Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
101_Labs_Cisco_CCNA.pdf

Overview

General Information

Sample Name:101_Labs_Cisco_CCNA.pdf
Analysis ID:780196
MD5:0c5f4b8c16d7e9f52b85f7bfac5e6bee
SHA1:5ea2c0b17ff1d154904a7e1bff208705dd90edf3
SHA256:36630349f85fa4eada1490d32ef4437bd463d71d67590bb1f69a65c0711b8c79
Infos:

Detection

Score:0
Range:0 - 100
Whitelisted:false
Confidence:80%

Signatures

No high impact signatures.

Classification

Process Tree

  • System is w10x64
  • AcroRd32.exe (PID: 1020 cmdline: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\101_Labs_Cisco_CCNA.pdf MD5: B969CF0C7B2C443A99034881E8C8740A)
    • RdrCEF.exe (PID: 1396 cmdline: "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043 MD5: 9AEBA3BACD721484391D15478A4080C7)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: http://www.101labs.net/)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: http://www.101labs.net/resources)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: http://www.howtonetwork.com/)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: http://www.in60days.com/)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: http://www.mypage.com/)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: https://calibre-ebook.com
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: https://www.101labs.net/)
Source: 101_Labs_Cisco_CCNA.pdfString found in binary or memory: https://www.onworks.net/)
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeFile created: C:\Users\user\AppData\Local\Temp\acrord32_sbxJump to behavior
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://www.mypage.com/
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: https://www.onworks.net/
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://www.101labs.net/
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://en.wikipedia.org/wiki/domain_name_system
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://www.101labs.net/resources
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: https://www.101labs.net/
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://www.in60days.com/
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://en.wikipedia.org/wiki/Domain_Name_System
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: http://www.howtonetwork.com/
Source: classification engineClassification label: clean0.winPDF@9/59@0/1
Source: unknownProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\101_Labs_Cisco_CCNA.pdf
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeFile created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIconsJump to behavior
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword /JS count = 0
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword /JavaScript count = 0
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword /EmbeddedFile count = 0
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword /Page count = 748
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword endobj count = 3244
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword endstream count = 955
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword stream count = 955
Source: 101_Labs_Cisco_CCNA.pdfInitial sample: PDF keyword obj count = 3244
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior

Mitre Att&ck Matrix

Initial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionExfiltrationCommand and ControlNetwork EffectsRemote Service EffectsImpact
1
Spearphishing Link		Windows Management InstrumentationPath Interception1
Process Injection		1
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local SystemExfiltration Over Other Network MediumData ObfuscationEavesdrop on Insecure Network CommunicationRemotely Track Device Without AuthorizationModify System Partition
Default AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable MediaExfiltration Over BluetoothJunk DataExploit SS7 to Redirect Phone Calls/SMSRemotely Wipe Data Without AuthorizationDevice Lockout

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 process2 2 Behavior Graph ID: 780196 Sample: 101_Labs_Cisco_CCNA.pdf Startdate: 08/01/2023 Architecture: WINDOWS Score: 0 5 AcroRd32.exe 15 37 2->5         started        process3 7 RdrCEF.exe 73 5->7         started        dnsIp4 10 192.168.2.1 unknown unknown 7->10

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
101_Labs_Cisco_CCNA.pdf0%ReversingLabs
101_Labs_Cisco_CCNA.pdf0%VirustotalBrowse

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
http://www.in60days.com/)0%Avira URL Cloudsafe
https://www.101labs.net/)0%Avira URL Cloudsafe
http://www.mypage.com/)0%Avira URL Cloudsafe
http://www.101labs.net/)0%Avira URL Cloudsafe
http://www.101labs.net/resources)0%Avira URL Cloudsafe
https://www.onworks.net/)0%Avira URL Cloudsafe

Domains and IPs

Contacted Domains

No contacted domains info

URLs from Memory and Binaries

NameSourceMaliciousAntivirus DetectionReputation
http://www.howtonetwork.com/)101_Labs_Cisco_CCNA.pdffalse
    		high
    https://www.101labs.net/)101_Labs_Cisco_CCNA.pdffalse
    • Avira URL Cloud: safe
    		unknown
    http://www.in60days.com/)101_Labs_Cisco_CCNA.pdffalse
    • Avira URL Cloud: safe
    		unknown
    http://www.101labs.net/resources)101_Labs_Cisco_CCNA.pdffalse
    • Avira URL Cloud: safe
    		unknown
    https://calibre-ebook.com101_Labs_Cisco_CCNA.pdffalse
      		high
      http://www.101labs.net/)101_Labs_Cisco_CCNA.pdffalse
      • Avira URL Cloud: safe
      		unknown
      http://www.mypage.com/)101_Labs_Cisco_CCNA.pdffalse
      • Avira URL Cloud: safe
      		unknown
      https://www.onworks.net/)101_Labs_Cisco_CCNA.pdffalse
      • Avira URL Cloud: safe
      		unknown

      World Map of Contacted IPs

      • No. of IPs < 25%
      • 25% < No. of IPs < 50%
      • 50% < No. of IPs < 75%
      • 75% < No. of IPs

      Public IPs

      IPDomainCountryFlagASNASN NameMalicious

      Private

      IP
      192.168.2.1

      General Information

      Joe Sandbox Version:36.0.0 Rainbow Opal
      Analysis ID:780196
      Start date and time:2023-01-08 15:57:19 +01:00
      Joe Sandbox Product:CloudBasic
      Overall analysis duration:0h 7m 24s
      Hypervisor based Inspection enabled:false
      Report type:full
      Sample file name:101_Labs_Cisco_CCNA.pdf
      Cookbook file name:defaultwindowspdfcookbook.jbs
      Analysis system description:Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211
      Number of analysed new started processes analysed:15
      Number of new started drivers analysed:0
      Number of existing processes analysed:0
      Number of existing drivers analysed:0
      Number of injected processes analysed:0
      Technologies:
      • HCA enabled
      • EGA enabled
      • HDC enabled
      • AMSI enabled
      Analysis Mode:default
      Analysis stop reason:Timeout
      Detection:CLEAN
      Classification:clean0.winPDF@9/59@0/1
      EGA Information:Failed
      HDC Information:Failed
      HCA Information:
      • Successful, ratio: 100%
      • Number of executed functions: 0
      • Number of non-executed functions: 0
      Cookbook Comments:
      • Found application associated with file extension: .pdf
      • Found PDF document
      • Find and activate links
      • Close Viewer

      Warnings

      • Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SgrmBroker.exe, conhost.exe, WmiPrvSE.exe, svchost.exe
      • Excluded IPs from analysis (whitelisted): 23.54.113.182, 2.21.22.179, 2.21.22.155
      • Excluded domains from analysis (whitelisted): ssl.adobe.com.edgekey.net, fs.microsoft.com, armmf.adobe.com, e4578.dscb.akamaiedge.net, acroipm2.adobe.com.edgesuite.net, a122.dscd.akamai.net, ctldl.windowsupdate.com, acroipm2.adobe.com
      • Not all processes where analyzed, report is missing behavior information
      • Report size getting too big, too many NtSetInformationFile calls found.

      Simulations

      Behavior and APIs

      TimeTypeDescription
      15:58:33API Interceptor2x Sleep call for process: RdrCEF.exe modified

