| Name | a95b1af74623d6d5_api-ms-win-crt-conio-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-conio-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | a668c5ee307457729203ae00edebb6b3 |
| SHA1 | 2114d84cf3ec576785ebbe6b2184b0d634b86d71 |
| SHA256 | a95b1af74623d6d5d892760166b9bfac8926929571301921f1e62458e6d1a503 |
| CRC32 | F520332B |
| ssdeep | 384:tW1hWv4wm0GftpBjp+m3S1ZXlndaYhpt1:k+FVib+ZvN |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | fbd6fed7938541d2_copyright |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\libtiff\copyright |
| Size | 1.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text |
| MD5 | 34da3db46fab7501992f9615d7e158cf |
| SHA1 | a2f64f2a85f5fd34bda8eb713c3aad008adbb589 |
| SHA256 | fbd6fed7938541d2c809c0826225fc85e551fdbfa8732b10f0c87e0847acafd7 |
| CRC32 | 3C5294DB |
| ssdeep | 24:5/fpCHTHImq6fTYAP1ynM98HTS0OkhpybVAJTJ8oVwF3Ow:53portjP1yO8HTd/yRABJ8oSF3Ow |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 3130e693f4048df9_nn-1.p7c |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\certs\nn-1.p7c |
| Size | 1.5MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | data |
| MD5 | 280ac7f300ab29129281e81cbb361a2e |
| SHA1 | 9d26185b7c3cbe225bb742323d46b454c0c95b98 |
| SHA256 | 3130e693f4048df92e9fc1b2b622c3e15dabca12f4416d8a396dad65e6816b19 |
| CRC32 | 3D1E3847 |
| ssdeep | 49152:KMCThJxaeEPhT/g78T84mjEUaHyFmqjJTGqG+L2oGOpwf9rg52xZ:lCThJxaeEPhT/g78T84AEUaHxQ2D |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 19fb2235e927bc0e_qt5widgets.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5widgets.dll |
| Size | 4.4MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 4fc5231e7001ff827e7fa0d05d1b9810 |
| SHA1 | 42ca1d3921da0b90eb6b17cbb8ab12b18051716f |
| SHA256 | 19fb2235e927bc0e495a332f398a34261c979ced5133ff3646485fe61c628573 |
| CRC32 | 0EA2BBC5 |
| ssdeep | 49152:J0B656Cn6BkM3ayQH3LeXu5KfUMaVm6T1mO2xsEgy:J/2k/WUVmxxsEgy |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 5291cd8b52d53138_license.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\lurawavejp2\license.pdf |
| Size | 101.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.5 |
| MD5 | 5c649869f30e563df63711620f9c81c7 |
| SHA1 | 871c0067b3d6f457fc877515b0ed20b633d417ae |
| SHA256 | 5291cd8b52d5313879a4dba0815e661364914db624d1fae96a8093da15395f2c |
| CRC32 | D620ADF0 |
| ssdeep | 3072:BLrB9999orXDJ7BjjYOaXR7IizAYxmZSN2Jb6kKJd:xkpOpIizn0DJb6j |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | efb95a0dcf2aadae_fileattachment-graph-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\fileattachment-graph-n.pdf |
| Size | 1.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 5f9581df6bdc4d993a0e7119b16e801b |
| SHA1 | 14b34261c515ef3743def3c877a69ee2d7183662 |
| SHA256 | efb95a0dcf2aadaeefd474109a25e99d7e1e61dca034bff91e0ac985e8a6f23f |
| CRC32 | 68638682 |
| ssdeep | 24:uD6TYaK1HjW1uEmscbjaCmscS/MIFjiMIgvlj8A1OYw4cEr/fRSVlST8DEOyH6lq:A6+bwCkMt7EYhT7RcsmyDllnkMcH6 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | b5c725bbb475b5c0_api-ms-win-core-timezone-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-timezone-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | c9a55de62e53d747c5a7fddedef874f9 |
| SHA1 | c5c5a7a873a4d686bfe8e3da6dc70f724ce41bad |
| SHA256 | b5c725bbb475b5c06cc6cb2a2c3c70008f229659f88fba25ccd5d5c698d06a4b |
| CRC32 | AAFBA061 |
