{"Win.Dropper.Generickdz-7724446-0": {"bis": [{"bi": "memory-execute-readwrite", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "imports-IsDebuggerPresent", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "cmd-exe-file-execution", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0002", "T1059"]}, {"bi": "modified-file-in-user-dir", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-fast-flux-domain", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-only-safe-domains-contacted", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "pe-encrypted-section", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "modified-executable", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "created-executable-in-user-dir", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "deleted-submitted-file", "hashes": ["47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1107"]}, {"bi": "artifact-flagged-anomaly", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "network-communications-http-get", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0011", "TA0010", "T1105", "T1043"]}, {"bi": "process-long-cmdline", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "cmd-exe-file-deletion", "hashes": ["47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1107"]}, {"bi": "excessive-foreign-memory-modification", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0005", "T1055"]}, {"bi": "feed-domain-antivirus-service", "hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-opendns-malicious", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "registry-autorun-key-modified", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "windows-util-schtask", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0003", "T1053"]}, {"bi": "windows-util-schtask-generic", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0003", "T1053"]}, {"bi": "modified-file-in-system-dir", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "pe-certificate", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "task-pointed-to-appdata-directory", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0002", "TA0003", "TA0004", "T1053"]}, {"bi": "windows-vault-api", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0006", "T1003"]}, {"bi": "nginx-webserver-detected", "hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "registry-service-with-autostart-created", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0003", "T1112", "T1058"]}, {"bi": "currentcontrolset-service-added", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0002", "TA0003", "T1035", "T1060"]}, {"bi": "listening-port-opened", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "T1219"]}, {"bi": "artifact-windows-task", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": ["TA0002", "TA0003", "T1053"]}, {"bi": "process-with-multiple-children", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0005"]}, {"bi": "pe-tls-callback", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "netsh-firewall-generic", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005", "T1016", "T1089"]}, {"bi": "registry-windows-defender-exclusions-added", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005", "T1089"]}, {"bi": "netsh-firewall-add", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "TA0005", "T1089"]}, {"bi": "pe-invalid-checksum", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "firefox-cookie-read", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0009", "T1005", "T1119"]}, {"bi": "dns-query-nxdomain", "hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "netbios-query", "hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "public-ip-address-identification-attempt", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0007", "T1082", "T1016"]}, {"bi": "feed-public-ip-check-dns", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "antivirus-flagged-artifact", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": []}, {"bi": "pe-artifact-invalid-certificate-signature", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": ["TA0005"]}, {"bi": "network-snort-protocol", "hashes": ["4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "pe-filename-mismatch", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "firefox-password-manager-local-database-access", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0006", "T1003"]}, {"bi": "pe-imports-toolhelp", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0007", "T1057"]}, {"bi": "registry-large-data-entry", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0005", "T1112"]}, {"bi": "network-dns-category-file-storage", "hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "pe-section-execute-writable", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "sample-launched-copy-of-self", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1202"]}, {"bi": "sample-launched-copy-domain-flagged", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1102"]}, {"bi": "potential-registry-persistence", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-vm", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1497"]}, {"bi": "registry-autorun-key-system-dir", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "pe-imports-empty", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": []}, {"bi": "registry-service-autostart-disabled", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0003", "T1112", "T1489", "T1058"]}, {"bi": "pe-imports-exe", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-antianalysis", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "process-check-virtualbox", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0007", "T1497"]}, {"bi": "registry-service-type-modified", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0003", "T1112", "T1058"]}, {"bi": "sc-service-stop", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1489"]}, {"bi": "pe-header-subsystem", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "registry-service-delete-flag-set", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0003", "T1112", "T1489", "T1058"]}, {"bi": "enumeration-bcdedit", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0007"]}, {"bi": "malware-glupteba-bot-mutex-detected", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": []}, {"bi": "artifact-av-detect", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "T1063"]}, {"bi": "windows-util-schtask-create-onlogon", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0003", "T1053"]}, {"bi": "windows-util-bcdedit", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": ["TA0005", "TA0003"]}, {"bi": "network-dns-category-harmful", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "mitre_attack_tags": []}, {"bi": "process-taskkill", "hashes": ["47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "mitre_attack_tags": ["TA0005", "T1089"]}, {"bi": "cmd-self-exiting", "hashes": ["47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "mitre_attack_tags": ["TA0002", "T1059"]}, {"bi": "file-ini-read", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "modified-file-in-program-dir", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "artifact-exec-extension-obfuscation", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "process-uses-localhost-traffic", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005"]}, {"bi": "process-ping", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0011", "TA0007", "T1049"]}, {"bi": "process-ping-localhost", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0011", "TA0007", "T1016"]}, {"bi": "excessive-file-modifications", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "file-ini-modified", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0003"]}, {"bi": "dot-net-process-hollowing-detected", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1093"]}, {"bi": "command-deleted-shadow-copy", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1490"]}, {"bi": "malware-generic-ransomware-entropy", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "malware-generic-ransomware-backup-del", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "wmic-shadowcopy-delete", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0002", "TA0040", "T1047", "T1490"]}, {"bi": "microsoft-block-rule-list-app-executed", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1089"]}, {"bi": "recycler-file-creation", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "bcdedit-disable-recovery", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "TA0003", "T1490"]}, {"bi": "wbadmin-file-deletion-detected", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0040", "T1485"]}, {"bi": "bcdedit-ignore-failure", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "TA0003", "T1490"]}, {"bi": "malware-sivis-artifact-detected", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "process-deletes-many-files", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": []}, {"bi": "network-fast-flux-nameserver", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "network-communications-http-post", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "TA0010", "T1048"]}, {"bi": "process-requested-named-pipe", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0004", "TA0005"]}, {"bi": "http-response-redirect", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "url-not-found", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-obfuscation", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "network-dns-malicious-snort", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0011"]}, {"bi": "feed-domain-banking", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-snort-malware", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "dns-public-server-contacted", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0011", "TA0005"]}, {"bi": "potential-registry-script-execution", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "script-contains-url", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-dns-safe-categories", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "network-explorer-process", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0011", "TA0005", "T1055"]}, {"bi": "registry-script-detected", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0005", "TA0003", "T1112", "T1064"]}, {"bi": "firefox-prefs-modified", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0009"]}, {"bi": "windows-util-nslookup", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": ["TA0007", "T1046"]}, {"bi": "malware-ursnif-detected", "hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "mitre_attack_tags": []}, {"bi": "registry-modified-rootcerts", "hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0011", "TA0006", "TA0005", "T1130"]}, {"bi": "network-file-uploaded", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0010", "T1011"]}, {"bi": "network-snort-policy", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "network-downloaded-executable", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": ["TA0011", "T1105"]}, {"bi": "network-snort-file-exe", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "network-file-downloaded-to-disk", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "pe-resource-lang-spanish", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": []}, {"bi": "network-communications-smtp", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "T1071"]}, {"bi": "network-smtp-spambot", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "dns-excessive-domain-queries", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "T1008"]}, {"bi": "feed-domain-rat", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "network-smtp-spambot-v2", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "suspicious-user-agent", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "T1071"]}, {"bi": "process-svchost-suspicious-launch", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005"]}, {"bi": "localhost-ipaddress-detected", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "malware-compound-cta-activity", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "sc-service-start", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0002", "TA0003", "T1035", "T1031"]}, {"bi": "netbios-null-domain", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "file-alternate-data-stream-modification", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005"]}, {"bi": "malware-tofsee-cmd-detected", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": []}, {"bi": "sc-service-create", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0003", "T1050"]}, {"bi": "file-alternate-data-stream-creation", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005", "T1096"]}, {"bi": "new-service-launched", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0002", "TA0003", "T1035"]}, {"bi": "dns-bypassed-assigned-server", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "TA0005"]}, {"bi": "network-snort-indicator-compromise", "hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "mitre_attack_tags": []}, {"bi": "http-response-client-error", "hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "mitre_attack_tags": []}, {"bi": "document-decoy-dropped", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "mitre_attack_tags": []}, {"bi": "pdf-contains-javascript", "hashes": ["7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "http-response-server-error", "hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f"], "mitre_attack_tags": []}, {"bi": "windows-crash-tool-execution-detected", "hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "mitre_attack_tags": []}, {"bi": "crash-dump-file-created", "hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "mitre_attack_tags": []}, {"bi": "fault-report-file-created", "hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "mitre_attack_tags": []}, {"bi": "network-http-numeric-ip", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0011", "TA0005", "T1071"]}, {"bi": "network-downloaded-executed-from", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0011", "T1105"]}, {"bi": "process-check-ucbrowser", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0007"]}, {"bi": "pe-imports-psapi-dll", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0007", "T1057"]}, {"bi": "pe-subtype-com", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": []}, {"bi": "task-ran-using-system-account", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "mitre_attack_tags": ["TA0002", "TA0003", "TA0004", "T1053"]}, {"bi": "process-hollowing-detected", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": ["TA0005", "T1093"]}, {"bi": "antivirus-flagged-artifact-cta", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": []}, {"bi": "artifact-nullsoft-installer", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": ["TA0002", "T1072"]}, {"bi": "registry-autorun-key-temp-dir", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "malware-generic-ransomware", "hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "mitre_attack_tags": []}, {"bi": "network-snort-server", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "mitre_attack_tags": []}, {"bi": "network-snort-sensitive-data", "hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "mitre_attack_tags": []}, {"bi": "network-snort-indicator-shellcode", "hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "network-http-blank-user-agent", "hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": ["TA0011", "T1071"]}, {"bi": "malware-vidar-mutex-detected", "hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "mitre_attack_tags": []}, {"bi": "network-http-non-standard-port", "hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "TA0005", "T1065"]}, {"bi": "windows-utility-downloaded-artifact", "hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0011", "T1105"]}, {"bi": "altered-sample-dns-flagged", "hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "mitre_attack_tags": ["TA0005", "T1102"]}], "category": "Dropper", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": true, "WSA": true}, "description": "This is a BobSoft Delphi application that wraps malware. In the current campaign, the HawkEye spyware is installed. The malware uses process-hollowing to hide from detection and achieves persistence across reboots by leveraging an Autostart key in the Windows