      Joe Sandbox View / Context

      IPs

      No context

      Domains

      No context

      ASNs

      No context

      JA3 Fingerprints

      No context

      Dropped Files

      No context

      Created / dropped Files

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\05349744be1ad4ad_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):205
      Entropy (8bit):5.5714373032614395
      Encrypted:false
      SSDEEP:6:men9YOFLvEWdM9QyAtI9k9katLi7Z+P41:vDRM9jG9jIZi
      MD5:E31C5EA5C60D6D1E445D9C553E5FBC54
      SHA1:B9744BB9373292E0D31DBBB1A72CB865712D2116
      SHA-256:83A351162B9031B010FCC6A56C7475A1B23566E0DA25BD25F8AD24DE4F314155
      SHA-512:6FD728153182C5E7331A1687C0818E1566030856FC5D8D8630D0AAF19F9CD3D6D4663C186997F8EC3A2010C0DAD7723BC9B1518853C68945A072FD3704993F93
      Malicious:false
      Reputation:low
      Preview:0\r..m......M..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/reviews/js/plugin.js .._1._P/....."#.D.1.....A.A..Eo.......<d............d.{v.^.G...d.W.:...P..k%..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0786087c3c360803_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):174
      Entropy (8bit):5.520381057416315
      Encrypted:false
      SSDEEP:3:m+lF9NX6v8RzYOCGLvHktWVqwT6Atl6BktqtFM98fZe/O+/rkwGhkg4m1:mi9NqEYOFLvEkn/ptW68Be7Ywcr1
      MD5:A8A646881B59A132236969CF52ECEB19
      SHA1:32BCEA0113C492F582468C75E828494A43A28E7A
      SHA-256:7EC7D6CD7368CF5FFCA78D1A6FCB97851A16039CB3F300473439C8B4D55540B8
      SHA-512:F28141AAD4EEAC0ED43B05EFB36C5871092AB2ED06BE6C5282FBC1EC74CDA87ED5BF4246BE34CC39C0F11808926F2A2724E077FCE7065AFFD966A3263BA60528
      Malicious:false
      Reputation:low
      Preview:0\r..m............,....._keyhttps://rna-resource.acrobat.com/init.js ..+.._P/....."#.D...-...A.A..Eo......yp.H.........1.x.'.vI..*|Z..o...+.4....0..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0998db3a32ab3f41_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):246
      Entropy (8bit):5.568590162676408
      Encrypted:false
      SSDEEP:6:mMyEYOFLvEWdVFLBKFjVFLBKFlQhu4Nq+GatHgt/RlUoSjGY1:DyeRVFAFjVFAFs195gtZlUo6
      MD5:AD4A01171777CDE67AA87063ADDD31E2
      SHA1:F47993C141D1A76E76D0EFE5D517CD703021A7B8
      SHA-256:CFD55E3642EDE3AA7E9F942CBD8F931BAC4A914A5E7DC480D6A17D1B1C4C4639
      SHA-512:552A3AEF2BC0EB66FCD2B9FF7C13157837215B496E730607365DF2B3A1824F8855C335A57302228186DB4B6BD9ECC1CA299613AC6E7B0A7B93BC599CE06AFEBD
      Malicious:false
      Reputation:low
      Preview:0\r..m......v...n......._keyhttps://rna-resource.acrobat.com/static/js/plugins/tracked-send/js/plugins/tracked-send/js/home-view/selector.js ...(._P/....."#.D.f.....A.A..Eo.......aH6..........hvDO.N.t@.....n.*...... ....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0ace9ee3d914a5c0_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):232
      Entropy (8bit):5.629156796152451
      Encrypted:false
      SSDEEP:6:mNtVYOFLvEWdFCi5Rse9RtAHTuiWulHyA1:IbRkiDpGjWus
      MD5:DB34E72E2428267D71A637AD2E888690
      SHA1:78D1847DA379A32F77F08E760EEFE75EECD144D2
      SHA-256:9E71AE84D691BB2FBEB2401BBEA5C4965F623ED46734A81029D0A5213906E164
      SHA-512:FE135FB4AC8C77533D15F63D73C8A94ED2763B0A5A3FBB5F4C748EC1D2EF08B60F08D4DE9E224555BEC3DE0601FFDE75302DE87E03619AD67F65110C88851641
      Malicious:false
      Reputation:low
      Preview:0\r..m......h.....'....._keyhttps://rna-resource.acrobat.com/static/js/plugins/aicuc/js/plugins/rhp/exportpdf-rna-tool-view.js .}.._P/....."#.D/N.-...A.A..Eo.......".J..........8 P..a...R..Y....7.@..2Dm{..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0f25049d69125b1e_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.492155836016023
      Encrypted:false
      SSDEEP:6:m+yiXYOFLvEWd7VIGXVuSee8atO/UVyh9PT41:pyixRu5AhV41T
      MD5:7E39DE663C02512C96C8D085F837D42D
      SHA1:913FB025ED82FC329B25FDAA6786F8EE63817FF6
      SHA-256:CB0B429C65E5B1EE414064C46B8ECDC4A0992A479DB8B3D47F1C33E452271602
      SHA-512:D3AE39FBA273DB12958885B319DAA9FC0BC9927B67F3D5C8EB6D64A0E4BF7A3C071A903182673F0BD0BC91F482458B3E3BC23701B6348D0924DAE5D633AA1DB6
      Malicious:false
      Reputation:low
      Preview:0\r..m......R...kP]g...._keyhttps://rna-resource.acrobat.com/static/js/plugins/app-center/js/selector.js ...0._P/....."#.D.......A.A..Eo........yA........k.Q.....-_..y.....O...>..1....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\230e5fe3e6f82b2c_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):216
      Entropy (8bit):5.628637603776869
      Encrypted:false
      SSDEEP:6:mvYOFLvEWdhwjQ4AEqkatZ/73ZIl6P41:0RhktS37Z
      MD5:907EB14256FAB64EB7C9E8A19CE2048F
      SHA1:BDE5BC3F2B7A06D978ABC7E5A0C6E0EEBB82953A
      SHA-256:8EA9CE81C08A6009E1C7A12A7346662D210E20932A8749ACB7257D58BAD0A092
      SHA-512:94FBBEBCAD430478C7134FEEF74B88466079484B561F86FC08A0223749B8BD9DB55C75C38C2EC442EDFFE5C07C3A8048B8A6C165DA180D541B1BD9AD204FE71D
      Malicious:false
      Reputation:low
      Preview:0\r..m......X.....V....._keyhttps://rna-resource.acrobat.com/static/js/plugins/sign-services-auth/js/plugin.js ..#._P/....."#.D.......A.A..Eo........5..........].>....uUf..N...k......c..l.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2798067b152b83c7_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):209
      Entropy (8bit):5.546520976425829
      Encrypted:false
      SSDEEP:6:mJYOFLvEWdGQRQOdQmtvHzatwflrD6g1:2RHRQCl2aflrD
      MD5:E75C03E0A70BB361940ABE7C1A3595A1
      SHA1:F2EE89BA9C34C53A27BA4175E31B495597112D0E
      SHA-256:0E088649260081CE7E939F37B4C5FAD2C55A6642E22B2516F41626D5A8DE10D9
      SHA-512:11A17683A9D869C14E91032499F2E0B0CF3543291C1632CF1AD4901107210823FDDE294046081015FC7FEB11F9739D760BD0071CC4D86949A4AABF6DEF7181B0
      Malicious:false
      Reputation:low
      Preview:0\r..m......Q..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/my-computer/js/plugin.js ..D1._P/....."#.D.......A.A..Eo.......H............c..y/L....|y.n..C/I.....X7-ne.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2a426f11fd8ebe18_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):179
      Entropy (8bit):5.474066362537365
      Encrypted:false
      SSDEEP:3:m+lLp08RzYOCGLvHkfaMMuVUhlpk90WktulXVQMWqg4nRb7om5m1:mOYOFLvECMLUzi9Qtu0uR/41
      MD5:72F26563BD5464AEC09BC8F9CFBE3920
      SHA1:F64C72DDE7A036BC67268D578A47D143B77E2BCF
      SHA-256:03FACF213D63DB2D3B40EC2118DE2D10B71A6089DC96F67FEA3A747DFDBFD045
      SHA-512:639447BE45D30B934640E46203EC1A8F621CBDE6876E5AF15C3B2AFD7EFA0A3A0FFD1FF3D6116E9B09CF049A0DBEA4DB1E871496203648F40F6435D4FE30B369
      Malicious:false
      Reputation:low
      Preview:0\r..m......3....<lb...._keyhttps://rna-resource.acrobat.com/base_uris.js .)0.._P/....."#.D*..-...A.A..Eo......?ba..........y...L<?W.Xi..A\Q3...J.}...d..~G.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\39c14c1f4b086971_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):212
      Entropy (8bit):5.603820270253014
      Encrypted:false
      SSDEEP:6:mGpYOFLvEWdzAAul7XhtTQMGm0bbsIDMGH41:XfRMT7xKMVKsIZ
      MD5:B19D33DF27EA054C2087CAB8E44F37CE
      SHA1:9B068F9137762DF9D4BD01AE84BDCCDD96AE0D56
      SHA-256:F4C86A78BAE04AC46BC22C2FBDF9AED26566B25451084B9B7C12A5FF486B4CA6
      SHA-512:BF31EF84A0369FB14772BDD523AA724497B176F5345E9C0CF1550C306C81756C140F9B20DE61F066BDA826797AC14411633C72EA7567DCA5087F6E7ABF030001
      Malicious:false
      Preview:0\r..m......T....,.^...._keyhttps://rna-resource.acrobat.com/static/js/plugins/walk-through/js/selector.js .|..._P/....."#.D.J.-...A.A..Eo....................`.....^....L>..Xa./......C.y.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\3a4ae3940784292a_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):214
      Entropy (8bit):5.507931177141867
      Encrypted:false
      SSDEEP:6:m4fPYOFLvEWdtuo1SfatPBby0zBUKSAA1:pRWSrb
      MD5:8E01ADA25731EB9ED903957A5AD02B01
      SHA1:EEBB522DAF76607A17E47DCA43344EE9C17FC527
      SHA-256:75FDFA6859AF5644B43AE149081C727B85D913605BEEBAF2738841E21E0FC565
      SHA-512:8BA498B9E84117D55DD3250E849681756E80C42E62660D58F80A9D6679D5D24F61A61B9C99C6EF64A05E4ED91E6F1B8BE4D6DD6BB58EDF2FE00AF3712FFB06FF
      Malicious:false
      Preview:0\r..m......V..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/search-summary/js/selector.js .{.2._P/....."#.DG9.....A.A..Eo.......y..........Q..E.=....=h`t..t..3%A.F$..w..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\4a0e94571d979b3c_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):177
      Entropy (8bit):5.453179080145585
      Encrypted:false
      SSDEEP:3:m+l64HXlA8RzYOCGLvHkjXMLOWFvf61qlrkG9Wktod1dn76KohyP5m1:md4HXXYOFLvEjMSWFvS1erLtojUdyP41
      MD5:F8ECF8FCAE64FCBBDCB2750D8AF3AC3E
      SHA1:2216C4BB181D3DB9755B1018A056079D4B743EE9
      SHA-256:434272D01898B3BB6E6E3EFF97D0FCD622A45990D689EBCFF9AE1E084A99B881
      SHA-512:2614A690BC14FEBF77CB799BF9AB5D1ABF097CE221F0E1AA3CF9EC477747E23F51D3E3A12DF0EC133C739D88836CF5D42695FC2DBA51243AB9A6A09ECB4788D7
      Malicious:false
      Preview:0\r..m......1......5...._keyhttps://rna-resource.acrobat.com/plugins.js ....._P/....."#.Do..-...A.A..Eo........|G.........PU ....t^.....a.k..u.7.M.BW6#}..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\560e9c8bff5008d8_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):187
      Entropy (8bit):5.521948846119416
      Encrypted:false
      SSDEEP:3:m+lpSUlIv8RzYOCGLvHkWBGKuK2fKVL1IxAXlIqkZkt3/HtjUPqf9tsDMaPV44m1:mkl9YOFLvEWsfOLmA1/kataPqVyM+VY1
      MD5:98B2E10F1539EC296D53E9A94AA2DDC0
      SHA1:A2C0742DFB48D32FC2E6216B2DA8C83A108BBE61
      SHA-256:16EE94B0087CEC19BF389FE43EF3CE853DD5B20979F95599D181B5A718E2BFB6
      SHA-512:FE71F1280E9C1A63B962DC870B1E2E3F50A7BC7FDC2F1A7925D77388DBAC952A2A0DF5E80A4D7DB6BF00BFBC6ABC577F08C0DF66D5F86564199AAA22DFCEFD35
      Malicious:false
      Preview:0\r..m......;...I......._keyhttps://rna-resource.acrobat.com/static/js/desktop.js .)..._P/....."#.Dg.e....A.A..Eo....................q.O...j....._y..L^z...?..@N..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\56c4cd218555ae2b_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:modified
      Size (bytes):244
      Entropy (8bit):5.571100468478185
      Encrypted:false
      SSDEEP:6:mt9YOFLvEWdVFLBKFjVFLBKFlyDkatPtwSeKaT9pr1:URVFAFjVFAFDa5twSeKaTL
      MD5:7F72DE4972D4089A2705524F2ED96D5C
      SHA1:4B8BB84034DFBC5E89AC6B2CC43356D1FA802C1C
      SHA-256:2C4461C8B9CCA0588A2CFB7AD52209682E7FF767D266B4DE30BE4C9A5840F812
      SHA-512:1667E8B6AB78FC4551B2E71B3379A2EFF0EE960D538241350C48AF7197F4670B62A2EC37C8825D29D9178815E5771678697803E767A438E7E8720CFE6D083B04
      Malicious:false
      Preview:0\r..m......t...R.1<...._keyhttps://rna-resource.acrobat.com/static/js/plugins/tracked-send/js/plugins/tracked-send/js/home-view/plugin.js .N.0._P/....."#.D.../...A.A..Eo......3hL...............H...{...2../.k`..r4.C. .A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\6267ed4d4a13f54b_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.548970234652054