| ssdeep | 384:rWW1hWv4wm0GftpBjgpm3SSP9lndaYhpwe/:ReFVi02vZ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 0030bc3e81a05b80_slim pdf reader 2.0.lnk |
|---|---|
| Filepath | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slim PDF Reader\Slim PDF Reader 2.0.lnk |
| Size | 1.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Sun Dec 19 20:59:49 2021, mtime=Sun Dec 19 20:59:49 2021, atime=Sun Mar 22 16:10:32 2020, length=13001704, window=hide |
| MD5 | 74ba63bc890ace0bcd75ca01ad8b2045 |
| SHA1 | c9a41a8dc82227200442856ea7b7aa829d72b350 |
| SHA256 | 0030bc3e81a05b801858a2959049e70c9e978fd2cd48e8f31247771ea97b68ec |
| CRC32 | 2DE5FBA1 |
| ssdeep | 24:8mbiudOEHbHCpvQfzAoXdodldodLUPPyZ:8m5dOkbHr8oXdodldodgnyZ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ff9b51aff7fbec8d_api-ms-win-core-processthreads-l1-1-1.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-processthreads-l1-1-1.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 95c5b49af7f2c7d3cd0bc14b1e9efacb |
| SHA1 | c400205c81140e60dffa8811c1906ce87c58971e |
| SHA256 | ff9b51aff7fbec8d7fe5cc478b12492a59b38b068dc2b518324173bb3179a0e1 |
| CRC32 | 0DA07FF3 |
| ssdeep | 384:NS8DfIelW1hWu4wm0GftpBjBFm3SzlJrI:NSLecfFViRTs |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 535e9d20f00a2f1a_api-ms-win-core-heap-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-heap-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | ff8026dab5d3dabca8f72b6fa7d258fa |
| SHA1 | 075c8719e226a34d7b883fd62b2d7f8823d70f1a |
| SHA256 | 535e9d20f00a2f1a62f843a4a26cfb763138d5dfe358b0126d33996fba9ca4d1 |
| CRC32 | 74B6AF22 |
| ssdeep | 384:nEleW1hW59XRm0GftpBjywVpm3SJflndaYhp6a:uADVig69F3 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6a7e8ec64616612c_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\utfconversion\license.txt |
| Size | 868.0B |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | a53aeb20c9328164cad5d6bc6cf3a70b |
| SHA1 | ba06fde64da9029e08cc796278975da08c8077e9 |
| SHA256 | 6a7e8ec64616612c4798e1827cd6df9faf84dc12b0e20bfd2f3b9b2be97d8a1f |
| CRC32 | 7F6192DD |
| ssdeep | 24:dZDy5ZHtwEXW+5W9ZFnddKheExGq2qqAV5gFxEKLgV9:/DCTnXWVnRKh4qjqmgz7LO9 |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | a43071f4b285f936_startpage.svg |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Investintech.com Inc\SPR\2.0\WebContent.tmp\l\startPage\startpage.svg |
| Size | 42.1KB |
| Processes | 2544 (SlimPDFReader.exe) |
| Type | SVG Scalable Vector Graphics image |
| MD5 | 4e0cf674ce41f4226ca8ec58de223298 |
| SHA1 | 0995c92e5e934fff9eddbb9f1a04d9c1947b809d |
| SHA256 | a43071f4b285f936665151bd2fffdd9f2d205a56b40d6e14c5f6f64e97759e65 |
| CRC32 | 59DB3F70 |
| ssdeep | 384:jSeYvSUzEke4zq0ScbAYtJaks5HoZqH+dt4KYwXMYLqTz6N:lfkemq0l8lks5IZitKYwXZqSN |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 6036401dcac9564b_slim pdf reader 2.0.lnk |
|---|---|
| Filepath | C:\Users\Public\Desktop\Slim PDF Reader 2.0.lnk |
| Size | 1.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Sun Dec 19 20:59:49 2021, mtime=Sun Dec 19 20:59:49 2021, atime=Sun Mar 22 16:10:32 2020, length=13001704, window=hide |
| MD5 | 90cf84a084d63bb0df9d2c73c7caacff |
| SHA1 | 7473cb6ec83d0ddcc9a2621ddd58cd463a9f2935 |
| SHA256 | 6036401dcac9564b64a7e2f837e9c9e33aa801956b0493e4bb50557247ca45ef |
| CRC32 | 5A653FD7 |
