
    http://apache.org/xml/properties/input-buffer-sizejavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
      		high
      http://crl.dhimyotis.com/certignarootca.crl0javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
      • URL Reputation: safe
      		unknown
      http://www.chambersign.org1javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
      • URL Reputation: safe
      		unknown
      http://repository.swisssign.com/0javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpfalse
        		high
        http://apache.org/xml/features/validation/schema/ignore-xsi-type-until-elemdeclkEjavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
          		high
          http://apache.org/xml/properties/internal/entity-managerjavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
            		high
            http://apache.org/xml/properties/internal/document-scanner3javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
              		high
              http://repository.swisssign.com/6javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                		high
                http://apache.org/xml/features/internal/parser-settingsjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                  		high
                  http://www.fontbureau.comhttp://www.fontbureau.com/designersCursivaCalifornianjavaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                  • Avira URL Cloud: safe
                  		unknown
                  http://java.sun.com/xml/dom/properties/javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpfalse
                  • URL Reputation: safe
                  • URL Reputation: safe
                  		unknown
                  http://apache.org/xml/properties/internal/stax-entity-resolverjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                    		high
                    http://apache.org/xml/properties/schema/external-schemaLocationibujavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                      		high
                      http://apache.org/xml/features/xinclude/fixup-base-urisjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                        		high
                        http://apache.org/xml/properties/schema/external-noNamespaceSchemaLocationjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                          		high
                          http://apache.org/xml/properties/internal/error-reporterjavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                            		high
                            http://javax.xml.XMLConstants/feature/useCatalogjavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                            • Avira URL Cloud: safe
                            		unknown
                            http://apache.org/xml/features/internal/tolerate-duplicatesKFjavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                              		high
                              http://apache.org/xml/properties/njavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                		high
                                http://crl.dhimyotis.com/certignarootca.crljavaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                • URL Reputation: safe
                                		unknown
                                http://www.zhongyicts.com.cnjavaw.exe, 00000002.00000003.2289356610.0000000087306000.00000004.00001000.00020000.00000000.sdmpfalse
                                • 1%, Virustotal, Browse
                                • Avira URL Cloud: safe
                                		unknown
                                http://apache.org/xml/features/scanner/notify-char-refsjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                  		high
                                  http://apache.org/xml/properties/internal/validator/dtdSPjavaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                    		high
                                    http://policy.camerfirma.com0javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpfalse
                                    • URL Reputation: safe
                                    		unknown
                                    http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crt0javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                      		high
                                      http://xml.org/sax/features/validation.javaw.exe, 00000002.00000003.2257625434.0000012E63532000.00000004.00000020.00020000.00000000.sdmpfalse
                                        		high
                                        http://apache.org/xml/features/continue-after-fatal-errorjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                          		high
                                          http://apache.org/xml/features/standard-uri-conformantjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                            		high
                                            http://apache.org/xml/properties/internal/document-scannerjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                              		high
                                              http://repository.swisssign.com/nlajavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                		high
                                                http://javax.xml.XMLConstants/feature/useCatalogpajavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                • Avira URL Cloud: safe
                                                		unknown
                                                http://repository.swisssign.com/mbjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                  		high
                                                  https://wwww.certigna.fr/autorites/0mjavaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                  • URL Reputation: safe
                                                  • URL Reputation: safe
                                                  		unknown
                                                  http://crl1.softwareag.com/Software%20AG%20CA%202.crtjavaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                    		high
                                                    http://repository.swisssign.com/mjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                      		high
                                                      http://xml.org/sax/properties/Cjavaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                                        		high
                                                        http://apache.org/xml/features/javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2252392924.0000012E684CF000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2324954708.0000012E68504000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2257130686.0000012E684D0000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2258058074.0000012E684F9000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2329070912.0000012E6850F000.00000004.00000020.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                          		high
                                                          http://apache.org/xml/features/generate-synthetic-annotationsjavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                                                            		high
                                                            http://javax.xml.XMLConstants/property/accessExternalSchemas:javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                                                            • Avira URL Cloud: safe
                                                            		unknown
                                                            http://repository.swisssign.com/tjavaw.exe, 00000002.00000003.2289356610.0000000086D00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086D00000.00000004.00001000.00020000.00000000.sdmpfalse
                                                              		high
                                                              http://xml.org/sax/features/allow-dtd-events-after-endDTDjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                		high
                                                                http://cps.chambersign.org/cps/chambersroot.htmljavaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                • URL Reputation: safe
                                                                		unknown
                                                                http://apache.org/xml/features/internal/validation/schema/use-grammar-pool-onlyjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                  		high
                                                                  http://crl.securetrust.com/STCA.crljavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                  • URL Reputation: safe
                                                                  		unknown
                                                                  http://repository.swisssign.com/ttokDjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                    		high
                                                                    http://apache.org/xml/properties/internal/namespace-binderjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                      		high
                                                                      http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                        		high
                                                                        http://apache.org/xml/properties/internal/validation-managercLjavaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                          		high
                                                                          http://www.oracle.com/xml/is-standalonejavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                            		high
                                                                            https://sdc.softwareag.com/cgi-bin/dataserveMASTER.cgi#javaw.exe, 00000002.00000003.2289356610.00000000879B9000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                              		high
                                                                              http://www.quovadisglobal.com/cpssjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                		high
                                                                                http://www.cert.fnmt.es/dpcs/javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                  		high
                                                                                  http://apache.org/xml/properties/internal/namespace-binder3Mjavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                    		high
                                                                                    http://policy.camerfirma.comejavaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                    • Avira URL Cloud: safe
                                                                                    		unknown
                                                                                    http://apache.org/xml/properties/security-managerjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                      		high
                                                                                      http://policy.camerfirma.comkjavaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                      • Avira URL Cloud: safe
                                                                                      		unknown
                                                                                      http://www.accv.es00javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                      • URL Reputation: safe
                                                                                      		unknown
                                                                                      http://apache.org/xml/properties/internal/error-reporterrsjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                        		high
                                                                                        http://crl.chambersign.org/chambersroot.crlmejavaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                        • Avira URL Cloud: safe
                                                                                        		unknown
                                                                                        http://crl.securetrust.com/STCA.crlerCDGjavaw.exe, 00000002.00000003.2296906258.0000000087783000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                        • Avira URL Cloud: safe
                                                                                        		unknown
                                                                                        https://documentation.softwareag.com/legal/general_license.txtjavaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                          		high
                                                                                          http://crl1.softwareag.com/Software%20AG%20Root%20CA%202020.crt0Kjavaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                            		high
                                                                                            https://softwareag.com/licensesjavaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                              		high
                                                                                              http://apache.org/xml/features/xincludejavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                		high
                                                                                                http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crljavaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                  		high
                                                                                                  http://apache.org/xml/features/validation/schema-full-checkingjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                    		high
                                                                                                    http://javax.xml.XMLConstants/property/javaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                    • URL Reputation: safe
                                                                                                    		unknown
                                                                                                    http://www.firmaprofesional.com/cps0javaw.exe, 00000002.00000003.2289356610.0000000087683000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087646000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                      		high
                                                                                                      http://www.azul.com/support/javaw.exe, 00000002.00000002.3283965661.0000000080000000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3287463619.0000012E479F0000.00000002.00000001.00040000.00000019.sdmpfalse
                                                                                                        		high
                                                                                                        http://apache.org/xml/features/validation/warn-on-duplicate-attdef#javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                          		high
                                                                                                          http://crl.securetrust.com/SGCA.crl0javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285855469.0000000087E00000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                          • URL Reputation: safe
                                                                                                          		unknown
                                                                                                          http://www.firmaprofesional.com/cpsjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                            		high
                                                                                                            http://apache.org/xml/features/generate-synthetic-annotationsc.javaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                              		high
                                                                                                              http://apache.org/xml/properties/internal/grammar-pooljavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                		high
                                                                                                                http://apache.org/xml/properties/localejavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                  		high
                                                                                                                  http://java.sun.com/xml/stream/properties/reader-in-defined-statejavaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                  • URL Reputation: safe
                                                                                                                  		unknown
                                                                                                                  http://www.oracle.com/xml/is-standalonesjavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                    		high
                                                                                                                    http://documentation.softwareag.com/legal/general_license.txtSoftwareAGUpdateManagerInstaller20231121-11-Windows.exe, 00000000.00000002.3283989553.0000000000028000.00000004.00000001.01000000.00000003.sdmpfalse
                                                                                                                      		high
                                                                                                                      http://www.quovadisglobal.com/cps0javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                        		high
                                                                                                                        http://www.galapagosdesign.com/NormalNormaaliNormalNormjavaw.exe, 00000002.00000003.2289356610.0000000087306000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                        • 0%, Virustotal, Browse
                                                                                                                        • Avira URL Cloud: safe
                                                                                                                        		unknown
                                                                                                                        http://www.fontbureau.comhttp://www.fontbureau.com/designers/NormalNormaaliNormalNormjavaw.exe, 00000002.00000003.2296906258.00000000873C0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                        • Avira URL Cloud: safe
                                                                                                                        		unknown
                                                                                                                        http://apache.org/xml/features/allow-java-encodingsjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                          		high
                                                                                                                          http://apache.org/xml/properties/validation/schema/root-element-declarationjavaw.exe, 00000002.00000003.2289356610.0000000086C00000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                            		high
                                                                                                                            http://www.accv.esjavaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                              		high
                                                                                                                              http://apache.org/xml/properties/internal/datatype-validator-factory36javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                		high
                                                                                                                                http://crl2.softwareag.com/Software%20AG%20Root%20CA%202020.crtjavaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                  		high
                                                                                                                                  http://www.cert.fnmt.es/dpcs/sjavaw.exe, 00000002.00000003.2289356610.00000000876C0000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                    		high
                                                                                                                                    http://www.oracle.com/feature/use-service-mechanismjavaw.exe, 00000002.00000003.2326829190.0000012E68504000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                      		high
                                                                                                                                      http://javax.xml.XMLConstants/property/accessExternalDTDjavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                      • URL Reputation: safe
                                                                                                                                      		unknown
                                                                                                                                      http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt#Yjavaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                        		high
                                                                                                                                        http://apache.org/xml/features/validation/warn-on-undeclared-elemdef3javaw.exe, 00000002.00000003.2296906258.00000000874CC000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                          		high
                                                                                                                                          http://apache.org/xml/xmlschema/1.0/anonymousTypesjavaw.exe, 00000002.00000003.2586763509.0000012E63F57000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                            		high
                                                                                                                                            http://crl.securetrust.com/SGCA.crlnjavaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                            • 0%, Virustotal, Browse
                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                            		unknown
                                                                                                                                            http://apache.org/xml/features/validation/schema/normalized-valuejavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                              		high
                                                                                                                                              http://apache.org/xml/features/xinclude/fixup-languagejavaw.exe, 00000002.00000003.2324442714.0000012E63974000.00000004.00000020.00020000.00000000.sdmpfalse
                                                                                                                                                		high
                                                                                                                                                http://ocsp.accv.es0javaw.exe, 00000002.00000003.2289356610.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087C40000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000002.3285538078.0000000086DBF000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000087BE8000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                                • URL Reputation: safe
                                                                                                                                                		unknown
                                                                                                                                                http://crl2.softwareag.com/Software%20AG%20CA%202.crt0javaw.exe, 00000002.00000002.3285538078.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2289356610.0000000086F54000.00000004.00001000.00020000.00000000.sdmp, javaw.exe, 00000002.00000003.2296906258.0000000087AF6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                                  		high
                                                                                                                                                  http://softwareag.com/licensesjavaw.exe, 00000002.00000002.3283965661.00000000801C6000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                                    		high
                                                                                                                                                    http://apache.org/xml/properties/validation/schema/root-element-declaration3Kjavaw.exe, 00000002.00000003.2289356610.0000000087410000.00000004.00001000.00020000.00000000.sdmpfalse
                                                                                                                                                      		high

                                                                                                                                                      World Map of Contacted IPs

                                                                                                                                                      No contacted IP infos

                                                                                                                                                      General Information

                                                                                                                                                      Joe Sandbox version:40.0.0 Tourmaline
                                                                                                                                                      Analysis ID:1432124
                                                                                                                                                      Start date and time:2024-04-26 14:39:21 +02:00
                                                                                                                                                      Joe Sandbox product:CloudBasic
                                                                                                                                                      Overall analysis duration:0h 8m 10s
                                                                                                                                                      Hypervisor based Inspection enabled:false
                                                                                                                                                      Report type:full
                                                                                                                                                      Cookbook file name:default.jbs
                                                                                                                                                      Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                                                                                                                                      Number of analysed new started processes analysed:41
                                                                                                                                                      Number of new started drivers analysed:0
                                                                                                                                                      Number of existing processes analysed:0
                                                                                                                                                      Number of existing drivers analysed:0
                                                                                                                                                      Number of injected processes analysed:0
                                                                                                                                                      Technologies:
                                                                                                                                                      • HCA enabled
                                                                                                                                                      • EGA enabled
                                                                                                                                                      • AMSI enabled
                                                                                                                                                      Analysis Mode:default
                                                                                                                                                      Analysis stop reason:Timeout
                                                                                                                                                      Sample name:SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                      Detection:CLEAN
                                                                                                                                                      Classification:clean12.winEXE@56/388@0/0
                                                                                                                                                      EGA Information:Failed
                                                                                                                                                      HCA Information:
                                                                                                                                                      • Successful, ratio: 100%
                                                                                                                                                      • Number of executed functions: 0
                                                                                                                                                      • Number of non-executed functions: 0
                                                                                                                                                      Cookbook Comments:
                                                                                                                                                      • Found application associated with file extension: .exe

                                                                                                                                                      Warnings

                                                                                                                                                      • Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe
                                                                                                                                                      • Excluded domains from analysis (whitelisted): ocsp.digicert.com, slscr.update.microsoft.com, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com
                                                                                                                                                      • Not all processes where analyzed, report is missing behavior information
                                                                                                                                                      • Report size getting too big, too many NtOpenKeyEx calls found.
                                                                                                                                                      • Report size getting too big, too many NtProtectVirtualMemory calls found.
                                                                                                                                                      • Report size getting too big, too many NtQueryValueKey calls found.
                                                                                                                                                      • Report size getting too big, too many NtSetInformationFile calls found.

                                                                                                                                                      Simulations

                                                                                                                                                      Behavior and APIs

                                                                                                                                                      No simulations

                                                                                                                                                      Joe Sandbox View / Context

                                                                                                                                                      IPs

                                                                                                                                                      No context

                                                                                                                                                      Domains

                                                                                                                                                      No context

                                                                                                                                                      ASNs

                                                                                                                                                      No context

                                                                                                                                                      JA3 Fingerprints

                                                                                                                                                      No context

                                                                                                                                                      Dropped Files

                                                                                                                                                      MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                                                                                      C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dllThunderstore Mod Manager - Installer.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                        zulu8.74.0.17-ca-jdk8.0.392-win_x64.msiGet hashmaliciousUnknownBrowse
                                                                                                                                                          main.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                            6Passwords.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                              Diavlo.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                Diavlo.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                  GetFans.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                    C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dllThunderstore Mod Manager - Installer.exeGet hashmaliciousUnknownBrowse
                                                                                                                                                                      zulu8.74.0.17-ca-jdk8.0.392-win_x64.msiGet hashmaliciousUnknownBrowse

                                                                                                                                                                        Created / dropped Files

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\+~JF2041233423233583574.tmp

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:TrueType Font data, 18 tables, 1st "FFTM", 26 names, Macintosh
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):170564
                                                                                                                                                                        Entropy (8bit):6.59881300718739
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:1pH0SiCU3quhbfPPaRmIk3uigjv4W97Kct7z8rUoiTeRq9+lJKZWCkP4UHrz+y:1Z0TrL3tYhqrUZPKL4ULzb
                                                                                                                                                                        MD5:99B14F0DA0591E0D71678DC163EAFF8B
                                                                                                                                                                        SHA1:1EA7498154A1D416A247F6A4FF9E90E3EFF80453
                                                                                                                                                                        SHA-256:E8D51E194ABF6D6F4AF94F4A2F37E261A5EC7C6DBBB944EB64055F4AD722AC64
                                                                                                                                                                        SHA-512:9CA3BF9011B25C695CD27A54C2C6C0CB7A2FE7ABEEAD9EEC6EC23F49A53009EE1A694E58D3E6808AF88851429C5E13D498DA7AFD6F2C2F05B3D7F4BA61398A6C
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:........... FFTMf..a...(....GDEF'[(...3 ...xGPOS.0...H8..Q.GSUB..P..3.....OS/2...........`cmap3...........cvt $A.........Lfpgmg.\....@....gasp......3.....glyf.$.W..&.....head...q...,...6hhea.......d...$hmtx..........loca.......$....maxp........... name.*..........post.......`../.prept..................... ._.<...........&.......&......0.s.................l.....I...J.0.............................T.................................3.......3.....f..................P.!....!....GOOG.@.........f.... ........:..... .....d...........................w.~.n...i...e.e.g.......&.r.....N.....5.%.....L...~.s.~...~.].~.^.~.5.~...~...~.M.~.p.~.d.......)...H.d.........K./.j.8.......5.w.?.......l...s.z.....-...j.5.....N.............v.......m.......P...1.0.........=...9.......V.....H.(.....X.@.....y.9.Z.m.}...0.\..._.=.]...<.}.`.h.......................j.....[.}....._..... ._.....i.....!...+...).......X...@.........q...........`.i...[...i...........Z.X.f.I.[.......f.n...5.%.J.Z...x.....F.a...B...>...{

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\SUMlauncher.jar

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Zip archive data, at least v1.0 to extract, compression method=deflate
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1557414
                                                                                                                                                                        Entropy (8bit):7.944542662136038
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24576:AbfNh9+v93EknqCaQxj+HNyzjTM6VbC8VL3n4lFK4l4SuWVAdQc9aNbzMGVL8:NV3E7CakjCoPo6CErY1uOAicIBE
                                                                                                                                                                        MD5:42BFD9B35F6CBB77BAF21EEA55CD6E12
                                                                                                                                                                        SHA1:08ADE25535154EBA1621788A0C8D5DFE40E0F4A4
                                                                                                                                                                        SHA-256:EEC908BD2D296B69DF4B2DA7956951176154E9F066A9FCDEC15A7212CC9FD2DC
                                                                                                                                                                        SHA-512:AFD5A446594C564A6A2F61792FC6EBE61354155FAC0E8A21FAFBC4013819C05FC39398E23FCA73CCF89BF482B84D249B2ED6F8AAC64690757B990FA024A1DCBD
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: Joe Sandbox ML, Detection: 100%
                                                                                                                                                                        Preview:PK........gGoW................META-INF/..PK........gGoW..f.............META-INF/MANIFEST.MF.....0..w..!/`...J.BS2u.Fn...l..~.R(x...sw|3...S.!';L0j5cH..X..\.P......6n...q.$..'.R..g..3..j..j)...S.....#.Q.|q....7...(..al2SSo4?.Z=.PK........Hy6P..].m..._,......META-INF/LICENSE.txt.Z[s...~...r.Si...4i...CiD.n&..%. ..... ...=....dw.VM.5I........E/...u.:.^<..?.u.t....B.Mv........<.h7...W....\.6sc.....z....~Z...J..Y]-.7..xws'>...qw}{ws..-~].SW..........j..T.;=.rn..k3.'....M#Z%;1.I.e['dW..t.....bt..V..Tc._.^.>[i7X...{!..pKU..A.U.B......N..>hx.c...X/cO.+M..z....w..P.... .8.......s+....l....v[z..!S@me#.I..c..$.%I.Z...Y/...^A..o....i.!....R....cW.....$....a.rx.xg,...7.1....G3/eFGq.B_.R.W...Y..*.;.w!.#J.N.....,`E+;.U.<....+V..N......$.e.....\h...v.GI......%....../i;..a..A....:...d...A.Fu`.R.+'.3=...6.L\.Z...].^...&...Q..y|x.........[...<..'...$..[.)....GZoU.....kM...[...p4IY...........3.ht.qw.3....r.!8....#A^.?P....v..;..Q.|.l...p.......cl(?jkZ.........Q.9|R

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\DISCLAIMER

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2765
                                                                                                                                                                        Entropy (8bit):4.991723270354866
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:eYeKDiBt09PXNQ3acb4TTBmZEGIRS1pp4D2L/hDV+TwGYCTssZ8Vv9sdZjs3cpb6:eMDinKNHBaPHD/pGYmZ8V/cRqnP
                                                                                                                                                                        MD5:BF091AAB038F6CF58CD341766B1D3D8D
                                                                                                                                                                        SHA1:CE9725038A18D4CDDB7FB99731B13DA810023ACF
                                                                                                                                                                        SHA-256:D83D865ECF5CDBC8FE11C279A7F00876027F0F1EB8B521C76075480496DB4FFB
                                                                                                                                                                        SHA-512:336EE161E5729DBF7C814D2DB4D89F3D6F0139C59A0C911820999C3971D7838CFCE19F76C90F625A35B8FF81CC3FBBCDA5F0C54BF964CCF8A73D0E86CE9B3F8E
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:The copyrights in this software and any visual or audio work distributed with.the software belong to Azul Systems, Inc. and those included in all other notice.files either listed in the readme file or contained in any other included notice.files with this distribution. All rights are reserved. Installation of this.software and any Azul software bundled with or derived from this software is.licensed only in accordance with these terms...Provided you have not received the software directly from Azul and have already.agreed to the terms of a separate license agreement, by installing, using or.distributing this software you, on your own behalf and on behalf of your.employer or principal, agree to be bound by these terms. If you do not agree to.any of these terms, you may not use, copy, transmit, distribute nor install this.software...The software is developed and owned by Azul and/or any of its affiliates,.subsidiaries or respective suppliers and licensors. The software also includes.certa

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\Welcome.html

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:HTML document, ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1213
                                                                                                                                                                        Entropy (8bit):4.759863194924637
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:0pQS8aYS8p38VRxjm1cmq4J72wSLSn2J7H57U2/Cx:0yVZVp38ZmJqk2wySnuH5Ix
                                                                                                                                                                        MD5:C18C8F6AC68549CAB644AE138DBFBB5D
                                                                                                                                                                        SHA1:27AA512E7ECE045981ED71797E0CB0FD39F8CADB
                                                                                                                                                                        SHA-256:DE25E870830A4AE74AFFC8C811F6000798C2BD40036EF9D38DCEF8D475435C03
                                                                                                                                                                        SHA-512:CB0344844214A0DBAC035565152F199F18A658CB1C045C26BE6C40C1B899389DA3F6123B43443E1D8BCF49B432DD093449F3BFECBAC26FDB0A246DC14E6C88CA
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:<!doctype html>.<html>. <head>. <title>. Welcome to Azul Zulu Builds of OpenJDK, the open Java(TM) platform from Azul.. </title>. </head>. <body>. <h2>Welcome to Azul Zulu Builds of OpenJDK, the open Java<sup><small>&trade;</small></sup> platform from Azul<sup><small>&reg;</small></sup></h2>. <p>The Azul Zulu environment includes the Java&trade; runtime, compiler, and tools. It provides complete runtime support for Java applications.. <p>To read more about Azul products visit <a href="https://www.azul.com/products/?r=zulu">Azul website</a>.</p>. <h3>Reference Documentation</h3>. <p>See the <a href="https://docs.azul.com/core/?r=zulu">Azul Zulu Builds of OpenJDK documentation</a> for more information on Azul Zulu installation, operation, and troubleshooting.. <p>See the <a href="https://docs.azul.com/core/zulu-openjdk/release-notes.html?r=zulu">Release Notes</a> for release details on Azul Zulu versions and syst