      Encrypted:false
      SSDEEP:6:mq9YOFLvEWdzAHdQ7R/lxOL9k9tc0t5GFCaa+41:NRMHd9L9k9i0t5Gda+
      MD5:F987D8961B071C2E4A7E211767DAC8EE
      SHA1:9789DB0D40445F168FA69A1D6F3EE9A8C4E9D070
      SHA-256:69F8F6C6FB9BD3A60A4056D81A037E3D337CA89A43A981D7938C89D2DC160660
      SHA-512:B0BA2AA6809366A05A82704950F738B5AC06CBE8A218DEFDE8C7385DFA05317D379C15D4EF554086BACAC5194B4553838C64E59812E6D9356CA0103AC76204D4
      Malicious:false
      Preview:0\r..m......R....L......_keyhttps://rna-resource.acrobat.com/static/js/plugins/walk-through/js/plugin.js ....._P/....."#.D{J.-...A.A..Eo....................G.3D.....Q.g0...._.Q.........A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\6fb6d030c4ebbc21_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):211
      Entropy (8bit):5.508945017306274
      Encrypted:false
      SSDEEP:3:m+lx4F08RzYOCGLvHkWBGKuKjXKGBIEGdevA/KPWFv5lOn9kGZktwhyrpYFm1:ms2VYOFLvEWdvBIEGdeXuxOn9dat911
      MD5:C11DA77537C66746890F7BD91310986F
      SHA1:F53DF0C2722E860A0A4C43CFA61E771FD0973210
      SHA-256:C5B5A84551C13165B638BEC1DC15E23568A7D6519916C6F4E8F68A1A0D6AB006
      SHA-512:95C5640634670D223F84D35FF438CABE87F92E4D6794A4B573144EFDD2EC5AD56EB1EDCB35235F435003CC35B6EEEEA1ACB1862B0CD5C8686681492CC92DE3B3
      Malicious:false
      Preview:0\r..m......S...]......._keyhttps://rna-resource.acrobat.com/static/js/plugins/add-account/js/selector.js ..)._P/....."#.DPm.....A.A..Eo.......z&..........A.o]@r..Q.....<w.....].n\....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\7120c35b509b0fae_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):202
      Entropy (8bit):5.63927044694294
      Encrypted:false
      SSDEEP:6:maVYOFLvEWdwAPCQ31eCn9dat1y7xm7OhKlvA1:RbR16O1TnS3y7xmJ
      MD5:4198D36B49332837A08FF504B6F8A245
      SHA1:378E31999401CB15506FB94C77C4CB3F60B1D48C
      SHA-256:270AD240DC5A336493C2FA8B42A57A6522C96C6249587952D6A88A497DFEC813
      SHA-512:2BA3C18A654E03977A84D14C22E11A9CA16412293DEA9DB77DCEEB0450BB890C03472706993950C6448C1730E9318AF5857F4FA194084231BBFE0975EF6B65CB
      Malicious:false
      Preview:0\r..m......J......{...._keyhttps://rna-resource.acrobat.com/static/js/plugins/home/js/plugin.js ..#._P/....."#.D.......A.A..Eo.......Nq...........4T].....Tw.....(..b...EO....9.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\71febec55d5c75cd_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):211
      Entropy (8bit):5.582341640140507
      Encrypted:false
      SSDEEP:3:m+lx2gv8RzYOCGLvHkWBGKuKjXKX7KoQRA/KWEKPWFvy8+tl38+GGZktcFdF5Yud:ms2gEYOFLvEWdGQRQVu9+XVatOdFt1
      MD5:5E3141806F0C14AC852ED8D2D4D70508
      SHA1:1F86E8A173C2161049C16C294499C49EBDF056FA
      SHA-256:D977F9D92BB34084D76C2C2E301E7966BDAF25FDD34EC37FD0EC857BB329916F
      SHA-512:B69D81017A7C8CFECC43813CAE576F9BB27710B1D5F96A58F50B898469363C8C360994251B326047483B1D27A268E0F79DD7DB864130FB86229BECE809C2DBFF
      Malicious:false
      Preview:0\r..m......S...W.%z...._keyhttps://rna-resource.acrobat.com/static/js/plugins/my-computer/js/selector.js ...)._P/....."#.D.......A.A..Eo.......J3L........@..{o]...9o|..qY....T....{..u.b..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\86b8040b7132b608_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):206
      Entropy (8bit):5.554917344488743
      Encrypted:false
      SSDEEP:3:m+lerlyv8RzYOCGLvHkWBGKuKjXKX+IAHKLuVDf6Al3WJkGZktSNll4EnNWQ1SUy:mzyEYOFLvEWdrIOQwGJkGategEt1S/1
      MD5:F6A94A6A01F73558E9CC3DD1BBC052F4
      SHA1:8275B4873919A8EB44B9115C3B07856671FF0AD7
      SHA-256:0255F5AF97B66D1E98BEFCA35C273E3C77E8ECB2E8818621C63E4E6FCDD3D2E2
      SHA-512:EA7E31172590FEC0D8226BAC7F1F5AB905AAA4EFDF99CC97E8929F06B5E6F1BA003AFABAEB49CBF4E403809954800759D1E9AF002A3E56F54D388C31EB9D01BB
      Malicious:false
      Preview:0\r..m......N..../......_keyhttps://rna-resource.acrobat.com/static/js/plugins/my-files/js/plugin.js .lh.._P/....."#.D..t....A.A..Eo.......w...........t\a......x5.'OuE.C..@......x..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c159cc5880890bc_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):218
      Entropy (8bit):5.5375796420819325
      Encrypted:false
      SSDEEP:6:mnYOFLvEWdhwyuOt0fathowlwrqwK+41:wRh9ySnqGwK+
      MD5:B87A90888418E765A20624FE0A4EC496
      SHA1:AF7FF146A91E299782F7E8AFD4999A2EB5B63135
      SHA-256:093A4F34D8783BCF6305808B38DA46AB8B63585AEDF07426F9B36B23E82E7BA0
      SHA-512:BF211CF27681EC72379FC48186D15DE1C863169EC994B3885390856829F1FCC9D35EE0C16F823F17CE6BC50061CD5D6C09606BD7E249AD8DD21DB2648B908EA8
      Malicious:false
      Preview:0\r..m......Z.........._keyhttps://rna-resource.acrobat.com/static/js/plugins/sign-services-auth/js/selector.js .i."._P/....."#.D......A.A..Eo......1;.E...............7...o..a=.98I......(3.$G.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c84d92a9dbce3e0_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):230
      Entropy (8bit):5.55852139835824
      Encrypted:false
      SSDEEP:6:mYXYOFLvEWdrROk/RJbulElXGiAGatWfO441:/RrROk/1w/gfL
      MD5:8FA9178F9E0C7227BD20A4DBFA93BB7E
      SHA1:13E0FBB37171E68DF444D78CAFA250730B53F15F
      SHA-256:58D579D0EAD8992BEE3D46F76FC849B7D55064E7B07C4B7C9C3037272FB089D6
      SHA-512:D9177DC2A7450E206946B58ACEFCA28CAA5F68C37DC873A79BC97D5DB5EB003FF0910DED9EA7D7DB78D5757B7CEEE56B5C51B18C15B857126D91A49542235228
      Malicious:false
      Preview:0\r..m......f...F......._keyhttps://rna-resource.acrobat.com/static/js/plugins/desktop-connector-files-select/js/selector.js ..A.._P/....."#.D..p....A.A..Eo.......(.N..........~..rw.+[....!.)?..f.U..(=.=.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8e417e79df3bf0e9_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):186
      Entropy (8bit):5.532411928094921
      Encrypted:false
      SSDEEP:3:m+lhD4ll08RzYOCGLvHkWBGKuKdTSV77qlabaG9kZktcHl/pzoIN1OFPL4m1:mmDEYOFLvEWXIOa+qkatktpzV1QPLr1
      MD5:A81C7E7EB791FB148DDC2391C98688E6
      SHA1:0656F13FC4D1734227DEDE6E24FC4012020EA865
      SHA-256:4FC5EF1C16D540244A9D8CD083D856654C52C1483DAD9791EB9699470CF4D313
      SHA-512:A9FAD37F1F0A264E6009C07C5089107F9DE443766250976D482C9BC31D2FC145E760E4F98B9F8D307F8CF444529A5E8C84B7CA983039959C41152868893F4765
      Malicious:false
      Preview:0\r..m......:....f......_keyhttps://rna-resource.acrobat.com/static/js/config.js .}..._P/....."#.D.~e....A.A..Eo....................~]...%s..<...n.f..<.....1#..U..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\91cec06bb2836fa5_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):207
      Entropy (8bit):5.606979550587912
      Encrypted:false
      SSDEEP:3:m+l+nq1A8RzYOCGLvHkWBGKuKjXKLNfKPWFvdHKtl1kfZktsblu8D6EsEJeUm1:m52YOFLvEWdMAu3HquatBEvsEJ41
      MD5:DCBDA3C3BBB84C2C7298872E1ADCFCD2
      SHA1:D4BBF6C13BC242A60D6C8E9F2E0CABD5DD79728B
      SHA-256:BAF5AEA1C8040FDB1FEFFC0F40E9E6184E931502C2B9905586B368D27EF85CA1
      SHA-512:8E9278AA03543E3852E88558AAE6FD1B0A6FCE1D3A8F34076AD7FB143103275713D0A7A8EAD3D1B7BC9AD7489CB77DC022385E478D7E504D7A8A7712AFD9D328
      Malicious:false
      Preview:0\r..m......O...a.Y....._keyhttps://rna-resource.acrobat.com/static/js/plugins/reviews/js/selector.js .8.*._P/....."#.D.F.....A.A..Eo........\..........z._a...'.v.......4p3..1.']...A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\927a1596c37ebe5e_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.488938060551213
      Encrypted:false
      SSDEEP:6:mYilPYOFLvEWd8CAdAuT6AXKTatif4ong1:6lJR9A62Vo
      MD5:5BE81A6E73AFBE6C8FFD0E6D7FFEEA4A
      SHA1:5B49B8AB6BB0070EE27BEFF8FE277835745401E8
      SHA-256:47AF738B45DC2683A54482E59B44FD88E82BAE35270CD25482B587A2F294E3B4
      SHA-512:5EEA7ED61B3C53EFCFB612A443D57E55DD8834E769E92391466559444C2FD1AE9A1D06F70E44288771C161442A5588A97869E8ACA0CD0A3DC58E94C46A7DF293
      Malicious:false
      Preview:0\r..m......R....|....._keyhttps://rna-resource.acrobat.com/static/js/plugins/signatures/js/selector.js .i./._P/....."#.D.u.....A.A..Eo..................c}.H7M=M..-.....Ix..R.l...}Rl.$q.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\92c56fa2a6c4d5ba_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):223
      Entropy (8bit):5.542820942032694
      Encrypted:false
      SSDEEP:6:mY8nYOFLvEWdrROk/IukkVKpdatTlVN16wG1:F8hRrROk/61pQVp
      MD5:5227D59C840C712DEB3AB89062A92F55
      SHA1:307FAEFDA4A6719F7FF1B2840EA60E69BA4E0CBA
      SHA-256:7C6D1C86D9DCD48D40AE2EC273CC56F55E330E819FE2716D67FF19B492E3C20E
      SHA-512:8139C805DDF95958293A196C14F3ACFEFA4F857D85E5C6DCAE1B74D58836564E5BB3C9A304D5A1E9E34943EE2D61A344386E64FF6F59358E4FE3E31EE63ADA61
      Malicious:false
      Preview:0\r..m......_...h......_keyhttps://rna-resource.acrobat.com/static/js/plugins/desktop-connector-files/js/selector.js ....._P/....."#.D..o....A.A..Eo.......-............%.k.SZ..~W.....:)'B..ad......A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\946896ee27df7947_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):213
      Entropy (8bit):5.631314896230787
      Encrypted:false
      SSDEEP:6:mLrnYOFLvEWdrIoJUQXnX3mGata/eeJIi1:ehRcsHm98eeJI
      MD5:92BC39DABA1A6BFEE319C9715B599F46
      SHA1:B4450F71D085929AD0F2DD0E093912B712D4891D
      SHA-256:F0376CF0598DC24A296FBB9F4D2B9F4B085D7392ECA54E2C4EF316D729B5C62D
      SHA-512:ABC4102CA14CFB6E3B404FD8E9FEF565676F0CF35F237CF110846636E7D75DC57CE9FE7AFF454CF0BBDB566885DCB618B4A7473E76CB8890813EB996740E58A0
      Malicious:false
      Preview:0\r..m......U..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/my-files-select/js/plugin.js ....._P/....."#.DfOv....A.A..Eo.......)+..........;"./N_.,.:C..2....9L.H...3:...A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\983b7a3da8f39a46_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.51179650607222
      Encrypted:false
      SSDEEP:3:m+lQ/pqv8RzYOCGLvHkWBGKuKjXKX+IALKPWFvieKltllGGZkt5tP6mgmOZLhT79:mOEYOFLvEWdrIhuu1lfatrzgm2d/1
      MD5:6E6457AAD3AD0C4B2FC0FBACB93552D7
      SHA1:3A11D73FAA3E2DC83A7EA3E510FE68ABA5ECC636
      SHA-256:49C6C88716EE1434753B1C9C9DC50F48F4479539330B821341F123BE5E55607C
      SHA-512:536201E29CF52B7E9558E76CDFFEA913E8FC8B2581F0F4897D848064B59F988C4367F99AAA8D2885C910B6D5FF40F5A133E6E22D8533352573436BBCEB03F6D7
      Malicious:false
      Preview:0\r..m......P....r......_keyhttps://rna-resource.acrobat.com/static/js/plugins/my-files/js/selector.js ....._P/....."#.DZ.o....A.A..Eo.......w.s........Z.Z}Q..4.o....0+..[|..n:*..U.W.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\aba6710fde0876af_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):188
      Entropy (8bit):5.542343686035211
      Encrypted:false
      SSDEEP:3:m+l8UElLA8RzYOCGLvHkWBGKuKPK7CvRIVXlBcK9kZkth//EBiaQ562HvpMm1:mAElVYOFLvEW1Kn1HkatXx56uvp1
      MD5:06C077A4869FC88AD93CF3697010DCA3