| ssdeep | 24:8mbiudOEHbHCpvQfzAoFedodldodLUPPyZ:8m5dOkbHr8oFedodldodgnyZ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | dc25a882ac454a00_api-ms-win-crt-private-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-private-l1-1-0.dll |
| Size | 71.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 3d139f57ed79d2c788e422ca26950446 |
| SHA1 | 788e4fb5d1f46b0f1802761d0ae3addb8611c238 |
| SHA256 | dc25a882ac454a0071e4815b0e939dc161ba73b5c207b84afd96203c343b99c7 |
| CRC32 | 231DA2AB |
| ssdeep | 1536:g0DjXDe5c4bFE2Jy2cvxXWpD9d3334BkZnVPL9VG:XjDe5c4bFE2Jy2cvxXWpD9d3334BkZnI |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | eff7d2a10b65e28f_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\alex brush\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 0b71d332ea2aeeef0d48231295e27071 |
| SHA1 | 8a32240b15bf2051fa1f2b2e883fe789fea1d96a |
| SHA256 | eff7d2a10b65e28f1dd73843cedda968425130597a1af63c89eadfd51b2c01a3 |
| CRC32 | 1EE2494F |
| ssdeep | 96:pXBgW+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:pxgzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 966a38ed7034f8d3_api-ms-win-core-rtlsupport-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-rtlsupport-l1-1-0.dll |
| Size | 17.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 65fc0b6c2ceff31336983e33b84a9313 |
| SHA1 | 980de034cc3a36021fd8bafff3846b0731b7068e |
| SHA256 | 966a38ed7034f8d355e1e8772dfc92f23fb3c8a669780ed4ac3b075625d09744 |
| CRC32 | C4120EB8 |
| ssdeep | 384:A6uGZW1hWZ4wm0GftpBjfNDm3S3xlgCoppl8uOf7:wGIQFVi3DsHnlVOf7 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f94210b39cdc812b_api-ms-win-core-sysinfo-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-sysinfo-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 887995a73bc7dde7b764afabce57efe7 |
| SHA1 | 363fd4e7ad4a57224e8410154697df5e8629f526 |
| SHA256 | f94210b39cdc812beb7342a47e68673ea2116d0ad9266fcf8d7cedaa9561fc38 |
| CRC32 | FD789D74 |
| ssdeep | 192:4Lv12KIMFAW1hWBATVCEmCjdks/nGfe4pBjSYeXwfFzW5RKTt3E2sVWQ4GWURDPV:4LN2NW1hWavm0GftpBjtfFam3SvrlJrV |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 3fdf00ff17fe57e1_stamp-expired-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-expired-n.pdf |
| Size | 5.7KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 5b30e612dad3ccf120f4ce131b51e2bd |
| SHA1 | d6b9ccd349bd570b02708dddaf855c0f6e03bf96 |
| SHA256 | 3fdf00ff17fe57e10af9e5362c7ff6f6e6bc123af3df24a64712d6bcce0ee041 |
| CRC32 | 32F02B38 |
| ssdeep | 96:Aa/nnbgeaSScKh5XZ7pwPkkG5hWpSS39VekK+Y/sojjSoKPss+p5SS+6jRcsmy4x:3PnceaSScKh5XZ7c9ZK+Y/sCjSoKPssb |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | d73b378bd663eea5_qwbmp.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\imageformats\qwbmp.dll |
| Size | 24.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | ee869ed550abc4e64f8467064d8b2ec8 |
| SHA1 | ccf5d9368aaf613e0554b15ac976fb49b0a4e6d6 |
| SHA256 | d73b378bd663eea5078d64b2067eb9c0b1b9e376bbf9cd73d81683f1af5c8dbd |
| CRC32 | 93AC6FA3 |
| ssdeep | 384:le63j+kGsqbzXXq4FHScNX1+KSqvvRZbSmQeJNv4nYPL3/XsW:M63KkXqPXq4pScJ3vKmpJV4E/XsW |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 983f09b9bb67c08a_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\italianno\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 2c1824023d87f74d61c936f3db868b6b |
| SHA1 | e62785103d5741d0ef23bc2bee0bced872df1fe1 |
| SHA256 | 983f09b9bb67c08ad517fd1a60d79e9be55544a071fd604525ef576d91c67fdd |
| CRC32 | 25EF6AE0 |