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\WinFallbackLookup.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):27680
                                                                                                                                                                        Entropy (8bit):6.455050188047801
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:JpfmwJjzpZHhp6oAv7SxU8OuLXM+w/GlIYidvjl0cwPxh8E9VF0NyGA2G:JBmwJT6XTGrvunYiJwPxWEk2
                                                                                                                                                                        MD5:8783279995F13A1A51BE5731FA7A7637
                                                                                                                                                                        SHA1:E667DC3189290CB1989F41E6B4512152E649EF47
                                                                                                                                                                        SHA-256:279467C2B1BC205CC98666E1A40D7C37B3FB78FB12A13EC3F9F1967446EB50AC
                                                                                                                                                                        SHA-512:399BA0BF179CAA1B24E82E0928BA1839DA628BF67788332023ED4AD97B810FA33AFA329A919E35FE3409E4927A0A57CA8619426907EB1AED42ED1B851849D0BA
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........g....j...j...j..~....j.sk...j.1vk...j...k...j.so...j.sn...j.si...j.msn...j.msj...j.ms....j.msh...j.Rich..j.........PE..d....emG.........." ....."..........8(...............................................$....`..........................................H..P....I..x....p.......`.......D.. (...........A..p...........................`B..8............@..`............................text...X!.......".................. ..`.rdata.......@.......&..............@..@.data...x....P.......6..............@....pdata.......`.......8..............@..@.rsrc........p.......>..............@..@.reloc...............B..............@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20960
                                                                                                                                                                        Entropy (8bit):4.464634165951718
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:POiWBhWnWYnO/VWQ4SWSUPKUH0jpC52qnajc5x8D:P5WBhWXU8H0Nlg5uD
                                                                                                                                                                        MD5:39852D24ACF76CF0B3A427F46663EFDF
                                                                                                                                                                        SHA1:92B9730C276C6F2A46E583FC815374C823E6098B
                                                                                                                                                                        SHA-256:191E08DEA0AD5AC02E7E84669D9FFFA5AA67DC696E36077C5FA20D81C80B6A56
                                                                                                                                                                        SHA-512:E6F0898871B769244818D93117FE3CB82CC8F12BB24D6B3406FFCAA2A26F0B5754246B5C739E9CBCF07CB94AABBA2FD934E7054607B4086B2F4C5592607E8385
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Joe Sandbox View:
                                                                                                                                                                        • Filename: Thunderstore Mod Manager - Installer.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: zulu8.74.0.17-ca-jdk8.0.392-win_x64.msi, Detection: malicious, Browse
                                                                                                                                                                        • Filename: main.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: 6Passwords.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: Diavlo.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: Diavlo.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: GetFans.exe, Detection: malicious, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...I+[4.........." .........0...............................................@.......v....`A........................................p...,............0...............0...!..............p............................................................................rdata..t...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-console-l1-2-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.499859094875864
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:Q6WBhWvWYnO/VWQ4uWp0QLCamylqnajP3Tx7:DWBhWfUJQ3Jllz3V7
                                                                                                                                                                        MD5:F33EC623AA4A2BD4C004D3BEFE0BDD08
                                                                                                                                                                        SHA1:79A3C89D842D502F989FB5A3EAEABCCB0ABAE8D2
                                                                                                                                                                        SHA-256:9E04918D9E751DBC56D0251D3ADA573381B469A012599554D72AA4AFFDA9658A
                                                                                                                                                                        SHA-512:BE24A3CB876D617F8054FD49DD815D89473B053BAB175373169A1CB0F016CCD05A718DA9A8C29DE66690F02BDD60782222928ECD2E24AA5128573E67356E5AF2
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Joe Sandbox View:
                                                                                                                                                                        • Filename: Thunderstore Mod Manager - Installer.exe, Detection: malicious, Browse
                                                                                                                                                                        • Filename: zulu8.74.0.17-ca-jdk8.0.392-win_x64.msi, Detection: malicious, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-datetime-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.308950571249328
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:CWBhWg8WYnO/VWQ4eWQLoQLCamylqnajP3Txv4:CWBhWgqU7oQ3Jllz3Vv4
                                                                                                                                                                        MD5:B71C18F8966CEAD654800FF402C6520F
                                                                                                                                                                        SHA1:A6F658EA85AD754CF571F7B67F3360D5417F94BD
                                                                                                                                                                        SHA-256:A94B80A5111AABEFB1309609ABDD300BB626D861CD8E0938B9735AB711A43C22
                                                                                                                                                                        SHA-512:17867AAA57542C1CD989CA3000F3D93BBB959EB5A69100C70C694BDE10DB8F8422D3E86E1A5FC0848677E4343C424013CDF496B8BB685F8875C3330271242369
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....V..........." .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..X...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-debug-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.3141406387795795
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:6oWBhW6WYnO/VWQ4eW4IUTyvQLCamylqnajP3TxfMuS:6oWBhWQUVGvQ3Jllz3V/
                                                                                                                                                                        MD5:A998282826D6091984D7D5F0BF476A31
                                                                                                                                                                        SHA1:B958281AD7B861E0ADCBEB0033932057082AE4FC
                                                                                                                                                                        SHA-256:263E038363527B7BED05110F37F7E5B95F82AAB9C0280C9C522CF7BFCE10FD7D
                                                                                                                                                                        SHA-512:BA46B6E7649CDED62E9C097C29D42A8EA3DA52109D285B8ED7AAEA9A93C203EFCFD856D25CEE9BD825C0835B37A1D7A37A8AE55E0E10DC237F0DA7013056CF5D
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..d...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-errorhandling-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.3577541576032655
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:IcmxD3mTWBhWnWYnO/VWQ4eWFsz2cA5E8qnajTwgYWmlgF:BVTWBhWXUT2x5E8lvwzWC
                                                                                                                                                                        MD5:C148A26D3D9D39777DABE28DC08CEE60
                                                                                                                                                                        SHA1:4F7537BA8CEE5FF774F8D7C3FE4174FC512B70D4
                                                                                                                                                                        SHA-256:085968D938EA924827C4740697713674850218A8FE91DD9982E93B0EFFACC820
                                                                                                                                                                        SHA-512:6689DFB19898F420632295FB9982668919011784278DC6840716C91CA8DCB434057096640A15FAB7A93EDF722530451DA274D02BB344CD429388412AD11A79E0
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...*}............" .........0...............................................@......^.....`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-fibers-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.2925791247553935
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:bsWBhWxWYnO/VWQ4SWGvYa/uuOiqnajBhda:IWBhWxU6Tillhda
                                                                                                                                                                        MD5:EE3F0D24E7E32E661AC407C60B84B7DB
                                                                                                                                                                        SHA1:09107FB9ACE59A1AC3A8B8DBB4FF00B91182929B
                                                                                                                                                                        SHA-256:C86EBC9F48E2DB659E80D9C7AD5F29E6B6C850EEA58813C041BAEFF496AE4F18
                                                                                                                                                                        SHA-512:C3FBBA7FAD4FE03A3A763AD86681655F1BB04D6DD9F64C0083AAA0262CE18F82970365532337825D44EC92B3D79B3212817B25F188537A3771807AD17E7F8D05
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....]S.........." .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..0...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25032
                                                                                                                                                                        Entropy (8bit):4.625315336980151
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:7ESaNYPvVX8rFTs4WBhWPWYnO/VWQ4SW3WWd/uuOiqnajBhu:fPvVXqWBhW/UxWKillhu
                                                                                                                                                                        MD5:E933CDD91FD5725873F57532F262F815
                                                                                                                                                                        SHA1:E48F6F301A03BEB5E57A0727A09E7C28A68E19F3
                                                                                                                                                                        SHA-256:120C3AFED9CE2A981C61208757FCA0665F43926751EC8D0D13E10EF1096A0D48
                                                                                                                                                                        SHA-512:D1C598F964A98A30C6A4926F6B19F8213884224861C36ABA839F5A91ACEFAA8C0E8B3D7CD555103885520432A343B489044E4AD3A1C33D77CF3FDA4493EB48FB
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........@...............................................P......=.....`A........................................p................@...............@...!..............p............................................................................rdata..L........ ..................@..@.data........0......................@....rsrc........@.......0..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l1-2-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.3274989743669225
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:NKtnWBhWzWYnO/VWQ4eWrb/QLCamylqnajP3Tx:N6nWBhWzUOQ3Jllz3V
                                                                                                                                                                        MD5:B59D773B0848785A76BABA82D3F775FA
                                                                                                                                                                        SHA1:1B8DCD7F0E2AB0BA9BA302AA4E9C4BFA8DA74A82
                                                                                                                                                                        SHA-256:0DC1F695BEFDDB8EE52A308801410F2F1D115FC70668131075C2DBCFA0B6F9A0
                                                                                                                                                                        SHA-512:CBD52ED8A7471187D74367AA03BF097D9EAC3E0D6DC64BAF835744A09DA0B050537EA6092DCB8B1E0365427E7F27315BE2145C6F853EF936755AD07EF17D4A26
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...LlF..........." .........0...............................................@.......-....`A........................................p...L............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-file-l2-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.415878755176088
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:341WBhWmWYnO/VWQ4SWkHK/uuOiqnajBp:o1WBhWMUzillp
                                                                                                                                                                        MD5:4C9BF992AE40C7460A029B1046A7FB5E
                                                                                                                                                                        SHA1:79E13947AF1D603C964CCE3B225306CADFF4058B
                                                                                                                                                                        SHA-256:18655793B4D489F769327E3C8710ACED6B763C7873B6A8DC5AE6F28D228647F4
                                                                                                                                                                        SHA-512:C36D455AC79A73758F6090977C204764A88E929E8EAA7CE27A9C9920451C014E84AE98BEB447E8345A8FA186B8C668B076C0ED27047A0E23AD2EEAF2CBC3A8D8
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........0...............................................@.......}....`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-handle-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.330715556337526
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:T9vBWBhWKWYnO/VWQ4SW9L91fzcA5E8qnajTwggW:TDWBhWgUE99x5E8lvwbW
                                                                                                                                                                        MD5:F90E3B45C7942E3E30ECF1505253B289
                                                                                                                                                                        SHA1:83BEEC2358DE70268BC2E26ED0A1290AAEF93F94
                                                                                                                                                                        SHA-256:7E45A1B997331F4D038F847F205904D6EC703DF7A8C5C660435697E318CED8FC
                                                                                                                                                                        SHA-512:676450EB70A5CEAE1820A978412EF3DF746F14790322122B2DE3E18EF013802C27867AD315950FC9B711E66F36628B062E57A7EC44D1DDC06F443655383CDC14
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...v............." .........0...............................................@......."....`A........................................p...`............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-heap-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.448759295772417
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:8xl1WBhWxWYnO/VWQ4eWmxXocTvcpQLCamylqnajP3TxKp:8xl1WBhWxUrXmQ3Jllz3VK
                                                                                                                                                                        MD5:F2C267153DB0182CCA23038FC1CBF16A
                                                                                                                                                                        SHA1:10D701AB952CACBF802615B0B458BC4D1A629042
                                                                                                                                                                        SHA-256:DD1E8C77002685629C5CD569EE17F9AA2BCB2E59D41B76AE5BC751CAE26D75BF
                                                                                                                                                                        SHA-512:84F3C587BE5A91752EEFFD4F8E5DED74877930515FD9F4D48021B0F22A32FEB3A4DDB9A0F14748E817F8C648BD307942EC026FC67EEA922247499B5F412B4914
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...Ml............" .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..L...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-interlocked-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.370508672625055
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:lBwGRWBhWVWYnO/VWQ4eWcfWPfQLCamylqnajP3TxLyH:TwGRWBhWFUfmQ3Jllz3VL
                                                                                                                                                                        MD5:5F2E21C4F0BE6A9E15C8DDC2ECDD7089
                                                                                                                                                                        SHA1:1282B65A9B7276679366FE88C55FAB442C0CC3A1
                                                                                                                                                                        SHA-256:EA60D03A35EF2C50306DBBD1AD408C714B1548035C615359AF5A7CE8C0BD14A8
                                                                                                                                                                        SHA-512:A32C5ED72D4BFDA60B2259E5982E42A79040225A4877246F3A645E05BFB8BE395555FA22B2F0ED884F5FD82A8021BBA85637727544C9ADBB3A8C97B80E7A30F2
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.../............." .........0...............................................@......(&....`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-libraryloader-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.597549558090745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:6pTvuBL3BBLUsWBhW5WYnO/VWQ4eWiOGCJky1qnajgaGX:CTvuBL3BCsWBhW5UMvR1lsJ
                                                                                                                                                                        MD5:7B828554DAA24F54275B81DFA54E0C62
                                                                                                                                                                        SHA1:03FA109C21C0DC2E847117DE133A68C6CD891555
                                                                                                                                                                        SHA-256:929298566BA01D1C3E64356A1F8370C1E97F0599F56F823C508CDE9AE17F130B
                                                                                                                                                                        SHA-512:1F4F030D4A1CD3F98BA628DEE873978B3797A4A7DB66615FC484270A2B3FA68F231D9D12142840CFB52D7592C1AE7AF6E35AE7A410878774A9FB199D7A647985
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d......X.........." .........0...............................................@......v.....`A........................................p................0...............0...!..............p............................................................................rdata..`...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-localization-l1-2-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):5.1119891748993025
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:snaOMw3zdp3bwjGzue9/0jCRrndbrWBhWZUnR1lsZ:dOMwBprwjGzue9/0jCRrndbi6y6
                                                                                                                                                                        MD5:9D8E7A90DD0D54B7CCDE435B977EE46D
                                                                                                                                                                        SHA1:15CD12089C63F4147648856B16193CF014E6764F
                                                                                                                                                                        SHA-256:DC570708327C4C8419D4CCED2A162D7CA112A168301134DD1FB5E2040EEE45B6
                                                                                                                                                                        SHA-512:339FE195602355BCE26A2526613A212271E7F8C7518D591B9E3C795C154D93B29B8C524B2C3678C799D0EA0101EABEA918564E49DEF0B915AF0619E975F1C34B
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...0..........." .........0...............................................@......?.....`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-memory-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.47889633663313
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:AcWBhWfWYnO/VWQ4SW35VXC/uuOiqnajBirNin:AcWBhWPUmilliYn
                                                                                                                                                                        MD5:E56F2D05D147ADD31D6F89BCD1F008CA
                                                                                                                                                                        SHA1:DDE258C7B42B17363BCA53B5554A5E13EA056F80
                                                                                                                                                                        SHA-256:8A4B66CEA7B474506FBDBE4C45E78923645F5F0A13F7F4E43449649F50EA38B8
                                                                                                                                                                        SHA-512:9FD1AFD32FDA24A92AF4BB24661F7CF791CC6686B65F13DAE97C56A1E83B25F0F2710C77167E6A9A491001877A0712C9A011833BB6026E08AE536744F0B40905
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...?YRy.........." .........0...............................................@......+.....`A........................................p...l............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-namedpipe-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.413709400148906
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:swWBhWiWYnO/VWQ4eWjSlCJky1qnajgajMK2m:3WBhWYUwR1lscM5m
                                                                                                                                                                        MD5:F08CD348AC935AC60436AC4CB1836203
                                                                                                                                                                        SHA1:FD0608E704677FD4733296C2577647057541F392
                                                                                                                                                                        SHA-256:E8382A73730C2F7F873B40E2FCC5E1CD4847E7CB42FEF3C76BEA183AF5891D65
                                                                                                                                                                        SHA-512:595E08301A0CBFD4F943EA3555DBCE27D37B16C340B6972B054097B889285BBF942CC0314797A714A2E393956075C5DD95A5D2C2D4BDE143B5F5387793E7A8DE
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....&*.........." .........0...............................................@......T.....`A........................................p................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processenvironment-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.616290819717223
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:8FpWBhWCQWYnO/VWQ4SW5u6f/uuOiqnajByW:8FpWBhWZUVxillyW
                                                                                                                                                                        MD5:88916EED5164CB8884EBBA842CD540CC
                                                                                                                                                                        SHA1:F15674FBFEF5B09CC02C924336554C17B715DB00
                                                                                                                                                                        SHA-256:9C1AFC7CD0B0E0D136D09B65DD082ACE136FC306F8F116F3D13956211EC146C8
                                                                                                                                                                        SHA-512:2929C3AB67B364A7CAF6C8FE1A42309917A0620F36C5D7194CA8A41AB7703A564DED32A4F9291A4F8FDD7D3A35383715FD8BEF10FF603554B95519D109469617
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Antivirus:
                                                                                                                                                                        • Antivirus: ReversingLabs, Detection: 0%
                                                                                                                                                                        • Antivirus: Virustotal, Detection: 0%, Browse
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...\W..........." .........0...............................................@............`A........................................p...H............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.978526113519687
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:YMck1JzX9cKSIUWBhWHWYnO/VWQ4SWzgG/uuOiqnajBLP:dck1JzNcKSIUWBhW3Upillb
                                                                                                                                                                        MD5:42E99C89E241F21BF2FB20F3FF477EBA
                                                                                                                                                                        SHA1:E3B0012CD6D74F0AC2BF0C34997A87333C895834
                                                                                                                                                                        SHA-256:6E5BD110A2F4DC345B68E9A8FB081783586C8C25F46027C58443ADE2D3E1BF01
                                                                                                                                                                        SHA-512:8EED3B21695CCCAE0DBF2DB844EFA11AD4957CD7BCD6C8AB7CFD4F0653BBACFD6BEDD82AC27C3995F6418AE38ED0B8D46AFA0BDFC627C16619AAB775C5F8DA16
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....@..........." .........0...............................................@.......(....`A........................................p................0...............0...!..............p............................................................................rdata..4...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-processthreads-l1-1-1.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.517532594497108
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:BG+DfIe2WBhWWWYnO/VWQ4eWJAkWQLCamylqnajP3TxWXFh:BLDfIe2WBhW8UuWQ3Jllz3VSz
                                                                                                                                                                        MD5:D399C926466F044F183FAA723BA59120
                                                                                                                                                                        SHA1:A9534B4910888D70EEFBA6FCC3376F2549CB4A05
                                                                                                                                                                        SHA-256:19B018BE16AFE143FB107EF1DD5B8E6C6CB45966806EB3D31EC09FF0DC2B70D1
                                                                                                                                                                        SHA-512:FC55F4CFE7C6C63E0720971D920C5C6EAD4DB74A671F7BB8DC830AA87CB54459A62E974456875BDFDA449D82A0ACB368E3B6C2CC20C32B1B407E8DE7CC532057
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d....I..........." .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata..,...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-profile-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20960
                                                                                                                                                                        Entropy (8bit):4.2906497170883435
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:vXRWBhWfWYnO/VWQ4SW9FSuUgxfzfqnaj/fc8j:/RWBhWPUZIrlzcK
                                                                                                                                                                        MD5:7B746CDA44A5773455C455690BA26A4F
                                                                                                                                                                        SHA1:D6FF8A5AC6C71E0B037236FAD32F9BBECFC68AEC
                                                                                                                                                                        SHA-256:CC3C609193F2E99F80A6A21064D10C5C591101E386338879326775CCDD77DCB6
                                                                                                                                                                        SHA-512:25FD04FACB3DDABBCB0265CD7A306D6C159AC6419A3E2FF4DE7BB9FE41EB9A1E3AFECEA6558771B9E4B3F912227DDA65021822FBE1AB52D7DCF6CD115BEA84F3
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...ve............" .........0...............................................@............`A........................................p................0...............0...!..............p............................................................................rdata.. ...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-rtlsupport-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.45718212550212
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:/GeVGWBhW0WYnO/VWQ4eWYAz2cA5E8qnajTwdo/:/GeVGWBhWiUTx5E8lvw+
                                                                                                                                                                        MD5:D6FC6C9DA69334221C5438F5C7444336
                                                                                                                                                                        SHA1:AC385FEE49C6A4F7FF918FA93EF3324E71943505
                                                                                                                                                                        SHA-256:BCB9A6DD2CC0CAAA700D95FA3AF5163A8246388C2EFEFBBC4CF6E1FE2687C72E
                                                                                                                                                                        SHA-512:646D23590974ACF8EA523018B97D994DF4D760500C5BBDDC9D6BCBB5C0FC5665B82B40B49B7636050B83269AEA4FA802B3BE016A02403FE189CBE72FC1DE0ED5
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d....t............" .........0...............................................@.......l....`A........................................p................0...............0...!..............p............................................................................rdata..`...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-string-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.374106462638138
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:X0+yMvfWBhWiWYnO/VWQ4eWQIvQLCamylqnajP3Txv:3yMvfWBhWYUIvQ3Jllz3V
                                                                                                                                                                        MD5:82FA7C54D034123805B57C96A5BCED7F
                                                                                                                                                                        SHA1:BBC6EBFFBF21996F187345B7E28B9DFECA31829E
                                                                                                                                                                        SHA-256:9B071B842445A5DD90148445AF148D024674085927D079864F7893807FD1B305
                                                                                                                                                                        SHA-512:715B2E794B2C2AF5CDEC22653D569ED33CF91BC092FAE49449111CF7450385D1E5A1C713FEAC231BCEDFA12FAB7AF57005C53F7721330400AEF7C17DABDDAFFF
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...!............." .........0...............................................@......G.....`A........................................p................0...............0...!..............p............................................................................rdata..<...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.886466672903929
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:1Xwidv3V0dfpkXc0vVatYWBhWMUdRillKI:dHdv3VqpkXc0vVaN7YVI
                                                                                                                                                                        MD5:6DBC816B9AEF0F91B57BFC9A3AB18972
                                                                                                                                                                        SHA1:E88CB7A5955630D29D24D2F05F540403ED9498E3
                                                                                                                                                                        SHA-256:A981A24C9231E0230031BB1CBA8F2509565ECE1F53EBDB4D0A50EFD722AB4330
                                                                                                                                                                        SHA-512:BFB4CFC89EB8B1409A826E59699F2C3F4AF765F114281BB30026DAD02D2353CA95EC3B544F522833E657BE4CF69B1070DC9BD3767B7A6014C2CBACBA38C023E3
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....\..........." .........0...............................................@............`A........................................p...X............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-synch-l1-2-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20960
                                                                                                                                                                        Entropy (8bit):4.560858953494114
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:ttZ37WBhWlcWYnO/VWQ4eWYRt3VjpC52qnajc5xI6:ttZ37WBhWlKUNNlg5
                                                                                                                                                                        MD5:DA5D400ADE0D2288B17DCC11ED339E25
                                                                                                                                                                        SHA1:F4A340079477A2C91E091968FE2D252CB01EEAE2
                                                                                                                                                                        SHA-256:69DD52CAFFE1EA6E0900FB9604A57A87618F8468DC68CBB2A9BCEFD1265F3F49
                                                                                                                                                                        SHA-512:3BFA3B4F93A0A68E1C0AC17C74C91C0A01B779961AF4811756223FD1F47A86CE1F3EBD7EE4190A2EDB84A50B1B444318965CAD3A74D1ED4ACFA014D0F5BBE34A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................" .........0...............................................@............`A........................................p...x............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-sysinfo-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.611270780558929
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:7+gdKIMFsmSTWBhW7WYnO/VWQ4uWrJCJky1qnajgaY+:/5NTWBhWbUlR1lsX+
                                                                                                                                                                        MD5:6971C41C21EB35668520F0BB949B3742
                                                                                                                                                                        SHA1:5DE3A45C15AFB7C2038DC7FC0D29275B7FB90A36
                                                                                                                                                                        SHA-256:3513CFFA44C88EC13D6A8C9B63E5D505A131B46746D13EE654144F08A96F20C3
                                                                                                                                                                        SHA-512:DD9914F547D5C34EFD0F2879EBFFD2D3EC9DAF7465DFFB7644AE0F4BC05F9F75DF8B49CA8D692A8DE7A92854A1B44C81E6F1B15EE691BF1995A1DA76D3C3B82A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...y.'..........." .........0...............................................@............`A........................................p...H............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-timezone-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.550138189146297
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:CnWBhW+WYnO/VWQ4eWsrSgaLQLCamylqnajP3TxU:CnWBhWkUXSgaLQ3Jllz3VU
                                                                                                                                                                        MD5:EA5F768B9A1664884AE4AE62CEC90678
                                                                                                                                                                        SHA1:AE08E80431DA7F4E8F1E5457C255CC360EF1CAC0
                                                                                                                                                                        SHA-256:24F4530DEBF2161E0D0256F923B836AECCC3278A6FF2C9400E415600276B5A6D
                                                                                                                                                                        SHA-512:411DB31E994EBBC69971972E45D6E51186D8F8790E8C67660B6A846E48A5A5C53A113916A5A15D14C33D8C88037D7F252135E699CB526C4BB3B5ABD2E2DFEE7C
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...C..2.........." .........0...............................................@......n~....`A........................................p...H............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-core-util-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.322357725639786
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:MGWBhW4WYnO/VWQ4eWzqpQLCamylqnajP3Tx:MGWBhWmUjpQ3Jllz3V
                                                                                                                                                                        MD5:7FCF9A2588C1372D6104333A4CFC4603
                                                                                                                                                                        SHA1:8C1EA131A30178C4F250D0CEF254557FDED0D132
                                                                                                                                                                        SHA-256:2E1CC12F93837A4E1FE95E0C640B147BE29793705628F9C6CD91A0B5C0C50262
                                                                                                                                                                        SHA-512:2FB84DCEDFEDDBF41109DBADB59EDE86CEEB168DB08955DBF9395FAB7A18941CC7313BCB47CB31CFD2978540E9BEED346044E6C5B5DEFA61F59B9B78535E784B
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...9.U..........." .........0...............................................@...........`A........................................p...<............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-conio-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.639685067999997
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:MWBhWRWYnO/VWQ4eWO+4CJky1qnajga3Y:MWBhWRUIR1lsU
                                                                                                                                                                        MD5:A5DAF7D2DD7D447196F5AA65C3B48755
                                                                                                                                                                        SHA1:847C75D74BE334298A8CDB414905CAD66BBF0B49
                                                                                                                                                                        SHA-256:1368B9AF85F186A2B35E2A744EB2103555234B32FDFBFDB94C0F5E525C588E46
                                                                                                                                                                        SHA-512:32B1463DEE8CBC4CCB5296B22281E014F432887EEC07773E41477ECEBBD1FB85087FF6ADC6B7AC68D5FEE818F3289DACEB2817881BDBE2838CC104D2166A9607
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...L..u.........." .........0...............................................@......B.....`A........................................P................0...............0...!..............p............................................................................rdata..@...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-convert-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25032
                                                                                                                                                                        Entropy (8bit):4.643248320949739
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:bjQ/w8u4cyZWBhWYWYnO/VWQ4SWcZOr/uuOiqnajBQ:TyZWBhWGUQgillQ
                                                                                                                                                                        MD5:CF95A8F66313283F046BA9E6E5CDBBA4
                                                                                                                                                                        SHA1:B25C686FCC6729A88A8776CDB75FF21CBCEB1C5D
                                                                                                                                                                        SHA-256:2CCB01B62188DDC051A582C128BF880608111C602534E487EC09A7CF67C22D17
                                                                                                                                                                        SHA-512:59F5901E513ACEEEB819C73C5B9FE2504E80AF28DF54DB19775D7C0E0481F14C21CE38E6DB207672CC10FACFDD217638829AF2D3F0F85A0A413D10E3A81DAE9C
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...T.j..........." .........@...............................................P......^.....`A........................................P................@...............@...!..............p............................................................................rdata..>........ ..................@..@.data........0......................@....rsrc........@.......0..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-environment-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.448747166329223
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:cObWBhWoOWYnO/VWQ4eWUbcA5E8qnajTwv:nWBhWhU3x5E8lvw
                                                                                                                                                                        MD5:71407C52FF12B113CC0498FDD42DB8DC
                                                                                                                                                                        SHA1:F0C6A3C1308177B090B2A94FEE90156E1DF6BB9B
                                                                                                                                                                        SHA-256:5A2AE5B270C1EAF467878E7F5DBDC689B71914BDF30293D7D46C01D9DD11BDD4
                                                                                                                                                                        SHA-512:B9BB29D76A144C10B234835B6006637C84103ABEB8F5DB19991F3AB2BAAABE3EA3FC1A87132263D097ADDD01AFCAD08E77C9834DCCD4C6723B3CA204F50AAC1E
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...U..0.........." .........0...............................................@......Hg....`A........................................P..."............0...............0...!..............p............................................................................rdata..r...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-filesystem-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.949801452507702
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:vSnWlC0i5ChWBhWyWYnO/VWQ4yWL8xT/FMg/uuOiqnajB0:vSnWm5ChWBhWoUqwT/Iill0
                                                                                                                                                                        MD5:BBBF361746440219A3F7933CED5234BB
                                                                                                                                                                        SHA1:1E3EDEDAA28E41F51E903C2CA66E7BD048FBAEE7
                                                                                                                                                                        SHA-256:42A99227775E85CA8C197811A86AAD0E2AF496BD21623E4C9A2DD747571C8990
                                                                                                                                                                        SHA-512:F6681875BC02903676CD3EA3303920202C563A1A6E82DD687ED9BD0FAFE92C9ABBA4A6DF3E9C93F2BB0DA9DCCF0ABB4543B6A5E5F0C92FA06E809B30B84085AA
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...0e.%.........." .........0...............................................@.......e....`A........................................P................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-heap-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.582824387884213
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:DFY17aFBR8WBhWUWYnO/VWQ4SWrJkn/uuOiqnajBc:DQZWBhWCUVcillc
                                                                                                                                                                        MD5:BACC491EB1DEE4786ADE841E7B480CD8
                                                                                                                                                                        SHA1:84CB8F770CDF873415403EDF48E625514AECAD02
                                                                                                                                                                        SHA-256:43C80120970BE1EFED3EA60BF7AA37B46FCCE946B94FB11CA6E3FFFF2F16BB29
                                                                                                                                                                        SHA-512:7832912F38CD6BA145AF57548C2A1D4DA3BED9392A0AB3A0FAFFE18FAB40087E1D74676E2AF004627A37F7E079B9146DCCF7AAA04E360A88443196FEDE4CCADC
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d..."............." .........0...............................................@............`A........................................P................0...............0...!..............p............................................................................rdata..f...........................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-locale-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.548467238776487
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:w8mWBhWvWYnO/VWQ4eWOS8IQLCamylqnajP3Tx:whWBhWfU0Q3Jllz3V
                                                                                                                                                                        MD5:FB992BBB73E0127C70D075F81E52AAF9
                                                                                                                                                                        SHA1:E9D326D436E2E55C521261AD9A5B73D2E998F644
                                                                                                                                                                        SHA-256:6011ECE89F4833DCB4CEFB02EA366B828725205EAE6F25AB704B76FD9E5D86EB
                                                                                                                                                                        SHA-512:F568898A660C3850998B71A854FB5B8FFEE59F02EBE7BC8C12AD9BC68F5472A0C812CF0A8EBC096FCC462E941A86A2A46619D4F03030E7AB69A0E4A9E7B1E0B6
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........0...............................................@............`A........................................P...e............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-math-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):29120
                                                                                                                                                                        Entropy (8bit):4.948896373681597
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:sQM4Oe59Ckb1hgmLtWBhWAUFQ3Jllz3Vu3:LMq59Bb1jgrhrs
                                                                                                                                                                        MD5:0936C89E36A8BAC313DE187E50C61078
                                                                                                                                                                        SHA1:7F0E64A66301E1926FA9ACDC36AD728958CE6D78
                                                                                                                                                                        SHA-256:5BA8F9C2842990CCDB447FC6D22023103B03F5387F341D3375809F060B5BB4EF
                                                                                                                                                                        SHA-512:A72FCADC55D12C97770F1222BB3B605B7D58157F6F55814D900FE0F1B5FF8075F84914C7AC66D4B0E59EF41C01504A35C391BFB182E2E9019D152037EF4EC20F
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d....KZ..........." .........P...............................................`......8X....`A........................................P....%...........P...............P...!..............p............................................................................rdata...&.......0..................@..@.data........@......................@....rsrc........P.......@..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-multibyte-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):29128
                                                                                                                                                                        Entropy (8bit):4.764864996734757
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:6A/kPLPmIHJI6/CpG3t2G3t4odXLtWBhWUUTNQ3Jllz3VW:R/kjPmIHJI6OXYQr4
                                                                                                                                                                        MD5:2E75BA5BC87963D4244AE9BAC3457466
                                                                                                                                                                        SHA1:A624F1EB6AE3B7EE01FEE889E65E0D7A4253FFA8
                                                                                                                                                                        SHA-256:77328A716589BE3C3BCF1F3D3134B4AD050380F504DBC1A3FA076380D77ED0F8
                                                                                                                                                                        SHA-512:C3AB9BD515A52AA19767F0CBE5EFDC4A8D145BDA959AE13EB3E587C1C20D05C9B3563DC2665699B597D34DA0593F8A324D197C1407ABAAD8118D0D599F5279FC
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........P...............................................`......j.....`A........................................P.... ...........P...............P...!..............p............................................................................rdata..D".......0..................@..@.data........@......................@....rsrc........P.......@..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-private-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):74184
                                                                                                                                                                        Entropy (8bit):5.122216890942943
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:GLraHgDe5c4bFe2JyhcvxXWpD7d3334BkZnjPu7eEg:0aHgDe5c4bFe2JyhcvxXWpD7d3334Bk9
                                                                                                                                                                        MD5:1514E6309FC716B9D9447ECDE164931A
                                                                                                                                                                        SHA1:FE05F8158FEEB241A5541A627F54D74868B167F4
                                                                                                                                                                        SHA-256:0E2751637BBEB7CCC2556194FA774EA4BCB937EA803FC955C7F10BE0BF38CC77
                                                                                                                                                                        SHA-512:09E3047B56C43413593D2EC4EE30E273D63EC25F049B3C345371262268B5B05AB3C62EB3CE52A37BDD6C6AE86A0A8538F23D9E6498F7FEA669B17164F8B54272
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....[..........." .................................................................u....`A........................................P....................................!..............p............................................................................rdata..............................@..@.data...............................@....rsrc...............................@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-process-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20936
                                                                                                                                                                        Entropy (8bit):4.612081090191734
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:6YDdyqjd75WBhWKGWYnO/VWQ4eWiZQLCamylqnajP3Tx62N:6QQYWBhWKsUbQ3Jllz3VHN
                                                                                                                                                                        MD5:437E85738168DD8A2894005B01451001
                                                                                                                                                                        SHA1:49B20FDC8E6287E684AF3877352408BFEA71A624
                                                                                                                                                                        SHA-256:CFC12DD7C1DEABF35C8E0FBE01248171C49555FE2D1BED72C5FDBA2102090870
                                                                                                                                                                        SHA-512:025148A7278C06E20D00FB0287D0168D4C367BEF21EA8334F746B094250E488711CDB5780F8E08EBF501784B151C4BBE8CACA925F7B7268F3324DFD9F49E5612
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....a..........." .........0...............................................@............`A........................................P...x............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-runtime-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25040
                                                                                                                                                                        Entropy (8bit):4.793064487556532
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:E3UW9MPrpJhhf4AN5/Ki9WBhWp5WYnO/VWQ4mWhVvLrMhEqnajKsZ9uhO:qUZr7DWBhWp5UijlGsZp
                                                                                                                                                                        MD5:01380DF01B9E61FC241F82F8FB984C2D
                                                                                                                                                                        SHA1:18F92390B292AF0DB8AAA7C7E6F6AA24463F9B84
                                                                                                                                                                        SHA-256:698FA887C5B994375C9271222E21D0D4C74810E73D377AD898927549FB69DCB3
                                                                                                                                                                        SHA-512:743D45FAE759D8FF3EF862FFA70584696824B86991F262DDC897F6F469FBB4264CF7DA3FE001F33C6305523753D37A7A64874C5010CC7FE63252C53CD96B06F0
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...J..~.........." .........@...............................................P......(.....`A........................................P...4............@...............@...!..............p............................................................................rdata........... ..................@..@.data........0......................@....rsrc........@.......0..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-stdio-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25032
                                                                                                                                                                        Entropy (8bit):5.081534858672226
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:XA2uWYFxEpahfWBhWqWYnO/VWQ4eWcvsBQLCamylqnajP3Txr:XIFVhfWBhWAUIQ3Jllz3Vr
                                                                                                                                                                        MD5:A3F3FFCDE3DD59CC94FB7DBA16715671
                                                                                                                                                                        SHA1:BBF272DAB014D4CDE1A57831A2DAF4FDE03B4884
                                                                                                                                                                        SHA-256:C1541ED4DC6879A136BF532393F7CEFD3C48AD371D2ED9965E7CBD44C87A1137
                                                                                                                                                                        SHA-512:0E323B44B4ED7959C5F6409E565707E6E402382C950D2A0FC18D18F56AB588A49A260C99ECBDA1BDB3778BE131FB71B1B1158D852981E2E86D0B989B05496E02
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........@...............................................P............`A........................................P...a............@...............@...!..............p............................................................................rdata........... ..................@..@.data........0......................@....rsrc........@.......0..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-string-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25032
                                                                                                                                                                        Entropy (8bit):5.076324008887822
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:8ozmT5yguNvZ5VQgx3SbwA71IkF1z9pr:8ozmT5yguNvZ5VQgx3SbwA71IOz9J
                                                                                                                                                                        MD5:535D1195F493F7D92FE9007258494EBC
                                                                                                                                                                        SHA1:1BF95EC546A6C1A8832D9002B7CD01265A1BBDAD
                                                                                                                                                                        SHA-256:4429B8E6707645FB503EBC3BD50CE2A84F559B6A2ED778196835808BDFEC2F48
                                                                                                                                                                        SHA-512:CD47F34032FC59A89DD286115DB2CC2D1918F6ECC069FA37D2295126876FC5C931D6272892FB22DB5EFF1F810DE818E64E6140617786A4D3FB153FD80C107468
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d.....R.........." .........@...............................................P.......}....`A........................................P................@...............@...!..............p............................................................................rdata../........ ..................@..@.data........0......................@....rsrc........@.......0..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-time-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.9966389304384515
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:oNDuWBhWUWYnO/VWQ4uWaaEyCCJky1qnajganQw:zWBhWCUNQR1lsQX
                                                                                                                                                                        MD5:ED44B4AAC3C881A9BC524D15AE3F3944
                                                                                                                                                                        SHA1:A87983D6C714AAC9242BB60037864139863B1848
                                                                                                                                                                        SHA-256:F3E6F692CEC86ADB3985B929345C731469777AEAEB088E3CE070957DF481F924
                                                                                                                                                                        SHA-512:25513C666F228365CE7E092782A92FB7EB144F6B3293F896B08317C36323006BA10F4133BBFDADD2576053C1D6AC0E28CC3AD5798B92EEC34FC8FA36E8D83047
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d................." .........0...............................................@............`A........................................P................0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\api-ms-win-crt-utility-l1-1-0.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):20928
                                                                                                                                                                        Entropy (8bit):4.525945528506043
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:evbjfHQduLWBhWVWYnO/VWQ4uWM6cA5E8qnajTw+CCevq:UfFWBhWFUix5E8lvwDDq
                                                                                                                                                                        MD5:E79464524FBC2C266DA52D0A903D85D3
                                                                                                                                                                        SHA1:6BAD715617992277751A8DDFC180BA291BA75D59
                                                                                                                                                                        SHA-256:6C78D4ABA91877C5BB33E545B6A69A818F377E07FF62E791B804FA5B4D2BCF02
                                                                                                                                                                        SHA-512:DEF71789E238ECD3B2D68DBD204ACC62537AD39CE50A5BF09F320FC8CACC1B3F561822784D006AB2145EAB5AB7BE3F74C1C773FBE814EFA040A1DBB3FFA6744E
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............~v..~v..~v.5.~..~v.5.v..~v.5.r..~v.5....~v.5.t..~v.Rich.~v.................PE..d...F............." .........0...............................................@......a9....`A........................................P...^............0...............0...!..............p............................................................................rdata..............................@..@.data........ ......................@....rsrc........0....... ..............@..@........................................................................................................................................................................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\awt.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1482784
                                                                                                                                                                        Entropy (8bit):6.422503642256117
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24576:yeTbSVsThgwnoDHw8we9NtCs8YUhxjC9mVb6MTJnJ0y5flhkFZrE7T2:pTAsThnMgIv8YUhxjC9mVb6uJnz5lh23
                                                                                                                                                                        MD5:B68DA997DF78B638686FD0A9D5A9C5A2
                                                                                                                                                                        SHA1:C35B46B5B839A5FA8B8097A3D788DF32FBB7FED7
                                                                                                                                                                        SHA-256:2E7B382049B4D562FAB74824BCADC08D2B1FBE3B667AD17E8B443E7F17BAF37F
                                                                                                                                                                        SHA-512:DCC3E8CD06C3ABC48C6FA929E0CD27806D770C4445CA8A6D65CAA360D54DB75DC64931D6F871DE88632CC9632BC040CE6C2EB9990D426AA9ABBC6D3744E720E6
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$........^.D@?..@?..@?..IG0.V?...J..F?...J..H?...J..D?...J..D?...J.._?...O..F?...O..G?..@?...=...J...?...J.."?...J..A?...J\.A?...J..A?..Rich@?..........................PE..d....<.l.........." ................................................................Er....`.................................................Y.......p...9...........x.. (......d9..p...p.......................(...0...8...................ly..`....................text............................... ..`.rdata..r...........................@..@.data...(............f..............@....pdata...............6..............@..@.rsrc....9...p...:..................@..@.reloc..d9.......:...>..............@..B................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\dt_socket.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):35872
                                                                                                                                                                        Entropy (8bit):6.406178787673914
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:XAuJtgobBJVtQxHIlH7gaKblIgaYiuPxWEBV:XAuJtgFxqnwega7uPxt
                                                                                                                                                                        MD5:773107102B9BBD19E543144EC6B010D2
                                                                                                                                                                        SHA1:17E85CB308ECCB8A914980C5849BF2A154DB14B0
                                                                                                                                                                        SHA-256:D71D160A1325A54333380F8702E6FE7A6BB8F5C516017C4031969051F7FC9329
                                                                                                                                                                        SHA-512:A251B2E7A26740720DA5E24D7D5EFDBBA6DAEE9F99DFE25CDAE49D7559C4E7C995456DE97A4519A591E8772FE1C2CE2B6849166860E0E0417815CEA61E34C560
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......B%e..D...D...D...<...D..T1...D..T1...D..T1...D..T1...D...D..RD...4...D...4...D..1...D..1...D..1...D..1...D..Rich.D..........................PE..d.....a&.........." .....2...........6..............................................*.....`..........................................i..X...(j..........|.......l....d.. (...........a..p...........................0b..8............P...............................text....0.......2.................. ..`.rdata...!...P..."...6..............@..@.data................X..............@....pdata..l............Z..............@..@.rsrc...|............^..............@..@.reloc...............b..............@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\fontmanager.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):844328
                                                                                                                                                                        Entropy (8bit):6.613474122992841
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12288:8JZU2TxLX22vz4XGyVEKqvPOTnkq2cYxXCs:mTxKu4XRhIAkq2ccX
                                                                                                                                                                        MD5:7B04473CD783951824697B6BDE17B772
                                                                                                                                                                        SHA1:9B2EA8A9BC4214824E8374A899839852781A1469
                                                                                                                                                                        SHA-256:254FD69C97DB71EBB983A0C75698517D571826CBDCD98F78A392DD5B066E7D45
                                                                                                                                                                        SHA-512:3243422A0B2EDFDB356CD6EF9D1117D5247DCF93C461944ED2AF02813AA6D57F8C9BDDA3A363733C8A1DCFAE3DC4997B1782F03DF8816FCAD94BA2B3F1D2419B
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$.......<...xk..xk..xk..q...vk..*...zk....e.zk..*...vk..*...pk..*....k.....pk.......k..xk...k......Ek......pk......yk....g.yk......yk..Richxk..........................PE..d................." ................T........................................0............`.........................................PA.......J..@................b......((... ..\...p...p..............................8...............X............................text...H........................... ..`.rdata..............................@..@.data...."...`.......B..............@....pdata...b.......d...N..............@..@_RDATA..0...........................@..@.rsrc...............................@..@.reloc..\.... ......................@..B........................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\freetype.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):543776
                                                                                                                                                                        Entropy (8bit):6.651616514404857
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12288:HxZslgRKSCW4fmVUnrNJreFZ8y37lfEWml5c6ug1kpq:Hx4gfnfynrNsw1ZWnpq
                                                                                                                                                                        MD5:DD0C62324CE52A19941500C1D820D625
                                                                                                                                                                        SHA1:EE2987DEA009E6F36AA94F77026D55C90D765C83
                                                                                                                                                                        SHA-256:9411B208E8D7D20BAB39B863E47BE740131B18442F424619CE50CBEB8E389350
                                                                                                                                                                        SHA-512:A69BE157BFBBF8152A58EF4534CD22E489AC9321CAE77492C6CFCB8DE7EFD4CA38B3CC64FFE0FEDFDA2C8A7851AD6D000876FAA682613DB9B18BC58405064AA7
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........A..a/..a/..a/......a/......a/......a/..a...a/.....a/...*..a/...+..a/...,..a/.K.+..a/.K./..a/.K...a/.K.-..a/.Rich.a/.........................PE..d....4.$.........." ........................................................`.......k....`.................................................x........@...........V...$.. (...P.......0..p............................0..8............................................text...8........................... ..`.rdata..@#.......$..................@..@.data...H...........................@....pdata...V.......X..................@..@.rsrc........@......................@..@.reloc.......P......................@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\instrument.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):51752
                                                                                                                                                                        Entropy (8bit):6.494038887956514
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:lUMt5X6J4NQRdnDm7KtNvIdqIE24sh/DvFkxhtV3EvYiZ1PxWEo:+VJOZdqIDvmxHVUv7Z1Px
                                                                                                                                                                        MD5:D692F024029812D8B1B93C76E0DE343F
                                                                                                                                                                        SHA1:1066D5C92795D3D71556A517B0A4FA18D9DA94BA
                                                                                                                                                                        SHA-256:F504B130ADD97BEC9948C99C08960CBDEB507916C887428D5AB18260D7E1BB30
                                                                                                                                                                        SHA-512:021D2F33F2EF83BC9CD85A465D6481214B848E8C227C549DB0DD97632078BB8438FBCBE58836FC93A8ADEEF84260DAF257C4DB39239C12DB84131EADE938E62A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........T..5...5...5...Mh..5...@...5..hE...5...Z...5...@...5...@...5...@...5..4@...5...5...5..4@...5..4@...5..4@...5..4@...5..Rich.5..........PE..d...^..u.........." .....`...>......@c..............................................{.....`.............................................................................((......0...P...p...............................8............p...............................text....^.......`.................. ..`.rdata.......p...0...d..............@..@.data...h...........................@....pdata..............................@..@.rsrc...............................@..@.reloc..0...........................@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2gss.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50728
                                                                                                                                                                        Entropy (8bit):6.3903457815937
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:ASx2TnHUwCK3CEgCG+YDU1MUX7Mx76Px:c0IX7MxCx
                                                                                                                                                                        MD5:610F451F10D128480D2CA61FF80922E1
                                                                                                                                                                        SHA1:497A15E8F6DDB9396F0154B5C5A043D1C5F69328
                                                                                                                                                                        SHA-256:37A3353BF892F2E7820DEDDBE30133E5609305BDD85E1D4F29928E02F6A6967B
                                                                                                                                                                        SHA-512:0B6E2B3B70848FAFBD57C86DE42E52316FFF15D0756FFA465CECBB63858698A6EBAF231843F2F1C89454418922269175DB2B1F2EB69E115C102F7966298E8F4C
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......6..Lr...r...r...{.1.t... ...p.......q...r..._... ...y... ...z... ...q.......q.......s.....].s.......s...Richr...........PE..d.....Z.........." .....T...F.......W..............................................r.....`.................................................H...x.......l....... .......((......0.......p...........................0...8............p..P............................text....R.......T.................. ..`.rdata...6...p...8...X..............@..@.data...x...........................@....pdata.. ...........................@..@.rsrc...l...........................@..@.reloc..0...........................@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pcsc.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):26144
                                                                                                                                                                        Entropy (8bit):6.444788471966375
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:3s83Idkz6D8jbOlEt8TqYHgDg+ZOD2Kc7cIdIYidvj3oPxh8E9VF0NycPFF:3sRSz6WKBqYsb7RKYiyPxWEe9F
                                                                                                                                                                        MD5:6A96D09084069E05906B2467FB465CC5
                                                                                                                                                                        SHA1:483DB2B9B1155CBBA0BA72159DFE484505192B9A
                                                                                                                                                                        SHA-256:D3E6E812B30C66E53F716986D27791BD231B9293D2DC359ACB23F0BF1EE51E7D
                                                                                                                                                                        SHA-512:86879CEBCD298753ED5A8FC05112CA8FE549C33AE2DCDC1630EF1A38A0E53C5404EB8E7787666B1FF115EF3EE570B3FB68D791015D7C3E29C6E17CF96786AFA5
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........NP...P...P...Y.Z.V.......R...6.4.Q.......[.......X.......T.......U...P...a......R......Q....6.Q......Q...RichP...................PE..d................." ......... ............................................................`..........................................9......t<.......p..p....`..p....>.. (......(....2..p............................2..8............0..x............................text............................... ..`.rdata..L....0......................@..@.data...H....P.......2..............@....pdata..p....`.......4..............@..@.rsrc...p....p.......8..............@..@.reloc..(............<..............@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\j2pkcs11.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):78376
                                                                                                                                                                        Entropy (8bit):6.338899627440341
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:z0QNmKjarmtseeV59vOq2W3MWiV7UsEayNqxV6FSP59XvhRFPSe3i3NsqVolyHbP:w4mKermtseeRWq2W3MWidpyrutGbU7kx
                                                                                                                                                                        MD5:EC4CB06996498E9812276369DC2A4617
                                                                                                                                                                        SHA1:8455770A6888703C2B191396B8B7C4A88F8C21C2
                                                                                                                                                                        SHA-256:CF7159B268D203FEE7715BCECAB168B207A5419B859BD63DA10390D605932005
                                                                                                                                                                        SHA-512:4C43F6E901486E79DAF9B5C26453A9BE26A9652903D9CA0C8F3621836399A520B9EF1B0394025FD2DE77D5434CB0285A321CAAF014196390807A1F3B3D2605F0
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........................1...........g...............................;.....;.....;.].....;.....Rich............PE..d...L.BX.........." .........P......p........................................P......9.....`.........................................p...<............0..x.... ..........((...@..0...`...p...............................8............................................text...8........................... ..`.rdata...8.......:..................@..@.data...x...........................@....pdata....... ......................@..@.rsrc...x....0......................@..@.reloc..0....@......................@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaas.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):28192
                                                                                                                                                                        Entropy (8bit):6.434775996896699
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:04fwOnuGpnO0+12KKFx1PQ/bxGEm3IYidvjYPxh8E9VF0NyAiGzAi:3IGpRaKb1PSGb4YiWPxWEKUi
                                                                                                                                                                        MD5:B49AFC2F6A12DD6319EEA8759DF27F94
                                                                                                                                                                        SHA1:7D27819FCF1F65C713603848E265D1B085942546
                                                                                                                                                                        SHA-256:43E7840F0BD775A98B8DF333EB59E21F71FE58663B7C25518835EF675757E4B5
                                                                                                                                                                        SHA-512:003701553DB7D6A5D4584CEB881CD7CB3BB3927FCBF4E417E43EF758033CF4C6F637AE19FB3122C9878045BB2554D2A758FB002D29F24F8A517D263D2977FE96
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........py...........i......d......d......d......d.....Qa............d......d......d......d.....Rich............PE..d................." .........$.......#....................................................`..........................................?.......?.......p..h....`.......F.. (......$....7..p...........................P8..8............0...............................text............................... ..`.rdata.......0......."..............@..@.data........P.......:..............@....pdata.......`.......<..............@..@.rsrc...h....p.......@..............@..@.reloc..$............D..............@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jabswitch.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):45096
                                                                                                                                                                        Entropy (8bit):5.981150196843669
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:dUjREn4fmVz8vePnGmZSZExH15B7frPApsuMSGYivPxWEQV:dKWn4eVzRnLiExrB7fraMSG7vPx
                                                                                                                                                                        MD5:F71CC7E369B714829EBEB7BB01E84AB0
                                                                                                                                                                        SHA1:6A09E3D00BAD18E9C69FFBAC1A3995A26A45796B
                                                                                                                                                                        SHA-256:2F7B3ADF4CEADA186EFCA106E78135CEA3CB04FA44946986632BDD07015A9138
                                                                                                                                                                        SHA-512:240789038D7F3194A5E2E75F5CD1DFBB59032E23EF33623D5C77EC0EA7581DB297A87DF5F4403EA035519C949528347DAD8D44359A181DDB589C6C32029E494A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........T.4.5.g.5.g.5.g.M.g.5.g.@.f.5.g.@.f.5.g.@.f.5.g.@.f.5.ghE.f.5.g.5.g.5.g4@.f.5.g4@.g.5.g4@.f.5.gRich.5.g........................PE..d...f..z.........."......8...L......p1.........@....................................m.....`.................................................$|..................l.......((..........Hq..p............................q..8............P..h............................text....6.......8.................. ..`.rdata...8...P...:...<..............@..@.data...X............v..............@....pdata..l............x..............@..@.rsrc................|..............@..@.reloc..............................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccessinspector.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):106528
                                                                                                                                                                        Entropy (8bit):6.058850810578386
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:jZzkJPlFTqyj4bIUqwOuD6qdeDmfWTx6wDIUEjABH0XJsZRQrLezz8fPHcCuRo93:1zkJPlFTqyj4bIUqwOuD6qdeDmfWTx6J
                                                                                                                                                                        MD5:83AA352F4A9668A14C3F0BDCB83A5923
                                                                                                                                                                        SHA1:F8EC7DAF9F7432410AF6B0839EEBB1AB33B94332
                                                                                                                                                                        SHA-256:756FAAE15DE7C650EFF77C8ED76488F3C3F0F13C0E1D89FB47D3F45B7E1D3C6C
                                                                                                                                                                        SHA-512:734BCC7BA9EAAF3A3C971611E7743925F51E1507701BA460B8408F4ECFD6A6AD034E85A6DD1FB0D4D72888A26178E1C0EC8560DBA74CEEB4420FCA44F31154D9
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$...........R.fJR.fJR.fJ[..JB.fJ..gKT.fJ..cKO.fJ..bKX.fJ..eKV.fJ..gKU.fJR.gJ..fJ.bKS.fJ.cKW.fJ.JS.fJ.dKS.fJRichR.fJ........PE..d....o.&.........."..........~......h..........@..........................................`.................................................TJ..,.......t............x.. (......t....7..p....................9..(...@8..8...............p............................text...E........................... ..`.rdata..vJ.......L..................@..@.data........`.......F..............@....pdata...............T..............@..@.rsrc...t............d..............@..@.reloc..t............v..............@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jaccesswalker.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):70688
                                                                                                                                                                        Entropy (8bit):6.114496244668177
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:1R0Q/CU2WwB/zNe9p3lrLGV3NuTW4BMm1XTPk5mVzYX3U5vaybA7OWW+K8btcHMv:YQ/CU2WwB/zNe9p3lrLGV3NuTW4BMm1Y
                                                                                                                                                                        MD5:C89748F222D07ABF032156CB78256782
                                                                                                                                                                        SHA1:31D60F9DC16E9886EC93F0BFE946EB996F3A1F39
                                                                                                                                                                        SHA-256:E63702BAE8B7A0C08778C0EF755FB89C63059713F7BB455CD5C6108EB248C5B5
                                                                                                                                                                        SHA-512:B99395C20B641FFB27EA79650A392F6706A9B342C00CD567276E9A4B240A5A3F4867814BB62569CC4C41586EB667A714C97C9C8D77D306F819C98028F3EE8013
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......0Y..t8..t8..t8..}@Y.d8..&M..p8..&M..o8..&M..~8..&M..p8..H..}8..t8...8...M..u8...M..p8...M5.u8...M..u8..Richt8..........................PE..d.....<g.........."..........^......$..........@.............................0............`.................................................t...,....................... (... ..d...@...p...............................8............................................text...c........................... ..`.rdata...:.......<..................@..@.data...`...........................@....pdata..............................@..@.rsrc...............................@..@.reloc..d.... ......................@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):146464
                                                                                                                                                                        Entropy (8bit):6.4707894637564145
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:dbaa1zZHdQosmbPfuEI9Ja38iAHg0gy/6r5VlxE9gvxFk:k+Bfka3vnM
                                                                                                                                                                        MD5:E6A9801D60CA2B8097749B6893F52173
                                                                                                                                                                        SHA1:8F41BF85F16C442B03D3CC16BE87557F6C25F507
                                                                                                                                                                        SHA-256:7455E61406F687E59BF3FE3B49AC05B982D480B2AE4491142490163AF99267D3
                                                                                                                                                                        SHA-512:03897ED676C8475FB9AA7B62FF44152A2B33E631691C62D15A7568ECF85DF484BA0CA302134863AFB1653F4764B9467E1DE790B3787A473A19107D5A4B8D3E55
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............g.V.g.V.g.V..KV.g.V...W.g.V...W.g.V...W.g.V...W.g.V...W.g.V...W.g.VC..W.g.V.g.V.f.VC..W.g.VC..W.g.VC.'V.g.VC..W.g.VRich.g.V................PE..d................" .....H...........N.......................................P.......q....`.............................................X=..X........0..h.... ..$....... (...@......h...p...........................0...8............`..X...\...@....................text....G.......H.................. ..`.rdata.......`.......L..............@..@.data...............................@....pdata..$.... ......................@..@.rsrc...h....0......................@..@.reloc.......@......................@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\java.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49704
                                                                                                                                                                        Entropy (8bit):6.533893628613156
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:CC2F1M5R2TyJ5R3s8D/bkt5Ruz3Vb3hi5pYiTPxWE64:CC0M5RdJ5R3sozkt5RA3hi5p7TPx
                                                                                                                                                                        MD5:0CDA675604F74B527A80F9687088A380
                                                                                                                                                                        SHA1:C420B108CB409EDB76451A4FFF312A79491EE7C9
                                                                                                                                                                        SHA-256:B20ABCD29B0D741654B1BEC0043AA7C88174220F26E2FA0C17C3DD3A00B90E52
                                                                                                                                                                        SHA-512:987F64DC82B0A8CAC39E8C9BCAF1E9B60977B6A7F33A48D13EABFB2E9B4E47B848AF59F092E8C50621699B184427EA3437A154525819D6CA2B9E16EC6B50D6BA
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d....\............"................. ..........@..........................................`..........................................)..@...P).......`..4n...P..D.......((......8...."..p...........................`#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc...4n...`...p...(..............@..@.reloc..8...........................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaaccessbridge.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):304672
                                                                                                                                                                        Entropy (8bit):6.487715030076832
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:6144:gUtenWPAReG3k2XdEk0SPFf5sx9jUAclcT5Lf:gUtenWPAReG0mdEkXPwUA9f
                                                                                                                                                                        MD5:8E25569A954D85C7B38612864DE1F00B
                                                                                                                                                                        SHA1:B46CE77EC6D264DBD3679556B7E551A3CCA61DDE
                                                                                                                                                                        SHA-256:869A755C881452C63282E8089D9741906E0F3C5DBA951822146D5BF47427AF71
                                                                                                                                                                        SHA-512:6BE362BAF23358E2D1ED986A25751A73082718F9509D62311578EF49719F66C2618815914D5CEFC8417036F5EA9764F6EFC291BE53C4603534899ADB14CA9CF2
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.............@...@...@R..A...@R..A'..@R..A...@...A...@...A...@...A...@...A...@R..A...@...@..@...A...@...A...@...@...@...A...@Rich...@........PE..d....S.;.........." ................P.....................................................`..........................................A.......K..P.......@............~.. (..........."..p........................... #..8............................................text.............................. ..`.rdata..............................@..@.data...(....`.......B..............@....pdata...............N..............@..@_RDATA...............l..............@..@.rsrc...@............n..............@..@.reloc...............v..............@..B................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javajpeg.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):178728
                                                                                                                                                                        Entropy (8bit):6.499061244853197
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:VXcbu/+qlU+E8U3XOh8Z5bFYEWQMi5DX5wirRVuam26UPz99pOzx:VX09qlUCUuh8nCEWQx5w2RMQPz99
                                                                                                                                                                        MD5:39FBD2DDCEA474DA034DDD170DC88F6D
                                                                                                                                                                        SHA1:7DA1A7CED0A00C2B4DD4819281BFE62957AC04B7
                                                                                                                                                                        SHA-256:2B71FCE772F73164D0E1AD79A3CC13F3527FF56CF5EEAF75947E99599007DBD9
                                                                                                                                                                        SHA-512:0536F3E52F72CA371C044FEEE8C817884F0157757128D4643773411F28724B06B1506976EC7E214B7D7096EA14A8467E9418E0395FFA5AAB88835419EDC80895
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........ \.A2..A2..A2..9...A2..43..A2.]13..A2.....A2..47..A2..46..A2..41..A2..43..A2..A3..A2..46..A2..42..A2..4..A2..40..A2.Rich.A2.........PE..d................" ................p.....................................................`.........................................Pq..8....w..........x...............((......0...8I..p............................I..8............ ...............................text............................... ..`.rdata...]... ...^..................@..@.data................n..............@....pdata...............p..............@..@.rsrc...x...........................@..@.reloc..0...........................@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49704
                                                                                                                                                                        Entropy (8bit):6.536788385869084
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:/Xhb2YM5R2TyJ5R3s8D/bkt5Ruz3Vb3CG5DYi/zsPxWE5b:/XxM5RdJ5R3sozkt5RA3CG5D7/zsPx
                                                                                                                                                                        MD5:7A2EB33DFB02144D50E874B8844D204F
                                                                                                                                                                        SHA1:E096C9EDE858D21210F437FA5200EDA3C6F13D34
                                                                                                                                                                        SHA-256:6A5402E7C2623BC5293B40B7FE0A4FE0091F97916788C026712B555F6EB322F2
                                                                                                                                                                        SHA-512:B3C015F64AE10E5CA3DB2893F4046945F9A3A18DCE3D6CBF1FAF96C16BE04A67CE64F907625842E3DFA3423022801830278CBFA790887C8D24DBA549DBDB733A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$......."(..fI..fI..fI..o1..jI..4<..dI..9..dI..4<..wI..4<..oI..4<..dI...<..eI..fI..^I...<..gI...<o.gI...<..gI..RichfI..................PE..d....:z...........".................(..........@..........................................`..................................................(.......`..8n...P..P.......((......8....#..p...........................p#..8............ ...............................text...<........................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..P....P.......&..............@..@.rsrc...8n...`...p...(..............@..@.reloc..8...........................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jawt.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):21024
                                                                                                                                                                        Entropy (8bit):6.494868097576502
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:/cySe1G07FLsiBxFmEIYidvj0xPxh8E9VF0NydDVq7:Uy1h7xsiTQ1YiixPxWE74
                                                                                                                                                                        MD5:01F42E54E15CE4CB3FF612054E42F874
                                                                                                                                                                        SHA1:A9ABE5AC28A06B0D442ADE21E29DEB0DCEA1DF32
                                                                                                                                                                        SHA-256:A47F76149A507F942746DA8A438C616F80433E0919281FBEB52A947E4F33BA21
                                                                                                                                                                        SHA-512:F7E08EEF3B1BF7DB2C90B2BC38DEE9D8CE480044A61B8ECCAC6A1133415AA07C83B61EA1D453B817DE3929FE38D1724E339B8910D8BA2DE2FDD4F7BC6DD2B425
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........l...?...?...?.r?...?...>...?...>...?...>...?...>...?...>...?Q..>...?...?...?Q..>...?Q..>...?Q..?...?Q..>...?Rich...?........................PE..d.....L.........." .........................................................p............`..........................................'..H...8(..d....P..h....@.......*.. (...`..$....!..p........................... "..8............ .. ............................text............................... ..`.rdata....... ......................@..@.data........0....... ..............@....pdata.......@......."..............@..@.rsrc...h....P.......$..............@..@.reloc..$....`.......(..............@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jdwp.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):229928
                                                                                                                                                                        Entropy (8bit):6.423826690165866
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:6144:mmqOHWn3USIftDVIox6yX/0+QnkzJdfROsJAUZqCMNO9DVBivVQOMkvwDbPePFCm:mmRHWn3USIftDVIox6yX/0+QkzJdfROg
                                                                                                                                                                        MD5:9CFF7A4E4A5DAF6DEEEE4C40354F9448
                                                                                                                                                                        SHA1:72979AF67103420802F3CCF8D9D4479A43C3A5D5
                                                                                                                                                                        SHA-256:29A979EFB4B9BF2F675A53482EDAD6F724C9D129EFA29A30EBB5EA574FAE8BBC
                                                                                                                                                                        SHA-512:959D5B8C63F03AB62CB5D1723987A627594FE04343E4ADBDF76B4BDA83A7506E0E84F5B792BAD8F19775B1B330420B505617B173C8ACD048D8131687D5F5473F
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$......................d.............K........................................................................Rich............PE..d...a.:..........." ...............................................................=.....`......................................... 8.......8..........h....p..l....Z..((..........X#..p............................#..8............................................text............................... ..`.rdata..(...........................@..@.data........P......................@....pdata..l....p.......8..............@..@.rsrc...h............T..............@..@.reloc...............X..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jfr.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23592
                                                                                                                                                                        Entropy (8bit):6.457726682121467
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:B4Mgxl1oqOpKFyA125AaYIYidvjtp7Pxh8E9VF0Ny6u:mSqJFR25DBYi1PxWEk
                                                                                                                                                                        MD5:F31849D7993EACA1B6FC01A919D24B9E
                                                                                                                                                                        SHA1:BD1B12FDD8482F050F9C796389090D7B0A5E91CB
                                                                                                                                                                        SHA-256:D504CDBBC13166286514C9BE85F9CABBA79454D5153900930431709BCE3B1643
                                                                                                                                                                        SHA-512:15788BF435141544CDFB26D387491F3EFB6318773B2DC85BD70AB6222D1FAA459657F1B401643BEEE825A54502EE6632A8E10C04C2A74D673E5DAD36E86FF201
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d.................".........."......$..........@.....................................R....`..........................................)..@...P).......`.......P..D....4..((...p..<... #..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jimage.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33320
                                                                                                                                                                        Entropy (8bit):6.424464688717849
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:CgZPLu5NXUonW52Xrivq/zD41fM/yvLbAPttlI2IYidvjHtPxh8E9VF0NyE3Y:lM1nW0iqn4FMavLsCrYiPPxWEa
                                                                                                                                                                        MD5:9DCDA7CA7EF99789D64A159690FCD296
                                                                                                                                                                        SHA1:7ED7F4E79C604ED0B94AA9A4E600D2B81B2A03B7
                                                                                                                                                                        SHA-256:7D9CAA617BAE8BCCB2050C2A82F3D29E31C2649408B06BD35289480A24A87A19
                                                                                                                                                                        SHA-512:634639A3DECD9F6760B8B12B2F2543FCF234CB8D8DB696323D516612E120712ED6062B1C8C7A26805890E76751315017882C8882BEE1E5A4DC6BF09DB66172F3
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........,.D.M...M...M...5...M...8...M..M=...M...M...M..."h..M...8...M...8...M...8...M...8...M...8...M...8j..M...8...M..Rich.M..........................PE..d................." .........(.......1....................................................`..........................................R.. ....S..........p....p.......Z..((...........D..p...........................@E..8............@...............................text....,.......................... ..`.rdata..h....@.......2..............@..@.data...P....`.......N..............@....pdata.......p.......P..............@..@.rsrc...p............T..............@..@.reloc...............X..............@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jli.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):91168
                                                                                                                                                                        Entropy (8bit):6.779209674765777
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:RV9bw+A4/uVtxyo2bR2+ZR1FoXIOFrYjXtMJ6R7ePx1LS:Rv+4WVHL2VxrFo5FrYjXmsRexQ
                                                                                                                                                                        MD5:3A943A45AEC81033F6EDD75E221CD425
                                                                                                                                                                        SHA1:2DE47B6CC079E14B49F3372775E3C5CA9765D90D
                                                                                                                                                                        SHA-256:EF3C0EC04C30FBD2B99F07E276BD3A3992C39CAE69F246762DE2147142A2DDD0
                                                                                                                                                                        SHA-512:16D033EC373A4F19CB1D1AB0BB0E66E6798EBFDF576DACC9D3EE7AED3540391A0EB1B748139266164E4A4A9E74F26FAB10AEF40B798CB59F4E591A9342D19501
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........@.n...n...n....M..n.......n....#..n.......n.......n.......n..P....n...n...n.......n.......n....!..n.......n..Rich.n..........................PE..d...Rl#7.........." ......................................................................`.........................................03..D...t5.......p..d....`..h....<.. (......`....'..p............................'..8...............H............................text.............................. ..`.rdata..~p.......r..................@..@.data...8....P.......,..............@....pdata..h....`......................@..@.rsrc...d....p.......6..............@..@.reloc..`............:..............@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jrunscript.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23592
                                                                                                                                                                        Entropy (8bit):6.466845189679043
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:aIKQgFLeqQOKFfUkS5AkIYidvjCTHqPxh8E9VF0NyLUWtF:gdSqQFNS5QYiAWPxWEpht
                                                                                                                                                                        MD5:F2FEEBFC8522FDB2DEE70B622F7B3E00
                                                                                                                                                                        SHA1:FF685E0D25B29338191809D258DD2A846CB3FE2D
                                                                                                                                                                        SHA-256:3F4D1ED606D7CF0E2A2548388BCDDC7117C3EE1210A07EF1A6218917F05F683A
                                                                                                                                                                        SHA-512:0B5B9A58737FB57DD4AFECD1380F31C164095EDD0DCCBECD1695194EB63F737C6E4755773D4F9E110CBC7B6CFA319AA40762269498EA5EFE950337489981BA38
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d.................".........."......$..........@....................................!.....`..........................................)..H...X).......`.......P..D....4..((...p..@...P#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..@....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsound.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):60960
                                                                                                                                                                        Entropy (8bit):6.567079152280964
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:H0n/+ptL6p6DO8y7kOc8+dP4T1v0qgiyEDSJjyOeutBgQ9vYi2iRPxWEvn:H9BY8up93yISJjyOeutBgEv7XRPxd
                                                                                                                                                                        MD5:648D611D797BEC85928AE371E053934D
                                                                                                                                                                        SHA1:5AB22FC758D008438772A38CF8F59A012EECE26C
                                                                                                                                                                        SHA-256:AD6EE40FB618750A47316DD5F9930C805AA4A1F169AC94BAFE431DC19D642238
                                                                                                                                                                        SHA-512:0A8E72E689FAA51F05D9230ECA9EF4EF8605DC6A8246292963BDB1A12C855585538DFF0088B7C3B13A0753A023801DBFA723E93B44ACD54419313531F10F0768
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......:.y]~...~...~...w..v...,...|...,...m...,...v...,...}.......u...~...........}.......p...........................Rich~...........PE..d................." .....~...D............................................... ......t#....`.........................................0...................p.......0....... (......P......p...........................@...8...............0............................text....}.......~.................. ..`.rdata...0.......2..................@..@.data...............................@....pdata..0...........................@..@.rsrc...p...........................@..@.reloc..P...........................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\jsvml.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):869928
                                                                                                                                                                        Entropy (8bit):6.6869856374489
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12288:FRybOUKnvJNeCs5wHuy7Tz/V71AVNV+Ssc3:FobO7JN3qwHT7TzN7wj+9O
                                                                                                                                                                        MD5:6E7A4664C19A528CFDC35505F84DE0BD
                                                                                                                                                                        SHA1:EBA19234A125CCE44982D5D0FBAD78776B42B334
                                                                                                                                                                        SHA-256:35909D4553247BB3B692A09CECAB481159DD2729DAB29EB1F6E2B318D54F7136
                                                                                                                                                                        SHA-512:137D3BDEB6B5C68747655B53F35D6D2B3CA7161C5D01B323F99435C233CA2050B46023D942A4D98ED26017D4E069B8E9BAFBCD08722360B92CFCFB4D14B14CB5
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.............^..^..^..M^..^..._..^).._..^..^..^..._..^..._..^..._..^u.._..^u.._..^u.!^..^u.._..^Rich..^........................PE..d.....2E.........." .....|..........@........................................p............`.........................................0...H ..x...P....P..l.... ..........((...`..$...`...p..............................8............................................text...xz.......|.................. ..`.rdata...p.......r..................@..@.data...............................@....pdata....... ......................@..@_RDATA.......@......................@..@.rsrc...l....P......................@..@.reloc..$....`......................@..B................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\keytool.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23584
                                                                                                                                                                        Entropy (8bit):6.459258398724101
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:t4cgxl1oqIchKFS5xy5ArIYidvjNPxh8E9VF0Ny41p:aSqOF6y5vYiTPxWE6/
                                                                                                                                                                        MD5:7F84DDE063F04ACCC9A93B807F432110
                                                                                                                                                                        SHA1:E0B72314B039B2F0205E3A44EEC3905598F7BBD6
                                                                                                                                                                        SHA-256:2ED0F0FDE46D333894128883112F2E43F5854C66886ABA7628290F212F4C2646
                                                                                                                                                                        SHA-512:7D96473E5BE2FB615D5B884E48FB4B65DF293C02B4ED96597C2797FDB56705BE837E0C5915125E6774E95EABA596BB2E33327A8E767EC6F9A81ECDE3C08E4F90
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d................".........."......$..........@..........................................`..........................................)..D...T).......`.......P..D....4.. (...p..<...0#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\kinit.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23592
                                                                                                                                                                        Entropy (8bit):6.462726271885107
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:+mw4sgxl1oq+IKFS+8Da5ArIYidvjvNPxh8E9VF0Nyq1:+sSqQFaa5XYiZNPxWEI
                                                                                                                                                                        MD5:E80D6DCA3C554BEAF1A1640FE4A98A8C
                                                                                                                                                                        SHA1:A3B260086CEBA0F7D6E5B19AE44F02CEC1F1FA73
                                                                                                                                                                        SHA-256:A682B52D221DAB215E441F16F35F4CFA9585F408DA541EC9BBB66DF9BD251C7C
                                                                                                                                                                        SHA-512:11BDC64803A71F6F8EB522CCFE246FCC44C28677FC9652C5B5065C91D28A42A342AF1514AAB5110D456317F21626B2F11EC46F04B8F92D4A0F8022064BC03372
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d.....O...........".........."......$..........@..........................................`..........................................)..D...T).......`.......P..D....4..((...p..<...@#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\klist.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23584
                                                                                                                                                                        Entropy (8bit):6.463142783169126
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:ow4sgxl1oqmkmiSTtJKFSzDI5A6IYidvjW5Pxh8E9VF0Ny0cv:uSq7nF6I5EYiUPxWEOY
                                                                                                                                                                        MD5:2B9BF10A085D55A4D81C055CDC6B61B3
                                                                                                                                                                        SHA1:5C84B10D401704D0D0F99DC09ACF02EE1589FE1D
                                                                                                                                                                        SHA-256:7D924235307D72EF5BE440D2B3502069891191C1314D51BF5756199F6499C3C2
                                                                                                                                                                        SHA-512:924CB965CDA1B342E430DC9186D4E24D33942E19EA2CB3761726B00E9F567FF60F2F535CC2D579050716465722DDA2C67C86DF17A58ADE0EBE073B54AB57C1D1
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d.....+...........".........."......$..........@.....................................C....`..........................................)..D...T).......`.......P..D....4.. (...p..<...@#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\ktab.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23592
                                                                                                                                                                        Entropy (8bit):6.460343645011978
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:2w4sgxl1oqAUKFykma5AQIYidvjIPxh8E9VF0NyWw:cSqqF2a5AYi2PxWEc
                                                                                                                                                                        MD5:6656C44F51BD49A46856112638DC237F
                                                                                                                                                                        SHA1:D4B1EF50B96D360100FE711D3702F68643DCD24C
                                                                                                                                                                        SHA-256:F0A3B94C545CC9EA192A4E06807AE576528FB42AEB858956E1DFD7B8405367A5
                                                                                                                                                                        SHA-512:95E57E69B755C41123DD1CA101F43980F42A02C5C7910E6846F83DB2B68888BF91013ABC14F63415CB717333FE3243C1EF22B2D6EBA2B9306529D81A998A88DF
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d................".........."......$..........@..........................................`..........................................)..@...P).......`.......P..D....4..((...p..<...@#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\lcms.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):264744
                                                                                                                                                                        Entropy (8bit):6.411793949523112
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:6144:MjaMTS0shsL9YJRI7OQ3zLg9uP1+74/LgHmPr9qvZqhLanLTLzLfqeqwLmqWBHMF:MuiS0shsb3zLg9uP1+74/LgHmPr9qvZN
                                                                                                                                                                        MD5:F2A123EF70119B61360DE7D8DEAF91D3
                                                                                                                                                                        SHA1:1C9DCDDEEF45F9B03B9EF3468448BC4EF9FE0296
                                                                                                                                                                        SHA-256:628DEF5CFEB67B36B13BE9D992D933854B91294F526821ED88275FD67ECBFC0E
                                                                                                                                                                        SHA-512:7F71F4F7AC4B3DE1F131E42068AF47A94B7AA9356FB5E30F71F58E10D8A6B05ED0E2408A522971FF804A534FBDF03D19DD50F0DE9712CA2E38418348BD98E623
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........T...5.Z.5.Z.5.Z.M2Z.5.Z.@.[.5.Z^E.[.5.Z.@.[.5.Z.@.[.5.Z.@.[.5.Z.@.[.5.Z.5.Z.5.Z.@.[.5.Z.@.[.5.Z.@^Z.5.Z.@.[.5.ZRich.5.Z................PE..d...P.Ev.........." ................0........................................0......^.....`.........................................0.......4...........h........(......((... .......J..p...........................0K..8...............`............................text............................... ..`.rdata..............................@..@.data....O.......2...|..............@....pdata...(.......*..................@..@.rsrc...h...........................@..@.reloc....... ......................@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):28704
                                                                                                                                                                        Entropy (8bit):6.484433396282645
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:qMAKj9W35+loFoETqRBIKtoS2VEW70bcwPkcSIYidvj/pJPxh8E9VF0NyplE:ZAKj9WppFrTqR++Sb74Yi1PxWE7O
                                                                                                                                                                        MD5:B018407141B688E942F065BE0E629978
                                                                                                                                                                        SHA1:BE464FBC98F51E09360537CD76CACCBF2505E9B0
                                                                                                                                                                        SHA-256:8C6B4FC112E530275F4C838114A36D799C7BF23A0FC4CA5FEA3F3384FF6376B4
                                                                                                                                                                        SHA-512:D1CB85BD56F128796B1B75F84B12AC56649D147FE85618879D9F88C1025DAE736B84EA3B2DB337C85815FE7F124D968211C8321A49A36EC358784915EEC47EDB
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......0..Qt...t...t...}...p...&...v.......v...&.......&...|...&...w......q...t...]......}......u......u......u...Richt...........................PE..d....$.A.........." .........,......................................................^.....`..........................................9.......J.......p.......`..L....H.. (......(...@3..p............................3..8............0..0............................text...h........................... ..`.rdata.......0... ..................@..@.data...X....P.......<..............@....pdata..L....`.......>..............@..@.rsrc........p.......B..............@..@.reloc..(............F..............@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_agent.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):24096
                                                                                                                                                                        Entropy (8bit):6.443204086386424
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:K1X55P5gNUC4H35Sa40HX1PKxq1CjIYidvjPZzPxh8E9VF0Ny3Ni36s6:K1XjP1H35SEPN8MYiHzPxWE1b7
                                                                                                                                                                        MD5:6F97CD503E31033711230B77D367259C
                                                                                                                                                                        SHA1:D606D8727661F651D5CA2F9C88AF55C1606EA189
                                                                                                                                                                        SHA-256:D547F72C6644DED280F58EE821ADECABFF7BB1B4820BCBD1A94B0542AF7AD949
                                                                                                                                                                        SHA-512:DABF98C88A3A4F0D0F953B3C7AE8138A1EA4FD5F163FD9D1E15C0796B811ECF686F09B5E3D35AFEB33872CD5E9B15D94FF51ACE2F174684BD5B8D1415615C5E2
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........X.............................d.............................:.......f...............f.......f.......f.f.....f.......Rich............................PE..d....9.........." ................P.....................................................`..........................................9.......;.......p.......`.......6.. (......(...@3..p............................3..8............0...............................text............................... ..`.rdata.......0......................@..@.data...H....P.......*..............@....pdata.......`.......,..............@..@.rsrc........p.......0..............@..@.reloc..(............4..............@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\management_ext.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):35880
                                                                                                                                                                        Entropy (8bit):6.48258617311495
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:XYcMKjIwQMXPOY2n6CMEdM2OHOCFYiA4PxWEHH:IQx66HNDHlF7dPxp
                                                                                                                                                                        MD5:EC2EE5B8F2432159B88BE9FFC9366A77
                                                                                                                                                                        SHA1:E412F2490680F785600B7FAA9984D206574313B8
                                                                                                                                                                        SHA-256:7D6CBDD7D1F2C3E2C814D5224B3C0692DDFE84432AC4E7155872449E4D9CBDDF
                                                                                                                                                                        SHA-512:53CFB975DF0C5997512B0F1193A358937CDAC813FCDF30C2B056943C0BD18FD38326F873587C88F877E32D4DA2F8FD6F4FD505A26754152060E25E6AE2FCE3A8
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......+.S.o.=.o.=.o.=.f...c.=.=.<.m.=.....n.=.=.8.c.=.=.9.g.=.=.>.l.=.<.k.=..<.j.=.o.<...=..9.h.=..=.n.=....n.=..?.n.=.Richo.=.........................PE..d.....>,.........." .....0...0.......5..............................................D.....`..........................................R......$Z..................T....d..((......T....I..p...........................PJ..8............@...............................text..../.......0.................. ..`.rdata..."...@...$...4..............@..@.data........p.......X..............@....pdata..T............Z..............@..@.rsrc................^..............@..@.reloc..T............b..............@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\mlib_image.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):509984
                                                                                                                                                                        Entropy (8bit):6.572189937569076
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:6144:mur3eE+sP1o7O8ezGwAWCSdG3Qn6tnYatnyWshdy42C60Jqvg9iTD0Hq+FEMX:mur3johIldG3k8nVMhmkxV
                                                                                                                                                                        MD5:51BA902C1144CF4C3425562A3D226D98
                                                                                                                                                                        SHA1:EE7C258AC3C0806988A83C2E5A7E9B18770CBD4B
                                                                                                                                                                        SHA-256:66D914ADE70B91FDBA6CA2605F9DD80EB66AC7F270F62B1ED3A7D7879ED5DD03
                                                                                                                                                                        SHA-512:7E3CD6EFFE82BE63F9D4D958671569287193B3CC76E0211A57902CE33409C0955C5C4B989B26D0A26C912E7E51468FBEAA2871B1709C76EBFCCC5702964CE956
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........AKW[ %.[ %.[ %.RX..] %..U$.Y %..P$.X %.[ $.r %..U .W %..U!.S %..U&._ %..U!.i %..U%.Z %..U..Z %..U'.Z %.Rich[ %.................PE..d......'.........." ................4.....................................................`.............................................$...$...d....................... (...........e..p...........................Pf..8............................................text...8........................... ..`.rdata..\...........................@..@.data...P...........................@....pdata..............................@..@.rsrc...............................@..@.reloc..............................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\msvcp140.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):565648
                                                                                                                                                                        Entropy (8bit):6.489456926940133
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12288:P/Wn7JnU0QUgqtLe1fqSKnqEXG6IOaaal7wC/QaDWxncycIW6z9y5QEKZm+jWody:XN59IW6z9OQEKZm+jWodEEYZ
                                                                                                                                                                        MD5:CB75D6437418AFE1A7B52ACF75730FF1
                                                                                                                                                                        SHA1:54C2DA9552671B161CC87EB50FBDB86319B00F56
                                                                                                                                                                        SHA-256:7C4CE9D6BFCD6D9DB4EEF4E75ECDCF5A8E5320106E80F1ECA617439FA43F33E8
                                                                                                                                                                        SHA-512:F58ABB740A30467E2D8AEDD7EED357DA020FDC7D966E245890D102A52E96FEA296E122C1D2BC112423FC64B6F5E70B7DF3F3EB7DE1BF5C2F5F0EB3644F1E06D6
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......Y...................Z.........O.....O.....O.....O.....O.....O.6....O.....Rich...........................PE..d...Z.-a.........." .....<...\.......)....................................................`A.........................................5..h...(...,............p...9...~...#......0.......T...............................8............P...............................text....;.......<.................. ..`.rdata..j....P.......@..............@..@.data...`:...0......................@....pdata...9...p...:...6..............@..@.rsrc................p..............@..@.reloc..0............t..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\net.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):96808
                                                                                                                                                                        Entropy (8bit):6.398301121016464
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:S5HcIrUcT4m/8NA/r57+Pt3NqkGc4odGtAhg6eZBh7ZABnzc57aPx:S5TAc8m/8C/r57+l354oQtAm6eZL7ZAt
                                                                                                                                                                        MD5:F6D1BA017CEFDBB50ECCEF13529FBB82
                                                                                                                                                                        SHA1:4A1E57364542AA9A21CF586D8B0C36B6C911D83B
                                                                                                                                                                        SHA-256:400A90CBEA81045EE0B6D7634E058817342FFEAC1E64B5529138A44D8BB80705
                                                                                                                                                                        SHA-512:B7733F32D8F9A87607F0FAAFA818D322EBB0F879097C08C49B6D8F22E2433186132C3B4F58BF2F22BEBBE492A5C3E7C44FBBCDF3A3AF61DE9F802EBAFCA1691D
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........6a7.W.d.W.d.W.d./.d.W.d.".e.W.d.".e.W.d.".e.W.d.".e.W.dj".e.W.d.W.dBW.d6'.e.W.d6'.e.W.dj".e.W.dj".e.W.dj".d.W.dj".e.W.dRich.W.d........................PE..d................." .........r.......................................................n....`.........................................@'..8...xB.......p..d....`.......R..((..............p...........................P...8...................l$..`....................text...X........................... ..`.rdata..6_.......`..................@..@.data........P.......@..............@....pdata.......`.......B..............@..@.rsrc...d....p.......L..............@..@.reloc...............P..............@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\nio.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):79904
                                                                                                                                                                        Entropy (8bit):6.404067768485733
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:b80frbmGUg1N2+/7S547din3gFGoDIYc6cPh7MGPxD:b1OGUg1N2+Du47din3gdDIYcnZJxD
                                                                                                                                                                        MD5:6771DE8E8643264FF50DB61BBE4A4B7F
                                                                                                                                                                        SHA1:71FA373468656B848B35C345A1EFBDD3A68D0E23
                                                                                                                                                                        SHA-256:03FB33F529D2F62275511872D62ED5F0ED2E00D04314B34E055C67918D845A1C
                                                                                                                                                                        SHA-512:C5040BB69B5556E231376251A1F13F75E39FDCDF2187575B724B72C2A7E48AC06AD2E991CB2F3FF0EC1A6E6A6A28D495795C32900B20A3BE5F914C87C8CF1B78
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......v..2..2..2..;...4..`...0..`...9..`...:..`...6......6..2........;......'......3....w.3......3..Rich2..........................PE..d...Fd.[.........." .........v...............................................`............`..............................................-...........@..d....0.......... (...P..<.......p...........................0...8............................................text............................... ..`.rdata..f`.......b..................@..@.data........ ......................@....pdata.......0......................@..@.rsrc...d....@......................@..@.reloc..<....P......................@..B................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\prefs.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):25632
                                                                                                                                                                        Entropy (8bit):6.3972785323862995
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:853sZg1lh4lDcu8tYh0PcQmaDSIYidvjOPxh8E9VF0Ny5M65:c3sZ6lhicuaYh95M/YikPxWEfj5
                                                                                                                                                                        MD5:33503F5944A1FA91D58599484AEDDF46
                                                                                                                                                                        SHA1:D43E84C10A28C10F4590ED2A002E0088E771CE59
                                                                                                                                                                        SHA-256:E2078553049DDF5E0FFD584AE6E7E88AF4CC9337C2A8F90B892190FF252FBE3A
                                                                                                                                                                        SHA-512:62C639523F90B29A7D1FD13FA152D3600AF75546D63AFD295E6EA19AEEA7F052B688DBFB99BDDD3B9D7B03D8E661209EC1998030E8D864C02F48B48180B5F9A2
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........g............................................................W...............................................Rich....................PE..d...P..G.........." ......... ............................................................`......................................... 9..<...\<.......p..l....`..4....<.. (......(...02..p............................2..8............0..p............................text...h........................... ..`.rdata.......0......................@..@.data...H....P.......0..............@....pdata..4....`.......2..............@..@.rsrc...l....p.......6..............@..@.reloc..(............:..............@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmi.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):21024
                                                                                                                                                                        Entropy (8bit):6.4202733799339615
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:JLy9SO1Wxp1lIYidvjiePxh8E9VF0Ny7xa3j:JLhOA7SYiYePxWENgj
                                                                                                                                                                        MD5:E58BEFE59EE04CE57584421E1EA799DD
                                                                                                                                                                        SHA1:776DD1B7A767A19C263878D33FBABD21050A9B7D
                                                                                                                                                                        SHA-256:4F516D8F85B9E7E498895BDB898E2529D86A26E616CA3429DB45B8CBD40AD618
                                                                                                                                                                        SHA-512:118749C62174C8A94B2F591F31D161700C439443ED1BB2D58D50F6A7613AD49D68C33A423910CCB804AE7436971E96849D1B6F0721F8FAD6C11249D15001A770
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........m...>...>...>.r>...>...?...>...?...>...?...>...?...>...?...>Q..?...>...>...>Q..?...>Q..?...>Q..>...>Q..?...>Rich...>........PE..d................." ................,........................................p......g.....`..........................................'..l...L(..d....P..d....@.......*.. (...`..$...p!..p............................!..8............ ...............................text...X........................... ..`.rdata..&.... ......................@..@.data........0....... ..............@....pdata.......@......."..............@..@.rsrc...d....P.......$..............@..@.reloc..$....`.......(..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\rmiregistry.exe