      SHA1:35CDFE0E240FEEBD106512D36838D1F903BEDFCA
      SHA-256:74F819004E1486D432DBCD6BA4E09227A9D15B162CE65DEBB9711E1D2164E6B3
      SHA-512:E1E343C765149D06F103C7D9ACEF67204AB7E73E9C35A1F951679BB0A1CD01BCABF6C5B3D8E3A9DD9F37B1D0E4221B43EF5136B926AA884ED19C0C40C14549DF
      Malicious:false
      Preview:0\r..m......<...)6......_keyhttps://rna-resource.acrobat.com/static/js/rna-main.js .w..._P/....."#.D.0.....A.A..Eo......l..:........z?...SwC...^..y.....V..7R-O.....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\b6d5deb4812ac6e9_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):214
      Entropy (8bit):5.606566393745322
      Encrypted:false
      SSDEEP:6:mWYOFLvEWdBJvvuJC519at49tlUDLYtmOZn1:xRBJZMGoDcFZ
      MD5:E0B4A682B24D4D3EF452DD581EAA9B7F
      SHA1:1AEB282DE91F1F4FE699179AF8B2E4FE9CE2BEEE
      SHA-256:313AF69C2798D78E1D297A7E8A00B34624F06F9336B0CA1DDE3DDF583717CAD8
      SHA-512:97989158A09FD31500C6C60883FDA9069EC39E6E433F0FD7B06F2ACBEB720C5110FCAD5B99900CEF75F2FFE6CE6D04736460E800C7E9C089C7CFBBA0C082131D
      Malicious:false
      Preview:0\r..m......V.....h....._keyhttps://rna-resource.acrobat.com/static/js/plugins/activity-badge/js/selector.js ...)._P/....."#.Di......A.A..Eo......................t.q..W.EZ....1...[.zC.7mD..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bba29d2e6197e2f4_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):211
      Entropy (8bit):5.5871781549679564
      Encrypted:false
      SSDEEP:3:m+lxCq//6v8RzYOCGLvHkWBGKuKCH6U4LJzWHK7WFvbRXl33PJ0WktMl/PpSKGop:msRPYOFLvEWIa7zp7MHPJQtkX8VPu1
      MD5:FAE552B2B5189B1F15561F0AB6CC4CED
      SHA1:F690FF3E711E7B79442DD6B1D2BC84A836850750
      SHA-256:486AAA9B8E6314CFDCE00077ACBFE871E01B0D083650E3E7230D71C54D5889AC
      SHA-512:C75C19C243344B94C83B382F6B19D45AA5617A48B86365ABB1703A4EFD0D26AF4DF59642ADCD5829E858F788E0D100E5A3052B96054EB352FBF1B88C14A5826E
      Malicious:false
      Preview:0\r..m......S...{.j....._keyhttps://rna-resource.acrobat.com/static/js/libs/require/2.1.15/require.min.js ..=.._P/....."#.D.R.-...A.A..Eo.......].;...........L...Im.@.........E.nW...IP..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bf0ac66ae1eb4a7f_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.542373231683293
      Encrypted:false
      SSDEEP:6:mKPYOFLvEWdENU9QNPXXnfatwKwiM3Y1:bJRT9OS+fr
      MD5:8385DBBF27130383033C32F82A965661
      SHA1:194AFDC6B581201B80E89EBB93BD7DAD8147C4A9
      SHA-256:4070EBD7E52ECC9F61F127D93DA003EEDA943DDB801B98C6D9F06D520E9F666E
      SHA-512:A309EEA2E9C5D7892C67F1C7D04AA78EFE34FE2B8A98B58D112788F0CA89E58D15B027CF62C86A15900C6AD9DA5FAC94AEB7FF581528E77C8EFB550ED0D6FEB5
      Malicious:false
      Preview:0\r..m......P...Yft....._keyhttps://rna-resource.acrobat.com/static/js/plugins/uss-search/js/plugin.js ...#._P/....."#.DT.....A.A..Eo.......6l............M....m+lS..e.....<7.U.P8*.0K.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\cf3e34002cde7e9c_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.558767027520874
      Encrypted:false
      SSDEEP:6:mQt6EYOFLvEWdccAHQH/gatHujBRCh/41:XRc9HapuDi/
      MD5:5EE9F4D3D95A3B742D2309F0B77BC284
      SHA1:73DBB721BA892D6AFB275960786B7D3428F8D3DB
      SHA-256:AEE48EE79DC34CDF1E1B55439CE179FF684087DB9E7A3D046A27B4D3AB0F70F9
      SHA-512:41D24561B6D87E5447F594121E04468C239C322CC39F7090605AC0A301A9657613812BDA0A7BFF98BE11918629CDB9176696C5C512BC39AFD981232A903772D0
      Malicious:false
      Preview:0\r..m......P...W3......_keyhttps://rna-resource.acrobat.com/static/js/plugins/scan-files/js/plugin.js ...0._P/....."#.DA../...A.A..Eo......qU.:........PJm...0x.x..RD...BB!@5..<..]....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d449e58cb15daaf1_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):231
      Entropy (8bit):5.59738751536496
      Encrypted:false
      SSDEEP:6:mqs6XYOFLvEWdFCi5mhut37XDQtzkULlF4r1:bs6xRkiwh7LlF4
      MD5:07C08065304D8818046AB1D0353D1F60
      SHA1:0D5C1715AA62CC55AEA682260A432CE4E6048B77
      SHA-256:6778D715617A57BD134BDF7A06FE67DC22C443F6FD300EF143DA6E9B5E9142DE
      SHA-512:132AB6F7B19D6E8402FB2A1F2F4BFEE9EBAEE47728635E59C87EF773098595078237CCF3D1FC89E5E98FA2BFB62CC74B1A77993E78902C4B4A958E1DC7425818
      Malicious:false
      Preview:0\r..m......g...~.I?...._keyhttps://rna-resource.acrobat.com/static/js/plugins/aicuc/js/plugins/rhp/exportpdf-rna-selector.js ..7._P/....."#.D...-...A.A..Eo.......2...........P...#4..l....5...5..).w.. .h.~..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d88192ac53852604_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):215
      Entropy (8bit):5.5100729470258045
      Encrypted:false
      SSDEEP:3:m+lPHYs8RzYOCGLvHkWBGKuKjXKXqjuSKPWFv2CVltlah7LfZktEtXECcu1isLKo:mhYOFLvEWd/aFuAaatTatENEN941
      MD5:B9689ADF44CCCE094A3B06CC39118515
      SHA1:8A95C797D776A87BF1579F02ACDE22D66140FE66
      SHA-256:F855C6C69D0E7692B2671A1A452B792E8F14F087A74CCFABD676C17E93AED504
      SHA-512:65E99F4F6AEB6027FE51791D0700C482148163943B306277DADDC07B483596D91AB763A0D38DCF793B967A22583A7C9ABB98612D684B869B6E2BD7C9C0640D2D
      Malicious:false
      Preview:0\r..m......W....w.m...._keyhttps://rna-resource.acrobat.com/static/js/plugins/my-recent-files/js/selector.js ...2._P/....."#.D.D.....A.A..Eo........~...........a.f.m.i.o.p..3U5.....^...I.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\de789e80edd740d6_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.520931768235154
      Encrypted:false
      SSDEEP:6:mR9YOFLvEWd7VIGXOdQNAIDatzkXVBMqVd3G4K41:2DRuRw8EB9Vd2
      MD5:2486C7E2C625377DC6BF9409AEEB7FE2
      SHA1:18F7F05BB268F49FBFCF1E8569C31F7D1E000397
      SHA-256:1E93353EB55DB12D81A7E9DAE140E648211A9E0BAF1F2269B5FE9259F911E084
      SHA-512:21C4CC40F74AA49758915CE82DB416412E7942A2E5CE5093A5ACAC31E4B13FF3D11E34CA40CF6C960C58E672FE42B4EF9E29FD8E00C3C84F59AF462F4261C1F6
      Malicious:false
      Preview:0\r..m......P...y.p....._keyhttps://rna-resource.acrobat.com/static/js/plugins/app-center/js/plugin.js .V.2._P/....."#.D.......A.A..Eo.......8A...........y.$..$.v5j...T...z.]..._S....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f0cf6dfa8a1afa3d_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.521856854427769
      Encrypted:false
      SSDEEP:6:mkqYOFLvEWd8CAd9QcV1FfatG1uA424r1:+RQfla1r
      MD5:65CE3224ED307EBD024598A9C737F9FE
      SHA1:C052C20D6D9A4068A39A951CD7519093C23701D2
      SHA-256:60B8CE7F2F242DE4D7483A1AE2453903682A2FA126A8A9504EFC6BD719551114
      SHA-512:C04B0CAA5345B491D03447656FA6033118283F3EFCAB7BBA4734435F86B7EF365EC1EF5618805A65EF1C6FBB68795DE670390C1BF2581D6FE8D992EABFD8514C
      Malicious:false
      Preview:0\r..m......P...gT....._keyhttps://rna-resource.acrobat.com/static/js/plugins/signatures/js/plugin.js .:.2._P/....."#.D.?./...A.A..Eo........r.........#..@..k(v.8g..5.~_....]Pj.*..6.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f4a0d4ca2f3b95da_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.54603275349253
      Encrypted:false
      SSDEEP:6:moXXYOFLvEWdENUAujAtyKratI+yC8n1:xhRTmsN57
      MD5:DD9CF9722299C7D3A81C99CFD7098384
      SHA1:A4726629B0E88B3F3C0BF8DDA39B9E09CB397882
      SHA-256:D220271CDBD0CABF891BCD657A50DAD325A63971A89A8D56F76C7C44CB1FD5F2
      SHA-512:588C636BC48A99BD9D1497823D94B0B3422C39CA7261ED70911284B3CDA4EE7C03AA2304945D8FCB9BDF0FFA69999DD902BAD356906FE80AA2B3F148DE3FBD3D
      Malicious:false
      Preview:0\r..m......R..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/uss-search/js/selector.js ..."._P/....."#.D.o.....A.A..Eo..................8.../...;.\\o....1..........+..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f941376b2efdd6e6_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):221
      Entropy (8bit):5.5837630342606115
      Encrypted:false
      SSDEEP:3:m+lFNrs8RzYOCGLvHkWBGKuKjXKeRKVIJ/2kKLuV0l5nfZktB/sYWmYk5m1:mQZYOFLvEWdrROk/VQP5nfatZsLmB41
      MD5:3AAEC31D07E7381D78C8421D9CA5CD1E
      SHA1:BE95370987F7DBB10E44C99FCF973976C9B2A548
      SHA-256:CB2C85C0A0074FA827B94F37B68A81818A4AA783FD5062CFC6C6B4EDA0B4EEAB
      SHA-512:15C4F1C0FF2D2B8F0222CAA7DB2D5D78CB8733556053F5D5BCF890FE9D64E965DB090859B127B9779FF86CCB3DBF6FEDD537EABAF85DB71B7497821B94CD0B53
      Malicious:false
      Preview:0\r..m......]......,...._keyhttps://rna-resource.acrobat.com/static/js/plugins/desktop-connector-files/js/plugin.js .U..._P/....."#.D..w....A.A..Eo......".|%........ ./.ev......N~..6.b.....$.j;:C...A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f971b7eda7fa05c3_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.5531819687578885
      Encrypted:false
      SSDEEP:6:mZ/lXYOFLvEWdccAWuA/gohzatd5dm9741:qxRcF1du7
      MD5:478F92E4854F717FB30B0073E9DC77BB
      SHA1:27CC99ABC721AC42232E9DA9D9DA6165B5A4BDDC
      SHA-256:D6CBC70BCC111DFDE1F559A1278A6B4BFD579C81B8CD6691D35FAFB41859F8ED
      SHA-512:C00DCFEA9697B58E89AFCCCDD4738B48A05956B85D6D728C7AA186BE1A764C06EDA5F48769AFCF9067DCD9F90495B0D2B55F014ED6EA05D6142732522AE5010A
      Malicious:false
      Preview:0\r..m......R...F......._keyhttps://rna-resource.acrobat.com/static/js/plugins/scan-files/js/selector.js ...)._P/....."#.D.......A.A..Eo........H............U...I.>P...X...x..0U.~;m.x.k.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fd17b2d8331c91e8_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):204
      Entropy (8bit):5.5267085588181795
      Encrypted:false
      SSDEEP:6:mMOYOFLvEWdwAPVuwyV/t/yGat4B6Jn1:2R1vydFy99
      MD5:C416BACC458958D3C95BEBF5D83731FF
      SHA1:4361CB878DF9B1087399E676776F650E300AFF7C
      SHA-256:E7890E38DA6BBEED7E40EF82F04D90EB9518390F6D578FBACA9D8F51E82DE64F
      SHA-512:9EFE7A2C86BA8365B77C92FF1D51A53A1EB637B08A179A7B3C25B91AD5E239A3EA33833EB078F9C82156D9D8FEB4FEC4394B80A414BED5C83CBC45EDE562E7EB
      Malicious:false
      Preview:0\r..m......L....Ey....._keyhttps://rna-resource.acrobat.com/static/js/plugins/home/js/selector.js .z."._P/....."#.D.O.....A.A..Eo......(z.F.............k....F..D..O.n;[.1m.....=..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fdd733564de6fbcb_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):212
      Entropy (8bit):5.5885705720362475
      Encrypted:false
      SSDEEP:6:m3PXYOFLvEWdBJvYQWltQGGatyAhcsBXIh1:mxRBJQlH84B
      MD5:95FD4D681FEDCCB438CAE34C4B19B9C7
      SHA1:6F3426ED3E91F103F948CE57D371180A052A5DF3
      SHA-256:9950FB373F37E88130D6499276D4FDC2E5C1BD99CD8E8E014D99149A109DA19C
      SHA-512:1909A5249228FED8E42AB7DC521084C84B575092D0335040CB651A160B084EFF86ADDD7C7B3E4322FF49792B1B0D3E017822EE066AE085B2CEF33A8C962FDF0B
      Malicious:false
      Preview:0\r..m......T......z...._keyhttps://rna-resource.acrobat.com/static/js/plugins/activity-badge/js/plugin.js ..b1._P/....."#.D.1.....A.A..Eo......P\.............k..`..N3.... ..d..$[.....{.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\febb41df4ea2b63a_0