registry.", "hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "iocs": {"domain": [{"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "host": "vsblobprodscussu5shard60[.]blob[.]core[.]windows[.]net"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "host": "vsblobprodscussu5shard35[.]blob[.]core[.]windows[.]net"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "mcc[.]avast[.]com"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "host": "10gamestop[.]com"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "link[.]sustainableworkplacewellness[.]com"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "host": "www[.]rainvo[.]com"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "host": "sfsdfpizdatrtu[.]space"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "schema[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "ipinfo[.]io"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "microsoft-com[.]mail[.]protection[.]outlook[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "118[.]151[.]167[.]12[.]in-addr[.]arpa"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "myip[.]opendns[.]com"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "resolver1[.]opendns[.]com"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "222[.]222[.]67[.]208[.]in-addr[.]arpa"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]zen[.]spamhaus[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]in-addr[.]arpa"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]bl[.]spamcop[.]net"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]sbl-xbl[.]spamhaus[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]cbl[.]abuseat[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "host": "252[.]5[.]55[.]69[.]dnsbl[.]sorbs[.]net"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "a1488[.]dscd[.]akamai[.]net"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "line[.]monalisapizzeriasi[.]com"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "host": "ncc[.]avast[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "bluediamondpi[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "frescodesign[.]com[.]hk"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "fconnect[.]vn"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "infantjesusmvk[.]co[.]in"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "vip[.]shangyejihua[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "sunshinelifestyle[.]co"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "www[.]trainer[.]international"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "gypsee[.]in"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "pavadasri[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "midnightdelightmovie[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "apostles[.]group"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "www[.]kenmonteiro[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "smtp[.]dvisetelecom[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "lilofashion[.]com[.]br"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "www[.]haircoterie[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "shrirammandir[.]org"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "afi2[.]megaviz[.]co"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "aaaadditions[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "ios[.]prod[.]ftl[.]netflix[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "magnabot[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "swanittech[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "fiebindustria40[.]com[.]br"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "nethatuholdings[.]com"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "host": "theheartcenter[.]in"}, {"hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "host": "a4cdf0b5-5e7c-4913-98b7-711c8a3fa516[.]server1[.]deepsound[.]live"}, {"hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "host": "flytortuga[.]com"}, {"hashes": ["ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "host": "marktravel[.]top"}], "file": [{"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%TEMP%\\<random, matching '[a-z]{8}'>.exe"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "path": "%TEMP%\\<random, matching '[A-F0-9]{4,5}'>.dmp"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7", "ce44dd760f7ac7402279368416c194c993f454ddb2e88a72bb73354f454c4d40"], "path": "%TEMP%\\<random, matching '[a-f0-9]{3,5}'>_appcompat.txt"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\Microsoft\\Feeds\\FeedsStore.feedsdb-ms"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\Microsoft\\Feeds\\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\\WebSlices~\\Suggested Sites~.feed-ms"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%SystemRoot%\\Logs\\CBS\\CBS.log"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%CommonProgramFiles(x86)%\\microsoft shared\\EQUATION\\eqnedt32.exe.manifest"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles(x86)%\\Adobe\\Reader 9.0\\Reader\\plug_ins\\Multimedia\\MPP\\WindowsMedia.mpp"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles%\\Java\\jre6\\bin\\server\\classes.jsa"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles(x86)%\\Adobe\\Reader 9.0\\Reader\\AGMGPUOptIn.ini"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles(x86)%\\Adobe\\Reader 9.0\\Reader\\Legal\\ENU\\eula.ini"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles(x86)%\\Adobe\\Reader 9.0\\Reader\\Tracker\\email_initiator.gif"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%ProgramFiles(x86)%\\Adobe\\Reader 9.0\\Resource\\Font\\MinionPro-Bold.otf"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%SystemRoot%\\rss"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%SystemRoot%\\rss\\csrss.exe"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%APPDATA%\\Microsoft\\CryptnetUrlCache\\Content\\6EA93F6AD9138E47FE72392EA441AB49"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%APPDATA%\\Microsoft\\CryptnetUrlCache\\MetaData\\6EA93F6AD9138E47FE72392EA441AB49"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "\\$Recycle.Bin\\<user SID>\\$<random, matching '[A-Z0-9]{7}'>.txt"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\csrss"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\csrss\\dsefix.exe"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\csrss\\patch.exe"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%System32%\\drivers\\Winmon.sys"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%System32%\\drivers\\WinmonFS.sys"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%System32%\\drivers\\WinmonProcessMonitor.sys"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\ntkrnlmp.pdb"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\ntkrnlmp.pdb\\9E22A5947A15489895CE716436B45BE02"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\ntkrnlmp.pdb\\9E22A5947A15489895CE716436B45BE02\\download.error"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\pingme.txt"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\winload_prod.pdb"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\winload_prod.pdb\\B7B16B17E078406E806A050C8BEE2E361"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\Symbols\\winload_prod.pdb\\B7B16B17E078406E806A050C8BEE2E361\\download.error"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\dbghelp.dll"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\symsrv.dll"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%TEMP%\\csrss\\DBG0.tmp"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%System32%\\Tasks\\ScheduledUpdate"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "path": "%System32%\\Tasks\\csrss"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%SystemRoot%\\Logs\\WindowsBackup\\Wbadmin.0.etl"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%SystemRoot%\\Logs\\WindowsBackup"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "\\System Volume Information\\WindowsImageBackup"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "\\System Volume Information\\WindowsImageBackup\\SPPMetadataCache"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%System32%\\Tasks\\WindowsAppPool"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%System32%\\Tasks\\WindowsAppPool\\AppPool"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "path": "\\{07F96C29-BA62-D112-FC2B-8E95F08FA299}"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "path": "%TEMP%\\<random, matching '[a-z]{3}[A-F0-9]{3,4}'>.tmp"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "path": "%TEMP%\\<random, matching [A-F0-9]{4}>.bi1"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "path": "%SystemRoot%\\Tasks\\fnew.job"}], "ip": [{"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "ip": "204[.]79[.]197[.]200"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "ip": "204[.]79[.]197[.]219"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "ip": "104[.]214[.]40[.]16"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "ip": "185[.]14[.]31[.]168"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "239[.]255[.]255[.]250"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "216[.]239[.]36[.]21"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "43[.]231[.]4[.]7"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "157[.]240[.]18[.]174"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "12[.]167[.]151[.]118"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "ip": "208[.]67[.]222[.]222"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "69[.]55[.]5[.]252"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "85[.]114[.]134[.]88"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "217[.]172[.]179[.]54"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "5[.]9[.]72[.]48"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "130[.]0[.]232[.]208"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "144[.]76[.]108[.]82"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "185[.]253[.]217[.]20"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "37[.]1[.]193[.]43"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "ip": "172[.]217[.]2[.]110"}, {"hashes": ["4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "ip": "104[.]18[.]56[.]109"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f"], "ip": "141[.]136[.]35[.]60"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed"], "ip": "104[.]24[.]109[.]37"}, {"hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "ip": "104[.]28[.]17[.]29"}, {"hashes": ["2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "ip": "104[.]24[.]108[.]37"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8", "68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]217[.]2[.]100"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "ip": "176[.]32[.]33[.]60"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "216[.]239[.]38[.]21"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]217[.]8[.]3"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]217[.]13[.]227"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]217[.]7[.]163"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]217[.]12[.]227"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "172[.]253[.]122[.]94"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "ip": "172[.]217[.]15[.]97"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "ip": "34[.]65[.]18[.]19"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd"], "ip": "104[.]129[.]67[.]139"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "ip": "128[.]116[.]114[.]3"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "204[.]2[.]255[.]177"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06"], "ip": "104[.]18[.]50[.]167"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06"], "ip": "104[.]18[.]57[.]109"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "52[.]143[.]252[.]60"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "ip": "5[.]206[.]227[.]139"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07"], "ip": "104[.]28[.]16[.]29"}, {"hashes": ["4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c"], "ip": "172[.]64[.]160[.]24"}, {"hashes": ["4044a3631fdbc686898028995532444f662d0a78be5a530d226239782445b4d8"], "ip": "34[.]193[.]225[.]6"}, {"hashes": ["47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "ip": "172[.]64[.]161[.]24"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "3[.]214[.]142[.]155"}, {"hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "ip": "46[.]30[.]188[.]36"}, {"hashes": ["454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f"], "ip": "23[.]62[.]6[.]169"}, {"hashes": ["68fb0d69411cceecd15f52ab04953034ef20310d46df3fcb3afa01ef9815dfda"], "ip": "192[.]0[.]57[.]245"}, {"hashes": ["78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "ip": "23[.]62[.]6[.]178"}], "mutex": [{"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "47083ad7c0c9741e69eb4575f4b89b999519e80e044839edf3cc3fb228b9733b", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "name": "<random, matching [a-zA-Z0-9]{5,9}>"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\SetupLog"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\WdsSetupLogInit"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\h48yorbq6rm87zot"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\Mp6c3Ygukx29GbDk"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\ewzy5hgt3x5sof4v"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\xmrigMUTEX31337"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "WininetConnectionMutex"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "3821223063bdae6ed4fc1703402ea917"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "5c51774e43c9db3aa687f23c27956104"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\3821223063bdae6ed4fc1703402ea917"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "name": "Global\\5c51774e43c9db3aa687f23c27956104"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "name": "{<random GUID>}"}, {"hashes": ["1e0654a998adda2207a909a02f5f89e039ebbf107b16d77a6148f3caf23f07cd", "454100af51eec868d71d2994dc370aad164375d4b640bfddce831ee3fa940b8f", "78ab5f5da002769f5104e87bf633930d4218f9c764699427a01384d15e7ed43f"], "name": "Local\\{<random GUID>}"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5", "c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "name": "btirweunhdtr-Administrator"}, {"hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "name": "d19ab989-a35f-4710-83df-7b2db7efe7c5{846ee340-7039-11de-9d20-806e6f6e6963}"}, {"hashes": ["ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02"], "name": "8f793a96-da80-4751-83f9-b23d8b735fb1{c124b99a-1d3d-11e2-82e5-806d6172696f}"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "name": "fnew"}, {"hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "name": "Global\\e70dff41-89f0-11ea-a007-00501e3ae7b5"}, {"hashes": ["0c9ca5ead3a092e8c36983821e2059b6107906467e3d74095780da026e53e1d5"], "name": "btirweunhdtr-Admi`$ "}, {"hashes": ["c07aa81c90d9e55f10cbc16f268b12cd1f2c2e4e65942221169398238b70ccb7"], "name": "btirweunhdtr-Admi $ "}], "registry": [{"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONFS", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONFS\\INSTANCES", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONFS\\INSTANCES\\WINMONFS", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\22000011", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\16000009", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\12000002", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\14000006", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\16000048", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\25000020", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\22000002", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\21000001", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\11000001", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\DESCRIPTION", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\BCD00000000\\OBJECTS\\{71A3C7FC-F751-4982-AEC1-E958357E6813}\\ELEMENTS\\12000004", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMON", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMON\\SECURITY", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONFS\\SECURITY", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONPROCESSMONITOR", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINMONPROCESSMONITOR\\SECURITY", "value_name": null}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\ENUM\\USBSTOR\\DISK&VEN_GENERIC&PROD_HARDDISK&REV_2.5+\\1-0000:00:1D.7-2&0", "value_name": "CustomPropertyHwIdKey"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\ENUM\\USB\\ROOT_HUB20\\4&1294118A&0", "value_name": "CustomPropertyHwIdKey"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\ENUM\\PCI\\VEN_8086&DEV_293A&SUBSYS_11001AF4&REV_03\\3&2411E6FE&2&EF", "value_name": "CustomPropertyHwIdKey"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS DEFENDER\\EXCLUSIONS\\PATHS", "value_name": "C:\\Users\\Administrator\\AppData\\Roaming\\d12c99f7af77\\d12c99f7af77"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS DEFENDER\\EXCLUSIONS\\PROCESSES", "value_name": "d12c99f7af77.exe"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "DistributorID"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "CampaignID"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "SB"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "PatchTime"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "PGDSE"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "Firewall"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "Defender"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "Servers"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "FirstInstallDate"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "ServiceVersion"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "SC"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "VC"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "ServersVersion"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "OSCaption"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "OSArchitecture"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "IsAdmin"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "AV"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "CPU"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "GPU"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "CDN"}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\E36A4E8131", "value_name": null}, {"hashes": ["23af63321f9d1c310c14cc894f301d4c7dcb33fd06d4de84f2b3c8422fb83c06", "4004df1bf42ff674d7cb4a526e3af694302d6d8bdaceeee88dc8b4135fc7594c", "47bf9eeb164237e0fc322125052d65783fa809bd804c8a9dbd6b4db210b24f92"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\A1890984", "value_name": "PC"}, {"hashes": ["1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07", "2ce6928f41662856507bed0a7073b80e8504b7760f3c8b787543d25db7d5c1ed", "7902a68c192bef55edd8429d07c6bbcbe30c601a3fc41d35186eb4cb0592f1f1"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "1"}]}, "reports_count": 