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):23584
                                                                                                                                                                        Entropy (8bit):6.461295297276169
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:24cghl1oqCpKFf/dtE5AFIYidvjmPxh8E9VF0NytzR:pSqZFXfE5FYi8PxWEbN
                                                                                                                                                                        MD5:9DFA54B4BDA14A7661FCE1CF77732A2F
                                                                                                                                                                        SHA1:977EB05FC889C939F64FFE5855B9AAB66264FC18
                                                                                                                                                                        SHA-256:ED06967A212CE8A9A59904FF316289D7B6BC9082F92530974C5F581E8DA8A255
                                                                                                                                                                        SHA-512:9B165DEDF52562EDDF8C3E52DC72F8F38859C2E1A75ABA26C437BBA229C99DFFA26F8B8857030B199A6BCB22B1D1CD771F48BDCCA8D9C46B5BBE269B499D025F
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........U..V4..V4..V4.._L..Z4...A..T4..D..T4...A..G4...A.._4...A..T4...A..U4..V4..a4...A..W4...A..W4...An.W4...A..W4..RichV4..........PE..d.....}...........".........."......$..........@....................................<9....`..........................................)..H...X).......`.......P..D....4.. (...p..<...0#..p............................#..8............ ...............................text............................... ..`.rdata....... ......................@..@.data........@.......$..............@....pdata..D....P.......&..............@..@.rsrc........`.......(..............@..@.reloc..<....p.......2..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\server\classes_nocoops.jsa