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):228
      Entropy (8bit):5.579315867357178
      Encrypted:false
      SSDEEP:6:msPYOFLvEWdrROk/RJUQrXaqkatLD/Bc3Me/1:3RrROk/skjtD/B
      MD5:2ACEBEA6187D6FCC01F1E9BDDC70074C
      SHA1:A6CB9BBC8F574050C636AC82626DC85AAD29F26E
      SHA-256:3DA00C0670C72C5F8CC760F88A409C7C54DF9E6131BBB7CB8EB1EA063EBD7436
      SHA-512:F234205F1D0C07336DEBCF5499581E42D61DD0019E140F9772014A83CA6F46CD5C0FA5713CEC6840DD9FC169DA7D2CF959022DB24EE4A318BF94DBB8BFEECE1D
      Malicious:false
      Preview:0\r..m......d...<.s....._keyhttps://rna-resource.acrobat.com/static/js/plugins/desktop-connector-files-select/js/plugin.js ./..._P/....."#.D.+x....A.A..Eo........|.............9Q].8O.z....=..:.N.{....N{.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\temp-index

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):1080
      Entropy (8bit):5.201947008864754
      Encrypted:false
      SSDEEP:12:HSP4/+/l/ChS5tYPLKdFeI/AHw2XMze3zV7adUtUi+/l/9GKgjR2+V6Jl7muWgAp:HSahwBdYI/AQAM2FaYBV6Jl7k6l6YIl
      MD5:962DDE337B3053123862A592E3BE91BF
      SHA1:9EFA773D3C619E1F4FEBFB6FA61B32CCE6898F91
      SHA-256:AB1E3D8CD54BF2A0A57D419A400396CE2F7F1DEE485A37ED74A960C3C846D632
      SHA-512:8D110829305C4A59BB3C9F40EA620A31520266BEF733275A55EC95A0C50DC0AC9696ED3329FD1A73A1EBAB88A844EEFF609B1A02657E726CDF9B5189986C91EB
      Malicious:false
      Preview:0....Z'oy retne....+........V............*..@ .._P/...........;.y~A.@ .._P/..............oB*...._P/............#...(...A_./.............D.4...@._P/..........[.i..%...@._P/.............k7A.@ .._P/..........]...I.Y._P/.........,+..._.#.b"._P/.........<...W..J...._P/..........J..j....b"._P/...........6<|......._P/...........2q....@ .._P/...........P....V@ .._P/.........!...0.o..1._P/............P[. q.b"._P/...........3....b"._P/..........v...q......_P/...........a........_P/..........C..M.....A_./...................._P/.........qi.K.L.9...._P/.........K..JM.gb...._P/.........F..=z;.@ .._P/.............o.@ .._P/.........Gy.'.h.@ .._P/.........:..N.A..@ .._P/..........;/...b"._P/.................b"._P/.........A?.2:....1._P/..............q...1._P/..........u\]..q..1._P/..........o..k....1._P/...........*......1._P/.........^.~..z...@._P/..........+.{..'..@._P/............MV3....@._P/..........@..x...@._P/.........*)....J:..@._P/..........&.S......@._P/.........