16}, "Win.Dropper.Remcos-7724400-0": {"bis": [{"bi": "memory-execute-readwrite", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "modified-file-in-user-dir", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "hook-installed", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0006", "TA0003", "TA0004", "T1056", "T1179"]}, {"bi": "pe-tls-callback", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "pe-header-timestamp-prior", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "pe-section-shared", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "modified-executable", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "created-executable-in-user-dir", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "network-fast-flux-domain", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "network-only-safe-domains-contacted", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "network-dns-category-file-storage", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "registry-modified-rootcerts", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0011", "TA0006", "TA0005", "T1130"]}, {"bi": "registry-autorun-key-modified", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "feed-domain-antivirus-service", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "excessive-foreign-memory-modification", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": ["TA0005", "T1055"]}, {"bi": "network-snort-protocol", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "network-dns-category-dynamic", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "malware-remcos-mutex", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "malware-remcos-registry", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "feed-domain-rat", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "mitre_attack_tags": []}, {"bi": "process-long-cmdline", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "windows-util-schtask-generic", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0003", "T1053"]}, {"bi": "files-deleted-used-batch", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0005", "T1107"]}, {"bi": "cmd-exe-file-execution", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0002", "T1059"]}, {"bi": "registry-modification-reg", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": []}, {"bi": "network-communications-http-get", "hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0011", "TA0010", "T1105", "T1043"]}, {"bi": "url-forced-download-prompt", "hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": ["TA0005", "T1105"]}, {"bi": "network-file-downloaded-to-disk", "hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": []}, {"bi": "network-opendns-malicious", "hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "mitre_attack_tags": []}, {"bi": "malware-remcos-path", "hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27"], "mitre_attack_tags": []}, {"bi": "network-dns-category-new", "hashes": ["92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f"], "mitre_attack_tags": []}, {"bi": "windows-crash-tool-execution-detected", "hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a"], "mitre_attack_tags": []}, {"bi": "crash-dump-file-created", "hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a"], "mitre_attack_tags": []}, {"bi": "fault-report-file-created", "hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a"], "mitre_attack_tags": []}, {"bi": "network-snort-server", "hashes": ["7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "mitre_attack_tags": []}, {"bi": "network-dns-malicious-snort", "hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "mitre_attack_tags": ["TA0011"]}, {"bi": "network-snort-malware", "hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "mitre_attack_tags": []}, {"bi": "network-dns-category-phishing", "hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "mitre_attack_tags": []}, {"bi": "audio-video-mutex-detected", "hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "mitre_attack_tags": ["TA0009", "T1123", "T1125"]}], "category": "Dropper", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": true, "WSA": true}, "description": "Remcos is a remote access trojan (RAT) that allows attackers to execute commands on the infected host, log keystrokes, interact with a webcam, and capture screenshots. This malware is commonly delivered through Microsoft Office documents with macros, sent as attachments on malicious emails.", "hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "iocs": {"domain": [{"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "host": "youngboss23[.]ddns[.]net"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "host": "doc-08-bc-docs[.]googleusercontent[.]com"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "host": "doc-10-ak-docs[.]googleusercontent[.]com"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "host": "godspower19566[.]hopto[.]org"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "host": "doc-0s-bc-docs[.]googleusercontent[.]com"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "host": "doc-0g-bc-docs[.]googleusercontent[.]com"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "host": "dolxxrem[.]hopto[.]org"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "host": "remcos[.]got-game[.]org"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "host": "doc-0o-24-docs[.]googleusercontent[.]com"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "host": "doc-04-bs-docs[.]googleusercontent[.]com"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "host": "rex2018[.]hopto[.]org"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "host": "rex2017[.]hopto[.]org"}, {"hashes": ["db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "host": "myb22[.]camdvr[.]org"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "host": "doc-10-64-docs[.]googleusercontent[.]com"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "host": "khalifa[.]dynamic-dns[.]net"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "host": "doc-14-5o-docs[.]googleusercontent[.]com"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "host": "mide1[.]ddns[.]net"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "host": "doc-0c-2g-docs[.]googleusercontent[.]com"}, {"hashes": ["e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "host": "doc-14-54-docs[.]googleusercontent[.]com"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "host": "millionaire232[.]ddns[.]net"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d"], "host": "goddywin[.]freedynamicdns[.]net"}], "file": [{"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%TEMP%\\<random, matching '[a-f0-9]{3,5}'>_appcompat.txt"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%TEMP%\\<random, matching '[A-F0-9]{4,5}'>.dmp"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%PUBLIC%\\Fcc"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%PUBLIC%\\Natso.bat"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%PUBLIC%\\Yako.bat"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%APPDATA%\\remcos"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%APPDATA%\\remcos\\logs.dat"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "path": "%HOMEPATH%\\Swhg"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "path": "%HOMEPATH%\\Swhg\\Swhg.hta"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "path": "%HOMEPATH%\\Swhg\\Swhgset.exe"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "path": "%HOMEPATH%\\Swhg\\Swhgwet.exe"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "path": "%HOMEPATH%\\Psyj"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "path": "%HOMEPATH%\\Psyj\\Psyj.hta"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "path": "%HOMEPATH%\\Psyj\\Psyjset.exe"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "path": "%HOMEPATH%\\Psyj\\Psyjwet.exe"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "path": "%HOMEPATH%\\Xaxo"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "path": "%HOMEPATH%\\Xaxo\\Xaxo.hta"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "path": "%HOMEPATH%\\Xaxo\\Xaxoset.exe"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "path": "%HOMEPATH%\\Xaxo\\Xaxowet.exe"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "path": "%HOMEPATH%\\Sazb\\Sazb.hta"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "path": "%HOMEPATH%\\Sazb\\Sazbset.exe"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "path": "%HOMEPATH%\\Sazb\\Sazbwet.exe"}, {"hashes": ["db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "path": "%HOMEPATH%\\Bjqf\\Bjqf.hta"}, {"hashes": ["db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "path": "%HOMEPATH%\\Bjqf\\Bjqfset.exe"}, {"hashes": ["db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "path": "%HOMEPATH%\\Bjqf\\Bjqfwet.exe"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "path": "%HOMEPATH%\\Ximc\\Ximc.hta"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "path": "%HOMEPATH%\\Ximc\\Ximcset.exe"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "path": "%HOMEPATH%\\Ximc\\Ximcwet.exe"}, {"hashes": ["e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%HOMEPATH%\\Kngj\\Kngj.hta"}, {"hashes": ["e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%HOMEPATH%\\Kngj\\Kngjset.exe"}, {"hashes": ["e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "path": "%HOMEPATH%\\Kngj\\Kngjwet.exe"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d"], "path": "%HOMEPATH%\\Ybcm\\Ybcm.hta"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d"], "path": "%HOMEPATH%\\Ybcm\\Ybcmset.exe"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d"], "path": "%HOMEPATH%\\Ybcm\\Ybcmwet.exe"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "path": "%HOMEPATH%\\Sjqf\\Sjqf.hta"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "path": "%HOMEPATH%\\Sjqf\\Sjqfset.exe"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "path": "%HOMEPATH%\\Sjqf\\Sjqfwet.exe"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "path": "%LOCALAPPDATA%\\Microsoft Vision\\28-04-2020_15.23.14"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "path": "%HOMEPATH%\\Xfbl"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "path": "%HOMEPATH%\\Xfbl\\Xfbl.hta"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "path": "%HOMEPATH%\\Xfbl\\Xfblset.exe"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "path": "%HOMEPATH%\\Xfbl\\Xfblwet.exe"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "path": "%HOMEPATH%\\Jowb"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "path": "%HOMEPATH%\\Jowb\\Jowb.hta"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "path": "%HOMEPATH%\\Jowb\\Jowbset.exe"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "path": "%HOMEPATH%\\Jowb\\Jowbwet.exe"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%HOMEPATH%\\Zcaj"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%HOMEPATH%\\Zcaj\\Zcaj.hta"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%HOMEPATH%\\Zcaj\\Zcajset.exe"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "path": "%HOMEPATH%\\Zcaj\\Zcajwet.exe"}], "ip": [{"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "ip": "172[.]217[.]15[.]97"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "ip": "172[.]217[.]2[.]110"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "ip": "172[.]217[.]15[.]110"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "ip": "91[.]193[.]75[.]6"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "ip": "79[.]134[.]225[.]11"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "ip": "172[.]217[.]9[.]206"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "ip": "185[.]165[.]153[.]157"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "ip": "79[.]134[.]225[.]76"}, {"hashes": ["ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a"], "ip": "156[.]96[.]62[.]245"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "ip": "185[.]140[.]53[.]157"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "ip": "111[.]118[.]183[.]210"}, {"hashes": ["7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "ip": "185[.]244[.]30[.]17"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "ip": "185[.]244[.]29[.]229"}], "mutex": [{"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "name": "Remcos_Mutex_Inj"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "name": "Remcos-<random, matching [A-Z0-9]{6}>"}, {"hashes": ["ad55b290f3d74e4b1c3c1f25670ccc41a05d41d3278950fb9e1b054a379ff56a"], "name": "Global\\28b66991-898e-11ea-a007-00501e3ae7b5"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "name": "Global\\14820c91-898e-11ea-a007-00501e3ae7b5"}], "registry": [{"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\SYSTEMCERTIFICATES\\AUTHROOT\\CERTIFICATES\\75E0ABB6138512271C04F85FDDDE38E4B7242EFE", "value_name": "Blob"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "key": "<HKCU>\\Software\\Remcos-<random, matching '[A-Z0-9]{6}'>", "value_name": null}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "key": "<HKCU>\\Software\\Remcos-<random, matching '[A-Z0-9]{6}'>", "value_name": "exepath"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52", "fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "key": "<HKCU>\\Software\\Remcos-<random, matching '[A-Z0-9]{6}'>", "value_name": "licence"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d", "34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8", "5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77", "db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0", "e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "key": "<HKCU>\\ENVIRONMENT", "value_name": "windir"}, {"hashes": ["5a43f532d5914053edb5819951a8267047a87e9bc1d6bcef856cfaaebde2107f", "92e0b415afda56058cde376e43f15eff02d47c8ff2d714a70b5756b5490da058"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Swhg"}, {"hashes": ["3a908f9414ba29f0a441398b7e4fa18da491e1321e1f726a958e765635280a27", "c7ad4bd42c9dbe69c3faadb0c8bfb6af266007284ea38177d173a34f4d152f77"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Psyj"}, {"hashes": ["34a2936067557d74a19d9b5f9fbcdca8ca52c0719570183185f888c8d83fbc87", "7a370592242fb4df5f2f3a7f07cd7d25e2b7f541ba327552a5abfdf63faa3067"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Xaxo"}, {"hashes": ["7bb74685cf29d39f977b46b9311337eb91fe219ded05730f50f300fb6900871c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Sazb"}, {"hashes": ["db56da248d0433c3ffe85c3e30e206d5b4a2a415dc9bf4041c9f4920bc241fb0"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Bjqf"}, {"hashes": ["bcf3e29dc85fe4b246435ceb8e0b4e0ddf0e3fdb0253303cd978542704e9795c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Ximc"}, {"hashes": ["e4cee1b4dda5479ed3eb4d90edcc326e6526748f3b81bd0d9c6bd545a850bd52"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Kngj"}, {"hashes": ["0b8d8c8e308e3028c8cd79820c2bbc681842cc7302618c4c4e6c00137afcaf5d"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Ybcm"}, {"hashes": ["56fee4c65478bf83d1fc31a99624668f9d686546f0b447285564b1cafea56da8"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Sjqf"}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\EXPLORER\\YBYPGGB0WM", "value_name": null}, {"hashes": ["d6ce9ed7d7af5682f0609c04e1001a66b6fb26137d2b484b8cdf2f90ffec4675"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Xfbl"}, {"hashes": ["ea78930e6c69fe6aeeb9fcf02a3b60813879ff1918eaecae6e3c110b2bfc5123"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Jowb"}, {"hashes": ["fc581754ae5607c7e72f153328b3e3dbc1d0c8f7fa8916138f2d947349d843fb"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "Zcaj"}]}, "reports_count": 16}, "Win.Malware.Chthonic-7727211-1": {"bis": [{"bi": "pe-encrypted-section", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274"], "mitre_attack_tags": []}, {"bi": "pe-invalid-checksum", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274"], "mitre_attack_tags": []}, {"bi": "imports-IsDebuggerPresent", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274"], "mitre_attack_tags": []}, {"bi": "memory-execute-readwrite", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "artifact-flagged-anomaly", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "network-only-safe-domains-contacted", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": []}, {"bi": "process-requested-named-pipe", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0004", "TA0005"]}, {"bi": "registry-autorun-key-modified", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "dns-public-server-contacted", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0011", "TA0005"]}, {"bi": "registry-hide-files", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0005", "T1158"]}, {"bi": "registry-service-autostart-disabled", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0003", "T1112", "T1489", "T1058"]}, {"bi": "registry-disablesuac", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": ["TA0005", "TA0002", "TA0004", "T1088", "T1089"]}, {"bi": "pe-resource-lang-russian", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": []}, {"bi": "malware-chthonic-rat-detected", "hashes": ["3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62"], "mitre_attack_tags": []}], "category": "Malware", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": false, "WSA": false}, "description": "Chthonic