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:data
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11337728
                                                                                                                                                                        Entropy (8bit):3.8360084362204843
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:49152:UUPGdqz1NIw3lIhkI82fOMRQ3JWbeZBEkw58HHOoe:Ue4q4w3lIh/82fOMRQcbeUUHH
                                                                                                                                                                        MD5:F0848AC6EF08308A1B25AD9981EA1EA2
                                                                                                                                                                        SHA1:D3D5491B6D124F090B288EDCA3C16961D7EA2EE4
                                                                                                                                                                        SHA-256:B434027300606AC5C2F28064210B1DAA206B634DD531E573AC337EC7E008C7B3
                                                                                                                                                                        SHA-512:889D4817FD69EB12189615DDBB5146A53FA45F1D2652AC784F15727FFE20E6103B6C90D3AEBD7C9E72A88C5D59598E6F01FCE8744E884EBD10EA7AB31D658FB9
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:..... ................................................F..............................\,\......................H.......G.......a.............................h.......................................................................................................................................................................................................................................................................................................................................................................................................................................................................OpenJDK 64-Bit Server VM (17.0.8+7-LTS) for windows-amd64 JRE (17.0.8+7-LTS) (Zulu17.44+16-SA), built on Jul 5 2023 08:06:06 by "zulu_re" with MS VC++ 16.10 / 16.11 (VS2019).................................................................................................x...............................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\server\jvm.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11891232
                                                                                                                                                                        Entropy (8bit):6.401581744364589
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:196608:wWjxjQ2wNTdxR9rXovwt646ju69URmwl+MdXrpA4//ITlhugAdcK0pKW/vp2dhIa:7Q2wNT3rXovwt646ju69URmwl+MdXrpH
                                                                                                                                                                        MD5:5EC9171C2D7D5F8EC98DAC93A7B1C201
                                                                                                                                                                        SHA1:5B1FA343CF2922600C1C327C3C2823D6736E77F2
                                                                                                                                                                        SHA-256:8818C480255CF7BF91CC3DA39CD25D908BD0E7B5EA8B502051DAD53560388E9A
                                                                                                                                                                        SHA-512:7E7420BEE67C8318778946FADF54927B44129FDBD0577C6090948CBE35C28AE66153B0A982270BC56BEFB9592CB166BF40D0358AD9780BE5265B7FF8D4732FAB
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.............................z..................q........-....-....-.x.......-....Rich............PE..d...."............" ..........5.....,................................................=....`...........................................xD..X........ ...............J.. (...0..DO...B..p....................D..(... C..8...............x............................text............................... ..`.rdata..>{&......|&.................@..@.data........ ......................@....pdata.............................@..@.rsrc........ ......................@..@.reloc..DO...0...P..................@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\splashscreen.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):220192
                                                                                                                                                                        Entropy (8bit):6.718078966984667
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:6144:C1uhsCppkHqZwg7J7SFcm0hFGJPER2ouG:cAsf+Y6hFGuZv
                                                                                                                                                                        MD5:1D237A8B9333184ADA4E7019A75EE2DE
                                                                                                                                                                        SHA1:0D715E990769AC777EBDF7E2E5791EF2F5586F99
                                                                                                                                                                        SHA-256:3000A39CF95FEE37B918578226272EA7D8E001AF9A9FA82B82D713E611076341
                                                                                                                                                                        SHA-512:3BE0899ED617321954B2A44E684DB2FDDD5DAAA6F895A0CC0BAFE32AC9DB82C7A258841C90E39A010597D51D64B75EDF4B170B603B6320D6946263CB1F1BD2DE
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........fq!...r...r...r...r...r.r.s...r.h.r...r.r.s...r.r.s...r.r.s...r.r.s...r#w.s...r...rL..r.r.s...r.r.s...r.r.s...r.r.r...r.r.s...rRich...r................PE..d...1.X..........." .....T...........Y..............................................+N....`.................................................."...............p.......4.. (..............p...............................8............p..........@....................text....R.......T.................. ..`.rdata.......p.......X..............@..@.data....5...0......................@....pdata.......p......................@..@.rsrc...............................@..@.reloc...............2..............@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sspi_bridge.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44576
                                                                                                                                                                        Entropy (8bit):6.361069281172342
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:jbFCoHzCR3IM+J2sHWq/Fr9a0EK2+bOHViRiF//BAYiyPxWEv1x:QoTm7+J2Up99TkwRiF/JA7yPxR
                                                                                                                                                                        MD5:8E4C2371F1C8DE8EC5C607CB7A63CBA2
                                                                                                                                                                        SHA1:072FAB45FA504742F0C7169DB1DAF02AD8FB2982
                                                                                                                                                                        SHA-256:853F0876870434C70AC31100E46F53A76BF3032A8ABB5CFD011A28376A9F1EAC
                                                                                                                                                                        SHA-512:D1D1124A7A05BE9AA59877E83583B7DD6FD4E580ED456B1A6856070E704F2ACD0330AD2ABF90D216BD91009CF697DC64808CCC8FA5C1B6DEC688420190122234
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$......./.[+k.5xk.5xk.5xb..xa.5x9.4yo.5x9.1yc.5x9.6yh.5x..4yn.5xk.4x .5x9.0y..5x..0yj.5x..5yj.5x...xj.5x..7yj.5xRichk.5x................PE..d....Z............" .....J...8.......L....................................................`..........................................|..`...@...................,....... (......d....p..p...........................@q..8............`..`............................text...&H.......J.................. ..`.rdata...)...`...*...N..............@..@.data...P............x..............@....pdata..,............z..............@..@.rsrc...............................@..@.reloc..d...........................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\sunmscapi.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):47144
                                                                                                                                                                        Entropy (8bit):6.360899281146391
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:jXH30sClNUYHEpD1y4nkbqIibFeRs0m4f9IdeB0MQYiWPxWEpbM:jXH3ilNpEptI0FeRs0m4f9IdlMQ7WPxg
                                                                                                                                                                        MD5:0457D01980531BF3472922A38FC1A3D2
                                                                                                                                                                        SHA1:3692A11F8CC5B06768AA5F7C8556D388485F9840
                                                                                                                                                                        SHA-256:DE0AEA3A0B1653A0A2EEEE2BAD2680F4C1E2806EF8E224E6DDE7C55D3BB334C2
                                                                                                                                                                        SHA-512:90FA29063EA72CAE0307CA09214087F4A790B84CFDC829CBEF1F3ACCD23FD73D05307195279986932B9E76D37F3230E1F1C8369058D2771B80B6DFFBE71B5EDE
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$............v..v..v...V..v.....v......v.....v......v.?...v..v..v.c....v.c...v.c.:..v.c...v.Rich.v.........PE..d....~..........." .....R...:.......O..............................................A.....`............................................. ...0...........|.......(.......((......P....z..p...........................0{..8............p...............................text....Q.......R.................. ..`.rdata..~+...p...,...V..............@..@.data...............................@....pdata..(...........................@..@.rsrc...|...........................@..@.reloc..P...........................@..B........................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\ucrtbase.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1118664
                                                                                                                                                                        Entropy (8bit):6.65702812073048
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24576:WbDDZA6rBwy/fnrdHODCrGQY8lP+kpcKsqWmxvSZX0ypOI:f2/fkDCrZR+k+q9I
                                                                                                                                                                        MD5:B0397BB83C9D579224E464EEBF40A090
                                                                                                                                                                        SHA1:81EFDFE57225DFE581AAFB930347535F08F2F4CE
                                                                                                                                                                        SHA-256:D2EBD8719455AE4634D00FD0D0EB0C3AD75054FEE4FF545346A1524E5D7E3A66
                                                                                                                                                                        SHA-512:E72A4378ED93CFB3DA60D69AF8103A0DCB9A69A86EE42F004DB29771B00A606FBC9CBC37F3DAA155D1D5FE85F82C87CA9898A39C7274462FCF5C4420F0581AB3
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......k.../..L/..L/..L&.0L...L/..L...L..^L...L..M...L..M...L..MO..L..Mc..L..M...L..\L...L..M...LRich/..L........PE..d...L#............" ..... ..........0]..............................................~.....`A........................................p....................................!..............p............................J..8............u..(............................text...x........ .................. ..`.rdata.......0.......0..............@..@.data....&....... ..................@....pdata..............................@..@.rsrc...............................@..@.reloc..............................@..B................................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\vcruntime140.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):97168
                                                                                                                                                                        Entropy (8bit):6.424686954579329
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:yKHLG4SsAzAvadZw+1Hcx8uIYNUzU6Ha4aecbK/zJZ0/b:yKrfZ+jPYNz6Ha4aecbK/FZK
                                                                                                                                                                        MD5:A87575E7CF8967E481241F13940EE4F7
                                                                                                                                                                        SHA1:879098B8A353A39E16C79E6479195D43CE98629E
                                                                                                                                                                        SHA-256:DED5ADAA94341E6C62AEA03845762591666381DCA30EB7C17261DD154121B83E
                                                                                                                                                                        SHA-512:E112F267AE4C9A592D0DD2A19B50187EB13E25F23DED74C2E6CCDE458BCDAEE99F4E3E0A00BAF0E3362167AE7B7FE4F96ECBCD265CC584C1C3A4D1AC316E92F0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......*..qn.."n.."n.."...#l.."g.."e.."n.."B.."<..#c.."<..#~.."<..#q.."<..#o.."<.g"o.."<..#o.."Richn.."................PE..d...Y.-a.........." .........`......p.....................................................`A.........................................B..4....J...............p..X....X...#..........h,..T............................,..8............................................text............................... ..`.rdata...@.......B..................@..@.data...@....`.......@..............@....pdata..X....p.......D..............@..@_RDATA...............P..............@..@.rsrc................R..............@..@.reloc...............V..............@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\vcruntime140_1.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (console) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):37240
                                                                                                                                                                        Entropy (8bit):6.3017272133584585
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:5GnvMCmWEyhUcSLt5a9k6KrOE5fY/ntz5txWE6Wc+XfbRuncS74G5WreKWn14gHc:rCm5yhUcwrHY/ntTxT6ovq7nt+dN
                                                                                                                                                                        MD5:37C372DA4B1ADB96DC995ECB7E68E465
                                                                                                                                                                        SHA1:6C1B6CB92FF76C40C77F86EA9A917A5F854397E2
                                                                                                                                                                        SHA-256:1554B5802968FDB2705A67CBB61585E9560B9E429D043A5AA742EF3C9BBFB6BF
                                                                                                                                                                        SHA-512:926F081B1678C15DC649D7E53BFBE98E4983C9AD6CCDF11C9383CA1D85F2A7353D5C52BEBF867D6E155FF897F4702FC4DA36A8F4CF76B00CB842152935E319A6
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......D_.O.>...>...>...N...>..RK...>...F^..>...>..1>..RK...>..RK...>..RK...>..RK...>..RK2..>..RK...>..Rich.>..........................PE..d...^.-a.........." .....:...6......`A..............................................7]....`A.........................................l.......m..x....................n..x#......<...(b..T............................b..8............P..X............................text...e9.......:.................. ..`.rdata.. "...P...$...>..............@..@.data... ............b..............@....pdata...............d..............@..@.rsrc................h..............@..@.reloc..<............l..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\verify.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):54816
                                                                                                                                                                        Entropy (8bit):6.521788525396865
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:FVrWV4gZzmT6bpsaQ+SWGyX1Ht+smWqrT3rR23FHA0CYiKPxWEuKN:FVWCWbCKN+smDn383FHvC7KPxD
                                                                                                                                                                        MD5:8C5C216F8F64477B8C501D3510F257DD
                                                                                                                                                                        SHA1:C108BB688B199EDB42EE2BA11EBAB426D6AB4944
                                                                                                                                                                        SHA-256:DC63248A33BF99E81599D1BBA37D07105D9872E8220A12A087F57C277726F403
                                                                                                                                                                        SHA-512:C66867CD2B7DE57651608067A0349741EF61DDF099B92AE36CC4B75DB1570B4DB708AC9771DCDD8C0FD0D5288C139E32035918EE221CAB905321D840D86F9199
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......Z..l...?...?...?...?...?L.>...?..>...?x.u?...?L.>...?L.>...?L.>...?..>...?...?P..?..>...?..>...?..w?...?..>...?Rich...?........................PE..d................." .....h...B.......l...................................................`............................................X...8...........p............... (.............p...........................`...8...............`............................text....f.......h.................. ..`.rdata...3.......4...l..............@..@.data...............................@....pdata..............................@..@.rsrc...p...........................@..@.reloc..............................@..B........................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\w2k_lsa_auth.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):31272
                                                                                                                                                                        Entropy (8bit):6.4342273799754315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:J0sF8kJ6I3gNoZTU3iUOHkbGGGGNET7T7T7T7lWa/1iP0V5Yi8PxWEo:xBJ6I3gNoZTU3iUOHkbGGGGNET7T7T74
                                                                                                                                                                        MD5:E9A4BED5FF87AB65B1C809AAD811D8EB
                                                                                                                                                                        SHA1:29C05AF4D3AD12EE1874F88ED509E9A46F5CBF65
                                                                                                                                                                        SHA-256:845A4A04E191DF74514333FC9CE34FDD70FAE5675222BF4B49B1E09CE5D128B7
                                                                                                                                                                        SHA-512:CC3EA66E3CA663C0B90185B8C55A1E619B0B651C79146B0065A91E0BEEFFBC6077241852554CCDD0CAB92F8B4B2C81AFD7A87BE0465BDEB7A643E1886696825A
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.............f...f...f.......f...g...f...c...f...b...f...e...f...g...f...g...f.L.b...f.L.f...f.L.....f.L.d...f.Rich..f.................PE..d....v.2.........." .....$...*.......(..............................................U.....`..........................................T.......U...............p.......R..((......(...0M..p............................M..8............@...............................text....".......$.................. ..`.rdata.......@.......(..............@..@.data........`.......F..............@....pdata.......p.......H..............@..@.rsrc................L..............@..@.reloc..(............P..............@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\windowsaccessbridge-64.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):72224
                                                                                                                                                                        Entropy (8bit):6.420614783350027
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:S540JLKPYUA2YMRv2C1mtsuO8H2ucMfR+YiUPxWEalbj:S540pKPYUIQvR1mtsuO8H2mR+7UPxSj
                                                                                                                                                                        MD5:FC730168A13335E0240829D6F9E92C9B
                                                                                                                                                                        SHA1:33D460B95D4B62C94A4CA33C795E2E45BDCD482F
                                                                                                                                                                        SHA-256:989BD1539C248E1B688866114AC950AD4C43CBE2A18CEC0D3CC2A1075249B540
                                                                                                                                                                        SHA-512:1489ABA7C7EF58DBB6CA94537FE0A42EC4F3E87643F432996F44F2891B06FA086DC08B88255134561996B4C181E1956375120083E431FF38EFB59AC094277C9F
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$......."...f.s.f.s.f.s.o..l.s.4.r.d.s.4.v.w.s.4.w.n.s.4.p.b.s...r.c.s.f.r.+.s...v.a.s...s.g.s...g.s...q.g.s.Richf.s.................PE..d.....:.........." .....x...v......@{.......................................0......0.....`.........................................@...D...............X............... (... ..X...0...p...............................8...............(............................text....v.......x.................. ..`.rdata...].......^...|..............@..@.data...0...........................@....pdata..............................@..@.rsrc...X...........................@..@.reloc..X.... ......................@..B................................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\zip.dll

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:PE32+ executable (DLL) (GUI) x86-64, for MS Windows
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):89128
                                                                                                                                                                        Entropy (8bit):6.7914742752111446
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:gP+2hMTbleaDGq675w0mtLyKa9sWnIOQIO6WllMm7jPx0:gP+2hMTblrPtLy1sWJG6WlKmXx
                                                                                                                                                                        MD5:1DBB4E594590ABA6A841DB0BC6ECB425
                                                                                                                                                                        SHA1:C7AD0F4FC66CF99554DE97A0A512822002F489B4
                                                                                                                                                                        SHA-256:EDAEAF81634B2A19850380748B1548A74025E6DA7561F9565B502E5D204D7C3D
                                                                                                                                                                        SHA-512:0AB199E39311F2A44B46B8B95121CA9D6AC23BF028428C173EF1A6B4DC726937BFFBD470ABE8F41DD91A7688543FBAF0C850CDFC41A6FCBAEAC777C274462B1C
                                                                                                                                                                        Malicious:true
                                                                                                                                                                        Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......?...{...{...{...r.`.q...)...y......y.......~...)...p...)...s...)...........~...{...0.......o.......z.......z.......z...Rich{...........PE..d.....YT.........." .........|......`.....................................................`..........................................,..\....2.......`..d....P..x....4..((...p..l...0"..p............................"..8............................................text............................... ..`.rdata...j.......l..................@..@.data........@.......$..............@....pdata..x....P.......&..............@..@.rsrc...d....`......................@..@.reloc..l....p.......2..............@..B........................................................................................................................................................................................................................................

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\logging.properties

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2732
                                                                                                                                                                        Entropy (8bit):4.543704203888891
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:EmdSDPz08pRNYHjwsnkYXxInhkOGk1xdvTMgQI:GjA3Hjw5l1XrMVI
                                                                                                                                                                        MD5:0F00EC3E7A7767A4EFEAE1875FB5F3D4
                                                                                                                                                                        SHA1:167808418571E9209B952188DDAB2F4E62920E68
                                                                                                                                                                        SHA-256:B62D2733AB99556B108A1951D894C5A8D76B1AC7A00C02C388F9EB9BE046C56F
                                                                                                                                                                        SHA-512:E869F4A3B821A9933796DC9A56EE00483493369DFBFE07B3B1D895CB8318C6821CD44134EB37513F15B830C25861B596646824ED56672D08B678FEFE6A4C7504
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:############################################################.# .Default Logging Configuration File.#.# You can use a different file by specifying a filename.# with the java.util.logging.config.file system property..# For example, java -Djava.util.logging.config.file=myfile.############################################################..############################################################.# .Global properties.############################################################..# "handlers" specifies a comma-separated list of log Handler.# classes. These handlers will be installed during VM startup..# Note that these classes must be on the system classpath..# By default we only configure a ConsoleHandler, which will only.# show messages at the INFO and above levels..handlers= java.util.logging.ConsoleHandler..# To also add the FileHandler, use the following line instead..#handlers= java.util.logging.FileHandler, java.util.logging.ConsoleHandler..# Default global logging level..# This s

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\management\jmxremote.access

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3997
                                                                                                                                                                        Entropy (8bit):4.420287335425547
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:OWi7j7teK8MCN/xK4ijnv+wtosJj/D9mQyZWZuQg4X+dv:OWiv7L8rNXE+wusxr9m5WZuVbv
                                                                                                                                                                        MD5:5880F5255CF159B204761CF24BE76061
                                                                                                                                                                        SHA1:DB484EB763831DB19C089C9820A54CC875E4F624
                                                                                                                                                                        SHA-256:0C25D26EE212CA1E8C33F67C3C460D43FE849C3A1D23DBE341148517602B280C
                                                                                                                                                                        SHA-512:64D33ADD796D2D3DF7AD37AA452EE1D106174BE1ADE3063D73BA416211629A9A9B05177969404FDC92FCEE8458450C9DE4A6195744B93131303208CB6F1416AD
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:######################################################################.# Default Access Control File for Remote JMX(TM) Monitoring.######################################################################.#.# Access control file for Remote JMX API access to monitoring..# This file defines the allowed access for different roles. The.# password file (jmxremote.password by default) defines the roles and their.# passwords. To be functional, a role must have an entry in.# both the password and the access files..#.# The default location of this file is $JRE/conf/management/jmxremote.access.# You can specify an alternate location by specifying a property in.# the management config file $JRE/conf/management/management.properties.# (See that file for details).#.# The file format for password and access files is syntactically the same.# as the Properties file format. The syntax is described in the Javadoc.# for java.util.Properties.load..# A typical access file has multiple lines, where each

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\management\jmxremote.password.template

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):5690
                                                                                                                                                                        Entropy (8bit):4.7693843485946195
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:MdJb7RT9iQj/y3LNNWoT2Wjb3LpjtzIVSnQDeJuV9uiS2T4Z:059ipz1nlZzIVSnQDeJqpSSO
                                                                                                                                                                        MD5:AD773CFD53EFE03E662F1CF23561F725
                                                                                                                                                                        SHA1:3BAD5B040B6D7117DF4C40609EA0F8074339EE47
                                                                                                                                                                        SHA-256:0273B6A6B9E20E6CE54C5AEE70164028E0395063B2B7D39060A40B6495543DBF
                                                                                                                                                                        SHA-512:E6794168BA80A8FF733D8C1771930AE8C8FC33030E5E9CA02700F326C88A2F68FF09BC734BFD1E492EF15705B288C7918CE1F3F7174742DEE6A62DFE086ABD65
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:# ----------------------------------------------------------------------.# Template for jmxremote.password.#.# o Copy this template to jmxremote.password.# o Set the user/password entries in jmxremote.password.# o Change the permission of jmxremote.password to be accessible.# only by the owner..# o The jmxremote.passwords file will be re-written by the server.# to replace all plain text passwords with hashed passwords when.# the file is read by the server..#..##############################################################.# Password File for Remote JMX Monitoring.##############################################################.#.# Password file for Remote JMX API access to monitoring. This.# file defines the different roles and their passwords. The access.# control file (jmxremote.access by default) defines the allowed.# access for each role. To be functional, a role must have an entry.# in both the password and the access files..#.# Default location of this file

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\management\management.properties

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):14410
                                                                                                                                                                        Entropy (8bit):4.558236457767149
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:uRo1ZVZHV+Dq3xtPbDxPqZwNrLTesyuVcAXiiPpkI:ikZTHV+Dq3xtP3xPqaNr/es11v
                                                                                                                                                                        MD5:055470250AEFD21BB36A38AA74C9D9BE
                                                                                                                                                                        SHA1:A69B8A1D371D0E284490797D0B7BD952B339C92F
                                                                                                                                                                        SHA-256:F80096EC028DCB71625C398EC16D12023CAFC6A1C055ACEAED07D02E8D56F637
                                                                                                                                                                        SHA-512:F28BE5155E8DE08D1BC4992B2941E40B56AC3266CAB3AA48726C2DD3E720CC2F52DD63713658B4186AC31BD83C2178841CE776C3458CB8577A60C16714C2A643
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:#####################################################################.#.Default Configuration File for Java Platform Management.#####################################################################.#.# The Management Configuration file (in java.util.Properties format).# will be read if one of the following system properties is set:.# -Dcom.sun.management.jmxremote.port=<port-number>.# or -Dcom.sun.management.config.file=<this-file>.#.# The default Management Configuration file is:.#.# $JRE/conf/management/management.properties.#.# Another location for the Management Configuration File can be specified.# by the following property on the Java command line:.#.# -Dcom.sun.management.config.file=<this-file>.#.# If -Dcom.sun.management.config.file=<this-file> is set, the port.# number for the management agent can be specified in the config file.# using the following lines:.#.# ################ Management Agent Port #########################.#.# For setting the JMX RMI agent port

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\net.properties

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):6671
                                                                                                                                                                        Entropy (8bit):4.786259481951573
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:6ATE+VEtGObfObz3Ob6Onte3CO0V+r/aJ7SFXtqBZUT+gTzDuBnZkRnF:/LVGG4f4z346et5m27SnCgTe9GnF
                                                                                                                                                                        MD5:385443B7E4A37BC277C018CD1D336D49
                                                                                                                                                                        SHA1:B2C0DFB00BF699E817BDD49B14BC24B8D3282C65
                                                                                                                                                                        SHA-256:5BC726671936E0AF4FDF6BED67D9E3A20A92C30B0BA23673D0314BAA5E3FFB08
                                                                                                                                                                        SHA-512:260AFC7671A1DC0C443564F1D10386F0B241BB53C76DF68D8D03F1D0B1CEAF3F68847AB3477732C876C2B01C812EF7521744BEFE88E312F3AA63164B608B67A1
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:############################################################.# Default Networking Configuration File.#.# This file may contain default values for the networking system properties..# These values are only used when the system properties are not specified.# on the command line or set programmatically..# For now, only the various proxy settings can be configured here..############################################################..# Whether or not the DefaultProxySelector will default to System Proxy.# settings when they do exist..# Set it to 'true' to enable this feature and check for platform.# specific proxy settings.# Note that the system properties that do explicitly set proxies.# (like http.proxyHost) do take precedence over the system settings.# even if java.net.useSystemProxies is set to true...java.net.useSystemProxies=false..#------------------------------------------------------------------------.# Proxy configuration for the various protocol handlers..# DO NOT uncomment th

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\java.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2180
                                                                                                                                                                        Entropy (8bit):4.44345130079058
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:VP2hdA1rjIw9c3BBgqyYnhpwcdpULSELuodwZdw1yEQwSR:IA1rkw9cBgc1dKly
                                                                                                                                                                        MD5:FBF2B55342947695AA2A15E3485ED29F
                                                                                                                                                                        SHA1:A04C23F61D2958FC1E9882509927B43CAB0E799C
                                                                                                                                                                        SHA-256:F2A00A1DEC3B7A097F0815F338A84717BA1017D5D7AAE96D842D2188D67C3250
                                                                                                                                                                        SHA-512:35FFE47EB7D404785E5BEF3F1F26629F5DC04C54F9DCB082A250DA367414095B024E6486AD0332CEBE0348A2F972E9D58979C8C86AB9753F72FF0727BDA07C1C
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview://.// This system policy file grants a set of default permissions to all domains.// and can be configured to grant additional permissions to modules and other.// code sources. The code source URL scheme for modules linked into a.// run-time image is "jrt"..//.// For example, to grant permission to read the "foo" property to the module.// "com.greetings", the grant entry is:.//.// grant codeBase "jrt:/com.greetings" {.// permission java.util.PropertyPermission "foo", "read";.// };.//..// default permissions granted to all domains.grant {. // allows anyone to listen on dynamic ports. permission java.net.SocketPermission "localhost:0", "listen";.. // "standard" properies that can be read by anyone. permission java.util.PropertyPermission "java.version", "read";. permission java.util.PropertyPermission "java.vendor", "read";. permission java.util.PropertyPermission "java.vendor.url", "read";. permission java.util.PropertyPermission "java.class.version", "read";.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\java.security

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):58613
                                                                                                                                                                        Entropy (8bit):4.930818514862485
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:768:rnRBzVIMtipMfSyvqOpjt1p+SiIj/sjyaF/IJnoIqHihz3oFoBfCDqrsoZ9d5eDF:r2My8SiqOpjt1p5/jTG/UoQhzYKpNnCF
                                                                                                                                                                        MD5:9DE4139494E2C62F18B76E5DF12E2DFF
                                                                                                                                                                        SHA1:9F3B4E00DC585F09B098247463F0165EE3F34740
                                                                                                                                                                        SHA-256:D3869371D15A199E17E227A45B95E6B78B69FCE329DBA03C4A2A42CD3EFFF20B
                                                                                                                                                                        SHA-512:D4D150B28A2154C5C4474CF0289B66CD0DCDECCBC0CB943B98411EFEFB76AF61211DC528820B753FFEFE3A6D5A7272DD6F27E78E93BCE776D258A571C0E7A90C
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:#..# This is the "master security properties file"...#..# An alternate java.security properties file may be specified..# from the command line via the system property..#..# -Djava.security.properties=<URL>..#..# This properties file appends to the master security properties file...# If both properties files specify values for the same key, the value..# from the command-line properties file is selected, as it is the last..# one loaded...#..# Also, if you specify..#..# -Djava.security.properties==<URL> (2 equals),..#..# then that properties file completely overrides the master security..# properties file...#..# To disable the ability to specify an additional properties file from..# the command line, set the key security.overridePropertiesFile..# to false in the master security properties file. It is set to true..# by default...#..# If this properties file fails to load, the JDK implementation will throw..# an unspecified error when initializing the java.security.Security class.....