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\the-real-index (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):1080
      Entropy (8bit):5.201947008864754
      Encrypted:false
      SSDEEP:12:HSP4/+/l/ChS5tYPLKdFeI/AHw2XMze3zV7adUtUi+/l/9GKgjR2+V6Jl7muWgAp:HSahwBdYI/AQAM2FaYBV6Jl7k6l6YIl
      MD5:962DDE337B3053123862A592E3BE91BF
      SHA1:9EFA773D3C619E1F4FEBFB6FA61B32CCE6898F91
      SHA-256:AB1E3D8CD54BF2A0A57D419A400396CE2F7F1DEE485A37ED74A960C3C846D632
      SHA-512:8D110829305C4A59BB3C9F40EA620A31520266BEF733275A55EC95A0C50DC0AC9696ED3329FD1A73A1EBAB88A844EEFF609B1A02657E726CDF9B5189986C91EB
      Malicious:false
      Preview:0....Z'oy retne....+........V............*..@ .._P/...........;.y~A.@ .._P/..............oB*...._P/............#...(...A_./.............D.4...@._P/..........[.i..%...@._P/.............k7A.@ .._P/..........]...I.Y._P/.........,+..._.#.b"._P/.........<...W..J...._P/..........J..j....b"._P/...........6<|......._P/...........2q....@ .._P/...........P....V@ .._P/.........!...0.o..1._P/............P[. q.b"._P/...........3....b"._P/..........v...q......_P/...........a........_P/..........C..M.....A_./...................._P/.........qi.K.L.9...._P/.........K..JM.gb...._P/.........F..=z;.@ .._P/.............o.@ .._P/.........Gy.'.h.@ .._P/.........:..N.A..@ .._P/..........;/...b"._P/.................b"._P/.........A?.2:....1._P/..............q...1._P/..........u\]..q..1._P/..........o..k....1._P/...........*......1._P/.........^.~..z...@._P/..........+.{..'..@._P/............MV3....@._P/..........@..x...@._P/.........*)....J:..@._P/..........&.S......@._P/.........

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\the-real-index~RF685385.TMP (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):1080
      Entropy (8bit):5.201947008864754
      Encrypted:false
      SSDEEP:12:HSP4/+/l/ChS5tYPLKdFeI/AHw2XMze3zV7adUtUi+/l/9GKgjR2+V6Jl7muWgAp:HSahwBdYI/AQAM2FaYBV6Jl7k6l6YIl
      MD5:962DDE337B3053123862A592E3BE91BF
      SHA1:9EFA773D3C619E1F4FEBFB6FA61B32CCE6898F91
      SHA-256:AB1E3D8CD54BF2A0A57D419A400396CE2F7F1DEE485A37ED74A960C3C846D632
      SHA-512:8D110829305C4A59BB3C9F40EA620A31520266BEF733275A55EC95A0C50DC0AC9696ED3329FD1A73A1EBAB88A844EEFF609B1A02657E726CDF9B5189986C91EB
      Malicious:false
      Preview:0....Z'oy retne....+........V............*..@ .._P/...........;.y~A.@ .._P/..............oB*...._P/............#...(...A_./.............D.4...@._P/..........[.i..%...@._P/.............k7A.@ .._P/..........]...I.Y._P/.........,+..._.#.b"._P/.........<...W..J...._P/..........J..j....b"._P/...........6<|......._P/...........2q....@ .._P/...........P....V@ .._P/.........!...0.o..1._P/............P[. q.b"._P/...........3....b"._P/..........v...q......_P/...........a........_P/..........C..M.....A_./...................._P/.........qi.K.L.9...._P/.........K..JM.gb...._P/.........F..=z;.@ .._P/.............o.@ .._P/.........Gy.'.h.@ .._P/.........:..N.A..@ .._P/..........;/...b"._P/.................b"._P/.........A?.2:....1._P/..............q...1._P/..........u\]..q..1._P/..........o..k....1._P/...........*......1._P/.........^.~..z...@._P/..........+.{..'..@._P/............MV3....@._P/..........@..x...@._P/.........*)....J:..@._P/..........&.S......@._P/.........