is a banking trojan derived from the Zeus family of banking malware. It is typically spread via phishing emails and attempts to steal sensitive information from an infected machine. Chthonic has also been observed downloading follow-on malware such as Azorult, another information stealer.", "hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6e6d5dbe3d497750383b5b50ceb17a8cdb67eeb2c923af97219ef25f0d3f8274", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c", "858d4c5f245f7d6d5296d6ecb42dfdd49614a9cd51284ac232a41472f8bbb6b5", "939646e427ded88482d3026913fb6f45be91d986e062ccbbbdea5c67c30ee233", "970e01b62f69b66354a3c5ead74de7166dcce4da10f6f9784736fadfc1156a5e", "9f7b41dc5d9c7c5638ca68ceaf553d1905d234e4e2e3860cce69d02bdc90745f", "a19b874eec809142a595f3d3c6a1b67c5ada6161db64a56d61a82797c503162c", "a3aa42651bf1ce786d20c3aa681916fb34d5cca62edd5cc85f577df016132290", "a3cfa5a1e567b018bfa96f68d88d114953e9aab20c43f3fd8e464632e16c2682", "a41776f434e67cf14a2f25774ce72638214bca28e0d3902106242aea4f8a33a3", "a69b39904004408fe68453eabe4b16a197c1df16be40701a87e1407ffc468932", "aca458e0f0ff91c29aa419f5c841e52242e0d0f3084228b003ea24c6fd7ba0e5", "ad52ae11107edec61ce9f3aa5b3c6367dafe6fa7d26d47963001695d0728ae97", "af17384d15fc3e6997f0d98ea0d9c6b5b5a9dfb97bb0d76c8330ec5576b2e8f9", "b414f5949368822afe5542a8b59b902229688ad2fb1e3c28a64a767a3c997f92", "ba0be2cdb4deaf6ae44d36f02ea6771ef6ec8d5bf73d51fb5c88868dbcd7847c", "ba3d72da933bce70e3e535be280b4c6582232be69050dedc045360d2bed520f1", "baf79b6a05b0ca9bcc172985de42ce2cf3e5b680cc98fa395c71704425138426", "c569f7facbae2acbc8a4b22fd2f10580bcb9e4888cb8c14478ea23692ae2983c", "c6e61f29b7acd0a8fc147eabb756d33c70a17073e84c06b2632d19930cabcfc6", "c7bc9135ad096b19dab1c0e3542ed32d5eec72dbf431368aeb1b5aff732b2aba", "c9f04cb54eb92df3ae4f00b6d3f91efdae9327ad2a92fabbb05cdbc3c812928f", "d5cf2bd6b5608709bd1bac66b2e4a388f5a3db10d303db070183108caaa979eb", "d91f8eeccc08a2870fb77f6a8f518db92349a980ae2e685a50e12d34d088ba91", "dab0b4af3d77583c52f67f3be12f4c45b8bba9c4f7c43d2c8dbaec673d209dc5", "db3b36c5822cd4794d2e393d9e067ce3dd79e247eea381fc7a52bd203bc734fd", "dd66c8da0b2a0e26b31b3bfa15cb6e34823c99fe81657bd357dea86c1fdf7306", "f04ebd39120d37c90e6ef103ee02845691bccf331718435fd1e7f1f20509d9ce", "f8278460c018f4e44b47354dd3fc5836c6625f0dbe7b24fdf7f67613d87c6dbb", "ff2b796588a0507123e967a8c442f34a5cd91e26b9a290c78c3304f84371fdc6"], "iocs": {"domain": [{"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "host": "www[.]update[.]microsoft[.]com[.]nsatc[.]net"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "host": "194[.]58[.]102[.]91"}], "file": [], "ip": [{"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "ip": "20[.]45[.]1[.]107"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "ip": "40[.]90[.]247[.]210"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "ip": "194[.]58[.]102[.]91"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986"], "ip": "40[.]91[.]124[.]111"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "ip": "40[.]67[.]189[.]14"}], "mutex": [], "registry": [{"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\EXPLORER\\ADVANCED", "value_name": "Hidden"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\SYSTEM", "value_name": "EnableLUA"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WSCSVC", "value_name": "Start"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WINDEFEND", "value_name": "Start"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\EXPLORER\\ADVANCED", "value_name": "ShowSuperHidden"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\SHAREDACCESS", "value_name": "Start"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\MPSSVC", "value_name": "Start"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SYSTEM\\CONTROLSET001\\SERVICES\\WUAUSERV", "value_name": "Start"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER", "value_name": "TaskbarNoNotification"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER", "value_name": "TaskbarNoNotification"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER", "value_name": "HideSCAHealth"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER", "value_name": "HideSCAHealth"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER\\RUN", "value_name": "2827271685"}, {"hashes": ["031a584697feeecc9014a8d021576b1964545a96bf652a4102179b405aa4cf5c", "1fbb6393e4cf576e0f11b615e0990a8b2134b0ea0e9ec58374f7e7f49125d6f4", "2e434122795ce60847385431e28d8e96e0a63ced780a48d9acdbad149c262074", "2ff4747e01031d470d5feae7e5073aa34aff489f29cbed18502960baf7dcfebe", "311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8", "356e8479fb35f301fe0f578726fe072ecec12d2d1074d20bafd9b107a0f2fa62", "3780f9d56d95218a3a1e526c05aaf127d22d14093ee06bcf7fc9e3b78f87253e", "3c86595e1e7c456c182e0093475c5fce6656b44899ef23dff1badfa87a161468", "3cd081967e60e2711194e3d3ab7f47e81d2c51c9300176e7d5047817d5a7763f", "3fa1d611262596bc923fc1e6ac7f44b5ad1c3d574270e588041f379c1b38b679", "49f30782a139a159f630022bffa0cd2aef80149efa80436791807270954dda51", "4b255914b1ee12886e4dee4745799d21fcefcf2c95466d2ee5c4af056a280809", "4bd6b56bad8e51cf3187d822dfdd6919382d338999df524dbb99c32495c20d7b", "4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be", "58962d2b0dbb2d469a15ce8fb8695014c733c750d0a61ada0595189d64c769c0", "5dd350e1e1f1ed234d2c90e8b5f67e5e101362e03ae00f10b824c7f00f8660cd", "63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c", "6f22d50967bd631b8cf5fa77b96267817ae25c4f1de75998ce5a6046c74aee01", "706c37e3dbf83e01206b37a4c3fc1f39611cd05b7f8df8ebe2456efd8a6970ac", "73dbdd15d5aeba77d61b723e1f8eafc2b161679c61ca1aeb3de9e397faafcb6d", "781a3db07da4ed20bbcfa7c481c525cf6282b0f9eb3fbdfff0baa2356294bb34", "7c9f6e39190124804994315278d5451dc80f0c59994778d7c1ee22d2f6903021", "7e5bc9f6c66a319309e81857b8232fc05acc203522d9114b9e3cc5f54c1b9986", "83dfe64f68ec8cede6930b87e545c76ddc29c03c87da6bc41a6517940e64e14c"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\EXPLORER\\RUN", "value_name": null}]}, "reports_count": 25}, "Win.Packed.Dridex-7725189-1": {"bis": [{"bi": "pe-encrypted-section", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "memory-execute-readwrite", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "modified-executable", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-anomaly", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "pe-section-execute-writable", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "network-fast-flux-domain", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "network-communications-http-get", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0011", "TA0010", "T1105", "T1043"]}, {"bi": "hook-installed", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0006", "TA0003", "TA0004", "T1056", "T1179"]}, {"bi": "network-fast-flux-nameserver", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "dns-query-nxdomain", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "network-snort-protocol", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "network-only-safe-domains-contacted", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "feed-domain-banking", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "feed-domain-antivirus-service", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "http-response-client-error", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "deleted-submitted-file", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1107"]}, {"bi": "artifact-windows-task", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0002", "TA0003", "T1053"]}, {"bi": "registry-autorun-key-modified", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "potential-registry-persistence", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "http-response-redirect", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "pe-tls-callback", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "sample-pe-modified-on-disk", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1202"]}, {"bi": "malware-compound-cta-activity", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "task-manager-disabled", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1499"]}, {"bi": "pe-header-timestamp-prior", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "possible-dga-communication", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0011", "TA0005", "T1483"]}, {"bi": "windows-os-reboot-detected", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005"]}, {"bi": "pe-header-timestamp-null", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "sample-modified-deleted", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0005", "T1107"]}, {"bi": "malware-dridex-detected", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}, {"bi": "url-pastebin-service", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": ["TA0011", "T1102"]}, {"bi": "imports-IsDebuggerPresent", "hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "mitre_attack_tags": []}], "category": "Packed", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": false, "WSA": false}, "description": "Dridex is a well-known banking trojan that aims to steal credentials and other sensitive information from an infected machine.", "hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "iocs": {"domain": [{"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "host": "pastebin[.]com"}, {"hashes": ["792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6"], "host": "www[.]0b7r9ilral[.]com"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "host": "www[.]sab24wpf0w[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]3eiixqxuf7[.]com"}, {"hashes": ["cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "host": "www[.]3opr69q6wz[.]com"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "host": "www[.]ojap2eho3y[.]com"}, {"hashes": ["9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4"], "host": "www[.]zssmptfum0[.]com"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "host": "www[.]xuzk2r47do[.]com"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "host": "www[.]k9zbx0favf[.]com"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "host": "www[.]t8jr9fcuyt[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]evrce3njhx[.]com"}, {"hashes": ["cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "host": "www[.]p7oanxy45t[.]com"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "host": "www[.]niig3tewoz[.]com"}, {"hashes": ["9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4"], "host": "www[.]zmazaijyhn[.]com"}, {"hashes": ["792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6"], "host": "www[.]nsquxbpt8t[.]com"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "host": "www[.]vqgsf71mrp[.]com"}, {"hashes": ["4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e"], "host": "www[.]gspxfo5sy6[.]com"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "host": "www[.]nwag81pttl[.]com"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "host": "www[.]5piu8lzmss[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]lhrngjfwkc[.]com"}, {"hashes": ["cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "host": "www[.]r1djfb8fnc[.]com"}, {"hashes": ["5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5"], "host": "www[.]hrgedehnqf[.]com"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "host": "www[.]pw8jkpck5g[.]com"}, {"hashes": ["792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6"], "host": "www[.]n1bmeaubmf[.]com"}, {"hashes": ["4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e"], "host": "www[.]nu1rqkxeqw[.]com"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "host": "www[.]gzf9lj8tqh[.]com"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "host": "www[.]equpqvzw3y[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]pp9ipsjwbk[.]com"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "host": "www[.]g6johs3xmd[.]com"}, {"hashes": ["5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5"], "host": "www[.]dcozkbvydi[.]com"}, {"hashes": ["4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e"], "host": "www[.]3sqs7iawkr[.]com"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "host": "www[.]1vifba7h1d[.]com"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "host": "www[.]5jat4teq3g[.]com"}, {"hashes": ["9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4"], "host": "www[.]pumxhoibyr[.]com"}, {"hashes": ["4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e"], "host": "www[.]egqprqeluy[.]com"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "host": "www[.]ums2mec73a[.]com"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "host": "www[.]jzkidk9bta[.]com"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "host": "www[.]26f1tmm7wb[.]com"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "host": "www[.]yls3xqjpvn[.]com"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "host": "www[.]filjrkd0al[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]qphrqz4xhb[.]com"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "host": "www[.]gkwxr6nctk[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]q0npbnqo6p[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]x6lfyjhx9g[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]gxedqaf1an[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]hic0lil53j[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]tlwef2uapz[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]epiywmmjht[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]zvo9g7wll3[.]com"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "host": "www[.]haaaneclzf[.]com"}], "file": [{"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "path": "<malware cwd>\\old_<malware exe name> (copy)"}], "ip": [{"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "ip": "172[.]217[.]5[.]238"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "ip": "104[.]23[.]99[.]190"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6"], "ip": "104[.]23[.]98[.]190"}], "mutex": [{"hashes": ["9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4"], "name": "hRPx4ga2Yi"}, {"hashes": ["9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4"], "name": "rXv81ME5le"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "4PXgYHTB9x"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "5roumFyMH0"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "FUTEqejp8p"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "ToK1egS96O"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "V0DwPyOhyP"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "gxjKBUYByA"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "iQwMfyoVmi"}, {"hashes": ["5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd"], "name": "j6e2DHF2vM"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "7bUFy0Mm8W"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "COYmcbxU6X"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "7uxTd6UB6H"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "JsTzPmZJOD"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "8qZ6PXWkTd"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "Oaj36SBoR2"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "DXHrFDkHWQ"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "hSCpwuCPfF"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "HUo7mzNSUT"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "7KRV3ieYnW"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "imOOdAWe6s"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "PKpitU5jWB"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "Ihqyf726EI"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "uGZh006qAr"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "Wclcue96Hi"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "NbnD8SStzF"}, {"hashes": ["77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a"], "name": "xr3u5FQ1fP"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "iejNZp2e6G"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "RXE2kInF82"}, {"hashes": ["700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124"], "name": "wMBCx6U3gR"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "Ri8UYQJKPn"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "h8oUBZNVRE"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "nMBq5zMey6"}, {"hashes": ["39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b"], "name": "sng14iClgY"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "C37NeGH0FT"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "GJTP0KB1Za"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "IThxpL7dCB"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "RCyeX9xXWr"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "kGkmma56TJ"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "kXNBqFV8TS"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "mabXkuW9Ey"}, {"hashes": ["2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377"], "name": "qmu9Sh7TKK"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "3PrSkzEExj"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "CUnnLShyRt"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "IPpQ2IqYUW"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "dHpfnVqV0b"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "ggkKyqzTuA"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "jYFsC8NsB2"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "oUlxBfrD8c"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e"], "name": "s5GdYiExin"}], "registry": [{"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUNONCE", "value_name": "trkcore"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "key": "<HKLM>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\POLICIES\\SYSTEM", "value_name": "DisableTaskMgr"}, {"hashes": ["29ef11564e08904c60985ebe9c35021baf4255425e8a1738ca17eb0e23992c8e", "2d0e8d9101ce60f878f79ee32befcfc8039652d836eccda81a344562ad69e377", "39b2a4935876ec0bfbf087ed5ab7ad2ae33dcc2ac88afa4e820e910f1efb0a5b", "4427a5e035f6c1a881bd29cba6e9c4c96121b8ea8fb0a91fd8a59e6b8a708b3e", "5159790d9afb3892b0a2b7be957a9e2942d7451c5afb0cee7d7b4368bfe009cd", "5b914ae94b3f582855f105b55dee227bf3aca289c725546a6b06c1a0b14f03b5", "700c38a989a4de35d667755d905bedd8ce01482cbb0565be441c096424ded124", "77568fb3b4c11550d21122dfea833cab18b3ddda9e4c20337f9c62dc93e86d4a", "792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6", "9d1c439ccfb4daff0f2b250ee9093ee935d8d0fc11c582cd97f8d19dfbce38a4", "cfd39994669bc68633bc1f248de466b7b2d3b1dca85f29e5a20aff5ccb6e91df"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\ACTION