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\README.txt

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2390
                                                                                                                                                                        Entropy (8bit):4.7611843972228405
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:E8GAAhgyWyrLrDltqTiPpFbZcX9Ux7VNCVp7hbiqIPb1KAI3ry:wDFbDEiP72X9UxINhbJIPpGy
                                                                                                                                                                        MD5:3D47D94BC4F19D18BCC8B23F51D013AF
                                                                                                                                                                        SHA1:A97CD312D6A2A9C8C780C15E5AF51A2F4F97C2CB
                                                                                                                                                                        SHA-256:6DA0747334B0FEA7592FD92614B2BBC8B126535E129B1FEE483774D914E98EB5
                                                                                                                                                                        SHA-512:68A031264CF9442526307364CA74B336AF55564C233C2F514CAC48E910022767562F8FF6A64BB9CFCBF0FB5E755289273382C9246418A4B9207FC7761D03C64E
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:. Java(TM) Cryptography Extension Policy Files. for the Java(TM) Platform, Standard Edition Runtime Environment.. README.------------------------------------------------------------------------..Import and export control rules on cryptographic software vary from.country to country. The Java Cryptography Extension (JCE) architecture.allows flexible cryptographic key strength to be configured via the.jurisdiction policy files which are referenced by the "crypto.policy".security property in the <java-home>/conf/security/java.security file...By default, Java provides two different sets of cryptographic policy.files:.. unlimited: These policy files contain no restrictions on cryptographic. strengths or algorithms.. limited: These policy files contain more restricted cryptographic. strengths..These files reside in <java-home>/conf/security/policy in the "unlimited".or "limited" subdirectories respectively...

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\limited\default_US_export.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):146
                                                                                                                                                                        Entropy (8bit):4.527560331114326
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:RFWDci4MRvKJHJu3dfeHFGoF+FXGGNNLc0WLVyIGNp5MOsVn9:jq4MR6H82Hf83o0DITOs59
                                                                                                                                                                        MD5:1A08FFDF0BC871296C8D698FB22F542A
                                                                                                                                                                        SHA1:F3F974D3F6245C50804DCC47173AA29D4D7F0E2C
                                                                                                                                                                        SHA-256:758B930A526FC670AB7537F8C26321527050A31F5F42149A2DDA623C56A0A1A9
                                                                                                                                                                        SHA-512:4CFCA5B10CD7ADDCFF887C8F3621D2FBEC1B5632436326377B0CE5AF1AE3E8B68AC5A743CA6082FC79991B8EEC703A6E1DFD5B896153407AD72327753222FDB3
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:// Default US Export policy file...grant {. // There is no restriction to any algorithms.. permission javax.crypto.CryptoAllPermission; .};.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\limited\default_local.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):647
                                                                                                                                                                        Entropy (8bit):4.651231515753206
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12:jtGrnXjZnhQBI9hcv2/9BW3iVKXYU/9pY/9xl:krj1A8imGiVk6xl
                                                                                                                                                                        MD5:6D7B4616A5DBA477B6B6D3F9A12E568F
                                                                                                                                                                        SHA1:7FB67E217C53A685CB9314001592B5BD50B5FBB9
                                                                                                                                                                        SHA-256:2B2627548E61316150D47FFC3E6CAD465CA05B3CCCD4785EB7D21AA7BAA0F441
                                                                                                                                                                        SHA-512:A0B98CBBB49184DF973BB2C4A506E9BC6E025A696BC0C8054A6352CC3F9B4A38E3BAF117C6834DDADDC38498556607ED4EDA8F1BC683F662D61DA50E0DB0C8C2
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:// Some countries have import limits on crypto strength. This policy file.// is worldwide importable...grant {. permission javax.crypto.CryptoPermission "DES", 64;. permission javax.crypto.CryptoPermission "DESede", *;. permission javax.crypto.CryptoPermission "RC2", 128, . "javax.crypto.spec.RC2ParameterSpec", 128;. permission javax.crypto.CryptoPermission "RC4", 128;. permission javax.crypto.CryptoPermission "RC5", 128, . "javax.crypto.spec.RC5ParameterSpec", *, 12, *;. permission javax.crypto.CryptoPermission "RSA", *;. permission javax.crypto.CryptoPermission *, 128;.};.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\limited\exempt_local.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):566
                                                                                                                                                                        Entropy (8bit):4.521178196551511
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12:jtGrnXjbIbnPp7U5fKBuDeHHxYzKBuKKX8HHxYAKdKBuKfFxZwn:krjmnPp7UBKY6HHxoKYRX8HHxYvdKYKq
                                                                                                                                                                        MD5:4CBB03F484C86CBEA1A217BAAE07D3C9
                                                                                                                                                                        SHA1:EE67275BC119C98191A09FF72F043872B05AB7FD
                                                                                                                                                                        SHA-256:8C3D7648ABCD95A272CE12DB870082937F4D7F6878D730D83CB7FBB31EB8B2C9
                                                                                                                                                                        SHA-512:2BD70518AED6B0E01C520C446830C5F567FA72974548818CAC3E1E5C2BE6F03DB78CE6012F5463B1E19C36243D04CBAAD38EC79524635EAAE2E427EB1875CCDB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:// Some countries have import limits on crypto strength, but may allow for.// these exemptions if the exemption mechanism is used...grant {. // There is no restriction to any algorithms if KeyRecovery is enforced.. permission javax.crypto.CryptoPermission *, "KeyRecovery"; .. // There is no restriction to any algorithms if KeyEscrow is enforced.. permission javax.crypto.CryptoPermission *, "KeyEscrow"; .. // There is no restriction to any algorithms if KeyWeakening is enforced. . permission javax.crypto.CryptoPermission *, "KeyWeakening";.};.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\unlimited\default_US_export.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):146
                                                                                                                                                                        Entropy (8bit):4.527560331114326
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:RFWDci4MRvKJHJu3dfeHFGoF+FXGGNNLc0WLVyIGNp5MOsVn9:jq4MR6H82Hf83o0DITOs59
                                                                                                                                                                        MD5:1A08FFDF0BC871296C8D698FB22F542A
                                                                                                                                                                        SHA1:F3F974D3F6245C50804DCC47173AA29D4D7F0E2C
                                                                                                                                                                        SHA-256:758B930A526FC670AB7537F8C26321527050A31F5F42149A2DDA623C56A0A1A9
                                                                                                                                                                        SHA-512:4CFCA5B10CD7ADDCFF887C8F3621D2FBEC1B5632436326377B0CE5AF1AE3E8B68AC5A743CA6082FC79991B8EEC703A6E1DFD5B896153407AD72327753222FDB3
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:// Default US Export policy file...grant {. // There is no restriction to any algorithms.. permission javax.crypto.CryptoAllPermission; .};.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\security\policy\unlimited\default_local.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):193
                                                                                                                                                                        Entropy (8bit):4.403143222843641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:RF9QnzMGFgZJgQFcxqNGMRCKxGXcjQqbvUWeHFGoF+FXGGNNLc0WLVyIGNp5MOsn:j9Qna3FcxuwTXjkUZHf83o0DITOs59
                                                                                                                                                                        MD5:2A0F330C51AFF13A96AF8BD5082C84A8
                                                                                                                                                                        SHA1:AD2509631ED743C882999AC1200FD5FB8A593639
                                                                                                                                                                        SHA-256:8D8A318E6D90DFD7E26612D2B6385AA704F686CA6134C551F8928418D92B851A
                                                                                                                                                                        SHA-512:2B0385417A3FC2AF58B1CBB186DD3E0B0875E42923884153DEEE0EFCB390CA00B326ED5B266B3892D31BF7D40E10969A0B51DAA6D0B4CA3183770786925D3CDE
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:// Country-specific policy file for countries with no limits on crypto strength...grant {. // There is no restriction to any algorithms.. permission javax.crypto.CryptoAllPermission; .};.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\conf\sound.properties

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1210
                                                                                                                                                                        Entropy (8bit):4.681309933800066
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:va19LezUlOGdZ14BilDEwG5u3nVDWc/Wy:iaLGr1OsS5KnVaIWy
                                                                                                                                                                        MD5:4F95242740BFB7B133B879597947A41E
                                                                                                                                                                        SHA1:9AFCEB218059D981D0FA9F07AAD3C5097CF41B0C
                                                                                                                                                                        SHA-256:299C2360B6155EB28990EC49CD21753F97E43442FE8FAB03E04F3E213DF43A66
                                                                                                                                                                        SHA-512:99FDD75B8CE71622F85F957AE52B85E6646763F7864B670E993DF0C2C77363EF9CFCE2727BADEE03503CDA41ABE6EB8A278142766BF66F00B4EB39D0D4FC4A87
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:############################################################.# Sound Configuration File.############################################################.#.# This properties file is used to specify default service.# providers for javax.sound.midi.MidiSystem and.# javax.sound.sampled.AudioSystem..#.# The following keys are recognized by MidiSystem methods:.#.# javax.sound.midi.Receiver.# javax.sound.midi.Sequencer.# javax.sound.midi.Synthesizer.# javax.sound.midi.Transmitter.#.# The following keys are recognized by AudioSystem methods:.#.# javax.sound.sampled.Clip.# javax.sound.sampled.Port.# javax.sound.sampled.SourceDataLine.# javax.sound.sampled.TargetDataLine.#.# The values specify the full class name of the service.# provider, or the device name..#.# See the class descriptions for details..#.# Example 1:.# Use MyDeviceProvider as default for SourceDataLines:.# javax.sound.sampled.SourceDataLine=com.xyz.MyDeviceProvider.#.# Example 2:.# Specify the default Synthesizer by it

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.crs.client\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.crs.client\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.crs.client\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.crs.client\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.tooling\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.tooling\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.tooling\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\com.azul.tooling\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2114
                                                                                                                                                                        Entropy (8bit):4.530565844905079
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:r5lMXnnElB0wQCcM2acHM3WzguKzZmBwYq8K:r5lMUPJ4Z4buKVKG
                                                                                                                                                                        MD5:71BB3AD0017BF36D14BB96A8D4B32C45
                                                                                                                                                                        SHA1:1A5C553E71BDB7D94995B206BC9EAA49ABD1E888
                                                                                                                                                                        SHA-256:A69BCE275BA7A3570AF6579CB0F55682CD75FEDFCD49E0E8E9022270C447C916
                                                                                                                                                                        SHA-512:9F658DFEA71BDC3CC1549EDFB5AD3171DBFA0082B2D91E820C09ABE0B376B6BCD8B5170442A5E25E72274E98F130176BBDECFA7997C59705782B214F02136A20
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview: ADDITIONAL INFORMATION ABOUT LICENSING..Certain files distributed by Oracle America, Inc. and/or its affiliates are .subject to the following clarification and special exception to the GPLv2, .based on the GNU Project exception for its Classpath libraries, known as the .GNU Classpath Exception...Note that Oracle includes multiple, independent programs in this software .package. Some of those programs are provided under licenses deemed .incompatible with the GPLv2 by the Free Software Foundation and others. .For example, the package includes programs licensed under the Apache .License, Version 2.0 and may include FreeType. Such programs are licensed .to you under their original licenses. ..Oracle facilitates your further distribution of this package by adding the .Classpath Exception to the necessary parts of its GPLv2 code, which permits .you to use that code in combination with other independent modules not .licensed under the GPLv2. However, note that this woul

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1522
                                                                                                                                                                        Entropy (8bit):4.747042537008044
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:b0fFDmMbmRMAOJDcJb3W2zeD34eXqC/5Wx/kaRilV8hWrwr1:b09PbmqAOJIW2KT4eXqC/5WFkaEQW8Z
                                                                                                                                                                        MD5:D94F7C92FF61C5D3F8E9433F76E39F74
                                                                                                                                                                        SHA1:7A9B074CA8D783DBE5310ECC22F5538B65CC918E
                                                                                                                                                                        SHA-256:A44EB7B5CAF5534C6EF536B21EDB40B4D6BABF91BF97D9D45596868618B2C6FB
                                                                                                                                                                        SHA-512:D4044F6CEB094753075036920C0669631F4D3C13203CAF2BEA345E2CC4094905719732010BBE1CAE97BC78743AA6DEF7C2AA33F3E8FCA9971F2CA0457837D3B0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:.OPENJDK ASSEMBLY EXCEPTION..The OpenJDK source code made available by Oracle America, Inc. (Oracle) at.openjdk.java.net ("OpenJDK Code") is distributed under the terms of the GNU.General Public License <http://www.gnu.org/copyleft/gpl.html> version 2.only ("GPL2"), with the following clarification and special exception... Linking this OpenJDK Code statically or dynamically with other code. is making a combined work based on this library. Thus, the terms. and conditions of GPL2 cover the whole combination... As a special exception, Oracle gives you permission to link this. OpenJDK Code with certain code licensed by Oracle as indicated at. http://openjdk.java.net/legal/exception-modules-2007-05-08.html. ("Designated Exception Modules") to produce an executable,. regardless of the license terms of the Designated Exception Modules,. and to copy and distribute the resulting executable under GPL2,. provided that the Designated Exception Modules continue to be.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):551
                                                                                                                                                                        Entropy (8bit):4.7781601040994826
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:12:MiupB7xGXmyFo0U8hawEQ7CxGK2omzmBs2pBQRJ5dqI06q6lCH/:MPD0XlEQapBszR906qp
                                                                                                                                                                        MD5:0D7660D9BA23E8E4C99665E6ADDD5847
                                                                                                                                                                        SHA1:81574BA917519AC0D6DD0C9012F103B5D94884DF
                                                                                                                                                                        SHA-256:D509B570BCA0F86881F6790F55FDB24583779006015FB310CE1E61B9BCA0DA38
                                                                                                                                                                        SHA-512:04E0C19D4BCD7C82BC52F847A40BED8EB2255A9FE031D14CB6651B724B0FE8B084B26DFB0FD122C27774CEC3548A4ABACFCAD22F50C9547D2426190029267046
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:A .Classpath Exception File. means any source file contained in this distribution which contains the following words in such file.s header: .Oracle designates this particular file as subject to the "Classpath" exception as provided by Oracle in the LICENSE file that accompanied this code....Azul Systems, Inc. hereby confirms that each Classpath Exception File is subject to the clarification and special exception to the GPL that is outlined in the accompanying LICENSE file (under the heading ..CLASSPATH. EXCEPTION TO THE GPL.)..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):19274
                                                                                                                                                                        Entropy (8bit):4.667864876938965
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:sY2fSz/rGvS/66YsaZdIP3Lf4vAkMVhPGkupdDdicW:7vuvVmjkbylupdDdiZ
                                                                                                                                                                        MD5:3E0B59F8FAC05C3C03D4A26BBDA13F8F
                                                                                                                                                                        SHA1:A4FB972C240D89131EE9E16B845CD302E0ECB05F
                                                                                                                                                                        SHA-256:4B9ABEBC4338048A7C2DC184E9F800DEB349366BDF28EB23C2677A77B4C87726
                                                                                                                                                                        SHA-512:6732288C682A39ED9EDF11A151F6F48E742696F4A762C0C7D8872B99B9F6D5AB6C305064D4910B1A254862A873129F11FD0FA56FF11BC577D29303F4FB492673
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:The GNU General Public License (GPL)..Version 2, June 1991..Copyright (C) 1989, 1991 Free Software Foundation, Inc..51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA..Everyone is permitted to copy and distribute verbatim copies of this license.document, but changing it is not allowed...Preamble..The licenses for most software are designed to take away your freedom to share.and change it. By contrast, the GNU General Public License is intended to.guarantee your freedom to share and change free software--to make sure the.software is free for all its users. This General Public License applies to.most of the Free Software Foundation's software and to any other program whose.authors commit to using it. (Some other Free Software Foundation software is.covered by the GNU Library General Public License instead.) You can apply it to.your programs, too...When we speak of free software, we are referring to freedom, not price. Our.General Public Licenses are designed to make sure that

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\aes.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1444
                                                                                                                                                                        Entropy (8bit):5.194600884456683
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:j6omedtxUno8PbOIFThJyprYFTcQLey9Rwq32stOkg9SQROd32sZyxtT41BtGW+F:mhedtuTOIJarYJt7Cq32srX32sZEt01Q
                                                                                                                                                                        MD5:2E33468A535A4EB09EF57FC12A2652D0
                                                                                                                                                                        SHA1:E64516F3FA1E72F88CAA50F14B8046DD74D012B6
                                                                                                                                                                        SHA-256:45C6D4DA48325EDFBFF3DCF71C704E504C057904435ED23C6D57046D551EB69D
                                                                                                                                                                        SHA-512:4D14B5DDBB4D09797264ED29BA71FAB6986B4A9E75EFB9402C1476E0A9E2884813D6A922DEA125643B4F74E1F3E458F4E48D6C840E0F4D16ED72FFBC4611DBB2
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Cryptix AES v3.2.0..### Cryptix General License.<pre>..Cryptix General License..Copyright (c) 1995-2005 The Cryptix Foundation Limited..All rights reserved...Redistribution and use in source and binary forms, with or without.modification, are permitted provided that the following conditions are.met:.. 1. Redistributions of source code must retain the copyright notice,. this list of conditions and the following disclaimer... 2. Redistributions in binary form must reproduce the above copyright. notice, this list of conditions and the following disclaimer in. the documentation and/or other materials provided with the. distribution...THIS SOFTWARE IS PROVIDED BY THE CRYPTIX FOUNDATION LIMITED AND.CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,.INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF.MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED..IN NO EVENT SHALL THE CRYPTIX FOUNDATION LIMITED OR CONTRIBUTORS BE.LIABLE FOR ANY DIRECT

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\asm.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1584
                                                                                                                                                                        Entropy (8bit):5.200960306339295
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:/5OorYJCrYJ5zO432sHj32sZEtY17wNH7:UorYJCrYJZF3X31ENb
                                                                                                                                                                        MD5:66C0CECD7AADDF8F7D0CDB433C5C6036
                                                                                                                                                                        SHA1:C34EB481A27B11495D8E0A5505BE89826B8051E2
                                                                                                                                                                        SHA-256:1FF912740E84E024711DEF5FA482FFBB46EFF64559760C467352DFA7C39A3307
                                                                                                                                                                        SHA-512:7ECBF4EF5B621227CAA6889937E980CD3492E344B2EA06D0B8F6F247EB484420625EEBED3AD5F23F84251B47390CB115F41197909593D3CA7D293415AC9188C1
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## ASM Bytecode Manipulation Framework v8.0.1..### ASM License.<pre>..Copyright (c) 2000-2011 France T.l.com.All rights reserved...Redistribution and use in source and binary forms, with or without.modification, are permitted provided that the following conditions.are met:..1. Redistributions of source code must retain the above copyright. notice, this list of conditions and the following disclaimer...2. Redistributions in binary form must reproduce the above copyright. notice, this list of conditions and the following disclaimer in the. documentation and/or other materials provided with the distribution...3. Neither the name of the copyright holders nor the names of its. contributors may be used to endorse or promote products derived from. this software without specific prior written permission...THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS".AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE.IMPLIED WARRANTIES OF MERCHAN

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\c-libutl.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1556
                                                                                                                                                                        Entropy (8bit):5.222803386080423
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:M6IHO9JnJzn6432svv32s3EsIm3tYHzNb:jn9JnJznR3r3zVHaBb
                                                                                                                                                                        MD5:2E89A282A50F8702E52703464E6937CA
                                                                                                                                                                        SHA1:CFC22A6F5B17CD539234D5B3160A5224ABEFADB9
                                                                                                                                                                        SHA-256:BEF40679922D6FDFB7E4DDB223AD6722300F6054BA737BBF6188D60FCEC517F9
                                                                                                                                                                        SHA-512:AE459D8CE5581EA57E203088373C1CE86D122D0E27EB871EE1383E0E64CD8A184FA207EEE0E835347316E70AFA24A1C95AEC30DEF3E09D15EE19A0B2C3AD2095
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## c-libutl 20160225..### c-libutl License.```..This software is distributed under the terms of the BSD license...== BSD LICENSE ===============================================================.. (C) 2009 by Remo Dentato (rdentato@gmail.com)...Redistribution and use in source and binary forms, with or without modification,.are permitted provided that the following conditions are met:.. * Redistributions of source code must retain the above copyright notice,. this list of conditions and the following disclaimer.. * Redistributions in binary form must reproduce the above copyright notice,. this list of conditions and the following disclaimer in the documentation. and/or other materials provided with the distribution...THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND.ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED.WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE.DISCLAIMED. IN NO EVENT

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\cldr.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text, with very long lines (837)
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):9130
                                                                                                                                                                        Entropy (8bit):5.032821254249109
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:sFOhggAjHJc/3V/Prf26+n62WOdb/9R4FXghdxMHD3x0AS0FTZjU6pc:4OhggAu3VXrf261Sb/96X6AuASmvc
                                                                                                                                                                        MD5:8F5780E8D582FE686ED11535DEC512ED
                                                                                                                                                                        SHA1:B63B615A826D8A40F5A45DC49DA0FF1D8B6666C1
                                                                                                                                                                        SHA-256:F2BD33DED550A05D59E8F659416EF382490504548D846E6388B1DFFD273AA077
                                                                                                                                                                        SHA-512:49996CDCD2BFBF0E018E0FE127A98E5435E50C0B3F4891404E897826BE74AD56D253BFEB51934195ED559BE3C251613ECAE744C39FD6793F59DBC87DE6E970E5
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Unicode Common Local Data Repository (CLDR) v39..### CLDR License..```..UNICODE, INC. LICENSE AGREEMENT - DATA FILES AND SOFTWARE..See Terms of Use for definitions of Unicode Inc.'s.Data Files and Software...NOTICE TO USER: Carefully read the following legal agreement..BY DOWNLOADING, INSTALLING, COPYING OR OTHERWISE USING UNICODE INC.'S.DATA FILES ("DATA FILES"), AND/OR SOFTWARE ("SOFTWARE"),.YOU UNEQUIVOCALLY ACCEPT, AND AGREE TO BE BOUND BY, ALL OF THE.TERMS AND CONDITIONS OF THIS AGREEMENT..IF YOU DO NOT AGREE, DO NOT DOWNLOAD, INSTALL, COPY, DISTRIBUTE OR USE.THE DATA FILES OR SOFTWARE...COPYRIGHT AND PERMISSION NOTICE..Copyright . 1991-2021 Unicode, Inc. All rights reserved..Distributed under the Terms of Use in https://www.unicode.org/copyright.html...Permission is hereby granted, free of charge, to any person obtaining.a copy of the Unicode data files and any associated documentation.(the "Data Files") or Unicode software and any associated documentation.(the "Software") to

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\icu.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text, with very long lines (849)
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11086
                                                                                                                                                                        Entropy (8bit):4.982322403001006
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:OQkggAjHJc/3V/Prff/BX1QH1DcT7mrfrGj+Bn6W2+d7/tRgXwhdxMHD324nkAyV:OQkggAu3VXrff/HparfKjfi7/t6X6AOD
                                                                                                                                                                        MD5:2F77C0CAE3FDC2B5B6E8D85898CC4C2F
                                                                                                                                                                        SHA1:92DB4D2A0CDC8680910FC434A1A637A5B87ED599
                                                                                                                                                                        SHA-256:AF0057E8553906083F69C2FB9FE9ED4AE8BC2340A0B1E376A424702F00300B29
                                                                                                                                                                        SHA-512:2A105217C50F345C1FBA6DEC9FF8A3C70EC0C14F4821C1175C2C21D4E6B5F4F1E7A49D29AAE9698C4850A2298802EB926EB6D80CD6082EEAA623394B10F28967
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## International Components for Unicode (ICU4J) v67.1..### ICU4J License.```..COPYRIGHT AND PERMISSION NOTICE (ICU 58 and later)..Copyright . 1991-2020 Unicode, Inc. All rights reserved..Distributed under the Terms of Use in https://www.unicode.org/copyright.html...Permission is hereby granted, free of charge, to any person obtaining.a copy of the Unicode data files and any associated documentation.(the "Data Files") or Unicode software and any associated documentation.(the "Software") to deal in the Data Files or Software.without restriction, including without limitation the rights to use,.copy, modify, merge, publish, distribute, and/or sell copies of.the Data Files or Software, and to permit persons to whom the Data Files.or Software are furnished to do so, provided that either.(a) this copyright and permission notice appear with all copies.of the Data Files or Software, or.(b) this copyright and permission notice appear in associated.Documentation...THE DATA FILES AND SOFTWARE ARE

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\public_suffix.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):17785
                                                                                                                                                                        Entropy (8bit):4.591906517978096
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:gn7Ga28R/9yoeF6cXpMPWeXlUl5omyzQdBGYVSleCqxi:gn7GNw/woj25kzQdBG4CqI
                                                                                                                                                                        MD5:A90527D48AD0216FD1E5241015BB0F77
                                                                                                                                                                        SHA1:A59B3BF9478184BE7AE959E27CE7257BC418985A
                                                                                                                                                                        SHA-256:BCA182053946267C1F3BB5D160849A6A290B2AEFC57ABC7155180CA98DB87301
                                                                                                                                                                        SHA-512:6FE7F9980D1E29A0AB7CCCF8ACB1B73C867E48A975799F57E07381A432B5EAD70B2F470649AA36E38B6BFBF3E819FA2D2B9C4E3281C86ECF500549B1B4800038
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Mozilla Public Suffix List..### Public Suffix Notice.```.You are receiving a copy of the Mozilla Public Suffix List in the following.file: <java-home>/lib/security/public_suffix_list.dat. The terms of the.Oracle license do NOT apply to this file; it is licensed under the.Mozilla Public License 2.0, separately from the Oracle programs you receive..If you do not wish to use the Public Suffix List, you may remove the.<java-home>/lib/security/public_suffix_list.dat file...The Source Code of this file is available under the.Mozilla Public License, v. 2.0 and is located at.https://raw.githubusercontent.com/publicsuffix/list/3c213aab32b3c014f171b1673d4ce9b5cd72bf1c/public_suffix_list.dat..If a copy of the MPL was not distributed with this file, you can obtain one.at https://mozilla.org/MPL/2.0/...Software distributed under the License is distributed on an "AS IS" basis,.WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License.for the specific language governing rights and l

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\unicode.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2384
                                                                                                                                                                        Entropy (8bit):5.168907700608063
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:fbgsglbhyAY4FCNPcNSyW5rSr+lP1JKrzteztw/wHasTI4c/Lr0in/Prfk0x:jd+hythPggfPQzkzqYHJc/3V/Prf5x
                                                                                                                                                                        MD5:A37C772AAEB922A5FF741A1DA81D52AC
                                                                                                                                                                        SHA1:85C21732F4903895DAE6E512D23ACCC5D26010DF
                                                                                                                                                                        SHA-256:5E4E6623A21A63F9BC16EA54AF4133B8038E490C0D499A74676F9E5A61B9C5B2
                                                                                                                                                                        SHA-512:17805F146FAE2058FF99D051D231BFC7238C2B79DC70930AF01F3C56657E06D037664CD9DBDC42FE48C3539DCF39F4B799E0A53D08A8891BA2AF484745B956AA
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## The Unicode Standard, Unicode Character Database, Version 13.0.0. .### Unicode Character Database.```..UNICODE, INC. LICENSE AGREEMENT - DATA FILES AND SOFTWARE..See Terms of Use for definitions of Unicode Inc.'s.Data Files and Software...NOTICE TO USER: Carefully read the following legal agreement..BY DOWNLOADING, INSTALLING, COPYING OR OTHERWISE USING UNICODE INC.'S.DATA FILES ("DATA FILES"), AND/OR SOFTWARE ("SOFTWARE"),.YOU UNEQUIVOCALLY ACCEPT, AND AGREE TO BE BOUND BY, ALL OF THE.TERMS AND CONDITIONS OF THIS AGREEMENT..IF YOU DO NOT AGREE, DO NOT DOWNLOAD, INSTALL, COPY, DISTRIBUTE OR USE.THE DATA FILES OR SOFTWARE...COPYRIGHT AND PERMISSION NOTICE..Copyright . 1991-2020 Unicode, Inc. All rights reserved..Distributed under the Terms of Use in https://www.unicode.org/copyright.html...Permission is hereby granted, free of charge, to any person obtaining.a copy of the Unicode data files and any associated documentation.(the "Data Files") or Unicode software and any associated do

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\wepoll.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1454
                                                                                                                                                                        Entropy (8bit):5.23517420325372
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:jGjqwlJQUnoc+bOI/rYFTY+Jy/rYFTj5794Os43sEskuZKWROLTt3hyxLTfyL3tI:qj3viOYrYJarYJ74943JL53hELmL3tqh
                                                                                                                                                                        MD5:CEF1D92FF8ACE278BD32AC5E18735B86
                                                                                                                                                                        SHA1:6C7D15E2B8F3E99527458C8EA33420EE1D34AF7B
                                                                                                                                                                        SHA-256:3AC2992770080453B98C42AFA807BA4B2C1738EF756B92A55C645F55E7DF48F0
                                                                                                                                                                        SHA-512:12AA61AE93FC626A230F39F44CA11C75086FD9BB50F2794FB9FEC29B9BEF924545FC19D9CB38FDA631560CA78AE8E587144CF3CF3C83A6B336BB4711611393BF
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Bert Belder: wepoll v 1.5.8..### wepoll License.```.wepoll - epoll for Windows.https://github.com/piscisaureus/wepoll..Copyright 2012-2020, Bert Belder <bertbelder@gmail.com>.All rights reserved...Redistribution and use in source and binary forms, with or without.modification, are permitted provided that the following conditions are.met:.. * Redistributions of source code must retain the above copyright. notice, this list of conditions and the following disclaimer... * Redistributions in binary form must reproduce the above copyright. notice, this list of conditions and the following disclaimer in the. documentation and/or other materials provided with the distribution...THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS."AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT.LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR.A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT.OWNER OR CONTRIBUTORS BE LIABLE F