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_05349744be1ad4ad_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):205
      Entropy (8bit):5.5714373032614395
      Encrypted:false
      SSDEEP:6:men9YOFLvEWdM9QyAtI9k9katLi7Z+P41:vDRM9jG9jIZi
      MD5:E31C5EA5C60D6D1E445D9C553E5FBC54
      SHA1:B9744BB9373292E0D31DBBB1A72CB865712D2116
      SHA-256:83A351162B9031B010FCC6A56C7475A1B23566E0DA25BD25F8AD24DE4F314155
      SHA-512:6FD728153182C5E7331A1687C0818E1566030856FC5D8D8630D0AAF19F9CD3D6D4663C186997F8EC3A2010C0DAD7723BC9B1518853C68945A072FD3704993F93
      Malicious:false
      Preview:0\r..m......M..........._keyhttps://rna-resource.acrobat.com/static/js/plugins/reviews/js/plugin.js .._1._P/....."#.D.1.....A.A..Eo.......<d............d.{v.^.G...d.W.:...P..k%..A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_0998db3a32ab3f41_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):246
      Entropy (8bit):5.568590162676408
      Encrypted:false
      SSDEEP:6:mMyEYOFLvEWdVFLBKFjVFLBKFlQhu4Nq+GatHgt/RlUoSjGY1:DyeRVFAFjVFAFs195gtZlUo6
      MD5:AD4A01171777CDE67AA87063ADDD31E2
      SHA1:F47993C141D1A76E76D0EFE5D517CD703021A7B8
      SHA-256:CFD55E3642EDE3AA7E9F942CBD8F931BAC4A914A5E7DC480D6A17D1B1C4C4639
      SHA-512:552A3AEF2BC0EB66FCD2B9FF7C13157837215B496E730607365DF2B3A1824F8855C335A57302228186DB4B6BD9ECC1CA299613AC6E7B0A7B93BC599CE06AFEBD
      Malicious:false
      Preview:0\r..m......v...n......._keyhttps://rna-resource.acrobat.com/static/js/plugins/tracked-send/js/plugins/tracked-send/js/home-view/selector.js ...(._P/....."#.D.f.....A.A..Eo.......aH6..........hvDO.N.t@.....n.*...... ....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_56c4cd218555ae2b_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):244
      Entropy (8bit):5.571100468478185
      Encrypted:false
      SSDEEP:6:mt9YOFLvEWdVFLBKFjVFLBKFlyDkatPtwSeKaT9pr1:URVFAFjVFAFDa5twSeKaTL
      MD5:7F72DE4972D4089A2705524F2ED96D5C
      SHA1:4B8BB84034DFBC5E89AC6B2CC43356D1FA802C1C
      SHA-256:2C4461C8B9CCA0588A2CFB7AD52209682E7FF767D266B4DE30BE4C9A5840F812
      SHA-512:1667E8B6AB78FC4551B2E71B3379A2EFF0EE960D538241350C48AF7197F4670B62A2EC37C8825D29D9178815E5771678697803E767A438E7E8720CFE6D083B04
      Malicious:false
      Preview:0\r..m......t...R.1<...._keyhttps://rna-resource.acrobat.com/static/js/plugins/tracked-send/js/plugins/tracked-send/js/home-view/plugin.js .N.0._P/....."#.D.../...A.A..Eo......3hL...............H...{...2../.k`..r4.C. .A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_91cec06bb2836fa5_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):207
      Entropy (8bit):5.606979550587912
      Encrypted:false
      SSDEEP:3:m+l+nq1A8RzYOCGLvHkWBGKuKjXKLNfKPWFvdHKtl1kfZktsblu8D6EsEJeUm1:m52YOFLvEWdMAu3HquatBEvsEJ41
      MD5:DCBDA3C3BBB84C2C7298872E1ADCFCD2
      SHA1:D4BBF6C13BC242A60D6C8E9F2E0CABD5DD79728B
      SHA-256:BAF5AEA1C8040FDB1FEFFC0F40E9E6184E931502C2B9905586B368D27EF85CA1
      SHA-512:8E9278AA03543E3852E88558AAE6FD1B0A6FCE1D3A8F34076AD7FB143103275713D0A7A8EAD3D1B7BC9AD7489CB77DC022385E478D7E504D7A8A7712AFD9D328
      Malicious:false
      Preview:0\r..m......O...a.Y....._keyhttps://rna-resource.acrobat.com/static/js/plugins/reviews/js/selector.js .8.*._P/....."#.D.F.....A.A..Eo........\..........z._a...'.v.......4p3..1.']...A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_927a1596c37ebe5e_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):210
      Entropy (8bit):5.488938060551213
      Encrypted:false
      SSDEEP:6:mYilPYOFLvEWd8CAdAuT6AXKTatif4ong1:6lJR9A62Vo
      MD5:5BE81A6E73AFBE6C8FFD0E6D7FFEEA4A
      SHA1:5B49B8AB6BB0070EE27BEFF8FE277835745401E8
      SHA-256:47AF738B45DC2683A54482E59B44FD88E82BAE35270CD25482B587A2F294E3B4
      SHA-512:5EEA7ED61B3C53EFCFB612A443D57E55DD8834E769E92391466559444C2FD1AE9A1D06F70E44288771C161442A5588A97869E8ACA0CD0A3DC58E94C46A7DF293
      Malicious:false
      Preview:0\r..m......R....|....._keyhttps://rna-resource.acrobat.com/static/js/plugins/signatures/js/selector.js .i./._P/....."#.D.u.....A.A..Eo..................c}.H7M=M..-.....Ix..R.l...}Rl.$q.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_aba6710fde0876af_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):188
      Entropy (8bit):5.542343686035211
      Encrypted:false
      SSDEEP:3:m+l8UElLA8RzYOCGLvHkWBGKuKPK7CvRIVXlBcK9kZkth//EBiaQ562HvpMm1:mAElVYOFLvEW1Kn1HkatXx56uvp1
      MD5:06C077A4869FC88AD93CF3697010DCA3
      SHA1:35CDFE0E240FEEBD106512D36838D1F903BEDFCA
      SHA-256:74F819004E1486D432DBCD6BA4E09227A9D15B162CE65DEBB9711E1D2164E6B3
      SHA-512:E1E343C765149D06F103C7D9ACEF67204AB7E73E9C35A1F951679BB0A1CD01BCABF6C5B3D8E3A9DD9F37B1D0E4221B43EF5136B926AA884ED19C0C40C14549DF
      Malicious:false
      Preview:0\r..m......<...)6......_keyhttps://rna-resource.acrobat.com/static/js/rna-main.js .w..._P/....."#.D.0.....A.A..Eo......l..:........z?...SwC...^..y.....V..7R-O.....A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\todelete_f0cf6dfa8a1afa3d_0_1 (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):208
      Entropy (8bit):5.521856854427769
      Encrypted:false
      SSDEEP:6:mkqYOFLvEWd8CAd9QcV1FfatG1uA424r1:+RQfla1r
      MD5:65CE3224ED307EBD024598A9C737F9FE
      SHA1:C052C20D6D9A4068A39A951CD7519093C23701D2
      SHA-256:60B8CE7F2F242DE4D7483A1AE2453903682A2FA126A8A9504EFC6BD719551114
      SHA-512:C04B0CAA5345B491D03447656FA6033118283F3EFCAB7BBA4734435F86B7EF365EC1EF5618805A65EF1C6FBB68795DE670390C1BF2581D6FE8D992EABFD8514C
      Malicious:false
      Preview:0\r..m......P...gT....._keyhttps://rna-resource.acrobat.com/static/js/plugins/signatures/js/plugin.js .:.2._P/....."#.D.?./...A.A..Eo........r.........#..@..k(v.8g..5.~_....]Pj.*..6.A..Eo..................

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:ASCII text
      Category:dropped
      Size (bytes):292
      Entropy (8bit):5.21772467367923
      Encrypted:false
      SSDEEP:6:kOSIq2PWXp+N2nKuAl9OmbnIFUtjCoPZmwJCodkwOWXp+N2nKuAl9OmbjLJ:kOzvaHAahFUtjr/Jh5fHAaSJ
      MD5:3E2072D2C129970204BFEAAA4696E9B6
      SHA1:4302E682406C6674ED003E97DC3FD4555EB8D2FD
      SHA-256:DD95E2A35FBDD25245D0B25E2DAF453429070255724AF04B563D977449A952F6
      SHA-512:F8403C5BDCD7348062ED001625517368C02F330ABB6CBC9D321B3E8DE7C21DA31E8F9E079737437E89BEB99568D8EE3B31EA64C2B86000372DD203C4932C82CE
      Malicious:false
      Preview:2023/01/08-15:58:43.032 1730 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2023/01/08-15:58:43.044 1730 Recovering log #3.2023/01/08-15:58:43.044 1730 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:ASCII text
      Category:dropped
      Size (bytes):292
      Entropy (8bit):5.21772467367923
      Encrypted:false
      SSDEEP:6:kOSIq2PWXp+N2nKuAl9OmbnIFUtjCoPZmwJCodkwOWXp+N2nKuAl9OmbjLJ:kOzvaHAahFUtjr/Jh5fHAaSJ
      MD5:3E2072D2C129970204BFEAAA4696E9B6
      SHA1:4302E682406C6674ED003E97DC3FD4555EB8D2FD
      SHA-256:DD95E2A35FBDD25245D0B25E2DAF453429070255724AF04B563D977449A952F6
      SHA-512:F8403C5BDCD7348062ED001625517368C02F330ABB6CBC9D321B3E8DE7C21DA31E8F9E079737437E89BEB99568D8EE3B31EA64C2B86000372DD203C4932C82CE
      Malicious:false
      Preview:2023/01/08-15:58:43.032 1730 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2023/01/08-15:58:43.044 1730 Recovering log #3.2023/01/08-15:58:43.044 1730 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old~RF67e0a6.TMP (copy)

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:ASCII text
      Category:dropped
      Size (bytes):292
      Entropy (8bit):5.21772467367923
      Encrypted:false
      SSDEEP:6:kOSIq2PWXp+N2nKuAl9OmbnIFUtjCoPZmwJCodkwOWXp+N2nKuAl9OmbjLJ:kOzvaHAahFUtjr/Jh5fHAaSJ
      MD5:3E2072D2C129970204BFEAAA4696E9B6
      SHA1:4302E682406C6674ED003E97DC3FD4555EB8D2FD
      SHA-256:DD95E2A35FBDD25245D0B25E2DAF453429070255724AF04B563D977449A952F6
      SHA-512:F8403C5BDCD7348062ED001625517368C02F330ABB6CBC9D321B3E8DE7C21DA31E8F9E079737437E89BEB99568D8EE3B31EA64C2B86000372DD203C4932C82CE
      Malicious:false
      Preview:2023/01/08-15:58:43.032 1730 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2023/01/08-15:58:43.044 1730 Recovering log #3.2023/01/08-15:58:43.044 1730 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      File Type:data
      Category:dropped
      Size (bytes):131072
      Entropy (8bit):0.010978819626460943
      Encrypted:false
      SSDEEP:3:ImtVdXb+j4x9pPlXlpyPll//zVrzlltD0lGQZ7XEZhGIelHdP4/X:IiVtg4x9pdM//hFwl570ZhdelG/
      MD5:E36F8F81D3C03F6AAF7D768706B7673F
      SHA1:EECE93F9E417717892E50F6A159516DD76C255B0
      SHA-256:C6E687FF9677244574F37AD2877726DF64E5BAADDA2ABE8C4759BDE8344E44F2
      SHA-512:0582ADCFA1A09095D4482C9A61475C8B77FF444BF2655DE4F6583BBB2699A054BBB2292DE2741FEEB27AFE0835B0B48F476418EE1A666DE20CA146D1EB4390A4
      Malicious:false
      Preview:VLnk.....?.......Tq.>..j................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-230108235837Z-455.bmp