CENTER\\CHECKS\\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.CHECK.0", "value_name": "CheckSetting"}]}, "reports_count": 11}, "Win.Packed.Kuluoz-7725577-0": {"bis": [{"bi": "pe-encrypted-section", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "memory-execute-readwrite", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "modified-executable", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "created-executable-in-user-dir", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "modified-file-in-user-dir", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "pe-uses-armadillo", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "process-svchost-suspicious-launch", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0005"]}, {"bi": "registry-autorun-key-data-dir", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "registry-autorun-key-modified", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": ["TA0003", "T1060"]}, {"bi": "malware-compound-cta-activity", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}, {"bi": "malware-kuluoz-mutex", "hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b"], "mitre_attack_tags": []}], "category": "Packed", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": false, "Threat Grid": true, "Umbrella": false, "WSA": false}, "description": "Kuluoz, sometimes known as \"Asprox,\" is a modular remote access trojan that is also known to download and execute follow-on malware, such as fake antivirus software. Kuluoz is often delivered via spam emails pretending to be shipment delivery notifications or flight booking confirmations.", "hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "iocs": {"domain": [], "file": [{"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "path": "%LOCALAPPDATA%\\<random, matching '[a-z]{8}'>.exe"}, {"hashes": ["4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\hshslnri.exe"}, {"hashes": ["2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\nwlfblap.exe"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\dxevqiij.exe"}, {"hashes": ["106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\gkowulmc.exe"}, {"hashes": ["4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\xxiqlwfs.exe"}, {"hashes": ["318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\keqvbmgi.exe"}, {"hashes": ["08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\pnitjnpg.exe"}, {"hashes": ["14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\isxuewxp.exe"}, {"hashes": ["38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\rrxkurhk.exe"}, {"hashes": ["430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\vkpdklfi.exe"}, {"hashes": ["2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\hwqsuspg.exe"}, {"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\jcfcawuc.exe"}, {"hashes": ["089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\tdhgxhuv.exe"}, {"hashes": ["13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\wxgtuvik.exe"}, {"hashes": ["17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\wijtevit.exe"}, {"hashes": ["1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\xsteurpf.exe"}, {"hashes": ["1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\xbkpgmgr.exe"}, {"hashes": ["25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\lrcpxxaf.exe"}, {"hashes": ["295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\hquakiaa.exe"}, {"hashes": ["2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\jhageifa.exe"}, {"hashes": ["33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\dcpkrdkd.exe"}, {"hashes": ["3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\qvhsonra.exe"}, {"hashes": ["49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\ehuldjkb.exe"}, {"hashes": ["4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a"], "path": "%HOMEPATH%\\Local Settings\\Application Data\\uonxolnq.exe"}], "ip": [{"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "ip": "76[.]74[.]184[.]127"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "ip": "203[.]157[.]142[.]2"}, {"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "ip": "193[.]247[.]238[.]26"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "ip": "87[.]106[.]200[.]140"}, {"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a"], "ip": "113[.]53[.]247[.]147"}, {"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "ip": "178[.]132[.]218[.]180"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "ip": "91[.]121[.]70[.]14"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "ip": "81[.]177[.]180[.]83"}, {"hashes": ["0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "ip": "151[.]3[.]8[.]106"}, {"hashes": ["089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d"], "ip": "142[.]4[.]60[.]242"}, {"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "ip": "88[.]255[.]149[.]11"}, {"hashes": ["076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620"], "ip": "207[.]210[.]106[.]58"}], "mutex": [{"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "name": "2GVWNQJz1"}], "registry": [{"hashes": ["0654f135f3f8a9710c0a034895d353d6f1c15da4330c375f4c02398079dded57", "076b10dd3022b01c1f425f2cb820657a5a7bb7a7b8f8b300a02de052699b2e50", "089cc4ed429b40e65b40bcb50e237743c874b8713e060838d4afd289ae7aaa5c", "08e1ca6dd18d3d241898024f897caec5acbd98e7e41eeafc2c87ce9551f43199", "0af9d2e3cb3f01d95a35bd468fee6ebd524e49b4dfb4d8f3eb589acaf88cbdce", "106a98ef6fbe69d8054bb063bbf24c4834b920f511645a6184fafcd98c362ea8", "13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12", "17c0413c777efef4ca487516eb76f1e7171eb84d9acf826a5be2e5cc473ec7c5", "1c3cc7603a7bb8b920480e5db53eb27b3ed77b4b9c8ab77b3943d0c3387e9fc1", "1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "25016e094842a90d1511fe06855d597a644d75bc3c30ceda21b263026c7bc4e1", "2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d", "295f07c0824012e5fb7a7dce40e2fb3c7a95b213fbbba3c8ca4d69b76bd373c0", "2b5498e03b0b27b9e1f69a844a2f89431643147ba3bd2c0f54367462eb66379c", "2d17a5eb10e44a51907a3066a19bc279b548942d3633a933f25113615e76fc6f", "318b0c5466303822166b13976cebbd67ae59e08013b1eb7027aea07e83591e04", "33a6990b45e7d5e96c0452f8caadb68a864339a6414763ac95d899abacfdddbb", "3467703a7ab0eb3b65e72e069a9069c17c05ebdc82db59cb54482730f4b0c81a", "38de95d96239aabfc9d343a39c7aa0679ddae5a6b27d067611e7ea0e15e0e933", "430c06b5b611bc9351486a71751e965e2527a1278b9a255d8449dc801081b48f", "49f5d5c1a3dc9fde4fe83134e37e16e1f4f1457a2da8d8ac9866b6c2fb7ad58f", "4b007d67f5738f801339f0b7cd291a8f71488789b3eccc7d1d543dff47ae2b0a", "4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "4f5c97b3c241a7ddc41fcf2b7106332872051f8d83bb89dd5f999af106dd7a44", "535e8eb8d54fe3dd1b50b1138f36f8c62c7d03f5a0318a2c6fafb8ec89c98d3e", "565c5fdac770a92eb78dafea9d91dc3c85afa817cbaa8f266acc9acee906655d", "57f21b13c718c39ec7ff3d21c1ec486b5dd6b973bea1f56d4e88e94a60e77fb6", "59f71cad9596b845145f7208001e716e4c88b879d255f53705f54d830148c149", "5cd82bed451d775783ba39d5ed6214af9d1e9f491781ff028c06dc485c97fdca", "669dfb04c36d22b77cc6b59f3991e32f1358f17cb3d2fa8b3843b58d1cdd523d", "66c3ec0b72bd7c391b6c8b4eb28c7df676f10201343b3bd74f49484b86535594", "6761fc70d49605969bd12bab3902d61455d08bea68b71a321f1c97babea0e642", "6a89c48c93906debbd6e7364de6e5953c77d74e9a7a0e9c4405975a35cfd0b14", "6b4535fc23c6366a0a40e83e96a73e440617b53d0209e27b8b31c784b708dcbf", "76ae31593106893c7e3eb3ca94122dac80d503bef10166498251fd9153397d66", "77043021770940b366f0cc57a6119173bd2e2c7176e88c4fc0cd515cdf297ad0", "775f14fb6f74f1f745aa2d4290c58b023977f52f3b8a51bc6aa98e40913aadc3", "77ef5ff72045d19b096ea67a0a962c263f15fd71dedf347f7bb1bf7d8a391a7a", "780e369e7e632d993909c8dedbce1840c954d3d194e259858e3352709e28276b", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a", "7e50fc727baa173375808624dd8ff5dc641ca046f066c217399b679add21f9af", "7f1b1ad5b7d230a677ef792cba298d864ddd3be0f5833940b2fb16dbbbd777c9", "81a8b9a52e8eef473541bc67df94ea50cb962ede86142c582540bdea8bb5a3a2", "847fa22456568f437b8d88319d1ed536a4ce5ef93d8990a47c6c4e19ad538ad6", "8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "8867a251d44bff79919c6bb941bfbde12ac0d1bac805735c54c40ea62a0a8f44", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e", "8f047111386d510830cb3b75ea2b837c32125303e77a211f5f200978dde248f9", "91374881f66f44122fcf1f13fa635b41a951413db43f5857a612bb590e61d0b7", "915f09025c10a1f9354fa07cc97ef564d8192fc36c3fdd926b11568d911f824a", "9883b2ba21c3e6fa2951be3ae4c3e0db3f33ebeda1bcbe8909025ea7f00924be", "9e33ff132602e40171e6e256250343f9ef3a462b2016ab41c521da3d2e8a4204", "9e4b630f1642069347a04dcad8d592f03fc780b07db948d2ff2749870642f3bd", "a29c6f7650c29a9f402c7389121e54c1fb4543a1e1066496ef73770efe0b616b", "a70c81dab685acb49c770fe0403fc19d2583cd36cedf10c33617d7b2e7038929", "ae9472d748b452c04653f2994ada57e1c05672001954f84ab9179611624ee304", "afd246d083a4fea71de9a2c8030e28dc292d995c912f0c07291afdbfea7aac51", "b136d73cfc5bd2d284fb1447afb8bcd946fb7ffc326fd6d2c1473ec0685367a9", "b30f1a6e760d09dc13f8682404cea773b4b0695cec6d68d754b927ba747133a9", "b6c63a33e846a1015dcdea3454750cfd925ce21d68b78520209821fe13d6a9aa", "b94829a6b2bfb3fd5d7bafa9a0c6e658752732e4a34d052bb7a99ff8b43ff6d8", "b94eafc241875ef63d249f30397671ecc3a3618bf02717645de7cf573a59bc75", "ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8", "bd5a4ccb5d0295f1a9f0c49d999d97229a43fda6804b6a06cbdb2be8a18ae916", "c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702", "c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70", "c89e542c11bed57727cb56b32b5d4bae8817eec676b87b71795f3383d735c049", "cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d", "d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f", "d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595", "d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3", "d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855", "d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc", "daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0", "dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd", "dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b", "e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c", "e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5", "e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb", "e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6", "e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf", "ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620", "ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d", "f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2", "fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "key": "<HKCU>\\SOFTWARE\\<random, matching '[a-zA-Z0-9]{5,9}'>", "value_name": null}, {"hashes": ["13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d"], "key": "<HKCU>\\SOFTWARE\\DDECKMQE", "value_name": "rufunetb"}, {"hashes": ["13acf46a246c7df12d6a3c66d0404d824066919a9d66a0e6fa0d01f64a6fd06d", "ed9cc7ce490f664968b7b2b10413320f2b0dda50d5e9b7272f95062202cfdf9d"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "purqiapx"}, {"hashes": ["1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e"], "key": "<HKCU>\\SOFTWARE\\TGVLDHPR", "value_name": "wwcqqxkx"}, {"hashes": ["1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324", "8bdd532a4940697196ed0a0664c4c1a73b54f0241a15309a3795773d47388c8e"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "txkjwfvj"}, {"hashes": ["4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a"], "key": "<HKCU>\\SOFTWARE\\HECXPAWI", "value_name": "bnsleqib"}, {"hashes": ["4cac487ee91da8e35a3707a2c1e3a5746d7b5351d08da86f8e32039dde2e2a17", "7d4b7de1cccf443b3ad781a2e86db432f3dd44819b17caa46b7bded71cf78b6a"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "lsibrbfm"}, {"hashes": ["8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded"], "key": "<HKCU>\\SOFTWARE\\ALVHSCNK", "value_name": "cojbsuxs"}, {"hashes": ["8611123a0aa32b897066c257664d95bc66fcdd43b89c9c4aea155f75ea4ff7c0", "89b32be98266b47b84a131a0bf459cdd7b891843bbd0f1fa4840c8d1568abded"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "sshbmekh"}, {"hashes": ["ba3cb69f94e96c1d3fa5a4cddc34d96c31b91f64c1b971bd0b460ed276bdc6e8"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "xaxremlg"}, {"hashes": ["cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d"], "key": "<HKCU>\\SOFTWARE\\QUJSCFWI", "value_name": "vwpfahqk"}, {"hashes": ["cdec309e35c4ce96155f8a16cce02e3960b4f9f496d2ffa3a50e545cf62f670d"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "lrauwdhb"}, {"hashes": ["c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702"], "key": "<HKCU>\\SOFTWARE\\VFRGGLEM", "value_name": "qkbbnfpr"}, {"hashes": ["c403c9bdaeb71b496b4e8a0581d9bd42f78ebaaacb03b5b7ba6600857f566702"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "cncvfitx"}, {"hashes": ["c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70"], "key": "<HKCU>\\SOFTWARE\\XOMUIDCQ", "value_name": "ngtokrbl"}, {"hashes": ["c763165a87866f10774ae503cfc260febf8e52b1e79eb7c2d90da9824f968c70"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "xxgirhio"}, {"hashes": ["d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3"], "key": "<HKCU>\\SOFTWARE\\XAHNJRHS", "value_name": "pukelgcs"}, {"hashes": ["d319b4048bad75f9f8fc957001a0b93ac02aab8d49b04c8c820fa07d53a64ef3"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "satnwvsp"}, {"hashes": ["d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855"], "key": "<HKCU>\\SOFTWARE\\XINPUUFR", "value_name": "vqdwqmcf"}, {"hashes": ["d594ba8f196b21c6d46ccd40048764ddf34c6a64f0e57e066c50a35c2a952855"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "nokgvmvo"}, {"hashes": ["d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f"], "key": "<HKCU>\\SOFTWARE\\NGXKMXXA", "value_name": "jqnedfld"}, {"hashes": ["d0083b90cd7f8c80dbbcf4d0943ef3a00bc51ca4099481a3d07c840593d29a3f"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "ivfnkmrj"}, {"hashes": ["d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc"], "key": "<HKCU>\\SOFTWARE\\TDOJHWTA", "value_name": "eixuvjdt"}, {"hashes": ["d8cd6eb1e2548f4803ed8b291e43552409ee53fed654482e8a2678b0fed1a7fc"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "gsukkjrh"}, {"hashes": ["d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595"], "key": "<HKCU>\\SOFTWARE\\SPMLNKEJ", "value_name": "wostaiel"}, {"hashes": ["d19d33c7d4444198e4e36bbb04b7a3716a4b4b759de0e0c6f7e89f2722773595"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "nbpsdtev"}, {"hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0"], "key": "<HKCU>\\SOFTWARE\\DXGXRBBB", "value_name": "roqhdodn"}, {"hashes": ["daeb17b0e8f53e29d077ec7b15b7b44d0b299997980585f1976889768af9e2e0"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "bedtugdj"}, {"hashes": ["dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b"], "key": "<HKCU>\\SOFTWARE\\TNHHXDBK", "value_name": "xwxaippc"}, {"hashes": ["dfd019f14c8b5a45c0af5dad1caedf008666518a3dfc830241e8a2dc4622965b"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "vvqelocj"}, {"hashes": ["dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd"], "key": "<HKCU>\\SOFTWARE\\FKXVJTRX", "value_name": "uctgitwh"}, {"hashes": ["dd6b7d0abd54bad269ac07409a2b5610fec1b9fc069d9f8c22fd234258eb36cd"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "hipfbtqu"}, {"hashes": ["e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf"], "key": "<HKCU>\\SOFTWARE\\LMGGRVEU", "value_name": "jpuhfrsm"}, {"hashes": ["e8c2f8bb49b0daa55d1cb9cf4ee0053980dcb15b499e32f9e93b8f858a3b6dcf"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "mrcedrgc"}, {"hashes": ["e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5"], "key": "<HKCU>\\SOFTWARE\\NWHFUHJM", "value_name": "mgitnsnk"}, {"hashes": ["e35633cd47641a3261fbbee33b9dbb44daa988266ab4748dc7fd73f9a65ecdc5"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "wirfiore"}, {"hashes": ["e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb"], "key": "<HKCU>\\SOFTWARE\\AOXHKDPC", "value_name": "xawpqxql"}, {"hashes": ["e3d17d3cc62e80067e7839cbc192d08749424f37d279b9d01181928bf434bccb"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "cignglif"}, {"hashes": ["e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c"], "key": "<HKCU>\\SOFTWARE\\MKJCCOAM", "value_name": "sxjumavk"}, {"hashes": ["e31d16efeedcae81af061fa456799d08ef3b8989cbb639010eb141ad2c5fef5c"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "tfdoummw"}, {"hashes": ["e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6"], "key": "<HKCU>\\SOFTWARE\\CTGNWRNL", "value_name": "ujiefhqk"}, {"hashes": ["e7fbdd74902b0a56c449bf59db0450f2094f039789c9261eacc10d9251468ee6"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "muniahii"}, {"hashes": ["ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620"], "key": "<HKCU>\\SOFTWARE\\UDSWOHXB", "value_name": "louiqndq"}, {"hashes": ["ebd56ae9817302feac15db85c40a6bd5001912cbdf8b6540a2d935e6ed308620"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "khbpqsoa"}, {"hashes": ["ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a"], "key": "<HKCU>\\SOFTWARE\\WIFFLPXW", "value_name": "hrgxvvsn"}, {"hashes": ["ecaf25970eae7cf9acd697099530e5f54a271e1b2c1ac68e8e49de6ff7102f7a"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "hlistnmd"}, {"hashes": ["f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "key": "<HKCU>\\SOFTWARE\\AODLGSTN", "value_name": "ffttbqjn"}, {"hashes": ["f4301304c4349816130cb515286502a695bec7972e6ee22b904a76586d9f1dc2"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "kpbednts"}, {"hashes": ["fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "key": "<HKCU>\\SOFTWARE\\TWBTDCWO", "value_name": "pqpaokoo"}, {"hashes": ["fc8fa94652947af7ca52497d316bfe25e25a1fbd7166764c842853f8d1ae01a8"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN", "value_name": "ekumaxeq"}]}, "reports_count": 