| Name | c2a2be525de6c584_task.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\task.dat |
| Size | 42.0B |
| Processes | 2460 (XCT.exe) |
| Type | ASCII text, with no line terminators |
| MD5 | 2d3dd07923cf5b374014e990df47e343 |
| SHA1 | cd187b58bbf0dfbeec94f83737de0184326f3ba5 |
| SHA256 | c2a2be525de6c5844d7ad32be239952143fcfdcd83ec8cdde989716fcef2328a |
| CRC32 | 3320FB08 |
| ssdeep | 3:oNmWxpcL4E2J5xAIyAC:oNmQpcLJ23fm |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | dc45b218d6bab3d3_run.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\run.dat |
| Size | 8.0B |
| Processes | 2460 (XCT.exe) |
| Type | data |
| MD5 | ef42f8eba7e1f708a00fc81b0996f512 |
| SHA1 | 4e63a3bd6f4aefb166a3aa8c24261e79f065ae5a |
| SHA256 | dc45b218d6bab3d3b6cb19bf7ce4a46e133fdfff5633a4278bbf906ed8ca2d1e |
| CRC32 | D26E14D6 |
| ssdeep | 3:gXz8t:gXQt |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | bb9181b3935b8681_tmpD722.tmp |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\tmpD722.tmp |
| Size | 1.3KB |
| Processes | 2460 (XCT.exe) |
| Type | XML 1.0 document, ASCII text, with CRLF line terminators |
| MD5 | be81f72fa4dbc827132836ee2af92c96 |
| SHA1 | fe5ded04ab4932dea6cf414e9e4428f43da70d03 |
| SHA256 | bb9181b3935b8681a71b578f8166883e61380de6181df82d05f14829323fbf0f |
| CRC32 | 7AA438E3 |
| ssdeep | 24:2dH4+S/4oL600QlMhEMjn5pwjVLUYODOLG9RJh7h8gK0Rb5xtn:cbk4oL600QydbQxIYODOLedq3Sb5j |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | f8098a6290118f29_settings.bin |
|---|---|
| Filepath | C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\settings.bin |
| Size | 40.0B |
| Processes | 2460 (XCT.exe) |
| Type | data |
| MD5 | 4e5e92e2369688041cc82ef9650eded2 |
| SHA1 | 15e44f2f3194ee232b44e9684163b6f66472c862 |
| SHA256 | f8098a6290118f2944b9e7c842bd014377d45844379f863b00d54515a8a64b48 |
| CRC32 | C6B6460B |
| ssdeep | 3:9bzY6oRDT6P2bfVn1:RzWDT621 |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 83b9cae66800c768_storage.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\storage.dat |
| Size | 416.8KB |
| Processes | 2460 (XCT.exe) |
| Type | data |
| MD5 | 653dddcb6c89f6ec51f3ddc0053c5914 |
| SHA1 | 4cf7e7d42495ce01c261e4c5c4b8bf6cd76ccee5 |
| SHA256 | 83b9cae66800c768887fb270728f6806cbebdead9946fa730f01723847f17ff9 |
| CRC32 | D300AB58 |
| ssdeep | 6144:zKfHbamD8WN+JQYrjM7Ei2CsFJjyh9zvgPonV5HqZcPVT4Eb+Z6no3QSzjeMsdF/:zKf137EiDsTjevgArYcPVLoTQS+0iv |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 584a30dbf8f2a65f_tmpD5F8.tmp |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\tmpD5F8.tmp |
| Size | 1.3KB |
| Processes | 2460 (XCT.exe) |
| Type | XML 1.0 document, ASCII text, with CRLF line terminators |
| MD5 | 1bd7cf6416c0c14c665ec7b5367c551d |
| SHA1 | 72c65d4b0182543db5dca7afeccd02c64a23d69f |
| SHA256 | 584a30dbf8f2a65f86b7c89470be9dca86c2d8e1419bca040744dfb36e9667d9 |
| CRC32 | 09C63DFF |
| ssdeep | 24:2dH4+S/4oL600QlMhEMjn5pwjVLUYODOLG9RJh7h8gK0ZGxtn:cbk4oL600QydbQxIYODOLedq3YGj |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | aafc7b40c5fe680a_catalog.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Roaming\017BD04F-B3BF-45B6-8167-9E8F41FF87BF\catalog.dat |
| Size | 232.0B |
| Processes | 2460 (XCT.exe) |
| Type | data |
| MD5 | 9e7d0351e4df94a9b0badceb6a9db963 |
| SHA1 | 76c6a69b1c31cea2014d1fd1e222a3dd1e433005 |
| SHA256 | aafc7b40c5fe680a2bb549c3b90aabaac63163f74fffc0b00277c6bbff88b757 |
| CRC32 | 695E297D |
| ssdeep | 3:XrURGizD7cnRNGbgCFKRNX/pBK0jCV83ne+VdWPiKgmR7kkmefoeLBizbCuVkqYM:X4LDAnybgCFcps0OafmCYDlizZr/i/Oh |
| Yara | None matched |
| VirusTotal | Search for analysis |