| ssdeep | 96:pXBJW+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:pxXzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 70f316a5492848bb_down[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTDTA402\down[1] |
| Size | 3.3KB |
| Type | PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced |
| MD5 | 555e83ce7f5d280d7454af334571fb25 |
| SHA1 | 47f78f68d72e3d9041acc9107a6b0d665f408385 |
| SHA256 | 70f316a5492848bb8242d49539468830b353ddaa850964db4e60a6d2d7db4880 |
| CRC32 | 9EA3279D |
| ssdeep | 96:/SDZ/I09Da01l+gmkyTt6Hk8nTjTnJw1Ne:/SDS0tKg9E05TPoNe |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 99877f4c8c4d0b01_main.log |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Investintech.com Inc\SPR\2.0\Main.log |
| Size | 949.0B |
| Processes | 2544 (SlimPDFReader.exe) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 809a6bf3cfee7cc37fca814de1fe6d60 |
| SHA1 | e107b20e26cdc2a1920ec3ea286b383b65ae06ea |
| SHA256 | 99877f4c8c4d0b011bec11a00482ea5f307107d43e091af2ef924683ed876614 |
| CRC32 | A41D1248 |
| ssdeep | 24:Guol9RW1ETrTnFvrmyuBQyZmy/tyudyGyc:GT4CvnFjQ3x7p |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | b5115f194939a325_unins000.dat |
|---|---|
| Filepath | C:\Program Files (x86)\Investintech.com Inc\Slim PDF Reader 2.0\unins000.dat |
| Size | 44.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | data |
| MD5 | 99ad056435fe136a8c99e39f985f940f |
| SHA1 | 10d9cded780121d1bb52c9827ce49b6d85c78a01 |
| SHA256 | b5115f194939a32599e78bfc74fde8d972d4f8ec5054723d4e69afa7a2b0f46d |
| CRC32 | A4C1893D |
| ssdeep | 384:0/w3bPIOgGXfXfpiU7JbG7R+2+Jm2UwRtxHH:0o3bxPHP7JbG7R+2+Jm25th |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 24b07028c1e38b9c_api-ms-win-core-console-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-console-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | aabbb38c4110cc0bf7203a567734a7e7 |
| SHA1 | 5df8d0cdd3e1977ffacca08faf8b1c92c13c6d48 |
| SHA256 | 24b07028c1e38b9ca2f197750654a0dfb7d33c2e52c9dd67100609499e8028db |
| CRC32 | ECE536B6 |
| ssdeep | 192:aBgW1hWi7u7jCjdks/nGfe4pBjSYpP4W5RKTt3E2sVWQ4GWc6CT7yqnaj/6g6dyh:dW1hWLam0GftpBjhFm3S4xltZEU |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 62ac8e7d38d85d91_qt5gui.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5gui.dll |
| Size | 5.0MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 86aedfd8f2f747e7d17bafa0098393cc |
| SHA1 | e9a07d9b5de87981581119912363d56793851b81 |
| SHA256 | 62ac8e7d38d85d91b911e98ae89c0a29772bda0ac4fa4790dff50281133e601d |
| CRC32 | 61943D1F |
| ssdeep | 49152:uCNvVyDMzjR4WkAjFTqK3zEoSnStGY5am7gmkmKBugperWzNX4aXP:RuDWNp+KAo6StGyim0hF |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 44d09f6e9c7c45d8_stamp-sbfinal-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbfinal-n.pdf |
| Size | 2.7KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 694966d03d3f36221565c7adb650d108 |
| SHA1 | 74cf9968c4f9068faf1c0ce180fbf998b33f4800 |
| SHA256 | 44d09f6e9c7c45d81f5810205afebce917f2d3eb174cfdcceb8a81273f379ba5 |
| CRC32 | B5AFFCA3 |
| ssdeep | 48:AaP/fnbFFseMrSY9lX8pKHKTjWwAyQcaPsY/EjRcsmyD3lnkPcH9:AaPnnbgeaSScKOjWO8sjRcsmyblkPcH9 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | bb7a44da225b8266_stamp-sbrejected-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbrejected-n.pdf |
| Size | 7.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | b0742fbde0cb062b9b6f02a1dc9a87c9 |