88}, "Win.Packed.Nymaim-7725807-1": {"bis": [{"bi": "pe-encrypted-section", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "memory-execute-readwrite", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "modified-file-in-user-dir", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "network-opendns-malicious", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "network-file-uploaded", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0010", "T1011"]}, {"bi": "nginx-webserver-detected", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "network-communications-http-post", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0011", "TA0010", "T1048"]}, {"bi": "dns-query-nxdomain", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "dns-excessive-domain-queries", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0011", "T1008"]}, {"bi": "feed-domain-antivirus-service", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "network-snort-indicator-compromise", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "excessive-foreign-memory-modification", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0005", "T1055"]}, {"bi": "dns-public-server-contacted", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0011", "TA0005"]}, {"bi": "url-not-found", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "imports-IsDebuggerPresent", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "malware-nymaim-registry", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "network-fast-flux-nameserver", "hashes": ["9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": []}, {"bi": "registry-large-data-entry", "hashes": ["4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f"], "mitre_attack_tags": ["TA0005", "T1112"]}, {"bi": "possible-dga-communication", "hashes": ["9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99"], "mitre_attack_tags": ["TA0011", "TA0005", "T1483"]}, {"bi": "network-fast-flux-domain", "hashes": ["ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242"], "mitre_attack_tags": []}], "category": "Packed", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": true, "WSA": true}, "description": "Nymaim is malware that can be used to deliver ransomware and other malicious payloads. It uses a domain generation algorithm to generate potential command and control (C2) domains to connect to additional payloads.", "hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "iocs": {"domain": [{"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "nmzenk[.]in"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "iobjtokfa[.]in"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "ruatstyzxnlh[.]pw"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "fcmkzoky[.]com"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "pzrbbhfepzgg[.]pw"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "rnfgwzeehqb[.]net"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "host": "lsfne[.]in"}], "file": [{"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%ProgramData%\\ph"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%ProgramData%\\ph\\fktiipx.ftf"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%TEMP%\\gocf.ksv"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%ProgramData%\\<random, matching '[a-z0-9]{3,7}'>"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%APPDATA%\\<random, matching '[a-z0-9]{3,7}'>"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%LOCALAPPDATA%\\<random, matching '[a-z0-9]{3,7}'>"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "%TEMP%\\fro.dfx"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "path": "\\Documents and Settings\\All Users\\pxs\\pil.ohu"}, {"hashes": ["ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98"], "path": "%TEMP%\\bpnb.skg"}], "ip": [{"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "ip": "66[.]220[.]23[.]114"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "ip": "64[.]71[.]188[.]178"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "ip": "184[.]105[.]76[.]250"}], "mutex": [{"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{369514D7-C789-5986-2D19-AB81D1DD3BA1}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{D0BDC0D1-57A4-C2CF-6C93-0085B58FFA2A}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{F04311D2-A565-19AE-AB73-281BA7FE97B5}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{F6F578C7-92FE-B7B1-40CF-049F3710A368}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{306BA354-8414-ABA3-77E9-7A7F347C71F4}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{F58B5142-BC49-9662-B172-EA3D10CAA47A}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{C170B740-57D9-9B0B-7A4E-7D6ABFCDE15D}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{B123E21A-671F-AA5F-2286-F31181A381CF}"}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "name": "Local\\{85785183-F382-5EB6-2795-711B10C1720E}"}], "registry": [{"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\GOCFK", "value_name": null}, {"hashes": ["044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f", "216809627b70153524f87edd39c10afb9d56554519cd48d13d326a8ae0ae02d2", "3b3761aa455ec209f6ea16e4a72956b702b16472fb72f200664edc1eccd9a05b", "4e36cc1f8ad389864ef9c6ccfe8b55c24cf38befbe3dd3f262c1de7424974d0d", "4f13db2083a8178ad4af461ae63458aaf8a9e66e8237fc9fc2bd3e92f96673ce", "82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99", "9c1be848e476bdf2ec36dfad3f4eca4c3706f04222ebd86d125defef7d268c6b", "ac5d14de8eb37ce41260d24e507c6cc6fdedad2ef513251dac5e94e8baba79c1", "ae2746d8a1de296c82eb1ce4e7aa7e9d511cfe3d3091995b6aea7daf1ab62e98", "e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242", "f620856b6434664fef74620e84e56f2866f9648345026d131c8797bf7238de06"], "key": "<HKCU>\\SOFTWARE\\MICROSOFT\\GOCFK", "value_name": "mbijg"}]}, "reports_count": 11}, "Win.Ransomware.Cerber-7750648-0": {"bis": [{"bi": "pe-encrypted-section", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "memory-execute-readwrite", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-anomaly", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "imports-IsDebuggerPresent", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "antivirus-flagged-artifact", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "modified-file-in-user-dir", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "pe-imports-toolhelp", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0007", "T1057"]}, {"bi": "excessive-udp-connections", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0011", "T1095", "T1008"]}, {"bi": "malware-ransomware-cerber", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0040", "T1486"]}, {"bi": "malware-generic-ransomware-backup-del", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": []}, {"bi": "wmic-shadowcopy-delete", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0002", "TA0040", "T1047", "T1490"]}, {"bi": "microsoft-block-rule-list-app-executed", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24"], "mitre_attack_tags": ["TA0005", "T1089"]}, {"bi": "process-requested-named-pipe", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629"], "mitre_attack_tags": ["TA0004", "TA0005"]}, {"bi": "document-decoy-dropped", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7"], "mitre_attack_tags": []}, {"bi": "process-deletes-many-files", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7"], "mitre_attack_tags": []}, {"bi": "modified-file-in-program-dir", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-obfuscation", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "excessive-file-modifications", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914"], "mitre_attack_tags": []}, {"bi": "malware-generic-ransomware-entropy", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7"], "mitre_attack_tags": []}, {"bi": "document-single-page", "hashes": ["8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914"], "mitre_attack_tags": []}, {"bi": "file-ini-read", "hashes": ["25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d"], "mitre_attack_tags": []}, {"bi": "file-ini-modified", "hashes": ["25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d"], "mitre_attack_tags": ["TA0003"]}, {"bi": "windows-crash-tool-execution-detected", "hashes": ["d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253"], "mitre_attack_tags": []}, {"bi": "fault-report-file-created", "hashes": ["d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253"], "mitre_attack_tags": []}], "category": "Ransomware", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": true, "Threat Grid": true, "Umbrella": false, "WSA": true}, "description": "Cerber is ransomware that encrypts documents, photos, databases and other important files. Historically, this malware would replace files with encrypted versions and add the file extension \".cerber,\" although in more recent campaigns, other file extensions are used.", "hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "25ce3a72a6e8d0cd383ae418bac8f7edf28ab94416c1038edffac5275860b21d", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "iocs": {"domain": [{"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "en[.]wikipedia[.]org"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "www[.]collectionscanada[.]ca"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "alpha3[.]suffolk[.]lib[.]ny[.]us"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "www[.]archives[.]gov"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "www[.]vitalrec[.]com"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "host": "www[.]cdc[.]gov"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "host": "api[.]blockcypher[.]com"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "host": "btc[.]blockr[.]io"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "host": "chain[.]so"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30"], "host": "xxxxxxxxxxxxxxxx[.]xxxxxxxxxxxx[.]xxx"}, {"hashes": ["0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547"], "host": "vyohacxzoue32vvk[.]9sfk22[.]bid"}, {"hashes": ["10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15"], "host": "vyohacxzoue32vvk[.]mpduf5[.]bid"}, {"hashes": ["0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a"], "host": "vyohacxzoue32vvk[.]ca15sj[.]top"}, {"hashes": ["17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770"], "host": "vyohacxzoue32vvk[.]dks71o[.]bid"}, {"hashes": ["078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8"], "host": "vyohacxzoue32vvk[.]7jrv53[.]bid"}, {"hashes": ["0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e"], "host": "vyohacxzoue32vvk[.]8g1k17[.]bid"}, {"hashes": ["1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d"], "host": "vyohacxzoue32vvk[.]c4cwr4[.]bid"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e"], "host": "vyohacxzoue32vvk[.]9c431m[.]bid"}, {"hashes": ["1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae"], "host": "vyohacxzoue32vvk[.]axn1cr[.]bid"}, {"hashes": ["1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415"], "host": "vyohacxzoue32vvk[.]n13nx4[.]bid"}, {"hashes": ["2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "host": "vyohacxzoue32vvk[.]p9su2u[.]top"}], "file": [{"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "path": "%TEMP%\\d19ab989"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "path": "%TEMP%\\d19ab989\\4710.tmp"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "path": "%TEMP%\\d19ab989\\a35f.tmp"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%APPDATA%\\Microsoft\\Outlook\\README.hta"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%HOMEPATH%\\Desktop\\README.hta"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%APPDATA%\\Microsoft\\Access\\README.hta"}, {"hashes": ["072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%ProgramFiles(x86)%\\Microsoft Office\\Templates\\1033\\ONENOTE\\14\\Stationery\\README.hta"}, {"hashes": ["072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%HOMEPATH%\\Documents\\Outlook Files\\README.hta"}, {"hashes": ["072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%HOMEPATH%\\Contacts\\README.hta"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474"], "path": "%APPDATA%\\Adobe\\Acrobat\\9.0\\README.hta"}, {"hashes": ["072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%TEMP%\\tmp<random, matching [A-F0-9]{1,4}>.bmp"}, {"hashes": ["072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be"], "path": "%APPDATA%\\Microsoft\\HTML Help\\README.hta"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "path": "<dir>\\<random, matching [A-Z0-9\\-]{10}.[A-F0-9]{4}> (copy)"}], "ip": [{"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "ip": "31[.]184[.]234[.]0/25"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "ip": "104[.]20[.]20[.]251"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415"], "ip": "104[.]20[.]21[.]251"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547"], "ip": "104[.]24[.]104[.]254"}, {"hashes": ["03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65"], "ip": "104[.]24[.]105[.]254"}], "mutex": [{"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "0e446d8cb2f076a30441b95278c77badff0a2814ed16ca59e5767795aff0729e", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "1f607afab9288ac12d511d8031592ccf6bfafe6a0eae81aaa312124a367fa032", "1fab937dfc27a3bc901052318325dab7e05ea97d58f1712543112a50c2938230", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "27bd79ff90c8d00ea3f91b1b2f9f88abcb1283576e3cbf960e9cba7c11aa8eb3", "2835e5fc78900713ae35720e251dd8b6659bd4c42ff08ee8ad1c0f26dbb1b048", "296b45681f55778522b33f3d605e50dd62ef0f77f8e5b919ec916b85e405486c", "2a976e007d1d5fb0d5d46bf0aa983baa8699767c781ad88613ee027393e40cef", "2b99c69cb4b8a3184fd1b169172cfc165c7224b97248d9b4178bd2a64354c062", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2c2bed6b8e5fa63525911d72365076fa907ed16561ef60a42c65199c9fab5aa5", "2ccdbaee233816516a3c4e17dd43c287f92fd5fb6bffcafa7130c8840b7b237d", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "30b283fee4181e3bdc66fa5f1b5db5cd07e3b42323d84705e628b3def0f7aa36", "3146eac6516d1201f56dc8e15ab792a684a64a73bc3cab7e7992efd13ea7b7ff", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "34240890fc7d19bdcb182ee1f486e0de780070485e20949b4970ad51671a1f90", "369b875bdbc0141a09964d8a860d417e7d975416afff92ecb4d6704b2a21360b", "3b39a4cc5124efc26e23a0cbc189e4c00a1564db375018ef847d75ea66d4d38b", "3c1faa5c136dc5321c0d79ddf4863fda09168ac4c1de4ffb791ac11333109808", "3ca34669e0636b5dd115c61fcb8b5e27cf465e7876f91a361ef2f588f06ca4ef", "3decc7d64638b7cc08457b4a1d3071f8d4253814e119579395f5c0fdf262612b", "3fbb2d71ec2ac1da6236e709e9889b77abb934c14c1c89b78015934cb97bb2c1", "4148ba381683755ecd24d1d87d4bfc5f51539f6722c5ab2efbc9b02afa831457", "440b0439cd81f85908f86c8216fc7cbd5d11f962a6b2c16c4bef5760eca9db55", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "46c37a7a14b53944c739abcb62d4e41d5ceab0dc29034d1aa8f6700a0d3fa2ee", "46ea6b72366e0b5b1d78fcdc1eed9433cfa5ff41f1e769fcc322c8587ec0a964", "4741bce796ddfb9636b6273156296f1bdcac64e41027b27c5fcccb9509038bb2", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "49ffa8396f894259a3847cbe20fd76e04042d41d8616d1c31c907d3424f179bd", "4abde32a5af35f789db925e872f2545a8b451e058