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.base\zlib.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1011
                                                                                                                                                                        Entropy (8bit):4.588387206517629
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:jptxuyMlc/LxAbno0QNplTp4XGBi+g7Y8PaO:FJCc/LebnN63Tp4X4i/7ZSO
                                                                                                                                                                        MD5:440321D71D082C9F04A9995B613BDFF2
                                                                                                                                                                        SHA1:9AF688D499B3026EC8E5A2E266DC4B9B4884A87B
                                                                                                                                                                        SHA-256:81518EBC49D23A7C77B2E08EFF48664EA0C7DD90957A0CAF22FD9654985D3285
                                                                                                                                                                        SHA-512:C516403A109630B79998F3BEA6B698247A0B5367CC9873DEFA75014E8C98C690D34D0810D32792D80FDE1333980AC6C5F19324743795CB6455EF0EE4979496BB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## zlib v1.2.13..### zlib License.<pre>..Copyright (C) 1995-2022 Jean-loup Gailly and Mark Adler..This software is provided 'as-is', without any express or implied.warranty. In no event will the authors be held liable for any damages.arising from the use of this software...Permission is granted to anyone to use this software for any purpose,.including commercial applications, and to alter it and redistribute it.freely, subject to the following restrictions:..1. The origin of this software must not be misrepresented; you must not. claim that you wrote the original software. If you use this software. in a product, an acknowledgment in the product documentation would be. appreciated but is not required..2. Altered source versions must be plainly marked as such, and must not be. misrepresented as being the original software..3. This notice may not be removed or altered from any source distribution...Jean-loup Gailly Mark Adler.jloup@gzip.org madler@alumni.caltech.e

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.compiler\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.compiler\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.compiler\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.compiler\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.datatransfer\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.datatransfer\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.datatransfer\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.datatransfer\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\colorimaging.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):167
                                                                                                                                                                        Entropy (8bit):4.67070372864436
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:RFRELUacKIVVPDwwP1FZenv+PELUaRHUBQecOczDP8LUacKIVG9V4n:jxKIVbZAevcvLKIVGon
                                                                                                                                                                        MD5:0889FD01A6802A5A934572D9BD47F430
                                                                                                                                                                        SHA1:7A7E547452EE1C72E8B0D96DCCBE315F62D5B564
                                                                                                                                                                        SHA-256:04D61E3E8E71DD452EBE52008AF5378D9F6640D14578AEB515DC5375973B0189
                                                                                                                                                                        SHA-512:F5872960470810CDBDC2DB1DFB216CAB88203B23400B16E157C8654C2EECFF8D9B26CE066EC18718C8E6D54EE1C54533FDADE395C454210FED5159FD4A7A0ADB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Eastman Kodak Company: Portions of color management and imaging software..### Eastman Kodak Notice.<pre>.Portions Copyright Eastman Kodak Company 1991-2003.</pre>..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\freetype.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):30389
                                                                                                                                                                        Entropy (8bit):4.805494922736416
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:uG8DLZxGw7hiVHEUwi5rRL67cyV12rPd34FomzM2/R+qWo72gUcKvHlOR:uGIGKM7FCExGFzeqf72gUcKoR
                                                                                                                                                                        MD5:F73E7C9F7921E48924E4EFC7C18272E4
                                                                                                                                                                        SHA1:AE9D107DB00CA6BF72140E4C82C0442CCC25FAD5
                                                                                                                                                                        SHA-256:200BB5ABE514B22A08D1834C6A6E38A471BF0AE635D9A41B523381994AB0F938
                                                                                                                                                                        SHA-512:64F73C9E5AD2DF74B2C41847DFA1F6EB7B923B662CD7C1EC14A9F9712BE6DF94F7E1495C59A4C5D3505A5528EA5A32D77BE8EB81596803C22FACE80A435F688A
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## The FreeType Project: Freetype v2.12.1...### FreeType Notice..```.FreeType comes with two licenses from which you can choose the one.which fits your needs best... The FreeType License (FTL) is the most commonly used one. It is. a BSD-style license with a credit clause and thus compatible with. the GNU Public License (GPL) version 3, but not with the. GPL version 2... The GNU General Public License (GPL), version 2. Use it for all. projects which use the GPLv2 also, or which need a license. compatible to the GPLv2...```..### FreeType License.```..Copyright (C) 1996-2022 by David Turner, Robert Wilhelm, and Werner Lemberg..Copyright (C) 2007-2022 by Dereg Clegg and Michael Toftdal..Copyright (C) 1996-2022 by Just van Rossum, David Turner, Robert Wilhelm, and Werner Lemberg..Copyright (C) 2004-2022 by Masatake YAMATO and Redhat K.K..Copyright (C) 2007-2022 by Derek Clegg and Michael Toftdal..Copyright (C) 2007-2022 by David Turner..Copyright (C) 2022 by David Turne

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\giflib.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1288
                                                                                                                                                                        Entropy (8bit):5.243726093802808
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:jXksrmJHHH0yN3gtsHw1hj9QHOsUv4eOk4q/m3oqLF5/zwO8pn:7ksaJHlxE35QHOs5e/m3ogF5/rqn
                                                                                                                                                                        MD5:867001E2A577F88CFC856F45959502AA
                                                                                                                                                                        SHA1:109C11CEC13349212BA94B9F3EB7D0943229938E
                                                                                                                                                                        SHA-256:C8B99F33890887D27AD56FBA9EDD8EBBC668CFE0689168505A95613D1D4B32F8
                                                                                                                                                                        SHA-512:DAFAC31D75A7AB4DDD7666799A24ABF22C1583CA22554A738CC26A77BF927B20DDE52F12194670A5196BCE3A43BD58DE46944291727C8877FEE1FE4A38A1F1CA
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## GIFLIB v5.2.1..### GIFLIB License.```..The GIFLIB distribution is Copyright (c) 1997 Eric S. Raymond..Permission is hereby granted, free of charge, to any person obtaining a copy.of this software and associated documentation files (the "Software"), to deal.in the Software without restriction, including without limitation the rights.to use, copy, modify, merge, publish, distribute, sublicense, and/or sell.copies of the Software, and to permit persons to whom the Software is.furnished to do so, subject to the following conditions:..The above copyright notice and this permission notice shall be included in.all copies or substantial portions of the Software...THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,.FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE.AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER.LIABILITY, WHETHER IN AN ACTION OF C

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\harfbuzz.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3314
                                                                                                                                                                        Entropy (8bit):5.412755751602557
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:jFn5yGjOgp8RC+s6jDVOtU8Ia/p9dQ5v0i+m/eyyaHR:nyGjOgp0C+s6jDctUH7Mzm/dyax
                                                                                                                                                                        MD5:7C5D81A4D973A3486000202C28FB9231
                                                                                                                                                                        SHA1:5DD8D53C6F08F761A4F3497C0D50E4BCDB5BE597
                                                                                                                                                                        SHA-256:DDA06FB914F6AE09679356F86CE9ADCF0A89FEDBE44BCD9C81EDC45B59DA600F
                                                                                                                                                                        SHA-512:76DF82872309E6CCA88E82662E277A59DBCE2C3F8F28BE38F14A872CB2DA381E219B98D0E4EB4961960D6220E378A8816F83F1BBA076A89AAF3263FD8647B253
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Harfbuzz v7.0.1..### Harfbuzz License..https://github.com/harfbuzz/harfbuzz/blob/7.0.1/COPYING..<pre>..HarfBuzz is licensed under the so-called "Old MIT" license. Details follow..For parts of HarfBuzz that are licensed under different licenses see individual.files names COPYING in subdirectories where applicable...Copyright . 2010-2022 Google, Inc..Copyright . 2018-2020 Ebrahim Byagowi.Copyright . 2004-2013 Red Hat, Inc..Copyright . 2019 Facebook, Inc..Copyright . 2007 Chris Wilson.Copyright . 2018-2019 Adobe Inc..Copyright . 2006-2023 Behdad Esfahbod.Copyright . 1998-2004 David Turner and Werner Lemberg.Copyright . 2009 Keith Stribley.Copyright . 2018 Khaled Hosny.Copyright . 2016 Elie Roux <elie.roux@telecom-bretagne.eu>.Copyright . 2016 Igalia S.L..Copyright . 2015 Mozilla Foundation..Copyright . 1999 David Turner.Copyright . 2005 Werner Lemberg.Copyright . 2013-2015 Alexei Podtelezhnikov.Copyright . 2022 Matthias Clasen.Copyright . 2011 Codethin

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\jpeg.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3475
                                                                                                                                                                        Entropy (8bit):4.758544977538361
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:4Bu4P6N9yV51OOC+CfubwcdIFwJ2ERKCeSLNCANVgfkPGbhG2uVBWdybKjb9jMNJ:4Bu39yX84O6ZloAD2/sJjWdyejpsh
                                                                                                                                                                        MD5:DE0E5A6CFC652C81EE7B582AA004DAD5
                                                                                                                                                                        SHA1:FC3BED0E9B640DAAC5C5336BADEBB3A55E89DFD5
                                                                                                                                                                        SHA-256:580BE596216EE11E2554B24CE944973ACAEDE2EBF5FFBA34A6BD8CC441C05043
                                                                                                                                                                        SHA-512:1B78C0FE3AECAF1D4DA9D7C5D84CB15D7ACEBDECBF73B224CF72B9F84BC269A84B8366150A63A28485EE61D51595CFBFC5FBE6A175A9E277D5A41038C9E0828B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Independent JPEG Group: JPEG release 6b..### JPEG License..```.****************************************************************************..Copyright (C) 1991-1998, Thomas G. Lane...This software is the work of Tom Lane, Philip Gladstone, Jim Boucher,.Lee Crocker, Julian Minguillon, Luis Ortiz, George Phillips, Davide Rossi,.Guido Vollbeding, Ge' Weijers, and other members of the Independent JPEG.Group...IJG is not affiliated with the official ISO JPEG standards committee. ..The authors make NO WARRANTY or representation, either express or implied,.with respect to this software, its quality, accuracy, merchantability, or.fitness for a particular purpose. This software is provided "AS IS",.and you, its user, assume the entire risk as to its quality and accuracy...This software is copyright (C) 1991-1998, Thomas G. Lane..All Rights Reserved except as specified below...Permission is hereby granted to use, copy, modify, and distribute.this software (or portions thereof) for any purpos

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\lcms.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2630
                                                                                                                                                                        Entropy (8bit):5.23012419800887
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:/kQnDiJzfPvGtXICQH+sfINi3OMFO4+XnDtdfOBFTgqKJfW4AhY9gaXWhk:zYPutYCQHXOaMDTOB6JO3Y9z
                                                                                                                                                                        MD5:04A8A77CAFDD6185A3506ECCF7A83346
                                                                                                                                                                        SHA1:1ACBEC21E9EAB8BD2BEE9826353C1E768D5457B5
                                                                                                                                                                        SHA-256:8ACF00B5EFD25C1C055927222FD3C26B0C9FD02ED02E478C225B64E7A24D9782
                                                                                                                                                                        SHA-512:A91FAA243A09BDFE62714859B9B4420E8434DD09693A6A280E1C8EF6694FB7858D0171FAE4CA36721B685E3AB8BC8000C5635BF3789250A5B9081130EB4FF57C
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Little Color Management System (LCMS) v2.15..### LCMS License.<pre>.README.1ST file information..LittleCMS core is released under MIT License..---------------------------------..Little CMS.Copyright (c) 1998-2023 Marti Maria Saguer..Permission is hereby granted, free of charge, to any person obtaining.a copy of this software and associated documentation files (the."Software"), to deal in the Software without restriction, including.without limitation the rights to use, copy, modify, merge, publish,.distribute, sublicense, and/or sell copies of the Software, and to.permit persons to whom the Software is furnished to do so, subject.to the following conditions:..The above copyright notice and this permission notice shall be.included in all copies or substantial portions of the Software...THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,.EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF.MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\libpng.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):6917
                                                                                                                                                                        Entropy (8bit):4.868728080688719
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:cDuVlzhu3psX8aB9Mo3AWobRafwOOn6Qu:cuzhu3psX8aB9Mo3kafwOOn6Qu
                                                                                                                                                                        MD5:6F75AB13B20D4C6BBDB207A5DF282D7A
                                                                                                                                                                        SHA1:BA86C9938BE37C424D59E13EFE0EC64E53470967
                                                                                                                                                                        SHA-256:DE52F63E2A34591E42E6352C40C91C98E13452E9D9FBCDA074A3301D0DB8C209
                                                                                                                                                                        SHA-512:3391DB7828667BE74A158F35E6896794F3BCCCFEEFAF5A08D1D3D8BD63115B0F36EA96A645C73665B9AE4678143775957061A38492CF14A054FF2813A1C5D81D
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## libpng v1.6.38..### libpng License.<pre>..COPYRIGHT NOTICE, DISCLAIMER, and LICENSE.=========================================..PNG Reference Library License version 2.---------------------------------------..Copyright (c) 1995-2022 The PNG Reference Library Authors..Copyright (c) 2018-2022 Cosmin Truta.Copyright (c) 1998-2018 Glenn Randers-Pehrson.Copyright (c) 1996-1997 Andreas Dilger.Copyright (c) 1995-1996 Guy Eric Schalnat, Group 42, Inc...The software is supplied "as is", without warranty of any kind,.express or implied, including, without limitation, the warranties.of merchantability, fitness for a particular purpose, title, and.non-infringement. In no event shall the Copyright owners, or.anyone distributing the software, be liable for any damages or.other liability, whether in contract, tort or otherwise, arising.from, out of, or in connection with the software, or the use or.other dealings in the software, even if advised of the possibility.of such damage...Permission is he

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.desktop\mesa3d.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):5732
                                                                                                                                                                        Entropy (8bit):5.1453426112774965
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:tqsVQHfoGKlxESLI1GXVsCGQHlzQUGP+0nWeHGT+weUGP+0nWeHGT+wI:pQHfh4hE1GX1GQH9pqnWeHGySqnWeHGK
                                                                                                                                                                        MD5:C7E0D19C8F4EFF11E97F0EB9AFD3F7F4
                                                                                                                                                                        SHA1:6A98EE2703132E181F37D162452F073FB64CED83
                                                                                                                                                                        SHA-256:63F4E6F75CAEBBCCB95D903FB43E46AC7111B3624D0A34F146B276D7D9E7B152
                                                                                                                                                                        SHA-512:9C4111728AB9472F0B160CB11CE1E4EBD75A83CFDDCA0B3CB87243D15AFC5A7FA34DC6006E6B92084648CBAD1426F70B405259F589CDEF758442643E1618DFF4
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Mesa 3-D Graphics Library v21.0.3..### Mesa License..```.Copyright (C) 1999-2007 Brian Paul All Rights Reserved...Permission is hereby granted, free of charge, to any person obtaining a.copy of this software and associated documentation files (the "Software"),.to deal in the Software without restriction, including without limitation.the rights to use, copy, modify, merge, publish, distribute, sublicense,.and/or sell copies of the Software, and to permit persons to whom the.Software is furnished to do so, subject to the following conditions:..The above copyright notice and this permission notice shall be included.in all copies or substantial portions of the Software...THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS.OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,.FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL.THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER.LIABILITY, WHETHER IN

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.instrument\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.instrument\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.instrument\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.instrument\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.logging\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.logging\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.logging\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.logging\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management.rmi\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management.rmi\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management.rmi\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management.rmi\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.management\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.naming\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.naming\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.naming\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.naming\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.net.http\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.net.http\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.net.http\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.net.http\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.prefs\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.prefs\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.prefs\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.prefs\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.rmi\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.rmi\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.rmi\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.rmi\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.scripting\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.scripting\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.scripting\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.scripting\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.se\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.se\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.se\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.se\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.jgss\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.jgss\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.jgss\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.jgss\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.sasl\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.sasl\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.sasl\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.security.sasl\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.smartcardio\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.smartcardio\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.smartcardio\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.smartcardio\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql.rowset\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql.rowset\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql.rowset\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql.rowset\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.sql\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.transaction.xa\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.transaction.xa\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.transaction.xa\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.transaction.xa\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml.crypto\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml.crypto\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml.crypto\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml.crypto\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml.crypto\santuario.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11436
                                                                                                                                                                        Entropy (8bit):4.569140702546197
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:bEASdeYFPVRQUM9o1XDFMKdFSvJZN+0G04Hrc3Pv8KIHKxF9Nmu3Dzt1XkTYst3L:YxNRrM21TiA+8VL+EKdXNt9xkTYE3L
                                                                                                                                                                        MD5:DF4B970846BC5C7742C8356641731613
                                                                                                                                                                        SHA1:EE0A66A8C52C2294E0FA8B7EDD2B7CFB6C6B2F3F
                                                                                                                                                                        SHA-256:6C05574D99B0D7E38C6217DB5718E7BA2EE7F710F23A5F8228E502DCFFE43E7A
                                                                                                                                                                        SHA-512:EE1463A0ADABB1F6BFC046EBB802FD01A9341828D730199B2423021CFF1134BA5FAA252767AB8572CA942A3590D834EED6A895FBF0E96FFADE98E2DF266CD612
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Apache Santuario v2.3.0..### Apache Santuario Notice.<pre>.. Apache Santuario - XML Security for Java. Copyright 1999-2021 The Apache Software Foundation.. This product includes software developed at. The Apache Software Foundation (http://www.apache.org/)... It was originally based on software copyright (c) 2001, Institute for. Data Communications Systems, <http://www.nue.et-inf.uni-siegen.de/>... The development of this software was partly funded by the European. Commission in the <WebSig> project in the ISIS Programme...</pre>..### Apache 2.0 License.<pre>.. Apache License. Version 2.0, January 2004. http://www.apache.org/licenses/..TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION..1. Definitions... "License" shall mean the terms and conditions for use, reproduction,. and distribution as defined by Sections 1 through 9 of this document... "Licensor" shall mean the copyright owner or

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\bcel.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11195
                                                                                                                                                                        Entropy (8bit):4.560484592386489
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:KSEASdeYFPVRQUM9o1XDFMKdFSvJZN+0G04Hrc3Pv8KIHKxF9Nmu3Dzt1XkTYstb:GxNRrM21TiA+8VL+EKdXNt9xkTYE3L
                                                                                                                                                                        MD5:8BC98021A73FF0A9CDAD9DC5E84339BE
                                                                                                                                                                        SHA1:023EF9164BE63E1794FF97C2A81BA05509919641
                                                                                                                                                                        SHA-256:E8C2AA528A5A0531482DBFD23EC9290FCDB373AF67A04870E780BDF98CD6ADC2
                                                                                                                                                                        SHA-512:1AE0CDECB6D3D9847E3178B663B38DD396775CEDD5F5745A23192CF6AFFC7667090F56756FA6C36CC762D62B55D2DBFD659323A275DEEFCDCC9ADBA0BEC77044
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Apache Commons Byte Code Engineering Library (BCEL) Version 6.5.0..### Apache Commons BCEL Notice.<pre>.. Apache Commons BCEL. Copyright 2004-2020 The Apache Software Foundation.. This product includes software developed at. The Apache Software Foundation (https://www.apache.org/)...</pre>..### Apache 2.0 License.<pre>.. Apache License. Version 2.0, January 2004. http://www.apache.org/licenses/..TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION..1. Definitions... "License" shall mean the terms and conditions for use, reproduction,. and distribution as defined by Sections 1 through 9 of this document... "Licensor" shall mean the copyright owner or entity authorized by. the copyright owner that is granting the License... "Legal Entity" shall mean the union of the acting entity and all. other entities that control, are controlled by, or are under common. control with that entity

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\dom.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3761
                                                                                                                                                                        Entropy (8bit):5.033869042271464
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:Ve/ylyTd5/pe/aI6WEebVkoFxqbvyY5rpErRz+ulK0ZSw1bQknlZFQ/:Veamn/CZFrxWfyrgulK7hklI
                                                                                                                                                                        MD5:13952C46B3867103AD7D1E9C6C9E906C
                                                                                                                                                                        SHA1:4BF3F9908314B05F3B0F6E27BE2C1FB7E25FFFBB
                                                                                                                                                                        SHA-256:6686E8877667584A3A7C07344BAADCA1A03E29F677162D87C3C0811E990D1148
                                                                                                                                                                        SHA-512:8C71F226F0F07B471AEA6B8E715434B5EAA6B4A59A653EC22C2489E743E9288A0C4537F479719F9D58737D0257470C9CCEFF9CE647A96E79FD757A4CDCFED499
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## DOM Level 3 Core Specification v1.0..### W3C Software Notice.<pre>.Copyright . 2004 World Wide Web Consortium, (Massachusetts Institute of Technology,.European Research Consortium for Informatics and Mathematics, Keio University)..All Rights Reserved...The DOM bindings are published under the W3C Software Copyright Notice and License..The software license requires "Notice of any changes or modifications to the W3C.files, including the date changes were made." Consequently, modified versions of.the DOM bindings must document that they do not conform to the W3C standard; in the.case of the IDL definitions, the pragma prefix can no longer be 'w3c.org'; in the.case of the Java language binding, the package names can no longer be in the.'org.w3c' package..</pre>..### W3C License.<pre>..W3C SOFTWARE NOTICE AND LICENSE..http://www.w3.org/Consortium/Legal/2002/copyright-software-20021231..This work (and included software, documentation such as READMEs, or other.related items) is being prov

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\jcup.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1448
                                                                                                                                                                        Entropy (8bit):4.528798913343144
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:jjlpTTCb5r9q6kqyiuZLX2DjXkIMmgmlye4ihXSZX3AVmF0RevTIRX2U8Zxk:1pTTIvteiupX2DNtgmlyF2Xi1F0RjmdM
                                                                                                                                                                        MD5:D19594FBF6EAB2242DC29257905D8DED
                                                                                                                                                                        SHA1:FBDCBE5A7E7D91D440C200F5FB00E0CF6A81976C
                                                                                                                                                                        SHA-256:8D5DCFDF50455A3C34C753A98F21E953248AF200415A9084E3F102CB6C43B8BF
                                                                                                                                                                        SHA-512:7ED3E58F189F2922F7543D4617308D0C35F8ADC2E7CBBB6FBBA49D33CDD5DA64C6EDC022AE9842C28E58D97B056A245245C816003978F1E0152236636CA72BA5
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## CUP Parser Generator for Java v 0.11b..### CUP Parser Generator License..```.Copyright 1996-2015 by Scott Hudson, Frank Flannery, C. Scott Ananian, Michael Petter..Permission to use, copy, modify, and distribute this software and its.documentation for any purpose and without fee is hereby granted, provided.that the above copyright notice appear in all copies and that both.the copyright notice and this permission notice and warranty disclaimer.appear in supporting documentation, and that the names of the authors or.their employers not be used in advertising or publicity pertaining to.distribution of the software without specific, written prior permission...The authors and their employers disclaim all warranties with regard to.this software, including all implied warranties of merchantability and.fitness. In no event shall the authors or their employers be liable for.any special, indirect or consequential damages or any damages whatsoever.resulting from loss of use, data or profits, w

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\xalan.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):13494
                                                                                                                                                                        Entropy (8bit):4.618562983474662
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:384:BlvxNRrM21TiA+8VL+EKdXNt9xkTYE3c2S2G:BlvxPBTiA+8VLtqPPkXs2S2G
                                                                                                                                                                        MD5:B29A2D48A582BE602D54DA738C304350
                                                                                                                                                                        SHA1:24D8FEA1126ACFC1EE4F990FD761D138637E6147
                                                                                                                                                                        SHA-256:EA67226BE5CFE19C7E79725C2C24A16676323264D69F9747C528DE0B44541B03
                                                                                                                                                                        SHA-512:1B63BEEFADAA6AB21A54A68ABE901A38624453F7CC3BA6870E831DFB9C23990D19B67ADA316E72A06129CFCB49CCC495C2ED6B35CD565F05E4AD1DCEB87E8752
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Apache Xalan v2.7.2..### Apache Xalan Notice.<pre>.. ======================================================================================. == NOTICE file corresponding to the section 4d of the Apache License, Version 2.0, ==. == in this case for the Apache Xalan distribution. ==. ======================================================================================.. This product includes software developed by. The Apache Software Foundation (http://www.apache.org/)... Specifically, we only include the XSLTC portion of the source from the Xalan distribution. . The Xalan project has two processors: an interpretive one (Xalan Interpretive) and a . compiled one (The XSLT Compiler (XSLTC)). We *only* use the XSLTC part of Xalan; We use. the source from the packages that are part of the XSLTC sources... Portions of this software was originally based on the following:.. - software copyright (c) 1999-2002, Lotus Development

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\java.xml\xerces.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11852
                                                                                                                                                                        Entropy (8bit):4.611377085862739
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:CNuXsEASdeYFPVRQUM9o1XDFMKdFSvJZN+0G04Hrc3Pv8KIHKxF9Nmu3Dzt1XkT/:Cg7xNRrM21TiA+8VL+EKdXNt9xkTYE3L
                                                                                                                                                                        MD5:5FEAC4B0A3606D75537B6B9D355E5D3D
                                                                                                                                                                        SHA1:D5A230002B75EA8F003984000F743A85EADCF7C9
                                                                                                                                                                        SHA-256:472224F99DE833F4F4C19F2F8A0317F22114E1C641F5D77FFA3A4280A1B80176
                                                                                                                                                                        SHA-512:D0B638C8EF8BAB5630FAAD0D65B24735B567F7BD413E82F3CA48166C681CF00E8E543AB26EF8C6148A00956EF80C68C06C4FC31632352B403B39C799ECE4DBC2
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Apache Xerces v2.12.2..### Apache Xerces Notice.<pre>. =========================================================================. == NOTICE file corresponding to section 4(d) of the Apache License, ==. == Version 2.0, in this case for the Apache Xerces Java distribution. ==. =========================================================================. . Apache Xerces Java. Copyright 1999-2022 The Apache Software Foundation.. This product includes software developed at. The Apache Software Foundation (http://www.apache.org/)... Portions of this software were originally based on the following:. - software copyright (c) 1999, IBM Corporation., http://www.ibm.com.. - software copyright (c) 1999, Sun Microsystems., http://www.sun.com.. - voluntary contributions made by Paul Eng on behalf of the. Apache Software Foundation that were originally developed at iClick, Inc.,. software copyright (c) 1999..</pre>..### Apache 2.0 License.<pre>..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.accessibility\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.accessibility\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.accessibility\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.accessibility\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.charsets\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.charsets\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.charsets\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.charsets\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\pkcs11cryptotoken.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Unicode text, UTF-8 text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3923
                                                                                                                                                                        Entropy (8bit):4.8260970484556776
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:+tC/GvWZpnLtVVuXdfgnWTRshYzxkhXSWR1kM8oT6i6hqgamulkbXdrRjNYRTh5w:vGObLxI0W6hCukJe6i6HDXdrRkTLU
                                                                                                                                                                        MD5:FA24B7E2A61A7045CB0C6C385000681B
                                                                                                                                                                        SHA1:869FC0B687986EA26B8FF63C137E03C92234A5C8
                                                                                                                                                                        SHA-256:262802E081760B38B3748C8B194353D340E39BC936AC22E17ABBB7158D895811
                                                                                                                                                                        SHA-512:2676CFDFD61762C7B6171985E8CFE1068C36683CA43753A1FFB10241AC61A74C9BE1C00BE22903DF85BA6954FD908D77DE60903C316506FD88B9679672ADA968
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## OASIS PKCS #11 Cryptographic Token Interface v3.0..### OASIS PKCS #11 Cryptographic Token Interface License.<pre>..Copyright . OASIS Open 2020. All Rights Reserved... All capitalized terms in the following text have the meanings.assigned to them in the OASIS Intellectual Property Rights Policy (the."OASIS IPR Policy"). The full Policy may be found at the OASIS website:.[http://www.oasis-open.org/policies-guidelines/ipr].. This document and translations of it may be copied and furnished to.others, and derivative works that comment on or otherwise explain it or.assist in its implementation may be prepared, copied, published, and.distributed, in whole or in part, without restriction of any kind,.provided that the above copyright notice and this section are included.on all such copies and derivative works. However, this document itself.may not be modified in any way, including by removing the copyright.notice or references to OASIS, except as needed for the purpose of.developing

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.cryptoki\pkcs11wrapper.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2131
                                                                                                                                                                        Entropy (8bit):5.173293353802325
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:BuwOOrXIJHJzI/NNl+eMuj2PMicp32srF32sZEtY17wBH7:4OrXIJHJz+NFMwhp3131EBb
                                                                                                                                                                        MD5:B77D1951DF7A8488EB84CE1D25486A14
                                                                                                                                                                        SHA1:E35415235EC3BBCB92BEECEB03A9A8E7C13A6FCE
                                                                                                                                                                        SHA-256:371974B1FCA3744A3892C7EE1FCC593B8B4281FC218F4CAFD2F709E9DF5FD81D
                                                                                                                                                                        SHA-512:759C75F87309B67C56A5B7088045E04BE7C023ECDBAEA80842E22B81B0BFB36026191070471F8B08FEF47EC73664611CE0453B4A9818F7708C95663733EE5CE9
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## IAIK (Institute for Applied Information Processing and Communication) PKCS#11 wrapper files v1..### IAIK License.<pre>..Copyright (c) 2002 Graz University of Technology. All rights reserved...Redistribution and use in source and binary forms, with or without.modification, are permitted provided that the following conditions are met:..1. Redistributions of source code must retain the above copyright notice, this. list of conditions and the following disclaimer...2. Redistributions in binary form must reproduce the above copyright notice,. this list of conditions and the following disclaimer in the documentation. and/or other materials provided with the distribution...3. The end-user documentation included with the redistribution, if any, must. include the following acknowledgment:.. "This product includes software developed by IAIK of Graz University of. Technology.".. Alternately, this acknowledgment may appear in the software itself, if and. wherever such third-par

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.ec\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.ec\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.ec\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.ec\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.mscapi\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.mscapi\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.mscapi\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.crypto.mscapi\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.dynalink\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.dynalink\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.dynalink\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.dynalink\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.dynalink\dynalink.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1502
                                                                                                                                                                        Entropy (8bit):5.195762399673515
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:j9TAjUUnoU+bOInrYFTY+JynrYFTtssxBJJ9i432sEEAkuyROd32sZyxtT41Btmv:3OYrYJKrYJmozi432sVK32sZEt01BtE5
                                                                                                                                                                        MD5:7C3773C14E9DE1161A33902D64854BDE
                                                                                                                                                                        SHA1:BEE6874BD3625623C939441C9269F9C6239A9247
                                                                                                                                                                        SHA-256:17312591CABEE3EF6C34ED8897D92E4E361BA9CEA41EC00DCD61A322A8FC2CDB
                                                                                                                                                                        SHA-512:86EE77D8E129B78173964461CD27200AEAB7FB6417FE0F4982D9B126ED2292216D08212BE91B53ECCB26DD6A8B3E1AAB1D1DBAB85C2133872AC0027DC87A8223
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Dynalink v.5..### Dynalink License.<pre>..Copyright (c) 2009-2013, Attila Szegedi..Redistribution and use in source and binary forms, with or without.modification, are permitted provided that the following conditions are.met:.* Redistributions of source code must retain the above copyright. notice, this list of conditions and the following disclaimer..* Redistributions in binary form must reproduce the above copyright. notice, this list of conditions and the following disclaimer in the. documentation and/or other materials provided with the distribution..* Neither the name of the copyright holder nor the names of. contributors may be used to endorse or promote products derived from. this software without specific prior written permission...THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS.IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED.TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A.PARTICULAR PURPOSE ARE DISCLAIMED. I

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.httpserver\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.httpserver\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.httpserver\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.httpserver\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.foreign\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.foreign\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.foreign\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.foreign\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.vector\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.vector\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.vector\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.incubator.vector\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jdwp.agent\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jdwp.agent\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jdwp.agent\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jdwp.agent\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jfr\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jfr\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jfr\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jfr\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jsobject\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jsobject\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jsobject\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.jsobject\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\cldr.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.8212266049160206
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXGl:clPETY
                                                                                                                                                                        MD5:34C921033BD4EA16D1F88A6206730AA0
                                                                                                                                                                        SHA1:F6F0C684B111FA3385D90BFD7C68B38ED18134C9
                                                                                                                                                                        SHA-256:09972449731A1D1A0863AF0384AEB7839F84CAC74983C96856E6C305E31ED8B2
                                                                                                                                                                        SHA-512:19A43AB7B25DB61EFD8E844AFBF5B3C640E3C97143765F868F297673820CE0ED451E2FCBFF70C45300D6E04384EFCCD8B5A3FA1C311BA579C7BC359DF1F5223D
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\cldr.md..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.localedata\thaidict.md

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1346
                                                                                                                                                                        Entropy (8bit):5.137098860141584
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:jLGwAkIL2LjjWrmJHHH0yN3gtsHw1hC09QHOsUv4eOk4/+/m3oqLFB:fRAk+2LnWaJHlxE3dQHOs5exm3ogFB
                                                                                                                                                                        MD5:2EA6EB55CA40902554AAF2FD20A76BA8
                                                                                                                                                                        SHA1:E5B9E88E174C797C313D6739E7E34772B723BC4B
                                                                                                                                                                        SHA-256:C326144A2351C9608FA708B5D7D3C5A3DA03E82B66479B128E9DB4969539824A
                                                                                                                                                                        SHA-512:5221112CD8EF83B636DC4364F53B72C5484A5885ACB55C2C071C88D23058093CAEE38578F7E424ECAFDB483CCC0BC8E78D7AC13ADD536EC824A8EAC171A576CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:## Thai Dictionary..### Thai Dictionary License.<pre>..Copyright (C) 1982 The Royal Institute, Thai Royal Government...Copyright (C) 1998 National Electronics and Computer Technology Center,.National Science and Technology Development Agency,.Ministry of Science Technology and Environment,.Thai Royal Government...Permission is hereby granted, free of charge, to any person obtaining a copy.of this software and associated documentation files (the "Software"), to deal.in the Software without restriction, including without limitation the rights.to use, copy, modify, merge, publish, distribute, sublicense, and/or sell.copies of the Software, and to permit persons to whom the Software is.furnished to do so, subject to the following conditions:..The above copyright notice and this permission notice shall be included in all.copies or substantial portions of the Software...THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRAN