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      File Type:PC bitmap, Windows 3.x format, 117 x -152 x 32, cbSize 71190, bits offset 54
      Category:dropped
      Size (bytes):71190
      Entropy (8bit):3.6338405156793776
      Encrypted:false
      SSDEEP:192:2TUa8iccRTemeIuKhHfJlfYgXS3LqGEHEGPzU3jDphzBkMJAi2RVcrtf1loVwM23:efcch1ti3CHE/H3j1k56ck29sfHrLl
      MD5:B8E0F377FEF1499FBB839E302C7B3453
      SHA1:1696EC2D708258E719AAB10A17F9D33CA62C0F07
      SHA-256:6D4418368BEE5D848DC97B27DF3858EE7887A418EFA35417D7124FD2C27DC385
      SHA-512:DE43CD0D9F2316F1E3958BDBDEAA2ABA1A1428DE8B5092B366B5FD7EA00C06043A0745115B3C6962E80EAFF06FCCEAFD880B8048883C224CE53178BC4243424A
      Malicious:false
      Preview:BM........6...(...u...h..... ...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      File Type:SQLite 3.x database, last written using SQLite version 3024000, file counter 12, database pages 15, cookie 0x5, schema 4, UTF-8, version-valid-for 12
      Category:dropped
      Size (bytes):61440
      Entropy (8bit):3.5651601703671294
      Encrypted:false
      SSDEEP:384:3eI9dThutELJ8fwRRwZsLRGlKhsvXh+vSc:GkYZsLQhUSc
      MD5:48E04A68ED80E6B1B1A4AE985F7F9F63
      SHA1:DD13AA7F3B88642905C9E9B600941D9E9A6A47F6
      SHA-256:EBFA6D9DF68F72959CFD880D501DA7D934DA89311348F2FD59EDEF9BE430BCE5
      SHA-512:D69D4DABFD4C76A2B03F222AC1A7D443DDDD0418BEF7BA5CB4D3D5B57697165E7A59A2FEB89911EB07E0D03A91A0013F6657B3C3C80F2620B22730452EDB4008
      Malicious:false
      Preview:SQLite format 3......@ ..........................................................................$.......1........T...U.1.D............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      File Type:SQLite Rollback Journal
      Category:dropped
      Size (bytes):8720
      Entropy (8bit):3.287074064981511
      Encrypted:false
      SSDEEP:48:7MMtom1CJiomFiom2om1Nom1Aiom1RROiom1oom1pom1zZiomVsiomggqQlmFTIB:7gJCOhDCsgN49IVXEBodRBk4
      MD5:AAED410EDFEB563D117980706A836668
      SHA1:85845BA1C516713382CCE6500D7FBAA99750DA3F
      SHA-256:AD76DD14F6FB54B6E4487C730AC767DE1492FD426E647EF263BC63A8F27D3555
      SHA-512:A4F791EC821C7FAE7C4D198EB6F4F0E95B154611935C7489D7C660652DD17947CCAD69875A2F3A8BD2281EDB7A8673923CFE736CA92EFA5A442885D3FAB164AC
      Malicious:false
      Preview:.... .c....._j...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................s........L.s.y................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

      C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_store

      Download File
      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      File Type:data
      Category:dropped
      Size (bytes):10240
      Entropy (8bit):0.6750050738677021
      Encrypted:false
      SSDEEP:12:BZ2vX7vz+YXnTIHLjJ9wkI4c6/oCyitQBOIP0xg5/fLM:BZeXTz++IvJ9wkI4c6QbiuBOI2gxLM
      MD5:C38DB0F968872CB3B1FBF6AE9A0EF9DC
      SHA1:F33A6E1368267704758D324C3170FFEC35A64886
      SHA-256:6B804B2E7E3F3F270A809298758697B12697A26846FF9D20E0FBFDC9F64EED8A
      SHA-512:55BC7AE2ABAF607B7B4F6804390ED8FC796EDC0D778728DDF84E62B97BE74C1BD9547CA1EEAF3646BADD30C8AB1A7E20D534249DD976E07BA83B718DF6A39AD8
      Malicious:false
      Preview: ...Q......{W.C..$;..U....b.T}..k...... .........g$#..q.......i>....[}l..... .....M^.......A.....W >.D...{.... .d...h.g.U7.Z..!......j.&...Q,9......M4..mN.1...CB&....$........,1!.f_?.1..&......a....t....]U.hQ.?.*#1....r|..0c...=.....]..J......LfhI.<.....].5...P.5.9..{`b.GB.....$.....r.&"8..2..x5.n.j.{.S}..l..[..4..K.\_.*....Q..A..L..YY..vg..M...x..d|0...k..I..~...-Cih.KW...._".i._.!..X.r...........&.Q`....90....L... .bz.s-Z.}..;v..>...%.|.^.....}.qm..:....Pf....`.&.L......ny.....)I.M..Q..xZ...$.I.................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

      Static File Info

      General

      File type:PDF document, version 1.4, 9 pages
      Entropy (8bit):7.833369901771026
      TrID:
      • Adobe Portable Document Format (5005/1) 100.00%
      File name:101_Labs_Cisco_CCNA.pdf
      File size:4670705
      MD5:0c5f4b8c16d7e9f52b85f7bfac5e6bee
      SHA1:5ea2c0b17ff1d154904a7e1bff208705dd90edf3
      SHA256:36630349f85fa4eada1490d32ef4437bd463d71d67590bb1f69a65c0711b8c79
      SHA512:4f7c7188c936503a11819d07953b13a3cfaa33be51d01e1f96d2cfa00f5f60aa30c291dd2b8a9fe9069c024109b99afea24087565e966ecc0c609c7baf73cb85
      SSDEEP:98304:CqXrm1n9WDSwUyN2g4FnVcILS2DvAKbUrDHHHHHnIGl9U:CWDTfN2g2yVdDHHHHHnNli
      TLSH:4526BE31FB97CB5CE7178A6C653E3C3B472E76C1A5CA79A711224E406280F344A476BE
      File Content Preview:%PDF-1.4.%.....1 0 obj<</Author(...P.a.u.l. .B.r.o.w.n.i.n.g. .&. .F.a.r.a.i. .T.a.f.a)/CreationDate(D:20200710202127+00'00')/Creator(...c.a.l.i.b.r.e. .\(.4...2.0...0.\). .[.h.t.t.p.s.:././.c.a.l.i.b.r.e.-.e.b.o.o.k...c.o.m.])/ModDate(D:20200710222158+01

      File Icon

      Icon Hash:74ecccdcd4ccccf0

      Static PDF Info

      General

      Header:%PDF-1.4
      Total Entropy:7.833370
      Total Bytes:4670705
      Stream Entropy:7.874700
      Stream Bytes:4157800
      Entropy outside Streams:5.151780
      Bytes outside Streams:512905
      Number of EOF found:1
      Bytes after EOF:

      Keywords Statistics

      NameCount
      obj3244
      endobj3244
      stream955
      endstream955
      xref1
      trailer1
      startxref1
      /Page748
      /Encrypt0
      /ObjStm0
      /URI30
      /JS0
      /JavaScript0
      /AA0
      /OpenAction0
      /AcroForm0
      /JBIG2Decode0
      /RichMedia0
      /Launch0
      /EmbeddedFile0

      Image Streams

      IDDHASHMD5Preview
      325032346033b3f1b99f164c30269fbc191e53b8b7235e34e6a
      332b161f1d0f0313bb3827a61e4c730983959a0e1d88ab835f0
      36313d2cace2a2232523b2995c36b2e6ff3417bf900336535d7
      37293b2cae8296320305fafd3e607907e1a1d1e7c3f3b3b2ed5
      381c3c07c30869e0606746c8b191621d246ff3045b557efe574

      Network Behavior

      No network behavior found

      Statistics

      CPU Usage

      Click to jump to process

      Memory Usage

      Click to jump to process

      High Level Behavior Distribution

      Click to dive into process behavior distribution

      Behavior

      Click to jump to process

      System Behavior

      General

      Target ID:0
      Start time:15:58:19
      Start date:08/01/2023
      Path:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      Wow64 process (32bit):true
      Commandline:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\101_Labs_Cisco_CCNA.pdf
      Imagebase:0xa60000
      File size:2571312 bytes
      MD5 hash:B969CF0C7B2C443A99034881E8C8740A
      Has elevated privileges:true
      Has administrator privileges:true
      Programmed in:C, C++ or other language
      Reputation:moderate

      General

      Target ID:1
      Start time:15:58:30
      Start date:08/01/2023
      Path:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      Wow64 process (32bit):true
      Commandline:"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
      Imagebase:0x8e0000
      File size:9475120 bytes
      MD5 hash:9AEBA3BACD721484391D15478A4080C7
      Has elevated privileges:true
      Has administrator privileges:true
      Programmed in:C, C++ or other language
      Reputation:moderate

      Disassembly

      No disassembly