364ef101a76af2d35385f1c", "4c5b2922b4c42666705cc918e23be71e0f0fa8efc99b3efe49bcdfa089acee20", "4c9866e350c2a720a769b69a9316bd8c84ba88af99bb3b8f836b066670bccd9e", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "4fc832f82bcb37285c3ea7059057bef6a3130fd322ebeda561863143e4d8ca07", "520389a24050b67854fe416f1ebb7c0ef5e9a4ef9e77f76f82c26852ad74506e", "546d8ed640a90b87cad04038de3ba4522bab5ce054602a77e02b16b3318c986d", "54b56d37616d831e5cceab8a458a9aa80349ad26d66a53fce6968f1b673605f2", "561eac4f22b1b6ab307f11a44fd37cde47a1400be464a8bfa840ae6ad1d8cef3", "56c754199cd41bd5950b025b9365611e475b12b47b5a216cd567537c9e970d90", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5a6a615a992fb23555d6593872aa5634a82460d0930e723fb0a50aa85fcc4cfe", "5d0be2a1af3b9dd03ec9353fa97740c2f0fb1cdc86f30b682666e450e418557d", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "5f284173de825697146adb2746bfafd29549e4568832b2b08b374bff590b82ba", "62966b9049a97a7da33b784a213d0a98a74c514e54c2ca979a0f8d42d564ca56", "62ad3d88619b457c3d3905c683496f2cb6bec7155fe831ec992b38d720d77e7d", "62d8613def15be2884afc2d3060fc042230277572f0913d48318d3be3d1df0e5", "65c37d3e9b1f42443e3fe5ede8d4f272a7750ffc2546409467e6bd5e815a9f22", "6739c9ece5cd42442cf5a9cb6d055cd681b2bf83fc05a1502058b578b07e927a", "683779a71cb532ad8a008d18daac45d757592d222129d31eb4d3f909212fab6b", "6b0b5dbe2cf12aad948f25a350cac12c740702b48650a10a0af67ba90f45a733", "6e49b7deacdddc30404ff79e730061135ab18f39042366ba85e2b30541e51182", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "72b4e475c21d1215f9810e08c5bb4baa03a6386158cb6cbabd2f8cda8e315335", "76761c34ab064e358592f1b16b18e6e94f6166a01c94542181c1a36bb57ebc01", "76b48578436634ab4c23a3e33e1ae086511004b0750e7b752bc2a4d0822650d0", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "788bc50c50003891840d9e6067f673a0beb74835a42de56fc090bf08056021ab", "7aa8a070fa41859ba48880319149465419f800a15bceb76a5e69814645d8c516", "7c4893dd3c762eda7592939c6b61b3afe20088c2a50e8537c267bdde981ea3aa", "7e2d1f54ef6ede513a4370e44afdb27cbaa54e313ec98379ae65a024a84e7504", "7f775dda351f1f09d71ec2bcd607046266d14479a20b9b744b7d7702cb80328e", "81dd46bf583d4889446a770e9780c609781e6a4cd5a60446d0113d80828a9268", "8435c1c32cbe6afc5f4d2129b0537789852d7d91b6de132f21779152d8546420", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564", "877d90b8a7c449f1d2133bc5d34b31deb0ab1ea2a76445cc05d41b1ae07ce6bf", "89d88695e6b442365e19aef7879a7672a3f0448a281d11ad87e7353088455104", "8a1622f6cae07b99ec8375c917479af269e7633e16d1536399e32332605dfa9f", "8a444f96fdb4a613d8f1626cf08522db2a3dfd07b9150e2d3addd9d1c29ef629", "8cc644520054ae2445bf1a25a87b24f562dc1898165cdbcc8ff19d4a898b0562", "8eec3288f9c8a4fb40dfadbd2e3c0d8ec1178764c74f0aa305c9c64ac472907a", "8ffc461bdd9ccd7c6296f2fdf36fbe63b98dc286465fba67286a6110e3dd400d", "927f3e4bd25929f72cf8b5c06d4edd99c882089ff7fd2bcb1957218658376e55", "96fb946349b7e559d749b8c0e9118cdaa56ff399a0487c029907d0013ad09710", "99c3e0dd5f48233fed4d4695af3df5d5b217fd05e8053c17f129f0eb3565237f", "9b9285fa5dbb2b96bd178c50969252ae0da65c747f03ef0f410f5bab5d43f3ce", "a02d01446acc8677da56d43dea96e5f8a17e99ec1f0375641988ea5f853f7c27", "a569a03f339414e182cf75d03dc9f3b27bbcc771d3f678224c256c3dd7877ea4", "a57fe30395aecb05bbb4b825afc09af8fd9810a708ef7f1dd791a8bde40744c6", "ad5170be281c67dd8a150f3a33cac83a2f0aa97b8779f4ed127889a8e7ec72b5", "af0ac3430191f1625c081654d64e66984683cae80a1df30756e5c6c4c3908be7", "b06fccf57d3e66a0a051fa438e6eaebdd6b20c27fcd205a760bde25d7c3152a3", "b1d235d38b1b60aa55fda00aaff0f6baf1da5f07d828aeff3a3b2bb0afc5dd69", "b60eafb2398149d214cea99712ff3f104130a6f7a1d54f864a39a4d95e7495c6", "b6e1bbe3459117c4705f54693678246720218124846217aa488f1610f009d7f8", "b6e546d66b4491019a7e7e875369b51ca11a6d860718a1fa08c3a186d53a41e2", "baaaaddfb6f7c9c50f60517f87eac2540a49b78dcc57446378e9f72fea5de940", "baec47203a69238e685126196cc318a53a0feb247ee1fdc2fa86caf59a4e33e0", "bef5f0947737b6fe027db36bbab996e7627b9338fe483a68014b1b2645672e0a", "bf5ff96d476ec459b3cbda55cfb42ad7338fe418791d3bbd44d02c976d98243d", "c2a31fa2960ea8b0d72eb97be7eb51a681354ee5824d220dfab1a78307e17486", "c3d07006c518689ac6ed58e78235893e877eb28c20a963c7e05c110194386fc2", "c4b73eb63df9dea169f8a35cc9c73723ec8ecf1d9f0b80e92ce369098ee6dfd5", "c6443db3f5f677a698b24357156d083aaf56e00c48ae47a36d91a854d13f3a1d", "c6b18c0d79765ed3ae687e7c12c98f99a4147574326a5ff3d7e0a1d5192feb0a", "cbd110a67d2ea8ad91d72a0adf23a40d951d62952f55e926ab22a9589b248c25", "ce4f473b7baf3b505da791a56f510e447c88169fc3cfa0dc0a787f583d9bcd4e", "ce5ae185cf0a68ea2498da27f674b51775c5254625d000c5bae77b2c00db2b1e", "d0f9e996a666c20216f70c98a7ab5b551516c20307c792bc70156d29965e6dd6", "d61e1e6ceac966b4118b7c2428835f0b0ae5e62727f5e5bb6daf40bb9cabd6f2", "d74258227d26271ee2a65db360690aaceff9f5cedc6295d2dac2bea9ba739f44", "d7d4aa79e6aba05030440714ff6f938da09332824c57f4b73d2e8eecde77fde3", "d93000b2a7e708aecd73f33a2c440ea05745d51ab7ab6510b95996ab84d7c253", "d9522497a7d927578bc390a925e8479ee203e517c844291685efe2f6173a1849", "dada913bed5a9f294800f5fa921d4401e2015ab5705efde27577105480a20b08", "dbbc68e7c0e80bea33058512dfc7ec91d4340b3903655b92ea4114c42929f1fa", "e1a5ed8a4036ae450e3882f4b1c52653255a2fba8f3d549bfeb2e636a728964a", "e30b11385765e83f0571ce934c2833e1ef9338e1bb50f8dec45818fa34ffc906", "e3b8cc823346d2e5efaeefc420070e123978544cd4f34d2b427516e5230980a1", "e550e1335a8b47ac55e9d3baf2e74d4682881ce5c51bdd60eff2f7a09e847f33", "e61b5444342844db2e691f34cc51470ed265095ff377c2a8fc85a4681da5303d", "e85f7500cfd656a4818557679968294f1920487370a54e3ff9d6d1e05fa8698a", "e9207fe7bec1f1ca82862e331551a271508bc6c9789a51025621882bbdce4f69", "e9c435c5e929d9b4302c8b5d6880bfcf7becc03eea9e193995e9977a075cb951", "ea4b187031304548fbafda9cec1fae507c21eca51c96f807310ac0525a86f629", "ea9493a05c98e5acc73984c32db0766aae3ec4ae7971d45e777e106b2144ea38", "ed523bbe5932b2acb44155fd23264b8b2b2a0b266b010466cdbef038637ceefa", "ee4025aa11c1c6d04d7c037f8ca821cd69a17f11de49b5e8b9d966f5ddeff914", "ef33a8779d599528c9421b9cf281b4405590f09723624aba65103b2c54c5fb22", "ef88f9823b87346ef3889e89abb63f0c432d55f34de447e0e8b9faecbac13259", "f14b8ada518d0cdfb86d9cde4adf4435c6d887adf46509164443bb5a64c3e7ae", "f1bf2cc7610f1d33753411bbfeae3291ee81da6ad767b757b297dbd1bc6659f7", "f1cd7bab0dc4129e4f6104bf61a7a92dfa75c96e0d614ee9760e234ce0caaf26", "f203719997009602e5f2cdb2f8d1419dc985fd207e36853e94d0a4504c4bc3dd", "f21db60956a5f9b91df6836c0c9531ad8be7c6f47f25df331406e6bceaa3fdb6", "f2ea897745ff43d0d979990e4289730f7b0b3d2e0f6169d133a8676901e30aae", "f39e9afcc756a77e5297708fc6c2001b86bfba3bc79ef4dfe0b8a3192b003d24", "f4c7402d3fe5aa4327e2084b5515b73592a124cbd73b68b0673221da86da9d41", "f6844a85721bbadeb1e1010172acbc93490b7d781e58c06fc7e56b56a822e9f5", "fbbf54be24f8faa080b8349c2fcbc8fe9260a656fd66026c7f8ad8abdf108474", "fc2de59ea33cc5094b7c411d114fbdbb86468c522f9a3555179a10814418f0be", "ff9c33eeb096b4d043be94d9de86c52079db375d8f593c0676b78234819ff2e4"], "name": "shell.{381828AA-8B28-3374-1B67-35680555C5EF}"}, {"hashes": ["0230d78c972d399f627b228776f2d8e96b717da068a128ace4b69067419708d6", "03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e", "064579ef28c82acb6935b75fe3a2408b354a0d4d9004d3beb444045fb8ba1b9d", "07265644f5a634d235c9c33eef1deaca73689d5d8123bfb22b31a662cc9e2643", "072a4c4b5d8d97d3d9c678aacf7d9a73609e346ae563b330098ac20c4dd3945d", "078398933742904fe3bf5aeb856505bac9a255a1c1eeddf9705c29d411a7bee8", "081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba", "09029946caf0de395b14a26364354dd32679aee7c7eb22c5e8c04775c0d3d538", "0a280fb6afce1778478df3f8b1f962ea46aa865b27c88d7ca75368029580773e", "0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a", "0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13", "10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15", "11018a64eeae53e33d66193676705e49ab658d04f5e2f8471ab896fbda96b1d5", "1177ecb326246585b0b1a3f3664969325eb3017d6ae93e8340fd04497391f41d", "11bc5389a0c2d2f5a5fd68630cd8e46f3fdcb3ba434492e7ee71544a70986930", "1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0", "15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30", "15c3a3254008702641bdf20c7e32bd5afd317bde685c21a38a6e00eabd9d91a7", "15c5d4adfd697ea53278ad1cdc1128cbc96b808071fe06b8f5fdcbe847cd5fe5", "17d48b5318fc9d45eb21d19793e3a699c5c95bd67bb8ca8cc240db9d69f6c770", "18f9701f2516d860384b0796815c163f2c7b2dd5cde6d8d1b479a3d68d65a194", "1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21", "1b10ca8a96db74c1748019566edeca9b8967665c12264f5969ee30bd11ef1504", "1ba1f09c7e2fd18f2577a62a3103461c1f09610304571e1eb055687a65b03fae", "1e6d3e0092b4427aa11c419acdecd013537a46d8bc45be3943390b7dbd0f7415", "1eaccf605c1d7f116ee845e8649cb11223c02e3e36750f8f3127b24e9d81a547", "2151fe985b44b8e16c1989484279106e4ae6d67e1f08203aa60c51fe70ea4e65", "2befe57134d8cecccb45d52e2a8d8f0e5c7c72030e1ff0705cfdc3095882fc52", "2dd57d5a04d870e805f6e3a908a50a13c8ceeddcb86c8e0ad2e0eeeb3e6eb3e9", "33a4de065629d5039e489f8a57c3879175c765dcb3ff7db26327daec2472ee87", "45063ccc87c10bbca2e4d558e48d1966091f522f3113a4a8101d98881a628bbc", "4748733824a06a22d2ffd944293f4c77fe4b33c03c10c30d3c915e355bf14a68", "4e63776694d9f8c8f06901cef0daab834143b72a19c6160b9a69f114ef59272e", "5a2356821a6c86603e3cd7730f3e920d0e5a38ef450c40045738cd6e0d1106fa", "5dec81b6627814a38dbc78fd40df4e80984e38fcf8a02fb168b851e404ef7199", "6e7cf1dc0ab0fd3f3531738061637ee0d9f3804ac3de3a9e804a3070d2671dce", "7132a499ef5ba09c5448c8fd90567e2e21c7ecb49e17f3809f07d3512a90e8d3", "71715a70da03e6743e3d4e2aebacbd7de8ecc34cc79574901ac596a6b8f6393a", "7731577be835f3efb2916dcd95bbd0d1b13fadbed729a5f03e8e6483daf96ff3", "861943858927e1732edf7dff1acefc1df01ad3f3d3826e354a6e0de3ef0f9564"], "name": "shell.{<random GUID>}"}], "registry": []}, "reports_count": 163}, "Win.Trojan.Gh0stRAT-7737919-0": {"bis": [{"bi": "memory-execute-readwrite", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "TA0004", "T1055", "T1181"]}, {"bi": "antivirus-service-flagged-artifact", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": []}, {"bi": "cta-static-analyzer-malicious", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": []}, {"bi": "artifact-flagged-anomaly", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "pe-uses-armadillo", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "pe-imports-psapi-dll", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0007", "T1057"]}, {"bi": "pe-header-numofsymbols", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "malware-gh0st-rat-mutex-detected", "hashes": ["166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb"], "mitre_attack_tags": []}, {"bi": "pe-encrypted-section", "hashes": ["7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "feed-domain-rat", "hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "mitre_attack_tags": []}, {"bi": "feed-domain-antivirus-service", "hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "mitre_attack_tags": []}, {"bi": "network-fast-flux-domain", "hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "mitre_attack_tags": []}, {"bi": "network-snort-protocol", "hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "mitre_attack_tags": []}, {"bi": "pe-dos-header-pages", "hashes": ["0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "pe-dos-header-relocations", "hashes": ["0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "network-only-safe-domains-contacted", "hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c"], "mitre_attack_tags": []}, {"bi": "malicious-domain-contacted", "hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754"], "mitre_attack_tags": ["TA0011"]}, {"bi": "pe-dos-header-paragraphs", "hashes": ["0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb"], "mitre_attack_tags": ["TA0005", "T1027"]}, {"bi": "dns-query-nxdomain", "hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754"], "mitre_attack_tags": []}, {"bi": "dns-dynamic-domain", "hashes": ["5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "mitre_attack_tags": ["TA0011", "TA0005"]}, {"bi": "network-fast-flux-nameserver", "hashes": ["4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754"], "mitre_attack_tags": []}, {"bi": "netbios-query", "hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754"], "mitre_attack_tags": []}, {"bi": "network-dns-category-dynamic", "hashes": ["2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8"], "mitre_attack_tags": []}, {"bi": "network-snort-indicator-compromise", "hashes": ["5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d"], "mitre_attack_tags": []}, {"bi": "network-opendns-malicious", "hashes": ["2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8"], "mitre_attack_tags": []}, {"bi": "network-dns-category-parked-domain", "hashes": ["b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636"], "mitre_attack_tags": []}, {"bi": "network-dns-category-adware", "hashes": ["2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9"], "mitre_attack_tags": []}, {"bi": "modified-file-in-user-dir", "hashes": ["561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091"], "mitre_attack_tags": []}, {"bi": "windows-crash-tool-execution-detected", "hashes": ["561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091"], "mitre_attack_tags": []}, {"bi": "crash-dump-file-created", "hashes": ["561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091"], "mitre_attack_tags": []}, {"bi": "fault-report-file-created", "hashes": ["561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091"], "mitre_attack_tags": []}, {"bi": "pe-certificate", "hashes": ["381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb"], "mitre_attack_tags": []}, {"bi": "pe-invalid-certificate-signature", "hashes": ["381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb"], "mitre_attack_tags": ["TA0005", "T1027"]}], "category": "Trojan", "coverage": {"AMP": true, "CWS": true, "Cloudlock": false, "Email Security": true, "Network Security": false, "Threat Grid": true, "Umbrella": true, "WSA": true}, "description": "Gh0stRAT is a well-known family of remote access trojans designed to provide an attacker with complete control over an infected system. Capabilities include monitoring keystrokes, collecting video footage from the webcam, and uploading/executing follow-on malware. The source code for Gh0stRAT has been publicly available on the Internet for years, significantly lowering the barrier for actors to modify and reuse the code in new attacks.", "hashes": ["00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93", "030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97", "06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3", "08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc", "0cb04012be5dddf51a128624d922ba46b7e3d038019623001c11ff9acb29e3d0", "0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f", "123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6", "1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56", "1e62128720f4ddd0c4737d7f20eaf3de82b43cb48f4026795af42312fc0f87d1", "2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9", "26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf", "2884f902cf9d460c3118311154a0fff87f75c833498612e06819a65c99b60001", "2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a", "2cd6900ac700822529172470b5c18c2a1eb26cc0d2e3149545af5b7ef0c3b6fb", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6", "381051c214b163320eb378c4f9b4e429910947fcf5927fbf2dd68c24f53313eb", "3afdc8aeb443e767cf20c46ceda6e6d1151961b578a59627b9255636c981a6f3", "3b06c832590a678fa611161cfefb3d3f1899f4b309d7aa4f0dea911a31b02f52", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "4d8226d61c05af92b05176703ece3a4ac0275beafed2fb3e41f7cb0c2bae0e21", "4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "52bf34e23eb5f12d8e544cac86698208267b4e156a441b23aa984345d67650a4", "55c257e0794bd9df5ec169dbf2b3af70b7a5416449329a9d87ebc6c493d8bca5", "561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091", "57589a4a1d1da8bd081ba8809d86e2eed283174bc4f6fb8c773a24bf30295062", "581f632f25cae81a10b0b10982ac26e581061cce572f9b5f4d7ed30b852438aa", "5953a0e52b5a9a9b48b5670aed93355670997612478573c071acc704f7822fff", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6", "632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84", "63ebb62ec9218a4da818436a3ee5235f6d505ed3d0fb18b7001d7b9006ac90ef", "67dc1dab3404e2d6f8ddf061ced85632c30e621b815b1cd5c1b134e9a672296d", "75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "7cde25fc02aeb204bc464cae56aa9d2458892b14c6cec35f7d12116607366e1d", "7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c", "7f4bf97ab35f77fd4303198bfac8b27c80e27be5ee348bafc568d74b22e1223f", "8408e2a9a6e9d90fbd836241f8da4badd60950bb2a06d9f78bbdf9886d780253", "8b55b875dfc48921aa4b71d2a4484b0e4b92cc1f48a5d27a84986bd4026c65c1", "8cf7e320ef897404837aba1f2fb3de09fe55262a9889e1ff9819f1c330a9b030", "8f5bc0c5fa1ecc87a5536ddf656482f3eefaac0072aa43bfe0b02d63ab30a9f9", "9754ee813443267c7a0ec5bec17f3cb946f51a2daa4eeaab698ad3c26ae5ce9e", "98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "a40bf42c6a8dfb06ea7c9ce03e0d4049ff575f9e8efcc55bb7daa2090bf3d464", "a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f", "aae5158ff46ca569ff0a27731d9fdb4c5c858cad5d036658fffcc4928702bb94", "ac09df2d3348b8cc4089dec8fa335625a33d605171c6da1db47a4cf7484cd96b", "ac0f7cace65d62065e256cc3d2e9ab29bab92624054ef6619c58f43965510904", "b3596dd296f37843be65bfda673ceaa7866186fdd524e8caca8bdc2a0ad11dff", "b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