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.agent\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.agent\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.agent\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.agent\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.jfr\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.jfr\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.jfr\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management.jfr\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.management\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.dns\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.dns\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.dns\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.dns\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.rmi\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.rmi\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.rmi\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.naming.rmi\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.net\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.net\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.net\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.net\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.nio.mapmode\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.nio.mapmode\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.nio.mapmode\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.nio.mapmode\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.random\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.random\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.random\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.random\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.sctp\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.sctp\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.sctp\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.sctp\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.auth\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.auth\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.auth\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.auth\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.jgss\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.jgss\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.jgss\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.security.jgss\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.unsupported\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.unsupported\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.unsupported\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.unsupported\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.xml.dom\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.xml.dom\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.xml.dom\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.xml.dom\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.zipfs\ADDITIONAL_LICENSE_INFO

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):49
                                                                                                                                                                        Entropy (8bit):4.433601620014652
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXk3sxLwZm+64j:clPETMsxLwZWy
                                                                                                                                                                        MD5:19C9D1D2AAD61CE9CB8FB7F20EF1CA98
                                                                                                                                                                        SHA1:2DB86AB706D9B73FEEB51A904BE03B63BEE92BAF
                                                                                                                                                                        SHA-256:EBF9777BD307ED789CEABF282A9ACA168C391C7F48E15A60939352EFB3EA33F9
                                                                                                                                                                        SHA-512:7EC63B59D8F87A42689F544C2E8E7700DA5D8720B37B41216CBD1372C47B1BC3B892020F0DD3A44A05F2A7C07471FF484E4165427F1A9CAD0D2393840CD94E5B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ADDITIONAL_LICENSE_INFO..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.zipfs\ASSEMBLY_EXCEPTION

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):44
                                                                                                                                                                        Entropy (8bit):4.507742914525315
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXkGonu9X1En:clPETQnu4
                                                                                                                                                                        MD5:7CAF4CDBB99569DEB047C20F1AAD47C4
                                                                                                                                                                        SHA1:24E7497426D27FE3C17774242883CCBED8F54B4D
                                                                                                                                                                        SHA-256:B998CDA101E5A1EBCFB5FF9CDDD76ED43A2F2169676592D428B7C0D780665F2A
                                                                                                                                                                        SHA-512:A1435E6F1E4E9285476A0E7BC3B4F645BBAFB01B41798A2450390E16B18B242531F346373E01D568F6CC052932A3256E491A65E8B94B118069853F2B0C8CD619
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\ASSEMBLY_EXCEPTION..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.zipfs\CLASSPATH_EXCEPTION_NOTE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):50
                                                                                                                                                                        Entropy (8bit):4.456174630069641
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXmEuxt6rg0Kdn:clPETQt609dn
                                                                                                                                                                        MD5:1C43A62CCB13753A4628196D7D2F0721
                                                                                                                                                                        SHA1:C06B36090F2DD4ADDCD817C0050D90ECB484B909
                                                                                                                                                                        SHA-256:FC53C8FA583C1A3D2ED48B0328114C16ED7F749A09B504F2126840795BE73405
                                                                                                                                                                        SHA-512:8BD99173FF6981C1755D966D8D53840CABE68D2E354F9650627F53EA3B8DED1045A1697C20A820361CF6C0AAFC1E3C0225278347DDA841F409B5A7CC65F121CB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\CLASSPATH_EXCEPTION_NOTE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\legal\jdk.zipfs\LICENSE

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):33
                                                                                                                                                                        Entropy (8bit):3.9801694078807643
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:cD5PETXpZgov:clPET53v
                                                                                                                                                                        MD5:16989BAB922811E28B64AC30449A5D05
                                                                                                                                                                        SHA1:51AB20E8C19EE570BF6C496EC7346B7CF17BD04A
                                                                                                                                                                        SHA-256:86E0516B888276A492B19F9A84F5A866ED36925FAE1510B3A94A0B6213E69192
                                                                                                                                                                        SHA-512:86571F127A6755A7339A9ED06E458C8DC5898E528DE89E369A13C183711831AF0646474986BAE6573BC5155058D5F38348D6BFDEB3FD9318E98E0BF7916E6608
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Please see ..\java.base\LICENSE..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\classlist

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with very long lines (522), with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):73306
                                                                                                                                                                        Entropy (8bit):5.083425225052994
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:nXnUxpW9comUyMl8aXbgiTICcb+K+5KV22S/2eLU88Nl8slfa+U18rft8s1COzA5:n3UxpRYyMl8+T2S/2ej
                                                                                                                                                                        MD5:D5970ED8AD54362A894440AB014A2BAB
                                                                                                                                                                        SHA1:EC9C25C06D5B134AF158BFE219B89697E6C2DB53
                                                                                                                                                                        SHA-256:72EF810EBC51485C87DD8D3F1E4B1301FD664A05F84972401C908D7A403C9E12
                                                                                                                                                                        SHA-512:2826936B8EBA54FA8BD887561BB574E138BA616826504F681BB5FE23F8E236B7CB02F07DC618E1955A818A88272CFBEB1EA4B7DB1601BEAAE2098BC6B47A958F
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:# NOTE: Do not modify this file...#..# This file is generated via the -XX:DumpLoadedClassList=<class_list_file> option..# and is used at CDS archive dump time (see -Xshare:dump)...#..java/lang/Object..java/io/Serializable..java/lang/Comparable..java/lang/CharSequence..java/lang/constant/Constable..java/lang/constant/ConstantDesc..java/lang/String..java/lang/reflect/AnnotatedElement..java/lang/reflect/GenericDeclaration..java/lang/reflect/Type..java/lang/invoke/TypeDescriptor..java/lang/invoke/TypeDescriptor$OfField..java/lang/Class..java/lang/Cloneable..java/lang/ClassLoader..java/lang/System..java/lang/Throwable..java/lang/Error..java/lang/ThreadDeath..java/lang/Exception..java/lang/RuntimeException..java/lang/SecurityManager..java/security/ProtectionDomain..java/security/AccessControlContext..java/security/AccessController..java/security/SecureClassLoader..java/lang/ReflectiveOperationException..java/lang/ClassNotFoundException..java/lang/Record..java/lang/LinkageError..java/lang/NoC

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\fontconfig.bfc

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:raw G3 (Group 3) FAX
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):4630
                                                                                                                                                                        Entropy (8bit):4.437305910502734
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:Pdbj5aublPBl7BWBBTiraXnaZziAaZH29sKG:P5j3pfuBTi2cz0Cs7
                                                                                                                                                                        MD5:0E25B41E6ACF99681EAF2E8B572F18D1
                                                                                                                                                                        SHA1:D6B4290DA768E050FE6C310366272F87E6C2B6D2
                                                                                                                                                                        SHA-256:968AC99BBAAF8A49A474C934E73AD58F88C6C7F2A363CB44771E0378444E36BA
                                                                                                                                                                        SHA-512:7C1E98BC6582AF9E9C58C13CDC4D257E441A6D48FD395A3601AD558EBD481257F138D6F0DCBFE12735EB6BEBEB7C8985B3D8AF633B545FA01D56738F56360C08
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:...1.......8.h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m.l._.`.V.n.j.|.o.c.a.k.X.d.].p.r.s.{.b.Y.~.g.}.e.y.\.W.z.[...f.q.x.^.t.v.Z.u.h.i.w...............................................................................................................!..... ...........#.$.%.'.&.).".(.....................................................................................................................................................................$............./........... .................#.(.-.2.7.<.A.F.K.P.U.[

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\fontconfig.properties.src

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):12345
                                                                                                                                                                        Entropy (8bit):5.208754321730197
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:GTh0C+e6a1nsNi8bTeOiO/Ywca9nB2RmhC3uB+Guo7Oj:GThBlnHIR9B2Rmh6UOj
                                                                                                                                                                        MD5:5A1F8A604694AF3E955C12190DE02F6C
                                                                                                                                                                        SHA1:5309AE6DD01DE0090131ECC469E965F286186FA3
                                                                                                                                                                        SHA-256:B44540473B97364E0F7A8A0002DD21D7A0717028FA1533F139BC98F40C91C0F0
                                                                                                                                                                        SHA-512:DB9D26A8418AC50E74E877B2FFCE8F4D702D109606893E5577FDF467BA80A0339AD12AAC50E175F6F9A9D872540E404682B05B1F22B26CB416708013CA237A07
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:#.# .# Copyright (c) 2003, 2019, Oracle and/or its affiliates. All rights reserved..# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER..#.# This code is free software; you can redistribute it and/or modify it.# under the terms of the GNU General Public License version 2 only, as.# published by the Free Software Foundation. Oracle designates this.# particular file as subject to the "Classpath" exception as provided.# by Oracle in the LICENSE file that accompanied this code..#.# This code is distributed in the hope that it will be useful, but WITHOUT.# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or.# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License.# version 2 for more details (a copy is included in the LICENSE file that.# accompanied this code)..#.# You should have received a copy of the GNU General Public License version.# 2 along with this work; if not, write to the Free Software Foundation,.# Inc., 51 Franklin St, Fifth Floor,

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jawt.lib

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:current ar archive
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1682
                                                                                                                                                                        Entropy (8bit):4.452063996686037
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:aruyRbNfjuyfGcb5/PvuKp7u+yAOWuyRb5/edKOu8yR+/7rEfKeu/b5/cO:azVX5nvuKtjyAOS5WdKOLDrEfKeY50O
                                                                                                                                                                        MD5:C776505E87492C92E8A5124E7DC36E6F
                                                                                                                                                                        SHA1:EFB9D273B44DEEFAD484F22E9E17B8854933B6C3
                                                                                                                                                                        SHA-256:4EF584EFF8BF701FCFE1F80A5DFF2E2846833AA0ED2145BE8624A73CCE1FFACE
                                                                                                                                                                        SHA-512:77A1717F1AB1BEF3087A04936C439E27D0138BFA1EF6A8664834FCE4DF3AE84B6225E29D67B28607D74E4CA905AA2DD6E5A65E9F9A3B0760524E0D934C3CEA16
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:!<arch>./ -1 0 126 `....................,...,__IMPORT_DESCRIPTOR_jawt.__NULL_IMPORT_DESCRIPTOR..jawt_NULL_THUNK_DATA.JAWT_GetAWT.__imp_JAWT_GetAWT./ -1 0 136 `.................,.................JAWT_GetAWT.__IMPORT_DESCRIPTOR_jawt.__NULL_IMPORT_DESCRIPTOR.__imp_JAWT_GetAWT..jawt_NULL_THUNK_DATA.jawt.dll/ -1 0 482 `.d....................debug$S........>...................@..B.idata$2............................@.0..idata$6............................@. ..............jawt.dll'....................u.Microsoft (R) LINK..................................................jawt.dll..@comp.id.u...........................idata$2@.......h..idata$6...........idata$4@.......h..idata$5@.......h.......................6.............L...__IMPORT_DESCRIPTOR_jawt.__NULL_IMPORT_DESCRIPTOR..jawt_NULL_THUNK_DATA.jawt.dll/ -1 0 247 `.d....o..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jfr\default.jfc

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:XML 1.0 document, ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):36014
                                                                                                                                                                        Entropy (8bit):4.569600105326587
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:j9M/2nNvlK3L7lYpFQ0CzQWVWKnuAgb0/Gragm0q:j9M/MNQXlY+zQWQKnsVag9q
                                                                                                                                                                        MD5:31E2D129DC3CAE567D253A94FA285944
                                                                                                                                                                        SHA1:CE34FAC158A582EFBE025521371ECFCC4B3169D6
                                                                                                                                                                        SHA-256:4B57387ABE8B51DFAE91B392274DE6F8F03E41FF8501240293404C2A5B1C4995
                                                                                                                                                                        SHA-512:1FC15B4DDB26B516FE43D67CC8942DE4FCB828D0D5948873CBAC7937DC6730542240BB358B8BE5CFCE9B249081020C211147FD354FE418BDE1E283C0BC3836BB
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:<?xml version="1.0" encoding="UTF-8"?>. . Recommended way to edit .jfc files is to use the configure command of. the 'jfr' tool, i.e. jfr configure, or JDK Mission Control. see Window -> Flight Recorder Template Manager.-->..<configuration version="2.0" label="Continuous" description="Low overhead configuration safe for continuous use in production environments, typically less than 1 % overhead." provider="Oracle">.. <event name="jdk.ThreadAllocationStatistics">. <setting name="enabled">true</setting>. <setting name="period">everyChunk</setting>. </event>.. <event name="jdk.ClassLoadingStatistics">. <setting name="enabled">true</setting>. <setting name="period">1000 ms</setting>. </event>.. <event name="jdk.ClassLoaderStatistics">. <setting name="enabled">true</setting>. <setting name="period">everyChunk</setting>. </event>.. <event name="jdk.JavaThreadStatistics">. <setting name="enabled">true</setting>. <sett

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jfr\profile.jfc

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:XML 1.0 document, ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):35974
                                                                                                                                                                        Entropy (8bit):4.567556770338571
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:jb2/tEMdK3L7uHpFQ0WzQ51TPUuAgb0/GraMmpq:jb2/WMwXuJKzQ55PUsVaMYq
                                                                                                                                                                        MD5:DD3EDD73B3DFEE9CCD2F62A48A8D0978
                                                                                                                                                                        SHA1:7909778105C2334470D41C0F21B9E4B2F9DE7390
                                                                                                                                                                        SHA-256:509D1403D6BBD78AFEA4AF8D1890AEF5F391212D2ECC6C2D0D15311FB6717656
                                                                                                                                                                        SHA-512:770838FAB542F72DA35C9AAB9F78A5F9F2438F7779354C0CBAA5DC8895EE01EC71F6DBDADEFA19D5AFAEA0CF291681855847FC1112D88EACB38685733F299F4F
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:<?xml version="1.0" encoding="UTF-8"?>. . Recommended way to edit .jfc files is to use the configure command of. the 'jfr' tool, i.e. jfr configure, or JDK Mission Control. see Window -> Flight Recorder Template Manager.-->..<configuration version="2.0" label="Profiling" description="Low overhead configuration for profiling, typically around 2 % overhead." provider="Oracle">.. <event name="jdk.ThreadAllocationStatistics">. <setting name="enabled">true</setting>. <setting name="period">everyChunk</setting>. </event>.. <event name="jdk.ClassLoadingStatistics">. <setting name="enabled">true</setting>. <setting name="period">1000 ms</setting>. </event>.. <event name="jdk.ClassLoaderStatistics">. <setting name="enabled">true</setting>. <setting name="period">everyChunk</setting>. </event>.. <event name="jdk.JavaThreadStatistics">. <setting name="enabled">true</setting>. <setting name="period">1000 ms</setting>. <

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jrt-fs.jar

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Java archive data (JAR)
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):110513
                                                                                                                                                                        Entropy (8bit):7.932396851546147
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:hyAmlzYlLWP5RUn8TXbWH6W8z+qv8JAh5YYTuR4:h5OzeaRUOhnjvcAVyR4
                                                                                                                                                                        MD5:16B1158905646699977214C2A8BCCDCC
                                                                                                                                                                        SHA1:DFB78DE5D0A0143F25FDFA4A051C883FC961BCA0
                                                                                                                                                                        SHA-256:44970C92FCB9515F1F454EE4B44DC1207FA6746914EEA161CC4F6F3B1D1D90BE
                                                                                                                                                                        SHA-512:49B6C384B72DA631A4BDC7E2C7CBEC46CA76985E6DB4523454C8A1D13605DE666131700E2AB510D2FD07891773A9FA3AB0772AB41BD35912CB6A154FB6D874AC
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:PK........w?.V................META-INF/......PK..............PK........w?.V................META-INF/MANIFEST.MFm....0.D....]*.PWJw... .+.Cz..<Jr[._.E.G...s.Vu.(.......<cI.T....YzQ.1.....ZP......]..7qe[.s8y!5B.|...2.F..b.y......;;C..a.......6hh.@h..*+9KJ...Mw.<.E.,Y.;PK..$......4...PK........w?.V............6...META-INF/services/java.nio.file.spi.FileSystemProvider.J....+I-.K...**I+..**q..I..,.I..(./.LI-...PK....'.+...)...PK........w?.V............,...jdk/internal/jimage/BasicImageReader$1.class.TkO.A.=......,......X....@...k...a;.)...._i.H....G..l7R(1.&;wzz..s....?~.x.Wyd.5...~..Vc.~$..=.%wyS8.<...~..!Ty.!..2=.`.^i.=.x.o:.HI.Y..,...;......_.!.L\....!.3...V7[..../.y.l..n....%.Wp.....#..0....>....f*..z.j/d.:n..i..FO&J..K|...2.t..U7L..]..,.G.a.....~...X.b(U6.=..2......P.*.u..x.l......+...5%..'....F2........Yg.-..........P....\}.ro.+...`.....w.a..4.e..Q..t.D.iC....+..y.V..Y.b.R{.9.gJ..R......."....f...)..KP...;3y<..}.........0.!.V.^..*...~s...4Z:"K...9

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jvm.cfg

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):29
                                                                                                                                                                        Entropy (8bit):4.185230132909402
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:ryMpy7IKnv:Rct
                                                                                                                                                                        MD5:7CE21BDCFA333C231D74A77394206302
                                                                                                                                                                        SHA1:C5A940D2DEE8E7BFC01A87D585DDCA420D37E226
                                                                                                                                                                        SHA-256:AA9EFB969444C1484E29ADECAB55A122458090616E766B2F1230EF05BC3867E0
                                                                                                                                                                        SHA-512:8B37A1A5600E0A4E5832021C4DB50569E33F1DDC8AC4FC2F38D5439272B955B0E3028EA10DEC0743B197AA0DEF32D9E185066D2BAC451F81B99539D34006074B
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:-server KNOWN.-client IGNORE.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\jvm.lib

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:current ar archive
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):992172
                                                                                                                                                                        Entropy (8bit):5.45662183468792
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:jG6ciU+5bLsFoX5He80JtzlIbsSstft2k+jL/oY0P0rAzILY/VEtrMUMB:joi7bLsq50vIufsfjjPrwIYetgt
                                                                                                                                                                        MD5:DADCFF502DCB0B9F83AC929EC08BD36D
                                                                                                                                                                        SHA1:E3B7F4A406810DB0E937A4076754BA24D3F4EFBF
                                                                                                                                                                        SHA-256:00F78F518DD51E9F67D2E03907F04C5BF84240D718EC48445EFDDF1028D872A9
                                                                                                                                                                        SHA-512:AC2E2A35D40814780B3F88D432B490A72B702E4235B4E4C4929BD10F47B2270B3B5CB8425AC9EEC50A3863396F99B32049CDEBBA1B9DCBCCD3016E5DD46D101A
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:!<arch>./ -1 0 273760 `....?..[z..]...^...`...`...`...`...a...a...a...a...b...b...b...b...c8..c8..c...c...dL..dL..d...d...e`..e`..e...e...f`..f`..f...f...gd..gd..g...g...hz..hz..i...i...i...i...j...j...j...j...k...k...k...k...l,..l,..l...l...m>..m>..m...m...nD..nD..n...n...oP..oP..o...o...pP..pP..p...p...qZ..qZ..q...q...rB..rB..r...r...sV..sV..s...s...tr..tr..t...t...u...u...v...v...v...v...w...w...w...w...x6..x6..x...x...y\..y\..y...y...zr..zr..z...z...{~..{~..|...|...|...|...}...}...}...}...~...~...~...~....$...$...........6...6...........^...^...................................................<...<...........N...N...........X...X...........j...j...........t...t...........................................................X...X...................,...,...........2...2...........@...@...........:...:...........N...N...........N...N...........P...P...........H...H...........@...@...........X...X...................\...\...................`...`....

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\modules

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Java module image (little endian), version 1.0
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):82738717
                                                                                                                                                                        Entropy (8bit):6.497140576390831
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:393216:aVh0CQKP0NQ0ZJ85p/zljkO8LpoTaB/N/2O:aLrQKP0NQEJ85p/zljkO8LpoTaB1uO
                                                                                                                                                                        MD5:B9C14F57591087AC928BC508DFE0CD8F
                                                                                                                                                                        SHA1:8D2560ED61A36DFB2798C3EC77C5CB7EE0FA20FD
                                                                                                                                                                        SHA-256:C881DE363FCAB56360F16702A2519CA63C452A0EBA4F2B1281D4FEE40576C8BE
                                                                                                                                                                        SHA-512:C5DAD20668565C153AD9EF179126B511F892DE31C160B353D60FEE3922CF584537E287D9D5C0C2F8509F387324D6A635212C951CD0B2ED5DBEDA114BD5D29316
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:.............X...X..................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................~.......................}...z...x...........................v...s...m.......g...................c.......b...a.......`.......\...[...................W...................................V.......U.......P.......................M.......L...I...B...........A.......>...9.......................5...................3...............1...............0...................-...,...*.......)...(...&...%...#...................................".......

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\psfont.properties.ja

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):3793
                                                                                                                                                                        Entropy (8bit):5.260880283220047
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:R8grHIty/qHh+m2YPOWK89HoIbTUjbyuJdI2FylXLr96cpcnnI0adbEk+IqdouZ:yg8ThI1Y6CiPFylXLrMGyJU+B
                                                                                                                                                                        MD5:D4C735BF5756759A1C3BC8DE408629FC
                                                                                                                                                                        SHA1:67C15E05A398B4CE6409D530A058F7E1B2208C20
                                                                                                                                                                        SHA-256:5A4BD51B969BF187FF86D94F4A71FDFBFA602762975FA3C73D264B4575F7C78F
                                                                                                                                                                        SHA-512:8124B25DECFA64A65433FF2CE1F0F7BDF304ABE2997568ABC35264A705F07152AA993B543DA37C4132B4B1B606743C825C90A0EB17B268518D478F5CF0889062
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:#.#.# Copyright (c) 1996, 2000, Oracle and/or its affiliates. All rights reserved..# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER..#.# This code is free software; you can redistribute it and/or modify it.# under the terms of the GNU General Public License version 2 only, as.# published by the Free Software Foundation. Oracle designates this.# particular file as subject to the "Classpath" exception as provided.# by Oracle in the LICENSE file that accompanied this code..#.# This code is distributed in the hope that it will be useful, but WITHOUT.# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or.# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License.# version 2 for more details (a copy is included in the LICENSE file that.# accompanied this code)..#.# You should have received a copy of the GNU General Public License version.# 2 along with this work; if not, write to the Free Software Foundation,.# Inc., 51 Franklin St, Fifth Floor, B

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\psfontj2d.properties

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):11390
                                                                                                                                                                        Entropy (8bit):5.012862319190609
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:FTh7Pwn+Cyub3Ee4OECKDIcYOhAgZ50OKDQLT2IcpRuWRbHr9NRXUh/QTv9Ho39I:FThTxzubEFOEscAW5VKsCfHz8RPxGt
                                                                                                                                                                        MD5:17B15D370018ACC01550175882C7DA91
                                                                                                                                                                        SHA1:4EDD9E0FC3D30FBDCABCDCAAB3BC0B3157FC881E
                                                                                                                                                                        SHA-256:780C565D5AF3EE6F68B887B75C041CDF46A0592F67012F12EEB691283E92630A
                                                                                                                                                                        SHA-512:E4EE92D4598385CB2F6F3A4DB91DDABD7E615DC105ED26CDC5B5598D01C526CEA7726FF93F92A308350229F2E5A5DD64CC0C38865DD97666368A330B410D4892
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:#.#.# Copyright (c) 1999, Oracle and/or its affiliates. All rights reserved..# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER..#.# This code is free software; you can redistribute it and/or modify it.# under the terms of the GNU General Public License version 2 only, as.# published by the Free Software Foundation. Oracle designates this.# particular file as subject to the "Classpath" exception as provided.# by Oracle in the LICENSE file that accompanied this code..#.# This code is distributed in the hope that it will be useful, but WITHOUT.# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or.# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License.# version 2 for more details (a copy is included in the LICENSE file that.# accompanied this code)..#.# You should have received a copy of the GNU General Public License version.# 2 along with this work; if not, write to the Free Software Foundation,.# Inc., 51 Franklin St, Fifth Floor, Boston,

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\security\blocked.certs

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2527
                                                                                                                                                                        Entropy (8bit):4.141598882390435
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:NjYQMQgcJrrDJOz74ZeKnZqUyYuj4G0o5xz4lCENa+qJe:NjYQbTwzkZeKnZqUfGxzWCEPqU
                                                                                                                                                                        MD5:8273F70416F494F7FA5B6C70A101E00E
                                                                                                                                                                        SHA1:AEAEBB14FBF146FBB0AAF347446C08766C86CA7F
                                                                                                                                                                        SHA-256:583500B76965EB54B03493372989AB4D3426F85462D1DB232C5AE6706A4D6C58
                                                                                                                                                                        SHA-512:E697A57D64ACE1F302300F83E875C2726407F8DAF7C1D38B07AB8B4B11299FD698582D825BEE817A1AF85A285F27877A9E603E48E01C72E482A04DC7AB12C8DA
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Algorithm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

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\security\cacerts

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Java KeyStore
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):174844
                                                                                                                                                                        Entropy (8bit):7.650752436127777
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:SY3f77uF+VxqjN0FUfJ2rH81qfOdE6E1ly2129pHtkHf1BceI:SM77PVxqjxfJ2LN4E6mn29pHtqfXcN
                                                                                                                                                                        MD5:C2B8864A67786044B279D17C550EE4F7
                                                                                                                                                                        SHA1:A8D8F4B6F0894147F92F6EAB7DC9F7F03D821654
                                                                                                                                                                        SHA-256:A0C108E21DB5D8D9EB51235144897B98C71116D01E64FDCD01A3564E8D8EE7E6
                                                                                                                                                                        SHA-512:B32C243FF97D1F64AFEB9F924891A572282B2DCE8FD1C41FBB24049FCF5E12C555687A7B78243C8B7D1C679A41BFBA0B554D36C25B4A8BBCED074FE4252CD9BA
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:..................securetrustca [jdk]....../p..X.509....0...0.............\....B...'.Y.0...*.H........0H1.0...U....US1 0...U....SecureTrust Corporation1.0...U....SecureTrust CA0...061107193118Z..291231194055Z0H1.0...U....US1 0...U....SecureTrust Corporation1.0...U....SecureTrust CA0.."0...*.H.............0..................O...x.X.A...@$.9.3f..b\...$[a....A..n......H......A>...).......m.g.W.........f%H...].....O.F..\..^..m.....o1BlR>h...4...V.&....o.....d.KD.....c.f.v.q..6.hzw..../.z.r..k.....Y?.r.D$..s...W/B&..t..R.K.S|G.6..f....4W.f....pT...(.Y...........0..0...+.....7.......C.A0...U........0...U.......0....0...U......B2......]Kz...L@.ZC.04..U...-0+0).'.%.#http://crl.securetrust.com/STCA.crl0...+.....7.......0...*.H.............0.OJ.X:Rr[...e...Q;w...\.Ee{..[.pP.....I.A..s.~.#!....`.Zr.......zo]......iB..q..&....j.q....|!T+.X..W).....&.......i.....+.64{$.xL....&..dR6_`g...t..g#.......0.7~..2.-.D00l....4...@.K.fF.T..2.c&0k...G...b...g.x)c.o....L...7...(

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\security\default.policy

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):12190
                                                                                                                                                                        Entropy (8bit):4.697107991264003
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:S+jePozUricAlGu92wQLKw1auHgQj0sqI:XMtd0sJ
                                                                                                                                                                        MD5:07B3FE5F2A49D7B92779D0B90ABF6361
                                                                                                                                                                        SHA1:F13C629F75B6F47BCA87BCE721735516557E2519
                                                                                                                                                                        SHA-256:8401E3F2D8ECA41FAC1440EE222CBB5A1A0CE4AAD1DEED948EB85AD0187365BD
                                                                                                                                                                        SHA-512:EF802FAB8D69760A6B95CA3B6607A6BD8CA4EA1EEA0DEA0617AFA447E124CEC67EC7B3896186EDF56C124C1D085BD3CC1C53474DDA2DB0A6F41D870B218C6BA5
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview://.// Permissions required by modules stored in a run-time image and loaded.// by the platform class loader..//.// NOTE that this file is not intended to be modified. If additional.// permissions need to be granted to the modules in this file, it is.// recommended that they be configured in a separate policy file or.// ${java.home}/conf/security/java.policy..//...grant codeBase "jrt:/java.compiler" {. permission java.security.AllPermission;.};...grant codeBase "jrt:/java.net.http" {. permission java.lang.RuntimePermission "accessClassInPackage.sun.net";. permission java.lang.RuntimePermission "accessClassInPackage.sun.net.util";. permission java.lang.RuntimePermission "accessClassInPackage.sun.net.www";. permission java.lang.RuntimePermission "accessClassInPackage.jdk.internal.misc";. permission java.lang.RuntimePermission "modifyThread";. permission java.net.SocketPermission "*","connect,resolve";. permission java.net.URLPermission "http:*","*:*";. permissio

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\security\public_suffix_list.dat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:Zip archive data, at least v2.0 to extract, compression method=deflate
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):234080
                                                                                                                                                                        Entropy (8bit):5.15519850214153
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3072:r6zDWCjlgMPGILneUughRQhCDBzmgO2Abhsf6YeUORCZ6OI0mGxzhjTBOjtC+scd:r6zDW+luc5nB2PYrHiw2K9U
                                                                                                                                                                        MD5:E7A714571A1F7C4E1D2F70B8F3052ADA
                                                                                                                                                                        SHA1:2B09124CADDF58EC734F4664264ED5666F7C1C64
                                                                                                                                                                        SHA-256:72E17C92D464BA1476FBCC7DAC6CBC493F6FB04F158895368B57D81DDBE277D1
                                                                                                                                                                        SHA-512:981250D4DA5FA5F86DAD4FAE8465FD8CE3CF36297A86ECE0FFDFB3963AC5F8E0A56C0AEAB518FACB7B51EC359665F6A0685F2C5443271E70AC8C31C9B1AA01D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:PK..........!.................aaaUT.......cHLL....PK..|Yd.........PK..........!.................aarpUT.......cHL,*....PK..h.*:........PK..........!.................abarthUT.......cHLJ,*.....PK....9Q........PK..........!.................abbUT.......cHLJ....PK...H..........PK..........!.................abbottUT.......cHLJ./)....PK.....Z........PK..........!.................abbvieUT.......cHLJ*.L....PK..ht..........PK..........!.................abcUT.......cHLJ....PK..."U.........PK..........!.................ableUT.......cHL.I....PK.............PK..........!.................abogadoUT.......cHL.OOL.....PK..^|.T........PK..........!.................abudhabiUT.......cHL*M.HL.....PK..<...........PK..........!.................acUT.......cHL..bH....3RSJ!...2.#/......0......"0..PK...3..+...D...PK..........!.................academyUT.......cHLNLI...b.OK.L.L.....PK...k;.........PK..........!.................accentureUT.......cHLNN.+)-J....PK.............PK..........!.................accoun

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\tzdb.dat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:data
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):103785
                                                                                                                                                                        Entropy (8bit):7.157560905947787
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:1536:d0E5MEBHNpdrY2L/rijAGKVjTLg/////PSaNUcLdmLTLMXjbF35a2y7:djMYHNpdrtDhVjTMSaNU/TLw42i
                                                                                                                                                                        MD5:2FD920C56DE68F65493BA6962FD079E1
                                                                                                                                                                        SHA1:1E79BFF02711D3DAB3C75E90D4BB08F8086C9626
                                                                                                                                                                        SHA-256:B7DBA25ABDFEE317DAA042C89B01E5711F5781D020DD733BA411760B72ADDB93
                                                                                                                                                                        SHA-512:958F835407E4A10A268BF76BC2EF0196ECD5FA92E139DE4C3760544DBDF76F95E67865BAC22406AEF8AC5AE7508FE63CD1A688C8328E46B73A5867EFA4F18D47
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:...TZDB....2023c.[..Africa/Abidjan..Africa/Accra..Africa/Addis_Ababa..Africa/Algiers..Africa/Asmara..Africa/Asmera..Africa/Bamako..Africa/Bangui..Africa/Banjul..Africa/Bissau..Africa/Blantyre..Africa/Brazzaville..Africa/Bujumbura..Africa/Cairo..Africa/Casablanca..Africa/Ceuta..Africa/Conakry..Africa/Dakar..Africa/Dar_es_Salaam..Africa/Djibouti..Africa/Douala..Africa/El_Aaiun..Africa/Freetown..Africa/Gaborone..Africa/Harare..Africa/Johannesburg..Africa/Juba..Africa/Kampala..Africa/Khartoum..Africa/Kigali..Africa/Kinshasa..Africa/Lagos..Africa/Libreville..Africa/Lome..Africa/Luanda..Africa/Lubumbashi..Africa/Lusaka..Africa/Malabo..Africa/Maputo..Africa/Maseru..Africa/Mbabane..Africa/Mogadishu..Africa/Monrovia..Africa/Nairobi..Africa/Ndjamena..Africa/Niamey..Africa/Nouakchott..Africa/Ouagadougou..Africa/Porto-Novo..Africa/Sao_Tome..Africa/Timbuktu..Africa/Tripoli..Africa/Tunis..Africa/Windhoek..America/Adak..America/Anchorage..America/Anguilla..America/Antigua..America/Araguaina..America/

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\lib\tzmappings

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):22143
                                                                                                                                                                        Entropy (8bit):4.978142372450471
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:192:3nqW46ARn1+RQ7wbNQQSaapvQZglEcCDqvOCJqGiF3yzA6bb/KOFmYXKhJmBW:3nqW46ARnGQqN2KhcQ+q5a3W
                                                                                                                                                                        MD5:B02EE240A8DB902961FE886A19BEBA16
                                                                                                                                                                        SHA1:C52C42D591F4C650B629E6B374E967E211FB5AEB
                                                                                                                                                                        SHA-256:36DC51C4BF787F640A4B45CBB84AB6954F6E595CBD3617C2F5A4E1E607B38BFF
                                                                                                                                                                        SHA-512:024811961511B7182860ED03A5670F82412A45D005A1DB0876F6B0C9AF7E96C104566ABFF0EBBDED11A780349444214291F439039D20FB92071C7DD24BDA0E23
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:AUS Central Standard Time:AU:Australia/Darwin:..AUS Central Standard Time:001:Australia/Darwin:..AUS Eastern Standard Time:AU:Australia/Sydney:..AUS Eastern Standard Time:001:Australia/Sydney:..Afghanistan Standard Time:AF:Asia/Kabul:..Afghanistan Standard Time:001:Asia/Kabul:..Alaskan Standard Time:US:America/Anchorage:..Alaskan Standard Time:001:America/Anchorage:..Aleutian Standard Time:US:America/Adak:..Aleutian Standard Time:001:America/Adak:..Altai Standard Time:RU:Asia/Barnaul:..Altai Standard Time:001:Asia/Barnaul:..Arab Standard Time:BH:Asia/Bahrain:..Arab Standard Time:KW:Asia/Kuwait:..Arab Standard Time:QA:Asia/Qatar:..Arab Standard Time:SA:Asia/Riyadh:..Arab Standard Time:YE:Asia/Aden:..Arab Standard Time:001:Asia/Riyadh:..Arabian Standard Time:AE:Asia/Dubai:..Arabian Standard Time:OM:Asia/Muscat:..Arabian Standard Time:ZZ:Etc/GMT-4:..Arabian Standard Time:001:Asia/Dubai:..Arabic Standard Time:IQ:Asia/Baghdad:..Arabic Standard Time:001:Asia/Baghdad:..Argentina Standard Time