9", "b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636", "b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9", "b9ee48f94a2af27169fb4a78badc3049efe8927a96468ba1c553c66357405f49", "bc4dd622b4772aa4e20df3f33846b0a040b2c9fa1aad63fb27d52b154c900b71", "be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62", "c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e", "c610210aae4dcad76194deddea0dad67aaabf53137a28725f17fa226893acc6f", "c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41", "caaa3080d4f10c0e2f273a6467338cce1517b5fde1040b8185f7cc20de69b8b0", "cbf227b2585d001afbc5aa9ca7bf1fd6ed3ed299f29e60c9b5072bd257f29dae", "cc74577ba0a577fa59772aecf4789e9d0600205efcd2cf7c9fb50041fa4d70d0", "d067b346270f14aad83131119f22e726e091f65e9ba5f223689979cbeb1ed0ca", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b", "d31f1f9ed4632f11717004dab988193bedd349f480d6c69b596a9fa243bed730", "d4a7634a8eb730afce4760cdd371302dcfba73d7c5789f0983003dd3a668f4ef", "df11eeeccb349a2fe49401c86dfc9a9c2b8a4200d29f15381bd45f28c65a41da", "e3f816daedbdde1aa8a84d403b73a9a9877dc6bc764b58192249fcaa66cfd39d", "e4e09d00347185df1976a9811cda8641ded4e6fb609e0d7914b3970cb299830f", "e5e156036804038e8c3c6e6e6a1a6af9a54ee62d80b5b016a44d0c2d1314fd9a", "e7d99fc269d2678a27b1e9ae01e421e7e5d6e04b029f4243b51e1d792f42587d", "e9caad1794980c9789bfc15b25854fa71a5465c438857fad13f764587e027d54", "ea6a75c88233bfdfd1e9a8ea081bd218a3f28eab43cf44af04f6d086e16ca376", "ebcaa398e4f1894ad35f9cc00e918ef3b541de63c493b0f11ce7f60ab6ec902f", "eed0eeab155e460c8990f59d6de964d84d29947c611f2de4a41b861dce4463e7", "efdcbf9f5d12f8c69dbdeac1fa0d30e25565e0dd21f63cf3a94f33bcdba9427e", "f4b8affb0eb0c92fe8edd66c3259031f65587bd792201357b57d8c33f12b8a57", "f9bc79a8f0672f6362ab054b0b1c4837c9d214fa7e53f569db30391ee030fc60", "fb12edc55c834719b8f86f24c5611b1526829dc621eb91344da4660abe5a3073", "fb28a53041ec7fa3bb86e8c7096d4c8e4e312dc5b634448d80150468d414411d", "fd24e3e5da5e447ae335b588a98529d6f39c663fae6f89bf56f87a3ec7c3dcda", "fd33e1e8a2b017d0d178b3cdd539790bed68e38b402e5dfcbbb38b8d62161671", "fed7c023fb181722abeb79eff97b8986f9e78fb950836cf57004c059dd6ecd8f", "ff291a62ff71f7854276b980092b5ac6406d388a29299ceeeaa4f1d3361ea53e", "ffa1a383988a01230a747747d31cad00efa7ed386f5b7826153a0a352b142ad5"], "iocs": {"domain": [{"hashes": ["26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b"], "host": "xiaoxiannv[.]gnway[.]net"}, {"hashes": ["5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d"], "host": "youlanxiangyin[.]vicp[.]cc"}, {"hashes": ["489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0"], "host": "j8666[.]f3322[.]org"}, {"hashes": ["2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9"], "host": "kingsir[.]6600[.]org"}, {"hashes": ["030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97"], "host": "yangman520[.]f3322[.]net"}, {"hashes": ["279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf"], "host": "linlinwoaini[.]f3322[.]org"}, {"hashes": ["0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f"], "host": "jiuyin[.]f3322[.]org"}, {"hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e"], "host": "aa7899[.]f3322[.]org"}, {"hashes": ["36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6"], "host": "yzc110110[.]meibu[.]net"}, {"hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a"], "host": "www[.]xyllz[.]com"}, {"hashes": ["98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b"], "host": "155604[.]f3322[.]org"}, {"hashes": ["b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636"], "host": "zuoyi5201314[.]5166[.]info"}, {"hashes": ["b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8"], "host": "wuer1985[.]9966[.]org"}, {"hashes": ["b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9"], "host": "xiaozijun[.]f3322[.]org"}, {"hashes": ["47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "host": "songkeliang[.]eicp[.]net"}, {"hashes": ["5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6"], "host": "s[.]19le[.]net"}, {"hashes": ["75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2"], "host": "vves[.]3322[.]org"}, {"hashes": ["7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c"], "host": "q1299771210[.]f3322[.]org"}, {"hashes": ["c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e"], "host": "qq0104[.]gicp[.]net"}], "file": [], "ip": [{"hashes": ["47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9", "5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d"], "ip": "174[.]128[.]255[.]252"}, {"hashes": ["26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b"], "ip": "60[.]27[.]190[.]174"}, {"hashes": ["b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636"], "ip": "61[.]142[.]176[.]23"}, {"hashes": ["36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6"], "ip": "61[.]147[.]125[.]184"}, {"hashes": ["d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b"], "ip": "188[.]5[.]4[.]96"}, {"hashes": ["26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789"], "ip": "189[.]163[.]17[.]5"}, {"hashes": ["26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789"], "ip": "197[.]4[.]4[.]12"}, {"hashes": ["632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84"], "ip": "115[.]230[.]124[.]27"}, {"hashes": ["08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc"], "ip": "182[.]91[.]107[.]168"}, {"hashes": ["a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f"], "ip": "104[.]143[.]150[.]115"}, {"hashes": ["be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62"], "ip": "1[.]93[.]49[.]73"}, {"hashes": ["030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97"], "ip": "116[.]196[.]76[.]139"}, {"hashes": ["16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6"], "ip": "142[.]4[.]97[.]105"}, {"hashes": ["0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f"], "ip": "219[.]235[.]8[.]90"}, {"hashes": ["279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf"], "ip": "124[.]114[.]102[.]125"}, {"hashes": ["00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93"], "ip": "192[.]210[.]63[.]230"}, {"hashes": ["06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3"], "ip": "198[.]74[.]98[.]230"}, {"hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e"], "ip": "171[.]92[.]207[.]194"}, {"hashes": ["98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b"], "ip": "175[.]151[.]100[.]217"}, {"hashes": ["b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9"], "ip": "218[.]58[.]145[.]236"}, {"hashes": ["4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c"], "ip": "23[.]239[.]194[.]29"}, {"hashes": ["75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2"], "ip": "23[.]248[.]219[.]47"}, {"hashes": ["7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c"], "ip": "121[.]31[.]251[.]145"}, {"hashes": ["d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b"], "ip": "49[.]2[.]123[.]56"}], "mutex": [{"hashes": ["123952ed5801f232c591f243727d40148e18e89ed35950b6384a19e385d8a05f", "166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf", "1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36", "1c81382213af485cf1a51ce1eb14eebe409a8f3e71d82f110db5d935c95b4b95", "1d06f3a4faaa046eeda43c029e6d253d0e39760a2a14fd9b688a321e69b2957a", "31fba61ff293813c40df451ba9c6d4a701f7c4d88fc484003f5d2a8ff092f6bb", "3b0f46df831615923dfcfd71552facf08e3174ba572d2ff44b086dea1ce65de5", "51e13a62e3d17ee93bcea938877162b7f8e95ebae83f6d4c169c8ffa859a2003", "7ae629724574aa1132b6dccd8e832c0fb25dfd539d723230a08ce8ba1505ce7f", "99ed3fadeb91e75971c5ba362c945f0d68111b5d8f12becca8d768dcaf9e3338", "b9b8ef6fe9942f00737882675fa555624f4e16a94ffff61415606a686538dcf9"], "name": "127.0.0.1:2012"}, {"hashes": ["5ab62aa530f79c7bd9df18d026db9a8524a179ac9d7a437325b45657d0b1a3c2", "b841c7689f50c97e885b837bfabb545cc4c7379926d3acd11cca2ee8ea5b6a3d"], "name": "youlanxiangyin.vicp.cc:2012"}, {"hashes": ["26268408ff133e275ef4b8ad2d6292aef0142dd1e8645d7b8db928af299fb789", "d31c06adbb1e2ecae962e02f823f982406607ee1243d44f7f50e3f00cb6b3e4b"], "name": "xiaoxiannv.gnway.net:2012"}, {"hashes": ["489fd1c80f3e16de9933957930a760c9870ae21a334f3463dcdb36876731f754", "4ff3ba43ede1bbd36c7d02ac3c2c3be4eb52078a857a513685e95075a501a7a0"], "name": "j8666.f3322.org:2012"}, {"hashes": ["08df55ecd2665f56b0bb5cb228c4a6006e8aaaf857a268f0fdeda7a3c83862bc"], "name": "182.91.107.168:2012"}, {"hashes": ["2372f1429ad90fee2c47369f614f90e10aa9459db631ea8eec69e6d0dfa987c9"], "name": "kingsir.6600.org:2012"}, {"hashes": ["a98fc8759ac8c7b4d1ded68a2b12223aec000a78f193697542a01a3d6bfe896f"], "name": "104.143.150.115:2012"}, {"hashes": ["be3fea05aea54b5d8622102ca76acbf964688000a57775c012248451b3838a62"], "name": "1.93.49.73:2012"}, {"hashes": ["030371e7bfc1cf52e6c10331ee71791efcc4f706f909050e56624615d31b3e97"], "name": "yangman520.f3322.net:54678"}, {"hashes": ["16d19db36a8ac39f373c613d9ac070f72c61ea3828ed05f05bd2ffa00140b7e6"], "name": "142.4.97.105:2012"}, {"hashes": ["279fed615365ea23e624ed6c5f6d68895e897e6727df403ab42783f819c8f4cf"], "name": "linlinwoaini.f3322.org:2012"}, {"hashes": ["0fc74e080f4a3f42a70abbf5031aa3231d285fe46b267c4097619745aee12b1f"], "name": "jiuyin.f3322.org:7034"}, {"hashes": ["1d158c515c230359ee0bb25ba762a877164cf334c27cf242c981fe273b3dda56"], "name": "192.168.1.101:2012"}, {"hashes": ["06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3"], "name": "198.74.98.230:2012"}, {"hashes": ["1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e"], "name": "aa7899.f3322.org:1995"}, {"hashes": ["00ecfcd52f7c5549ac0fc16a113fbd63693ec027e3794b9ce2c09dc655017b93"], "name": "192.210.63.230:2012"}, {"hashes": ["36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6"], "name": "yzc110110.meibu.net:2012"}, {"hashes": ["2acb08637f780f57851b8dd8e957169fdb6c6afbcaef5098c181c07d1c5e539a"], "name": "www.xyllz.com:2013"}, {"hashes": ["98ee9d8adfd935fee355364bd6aa7c634ed6f0be6f470741904ebd77d38ee23b"], "name": "155604.f3322.org:2012"}, {"hashes": ["561f8bdf99955721a575210a6e78eb08c5e1ef351efb3de38b61e1277fc37091"], "name": "Global\\8bcbac41-8d15-11ea-a007-00501e3ae7b5"}, {"hashes": ["b4ce83144db72b2fc0fb17c9ef3920ae53aea2400a10ef891a13f420eb89f636"], "name": "zuoyi5201314.5166.info:80"}, {"hashes": ["b61558ccddfa66d161d9b44da3447ffcbb2030cdcbd2c8d87093e718333549d8"], "name": "wuer1985.9966.org:2013"}, {"hashes": ["b3655a138f68688a0a4763c9603c26c29bf3ed2e395fcb440afb9967a18fadc9"], "name": "xiaozijun.f3322.org:2012"}, {"hashes": ["c708b120b3426d702cbf310218407fd1900af4955f299f080eea8aa3125c3f41"], "name": "192.168.1.108:2012"}, {"hashes": ["47c4d855d5d39c162511a7ed96fe2237f50de5ac54bcdf2e9a5bbaf9020456b9"], "name": "songkeliang.eicp.net:2012"}, {"hashes": ["4eab07b426f0e5f9544c50495ca9c9039745fe378f7880c75969693a1ed7d54c"], "name": "23.239.194.29:2012"}, {"hashes": ["5ae743290ee7dfc5457661ec2e32785ce31fac8c4ca0aecafa0a30d3e352b6b6"], "name": "s.19le.net:66"}, {"hashes": ["632c93fbc0e3d06f3dae98d3f33182642f35ac95eabb56f7cd40cc7c18763c84"], "name": "115.230.124.27:7129"}, {"hashes": ["75c21ad54c539f516852eea2fd7f48ac4f0e7bea50264aada80bed1607d52bb2"], "name": "vves.3322.org:2012"}, {"hashes": ["7ee54f42594d54cfaed6c9c65bc633ad5d73b4e536fd884f9100f882c55e0f1c"], "name": "q1299771210.f3322.org:2012"}, {"hashes": ["c24231a9b3f3632d7ee567ef4fa6b623ffb7ff7f0aee6978507f6f5fff744a3e"], "name": "qq0104.gicp.net:2012"}], "registry": []}, "reports_count": 51}, "exprev": [{"count": 7103, "description": "A PowerShell command with a very long command line argument that may indicate an obfuscated script has been detected. PowerShell is an extensible Windows scripting language present on all versions of Windows. Malware authors use PowerShell in an attempt to evade security software or other monitoring that is not tuned to detect PowerShell based threats.", "name": "Excessively long PowerShell command detected"}, {"count": 5846, "description": "DealPly is adware, which claims to improve your online shopping experience. It is often bundled into other legitimate installers and is difficult to uninstall. It creates pop-up advertisements and injects advertisements on webpages. Adware has also been known to download and install malware.", "name": "Dealply adware detected"}, {"count": 1928, "description": "An attempt to exploit CVE-2019-0708 has been detected. The vulnerability, dubbed BlueKeep, is a heap memory corruption which can be triggered by sending a specially crafted Remote Desktop Protocol (RDP) request. Since this vulnerability can be triggered without authentication and allows remote code execution, it can be used by worms to spread automatically without human interaction.", "name": "CVE-2019-0708 detected"}, {"count": 1077, "description": "Process hollowing is a technique used by some programs to avoid static analysis. In typical usage, a process is started and its obfuscated or encrypted contents are unpacked into memory. The parent then manually sets up the first stages of launching a child process, but before launching it, the memory is cleared and filled in with the memory from the parent instead.", "name": "Process hollowing detected"}, {"count": 109, "description": "A process was injected into, most likely by an existing Kovter infection. Kovter is a click fraud Trojan that can also act as an information stealer. Kovter is also file-less malware meaning the malicious DLL is stored inside Windows registry and injected directly into memory using PowerShell. It can detect and report the usage of monitoring software such as wireshark and sandboxes to its C2. It spreads through malicious advertising and spam campaigns.", "name": "Kovter injection detected"}, {"count": 45, "description": "Gamarue is a family of malware that can download files and steal information from an infected system. Worm variants of the Gamarue family may spread by infecting USB drives or portable hard disks that have been plugged into a compromised system.", "name": "Gamarue malware detected"}, {"count": 24, "description": "Install core is an installer which bundles legitimate applications with offers for additional third-party applications that may be unwanted. The unwanted applications are often adware that display advertising in the form of popups or by injecting into browsers and adding or altering advertisements on webpages. Adware is known to sometimes download and install malware.", "name": "Installcore adware detected"}, {"count": 16, "description": "Corebot is a Trojan with many capabilities found in other prominent families. It features a plugin system to enable it to load a variety of features from the C&C server at any time. Known plugins include RAT capabilities such as taking desktop screenshots, as well as being able to intercept and modify browser communications and steal data, especially data related to banking.", "name": "Corebot malware detected"}, {"count": 6, "description": "Fusion (or FusionPlayer) is an adware family that displays unwanted advertising in the form of popups or by injecting into browsers and altering advertisements on webpages. Adware is known to sometimes download and install malware.", "name": "Fusion adware detected"}, {"count": 6, "description": "IcedID is a banking Trojan. It uses both web browser injection and browser redirection to steal banking and/or other financial credentials and data. The features and sophistication of IcedID demonstrate the malware author's knowledge and technical skill for this kind of fraud, and suggest the authors have previous experience creating banking Trojans. IcedID has been observed being installed by Emotet or Ursnif. Systems infected with IcedID should also be scanned for additional malware infections.", "name": "IcedID malware detected"}, {"count": 6, "description": "An exploit payload intended to connect back to an attacker controlled host using tcp has been detected.", "name": "Reverse tcp payload detected"}, {"count": 5, "description": "Palikan is a potentially unwanted application (PUA), browser hijacker, a type of malware that most of the time does not explicitly or completely state its function or purpose. When is present on the system, it may change the default homepage, change the search engine, redirect traffic to malicious sites, install add-ons, extensions, or plug-ins, open unwanted windows or show advertising. Palikan commonly arrives as a file dropped by other malware or as a file downloaded unknowingly from a malicious site. It has also been closely associated with DealPly.", "name": "Palikan browser hijacker detected"}], "info": {"origin": "Cisco Talos Intelligence Group", "publication_date": "2020-05-08T12:53:12+00:00", "version": "2.1", "warning": "As a reminder, the information provided for the following threatsin this post is non-exhaustive and current as of the date ofpublication. Additionally, please keep in mind that IOC searchingis only one part of threat hunting. Spotting a single IOC does notnecessarily indicate maliciousness. Detection and coverage for thefollowing threats is subject to updates, pending additional threator vulnerability analysis. For the most current information, pleaserefer to your Firepower Management Center, Snort.org, or ClamAV.net."}, "signatures": ["Win.Dropper.Remcos-7724400-0", "Win.Dropper.Generickdz-7724446-0", "Win.Packed.Dridex-7725189-1", "Win.Malware.Chthonic-7727211-1", "Win.Ransomware.Cerber-7750648-0", "Win.Packed.Kuluoz-7725577-0", "Win.Trojan.Gh0stRAT-7737919-0", "Win.Packed.Nymaim-7725807-1"]}