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\readme.txt

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):863
                                                                                                                                                                        Entropy (8bit):4.829231495665242
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:krm1n9bx43UQdOXBn2vy2BvlxO41OMkOVrvPqeX6:kK9b+EUy2Jlx9OMkORnqeX6
                                                                                                                                                                        MD5:33FFD6179B8EE457C72AC1FD0F3EDF89
                                                                                                                                                                        SHA1:E353D902596459C63A3DB0B19DB02C34DA5C6D27
                                                                                                                                                                        SHA-256:C2034475D3C2F4FB04D6443F155937BF0C47762537E78A40C5818D00F3F36C14
                                                                                                                                                                        SHA-512:4884AF440AEC00433A97C183608739D0A27941C75E091FC3A5BB16E60C37EDDB62D8B010EF78407E3297E67AA31C3C2C6A4A9A58EE9EEB8E12A1973B7C063A71
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:.. Certain portions of this software are based on source code from OpenJDK.(http://openjdk.java.net/) and licensed under the GNU General Public.License version 2 (GPLv2) with the Classpath Exception (http://.openjdk.java.net/legal/gplv2+ce.html). For a period of three years from.the date of your receipt of this software, Azul will provide upon.request, a complete machine readable copy of the source code for such.portions based on OpenJDK on a medium customarily used for software.interchange for a charge no more than the cost of physically performing.source distribution.... Please email azul_openjdk@azul.com for further information... Include this version code in your email:. Zulu 17.44+16 2ca300f2-5386-4ef9-9633-18c2124fe0c4..To learn more about Azul products, visit https://www.azul.com/modern-cloud-enterprise/?r=zulu.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\release

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with very long lines (768), with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):1018
                                                                                                                                                                        Entropy (8bit):5.236582799778537
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:24:qiNvGI54aktVP8bTM5hGIG4T8Q5xuKmuS:qavGI5iVkbQGf4T8Q5wuS
                                                                                                                                                                        MD5:EC6FB8F90DA8E767BF4D5F3E5E57C70F
                                                                                                                                                                        SHA1:76FD8005295EA1F6EF01513EA710A86E6B53D386
                                                                                                                                                                        SHA-256:3719FB073A66276EC4C46706C23E90861082EF9BE9AC152B910240FFC855C5EB
                                                                                                                                                                        SHA-512:0B605CD1279F402AB6B777626996A9E62446981D6163118848F0D83924636ECE63F13271146A01E266478322C5AAC77F2838C39CF352F5E7C4AB046F698A7268
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:IMPLEMENTOR="Azul Systems, Inc."..IMPLEMENTOR_VERSION="Zulu17.44+16-SA"..JAVA_RUNTIME_VERSION="17.0.8+7-LTS"..JAVA_VERSION="17.0.8"..JAVA_VERSION_DATE="2023-07-18"..LIBC="default"..MODULES="java.base com.azul.tooling java.management java.logging java.security.sasl java.naming jdk.jfr com.azul.crs.client java.compiler java.datatransfer java.xml java.prefs java.desktop java.instrument java.rmi java.management.rmi java.net.http java.scripting java.security.jgss java.transaction.xa java.sql java.sql.rowset java.xml.crypto java.se java.smartcardio jdk.accessibility jdk.charsets jdk.crypto.ec jdk.crypto.cryptoki jdk.crypto.mscapi jdk.dynalink jdk.httpserver jdk.incubator.foreign jdk.incubator.vector jdk.jdwp.agent jdk.jsobject jdk.localedata jdk.management jdk.management.agent jdk.management.jfr jdk.naming.dns jdk.naming.rmi jdk.net jdk.nio.mapmode jdk.random jdk.sctp jdk.security.auth jdk.security.jgss jdk.unsupported jdk.xml.dom jdk.zipfs"..OS_ARCH="x86_64"..OS_NAME="Windows"..SOURCE=".:gi

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\shortcut.vbs

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):2229
                                                                                                                                                                        Entropy (8bit):4.85800091687248
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:t/aAv3O8G21Q21521d1KPY13G21Y21B21q6kcqu9Kqz98:lb+8GIQI5I3KPu3GIYIBIha
                                                                                                                                                                        MD5:C6B616110E61415AAE27F3386FFEC203
                                                                                                                                                                        SHA1:A2E358ECED9DD05851001235C81DCB2C656D1AFF
                                                                                                                                                                        SHA-256:E0A9E7EE815530A6B5807844B8F797AC0DC910BD410C91148503E63673EC9863
                                                                                                                                                                        SHA-512:8077E82050FF6FFF26039683B995C4A4C4A8CE10C7DAB0EFCCEE7CD8872551058726925C8BECA929EF06EFE450102122E7D5A8B97230441AEC1F45F1C6317B31
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:Set oWS = WScript.CreateObject("WScript.Shell")....Set commandLineArgs = WScript.Arguments.Named....strSumBin = commandLineArgs.Item("SUMBIN")..strShortcut = commandLineArgs.Item("SHORTCUT")....wscript.echo strSumBin & " and " & strShortcut......strFolderAll = oWS.ExpandEnvironmentStrings("%ProgramData%") & "\Microsoft\Windows\Start Menu\Programs\" & strShortcut & ""..strFolderAllTools = strFolderAll....strFolderCurrent = oWS.SpecialFolders("Programs") & "\" & strShortcut..strFolderCurrentTools = strFolderCurrent....strFolder = strFolderAllTools..hasError = false..Set oFSO = CreateObject("Scripting.FileSystemObject")....If Not oFSO.FolderExists(strFolderAll) Then.. On Error Resume Next.. oFSO.CreateFolder strFolderAll.. If Err.Number <> 0 Then.. hasError = true.. Err.Clear...strFolder = strFolderCurrentTools.. If Not oFSO.FolderExists(strFolderCurrent) Then.. oFSO.CreateFolder strFolderCurrent.. oFSO.CreateFolder strFolderCurrentTools.. End If.. If Not oFSO.

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\ZFI_3536\sum-setup.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):10021
                                                                                                                                                                        Entropy (8bit):5.413506303336833
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:96:XYSMyLrOyaIjZFYlIVzYMFVaPkT0YpTLNit4mC1kOISkIbNp7R+TlIZTC:itMFYUFouVkikSR+pv
                                                                                                                                                                        MD5:C984E443F72E6D9D9A3D2CF379F3808C
                                                                                                                                                                        SHA1:A9409CE8577EF9D63B0887499EE55A27D8A3B342
                                                                                                                                                                        SHA-256:5EDE653D57AF82A6256A8364FDFC6B6EAC92D034846C1D3D8B697FAAA45B6160
                                                                                                                                                                        SHA-512:5498C05725D4C34D4EEFFECFA5CC8344E1B90D55462EA9182BC088D6A0E63A3A70E2F79484A8838D85DDD7042704E31706BB8A0B48C5C27A71198DFFFB2E5573
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..SETLOCAL ENABLEEXTENSIONS EnableDelayedExpansion....REM Update Manager Bootstrap Installer..REM Version 11.0.0.0000-0617....REM This .bat file is used from the .exe file bootstrapper on Windows. It is packaged..REM in a ZIP Fusion archive under .exe file.....REM defaults..set DEFAULT_SUM_HOME=C:\SAGUpdateManager....REM initial values..set SUM_HOME=%DEFAULT_SUM_HOME%..set SUM_USERNAME=..set SUM_PASSWORD=..set SUM_SERVER=..set WORKDIR=%~dps0..set JAVA=java..set ACCEPT_LICENSE=0..set THIS_SCRIPT=%WORKDIR%%0..set IMAGE_FILE=..set DEBUG=true..set REPO=..set SERVER=..set PUBLISHED_REPO=..set SOURCE_DIR=..set PROXY_HOST=..set PROXY_PORT=..set PROXY_USERNAME=..set PROXY_PASSWORD=..set NON_PROXY_HOSTS=..set PROXY_PROTOCOL=..set IMAGE_FILE_WRITE=..set IMAGE_PLATFORM=..set AUTO_DETECT_PROXY=....echo...echo Software AG Update Manager installation..echo.....if [%1] == [] goto check....:processOptions..set VALID=0..set p=%1..set p=%p:"=%..if "%p%" == "--help" goto usage..if "%p%" == "-h"

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar679868451359564232.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):88
                                                                                                                                                                        Entropy (8bit):4.226977113187745
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqMmwyxKdWRZ1WAwNv:hwLaAWZZKIyAiv
                                                                                                                                                                        MD5:F668B6517E40D33289F579C0EB226C86
                                                                                                                                                                        SHA1:733C05295A67CB5FB35047FBF10BD18B0AFE537D
                                                                                                                                                                        SHA-256:5CADD0BDD9B0E0E7366415AB2D54A56C8EED0FECBB627472859CF4224A11D4C3
                                                                                                                                                                        SHA-512:89A2178BC18399D296C3F4562D4D1974F81A28630907480CB7BCF0FC3AB25EA92E673DEED877C18399B2C0E9CC3C3747D9E2EAA820A8BED8790EE550C96114D0
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var SystemRoot..echo SystemRoot=%SystemRoot%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.bat

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:DOS batch file, ASCII text, with CRLF line terminators
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):118
                                                                                                                                                                        Entropy (8bit):4.663659367456631
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:mKDDktFmOcgjYAWZgqPtz27F2jsUGYPV27F2js01M7F2jsm:hwLaAWZPF27F2jLt27F2jPe7F2jX
                                                                                                                                                                        MD5:23C60CCBD9BBA5306F01D6C52E758FD4
                                                                                                                                                                        SHA1:23A440117635B34FF08F88E0DE292779439730B6
                                                                                                                                                                        SHA-256:AF73032FF7D44508AA86559A2D2E89913FFCC87EC4AA05F7BE49A029354E3244
                                                                                                                                                                        SHA-512:3BB7726DBC8F0F662111E80C42FFBB3B17DFE8CE7F5B2D646D2DA9D3C5A3902FCB4A92AAF372578B2E168F055A31B9F3160A85D04DEA74B46EDCCC2E2577E297
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:@echo off..REM this batch file echoes the var PROCESSOR_IDENTIFIER..echo PROCESSOR_IDENTIFIER=%PROCESSOR_IDENTIFIER%..

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\hsperfdata_user\6544

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:data
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):65536
                                                                                                                                                                        Entropy (8bit):1.1650461427238543
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:bziNbMvBNMunEcKA/UQJyfZpHowq6s5Xje+uWfWSnjMdiK1IN8tu7RuI+iQPDleu:bWiZ6uEhQJObH3i6tSeUJx+Ja0YJf
                                                                                                                                                                        MD5:DF639BC50A376ED2CF99718C8FFC91BD
                                                                                                                                                                        SHA1:A11DC0C66381DBAA4700C364A3C8B9440C52ACA3
                                                                                                                                                                        SHA-256:91557679EB41638F641F6548A3BBA84A6D8C326530189AD4F7BDE1A4EDADCE2D
                                                                                                                                                                        SHA-512:04B067C4C84FA14BFD09A2D5C0BB4BDABFA3B0A2D84D39C252B31405FFEF8B812016DA8DF9D7BB90862D7F0734469A0776A798930D847E54A599EC09C1489385
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:.........2......2....... .......8...........J...0...sun.rt._sync_Inflations.............8...........J...0...sun.rt._sync_Deflations.............@...........J...8...sun.rt._sync_ContendedLockAttempts..........8...........J...0...sun.rt._sync_FutileWakeups..........0...........J...(...sun.rt._sync_Parks.. .......8...........J...0...sun.rt._sync_Notifications..........8...........J...0...sun.rt._sync_MonExtant..............8...........J...0...sun.rt.createVmBeginTime......k.....8...........J...0...sun.rt.createVmEndTime......,.k.....8...........J...0...sun.rt.vmInitDoneTime.........k.....8...........J...0...java.threads.started........5.......0...........J...(...java.threads.live...........8...........J...0...java.threads.livePeak...............0...........J...(...java.threads.daemon.........8...........J...0...sun.rt.safepointSyncTime......~....0...........J...(...sun.rt.safepoints... .......8...........J...0...sun.rt.safepointTime........0qz.....8...........J...0...sun.rt.applicationTi

                                                                                                                                                                        C:\Users\user\AppData\Local\Temp\logs\launcher_gui260424_14-40-28.log

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:ASCII text
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):4211
                                                                                                                                                                        Entropy (8bit):5.214461423604033
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:48:5ioeozx6H5kIwyKdx7KN2KbE6xenhxeC/HCAgFBy5tq14KIT4VpqalfKRAKHcomS:aH5afdcN2TAenfL/iAgz2KIypqaEzRmS
                                                                                                                                                                        MD5:05D06BA04956E29A05985784B7494722
                                                                                                                                                                        SHA1:59817F152FA0EEC363FE33D4C5B37567B0C03FB2
                                                                                                                                                                        SHA-256:669DCECDDB9B9D8392FEDC339DB66761F6D8A9C93D0E08DC685ABDA62295E6F6
                                                                                                                                                                        SHA-512:F7A8D6F7560AF97C2BAA0F1FA2A79892D89455F4E51699A658CC5DC6E4E621429453911C3212E0BBCA763D8BECC186A86ED930B1870113A0324AAF26D72C06D2
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:2024/04/26 14:40:28 INFO | Update Manager Installer Started..2024/04/26 14:40:28 FINEST | Starting args: [].2024/04/26 14:40:28 FINEST | Set property: jdk.http.auth.tunneling.disabledSchemes="".2024/04/26 14:40:28 FINEST | [Constants] loadCustomFonts()..2024/04/26 14:40:28 FINEST | [Constants] loadCustomFonts(). Try to load font: Roboto-Regular.ttf.2024/04/26 14:40:32 FINEST | [Constants] Successfully set look and feel.2024/04/26 14:40:34 FINEST | ->initializeUserInputs.2024/04/26 14:40:34 FINEST | <-initializeUserInputs.2024/04/26 14:40:34 FINEST | [StepContext] Current process is started with: [].2024/04/26 14:40:34 FINEST | Software AG Update Manager home directory: C:\SAGUpdateManager.2024/04/26 14:40:34 FINEST | You can find the log files in null.2024/04/26 14:40:34 FINEST | .2024/04/26 14:40:34 FINEST | [StepContext] Clearing result.json.2024/04/26 14:40:34 FINEST | Config properties file: C:\SAGUpdateManager\bin\config.properties is not existing -->

                                                                                                                                                                        C:\Users\user\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-2246122658-3693405117-2476756634-1003\83aa4cc77f591dfc2374580bbd95f6ba_9e146be9-c76a-4720-bcdb-53011b87bd06

                                                                                                                                                                        Download File
                                                                                                                                                                        Process:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        File Type:data
                                                                                                                                                                        Category:dropped
                                                                                                                                                                        Size (bytes):45
                                                                                                                                                                        Entropy (8bit):0.9111711733157262
                                                                                                                                                                        Encrypted:false
                                                                                                                                                                        SSDEEP:3:/lwlt7n:WNn
                                                                                                                                                                        MD5:C8366AE350E7019AEFC9D1E6E6A498C6
                                                                                                                                                                        SHA1:5731D8A3E6568A5F2DFBBC87E3DB9637DF280B61
                                                                                                                                                                        SHA-256:11E6ACA8E682C046C83B721EEB5C72C5EF03CB5936C60DF6F4993511DDC61238
                                                                                                                                                                        SHA-512:33C980D5A638BFC791DE291EBF4B6D263B384247AB27F261A54025108F2F85374B579A026E545F81395736DD40FA4696F2163CA17640DD47F1C42BC9971B18CD
                                                                                                                                                                        Malicious:false
                                                                                                                                                                        Preview:........................................J2SE.

                                                                                                                                                                        Static File Info

                                                                                                                                                                        General

                                                                                                                                                                        File type:PE32 executable (GUI) Intel 80386, for MS Windows
                                                                                                                                                                        Entropy (8bit):7.998112799803801
                                                                                                                                                                        TrID:
                                                                                                                                                                        • Win32 Executable (generic) a (10002005/4) 99.94%
                                                                                                                                                                        • Win16/32 Executable Delphi generic (2074/23) 0.02%
                                                                                                                                                                        • Generic Win/DOS Executable (2004/3) 0.02%
                                                                                                                                                                        • DOS Executable Generic (2002/1) 0.02%
                                                                                                                                                                        • Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
                                                                                                                                                                        File name:SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        File size:41'718'784 bytes
                                                                                                                                                                        MD5:fcf252f884324dab8d0831f3edde05bf
                                                                                                                                                                        SHA1:b9a566b4a184ed0435e026a9724774245204eccd
                                                                                                                                                                        SHA256:d92ffd29ee3f93e059c8efda75e4886be9c48f0eb0335cb21ebc563e95d85df1
                                                                                                                                                                        SHA512:50c24a2280e022f4f063a373990df6429592397188df1857db48b452231c23996ea609cd18c2c6ef61a15df8ed6106ecee153144ebc35408ec873f2fb03d826f
                                                                                                                                                                        SSDEEP:786432:CvRosBNQYD8RWrnzaPd3HuoxTurXdCLpgr/P0MZ5iCVL6dtfnwEsvN:Cv5BBNrz0d3HuoxT6X3ZhVkfwEsvN
                                                                                                                                                                        TLSH:1D973394E0689A72EA39F4F60D31D22F40AD3DAA1DCB59024572778C0FB4997CE7582F
                                                                                                                                                                        File Content Preview:MZP.....................@...............................................!..L.!..This program must be run under Win32..$7.......................................................................................................................................

                                                                                                                                                                        File Icon

                                                                                                                                                                        Icon Hash:9bd8b2b2b0550f8e

                                                                                                                                                                        Static PE Info

                                                                                                                                                                        General

                                                                                                                                                                        Entrypoint:0x271c0
                                                                                                                                                                        Entrypoint Section:CODE
                                                                                                                                                                        Digitally signed:true
                                                                                                                                                                        Imagebase:0x10000
                                                                                                                                                                        Subsystem:windows gui
                                                                                                                                                                        Image File Characteristics:EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
                                                                                                                                                                        DLL Characteristics:
                                                                                                                                                                        Time Stamp:0x2A425E19 [Fri Jun 19 22:22:17 1992 UTC]
                                                                                                                                                                        TLS Callbacks:
                                                                                                                                                                        CLR (.Net) Version:
                                                                                                                                                                        OS Version Major:1
                                                                                                                                                                        OS Version Minor:0
                                                                                                                                                                        File Version Major:1
                                                                                                                                                                        File Version Minor:0
                                                                                                                                                                        Subsystem Version Major:1
                                                                                                                                                                        Subsystem Version Minor:0
                                                                                                                                                                        Import Hash:f764f266c970c5ab12e5401278e6abd6

                                                                                                                                                                        Authenticode Signature

                                                                                                                                                                        Signature Valid:true
                                                                                                                                                                        Signature Issuer:CN=GlobalSign GCC R45 CodeSigning CA 2020, O=GlobalSign nv-sa, C=BE
                                                                                                                                                                        Signature Validation Error:The operation completed successfully
                                                                                                                                                                        Error Number:0
                                                                                                                                                                        Not Before, Not After
                                                                                                                                                                        • 08/06/2023 14:51:59 08/06/2025 14:51:59
                                                                                                                                                                        Subject Chain
                                                                                                                                                                        • CN=Software AG, OU=R&D, O=Software AG, L=Darmstadt, S=Hessen, C=DE
                                                                                                                                                                        Version:3
                                                                                                                                                                        Thumbprint MD5:C94D7426ED20B777C9AF9636C4903B12
                                                                                                                                                                        Thumbprint SHA-1:3FBEA67157FECC6F0327009BC41586CDCE217A8B
                                                                                                                                                                        Thumbprint SHA-256:18B998216F82A4B595E393EA7467DC43F73846B9DA13051F7B02D77F332888B0
                                                                                                                                                                        Serial:33551A102E124EAFDF00BEDD

                                                                                                                                                                        Entrypoint Preview

                                                                                                                                                                        Instruction
                                                                                                                                                                        push ebp
                                                                                                                                                                        mov ebp, esp
                                                                                                                                                                        add esp, FFFFFFF4h
                                                                                                                                                                        mov eax, 00027080h
                                                                                                                                                                        call 00007FB174ED484Dh
                                                                                                                                                                        call 00007FB174ED85B4h
                                                                                                                                                                        call 00007FB174EE6B6Bh
                                                                                                                                                                        call 00007FB174ED2F76h
                                                                                                                                                                        nop
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al
                                                                                                                                                                        add byte ptr [eax], al

                                                                                                                                                                        Data Directories

                                                                                                                                                                        NameVirtual AddressVirtual Size Is in Section
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_EXPORT0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_IMPORT0x4a0000x15b2.idata
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_RESOURCE0x500000x10388.rsrc
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_EXCEPTION0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_SECURITY0x27c66300x2dd0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_BASERELOC0x4e0000x1808.reloc
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_DEBUG0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_COPYRIGHT0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_GLOBALPTR0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_TLS0x4d0000x18.rdata
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_IAT0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR0x00x0
                                                                                                                                                                        IMAGE_DIRECTORY_ENTRY_RESERVED0x00x0

                                                                                                                                                                        Sections

                                                                                                                                                                        NameVirtual AddressVirtual SizeRaw SizeMD5Xored PEZLIB ComplexityFile TypeEntropyCharacteristics
                                                                                                                                                                        CODE0x10000x161e00x16200c3571eb21cb086334026e2b95d13db4bFalse0.5709304378531074data6.509012027373566IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
                                                                                                                                                                        DATA0x180000xa380xc00367600dc3b20f95fbcd35d7a6144327bFalse0.3955078125data3.6235867806938997IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                                                                                                                                                                        BSS0x190000x30f9d0x0d41d8cd98f00b204e9800998ecf8427eFalse0empty0.0IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                                                                                                                                                                        .idata0x4a0000x15b20x1600466d7177bf96d4308afc5ed64b63a216False0.3955965909090909data4.901939600861864IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                                                                                                                                                                        .tls0x4c0000x80x0d41d8cd98f00b204e9800998ecf8427eFalse0empty0.0IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                                                                                                                                                                        .rdata0x4d0000x180x20030140fd747a1cf536385ae353fde0021False0.052734375data0.2108262677871819IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ
                                                                                                                                                                        .reloc0x4e0000x18080x1a004a5772e2a45c38f37437677f20db7ea1False0.7484975961538461data6.554246949968168IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ
                                                                                                                                                                        .rsrc0x500000x103880x10400cd51ab4f5404e8f6ec0b35a0baff2c9aFalse0.19984975961538462data4.782475518915166IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ

                                                                                                                                                                        Resources

                                                                                                                                                                        NameRVASizeTypeLanguageCountryZLIB Complexity
                                                                                                                                                                        RT_ICON0x504c00x468Device independent bitmap graphic, 16 x 32 x 32, image size 10880.3625886524822695
                                                                                                                                                                        RT_ICON0x509280x10a8Device independent bitmap graphic, 32 x 64 x 32, image size 42240.21880863039399626
                                                                                                                                                                        RT_ICON0x519d00x25a8Device independent bitmap graphic, 48 x 96 x 32, image size 96000.16473029045643153
                                                                                                                                                                        RT_ICON0x53f780x4228Device independent bitmap graphic, 64 x 128 x 32, image size 168960.1403519130845536
                                                                                                                                                                        RT_ICON0x581a00x468Device independent bitmap graphic, 16 x 32 x 32, image size 10880.23404255319148937
                                                                                                                                                                        RT_ICON0x586080x10a8Device independent bitmap graphic, 32 x 64 x 32, image size 42240.15314258911819886
                                                                                                                                                                        RT_ICON0x596b00x25a8Device independent bitmap graphic, 48 x 96 x 32, image size 96000.08558091286307054
                                                                                                                                                                        RT_ICON0x5bc580x468Device independent bitmap graphic, 16 x 32 x 32, image size 10880.5195035460992907
                                                                                                                                                                        RT_ICON0x5c0c00x10a8Device independent bitmap graphic, 32 x 64 x 32, image size 42240.37969043151969983
                                                                                                                                                                        RT_ICON0x5d1680x25a8Device independent bitmap graphic, 48 x 96 x 32, image size 96000.24553941908713692
                                                                                                                                                                        RT_DIALOG0x5f7100x150data0.5922619047619048
                                                                                                                                                                        RT_DIALOG0x5f8600x150data0.5565476190476191
                                                                                                                                                                        RT_DIALOG0x5f9b00xd6data0.6214953271028038
                                                                                                                                                                        RT_DIALOG0x5fa880x136data0.535483870967742
                                                                                                                                                                        RT_RCDATA0x5fbc00x10data1.5
                                                                                                                                                                        RT_RCDATA0x5fbd00x1d0data0.7564655172413793
                                                                                                                                                                        RT_GROUP_ICON0x5fda00x30data0.9166666666666666
                                                                                                                                                                        RT_VERSION0x5fdd00x1f8data0.5218253968253969
                                                                                                                                                                        RT_MANIFEST0x5ffc80x3bfexported SGML document, ASCII text, with CRLF line terminators0.4129301355578728

                                                                                                                                                                        Imports

                                                                                                                                                                        DLLImport
                                                                                                                                                                        kernel32.dllGetCurrentThreadId, DeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, VirtualQuery, MultiByteToWideChar, lstrlenA, lstrcpyA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetCommandLineA, FreeLibrary, ExitProcess, WriteFile, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetFileType, CreateFileA, CloseHandle
                                                                                                                                                                        user32.dllGetKeyboardType, MessageBoxA
                                                                                                                                                                        advapi32.dllRegQueryValueExA, RegOpenKeyExA, RegCloseKey
                                                                                                                                                                        oleaut32.dllVariantCopyInd, VariantClear, SysFreeString, SysReAllocStringLen, SysAllocStringLen
                                                                                                                                                                        kernel32.dllTlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA, GetModuleFileNameA
                                                                                                                                                                        advapi32.dllRegSetValueExA, RegQueryValueExA, RegOpenKeyExA, RegDeleteValueA, RegDeleteKeyA, RegCreateKeyExA, RegCloseKey
                                                                                                                                                                        kernel32.dllWriteFile, WaitForSingleObject, VirtualQuery, VirtualFree, VirtualAlloc, Sleep, SetProcessWorkingSetSize, SetLastError, SetFileTime, SetFilePointer, SetFileAttributesA, SetEnvironmentVariableA, SetCurrentDirectoryA, ReadFile, OpenProcess, MulDiv, LocalFileTimeToFileTime, LoadLibraryA, GlobalUnlock, GlobalLock, GlobalFree, GlobalAlloc, GetWindowsDirectoryA, GetVersionExA, GetTimeFormatA, GetTickCount, GetTempPathA, GetSystemDirectoryA, GetShortPathNameA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetFileTime, GetFileSize, GetFileAttributesA, GetExitCodeProcess, GetDateFormatA, GetCurrentProcessId, GetCurrentProcess, GetCurrentDirectoryA, GetCommandLineA, FreeLibrary, FormatMessageA, FileTimeToSystemTime, FileTimeToLocalFileTime, ExpandEnvironmentStringsA, DosDateTimeToFileTime, CreateFileA, CreateDirectoryA, CompareStringA, CompareFileTime, CloseHandle
                                                                                                                                                                        gdi32.dllSetTextColor, SetBkMode, SetBkColor, SelectObject, SaveDC, RoundRect, RestoreDC, MoveToEx, LineTo, IntersectClipRect, GetTextExtentPoint32A, GetTextColor, GetStockObject, GetDeviceCaps, GetClipBox, FrameRgn, EnumFontFamiliesExA, DeleteObject, DeleteDC, CreateSolidBrush, CreateRoundRectRgn, CreateRectRgn, CreatePen, CreateFontIndirectA, CreateDIBSection, CreateCompatibleDC, CombineRgn, BitBlt
                                                                                                                                                                        user32.dllWindowFromPoint, WaitMessage, TranslateMessage, TrackPopupMenuEx, SystemParametersInfoA, ShowWindow, SetWindowRgn, SetWindowTextA, SetWindowPos, SetWindowLongA, SetTimer, SetParent, SetDlgItemTextA, SetActiveWindow, SendMessageA, ScreenToClient, ReleaseDC, RegisterClassA, PostMessageA, PeekMessageA, OffsetRect, OemToCharA, MessageBoxA, MessageBeep, LockWindowUpdate, LoadImageA, LoadIconA, KillTimer, IsWindowVisible, IsWindowEnabled, IsWindow, IsIconic, IsDialogMessageA, InvalidateRgn, InvalidateRect, IntersectRect, InflateRect, GetWindowThreadProcessId, GetWindowTextLengthA, GetWindowTextA, GetWindowRgn, GetWindowRect, GetWindowPlacement, GetWindowLongA, GetSystemMetrics, GetSystemMenu, GetSysColorBrush, GetSysColor, GetParent, GetWindow, GetDoubleClickTime, GetDlgItem, GetDC, GetCursorPos, GetClientRect, GetClassNameA, GetClassLongA, GetCapture, GetAsyncKeyState, GetActiveWindow, FillRect, EnumChildWindows, EndDialog, EnableWindow, EnableMenuItem, DrawTextExA, DrawTextA, DrawIconEx, DispatchMessageA, DestroyWindow, DestroyIcon, DefWindowProcA, CreateWindowExA, CreateDialogParamA, ClientToScreen, CallWindowProcA
                                                                                                                                                                        shell32.dllShellExecuteExA, SHGetFileInfoA, SHFileOperationA, SHAppBarMessage
                                                                                                                                                                        ole32.dllCreateStreamOnHGlobal, OleUninitialize, OleInitialize, CoCreateInstance
                                                                                                                                                                        comctl32.dllImageList_LoadImageA, ImageList_Destroy, InitCommonControls
                                                                                                                                                                        shell32.dllSHGetSpecialFolderLocation, SHGetPathFromIDListA, SHGetMalloc, SHBrowseForFolderA
                                                                                                                                                                        user32.dllwsprintfA
                                                                                                                                                                        user32.dllwsprintfA
                                                                                                                                                                        user32.dllDialogBoxParamA
                                                                                                                                                                        winmm.dllwaveOutGetNumDevs

                                                                                                                                                                        Network Behavior

                                                                                                                                                                        No network behavior found

                                                                                                                                                                        Statistics

                                                                                                                                                                        CPU Usage

                                                                                                                                                                        Click to jump to process

                                                                                                                                                                        Memory Usage

                                                                                                                                                                        Click to jump to process

                                                                                                                                                                        High Level Behavior Distribution

                                                                                                                                                                        Click to dive into process behavior distribution

                                                                                                                                                                        Behavior

                                                                                                                                                                        Click to jump to process

                                                                                                                                                                        System Behavior

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:0
                                                                                                                                                                        Start time:14:40:09
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe
                                                                                                                                                                        Wow64 process (32bit):true
                                                                                                                                                                        Commandline:"C:\Users\user\Desktop\SoftwareAGUpdateManagerInstaller20231121-11-Windows.exe"
                                                                                                                                                                        Imagebase:0x10000
                                                                                                                                                                        File size:41'718'784 bytes
                                                                                                                                                                        MD5 hash:FCF252F884324DAB8D0831F3EDDE05BF
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:Borland Delphi
                                                                                                                                                                        Reputation:low
                                                                                                                                                                        Has exited:false

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:2
                                                                                                                                                                        Start time:14:40:24
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:"C:\Users\user\AppData\Local\Temp\ZFI_3536\jre\bin\javaw.exe" -Dbootstrapper.version=11.0.0.0000-0617 -classpath SUMLauncher.jar com.softwareag.plm.sum.client.launcher.installer.Main
                                                                                                                                                                        Imagebase:0x7ff7b1380000
                                                                                                                                                                        File size:49'704 bytes
                                                                                                                                                                        MD5 hash:7A2EB33DFB02144D50E874B8844D204F
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:low
                                                                                                                                                                        Has exited:false

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:4
                                                                                                                                                                        Start time:14:40:32
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar3441555891569706586.bat
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:5
                                                                                                                                                                        Start time:14:40:32
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:6
                                                                                                                                                                        Start time:14:40:33
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar10818828613249938793.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:7
                                                                                                                                                                        Start time:14:40:33
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:8
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar17401203860513035475.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:9
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:10
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar13494803152977832873.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:11
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:12
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar12061198024144877217.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:13
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:14
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar679868451359564232.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:15
                                                                                                                                                                        Start time:14:40:34
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:16
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar1160597909741069849.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Reputation:high
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:17
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:18
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar9524271340662204174.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:19
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:20
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar8642198764105678578.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:21
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:22
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar4678659186746217219.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:23
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:24
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar4430410592668505130.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:25
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:26
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar4588889823313094399.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:27
                                                                                                                                                                        Start time:14:40:35
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:28
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar9879207687526437611.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:29
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:30
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar9521514706033490886.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:31
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:32
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar7729600830500743558.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:33
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:34
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar11338522504124708664.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:35
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:36
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar17841775868638982939.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:37
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:38
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\cmd.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:CMD /C C:\Users\user\AppData\Local\Temp\envvar4667907513633472375.bat
                                                                                                                                                                        Imagebase:0x7ff727880000
                                                                                                                                                                        File size:289'792 bytes
                                                                                                                                                                        MD5 hash:8A2122E8162DBEF04694B9C3E0B6CDEE
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        General

                                                                                                                                                                        Target ID:39
                                                                                                                                                                        Start time:14:40:36
                                                                                                                                                                        Start date:26/04/2024
                                                                                                                                                                        Path:C:\Windows\System32\conhost.exe
                                                                                                                                                                        Wow64 process (32bit):false
                                                                                                                                                                        Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                                                                                                                        Imagebase:0x7ff6d64d0000
                                                                                                                                                                        File size:862'208 bytes
                                                                                                                                                                        MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                                                                                                                        Has elevated privileges:true
                                                                                                                                                                        Has administrator privileges:true
                                                                                                                                                                        Programmed in:C, C++ or other language
                                                                                                                                                                        Has exited:true

                                                                                                                                                                        Disassembly

                                                                                                                                                                        No disassembly