| SHA1 | bb61fa36b750a375e32664702f8b23a7bf843223 |
| SHA256 | bb7a44da225b8266305929f2487c1c9404d32cfa3c5a7640f99ae868329e9272 |
| CRC32 | 7EA0502D |
| ssdeep | 192:3AnceaSScK7b0PDfF+PuRFjS1fZQDTWcpgdI9ZCR/jyX7ijRcsm/kH/cY:36ceaSScKo+yF4QL9IeijRcsm/kH/cY |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | bfa686989dfa6830_stamp-sbinformationonly-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbinformationonly-n.pdf |
| Size | 11.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | d09ccceb6c33156dbf6b0298568cd1f5 |
| SHA1 | 6d16ba5141907572a89f4863991799a549fab7eb |
| SHA256 | bfa686989dfa6830a7c0afbafe29fc7db66df1540ac673fa351d08cd0c38656b |
| CRC32 | CB6F9946 |
| ssdeep | 192:3ZnGeaSScKKQ7A40ibwZq+Fy0ZpdaOuZQtLW77D8ffqkYelYcsoInjRcsmDk1cy:3RGeaSScKKQ7APibwZq+wQ/aOuZQtLWh |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 5247d74f159ed6d3_qt5printsupport.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5printsupport.dll |
| Size | 276.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | f73e9c44795ff6c8d177c307b84d3084 |
| SHA1 | e072845cfeafd2f4de39457dfb5e6304b29ae0a1 |
| SHA256 | 5247d74f159ed6d3c417813c6945e88435ddf99e201e097b9140b99982a38a1b |
| CRC32 | 15406494 |
| ssdeep | 6144:XwnPIFe2YbITCwenFv2PGY9hcr3I9uHl56xEjblXyuibmDICzQhNe5m2BnyaIDP4:MPHImF1 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 64556f874a4f110e_stamp-notapproved-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-notapproved-n.pdf |
| Size | 11.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | da83b896a85f90c21c0e99c458460b78 |
| SHA1 | f78fb16e479f8da96b2c846a3718290f58147fb8 |
| SHA256 | 64556f874a4f110e54f5d846d710bdb2aa89a21f63d5382b5cb6ebd9268371b5 |
| CRC32 | 62DF4637 |
| ssdeep | 192:3PnceaSScKqkv230UAe8C1bOXllHUFPKgyBbVs0iu1fFBhf2Uj3hHDjRcsmek4cM:3vceaSScKp/eAXbUdKZBbVs0iutBhf2m |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 4d0f0ea6e8478132_api-ms-win-crt-time-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-time-l1-1-0.dll |
| Size | 20.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 9b79fda359a269c63dcac69b2c81caa4 |
| SHA1 | a38c81b7a2ec158dfcfeb72cb7c04b3eb3ccc0fb |
| SHA256 | 4d0f0ea6e8478132892f9e674e27e2bc346622fc8989c704e5b2299a18c1d138 |
| CRC32 | D175B347 |
| ssdeep | 384:iUW1hWQ4wm0GftpBjddQxm3SLDlD16h1S:eRFViexn1 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | a014f8529dcbdb4b_text-help-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-help-n.pdf |
| Size | 3.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | f3092456e5505966a1631373a40f1637 |
| SHA1 | 6efdb960383dd764e04977b7d12913b53d064c2f |
| SHA256 | a014f8529dcbdb4bacb6e3393e5962922405c21a20e777164f9dffdf16f62902 |
| CRC32 | C5B459E9 |
| ssdeep | 96:A6MRVkHfiB0fYFJ9RVEHfiB0fYFJy7F7Rcsmyplk6c2:NMcHfiB0wFf8HfiB0wFs7F7Rcsm8k6c2 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 498b7f09885f641f_index.html |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\webcontent\d\startpage\index.html |
| Size | 438.0B |
| Processes | 3048 (installerpdf.tmp) |
| Type | HTML document, ASCII text, with CRLF line terminators |
| MD5 | da7bdc86c03a6b82030ca3a5383c3660 |
| SHA1 | ac6d46353bab5824a20de245bc72dbd6c06f9183 |
| SHA256 | 498b7f09885f641fd1fcf1fef3f3580c877f42d5c87afab7dfe23a323b6a45b4 |
| CRC32 | 9EB6E2C6 |
| ssdeep | 6:hoMCT0JPjLIfAPLWVHuXarmDmDM4I8HAyq9GbMo9IjLIfAPLWVHFEH8mDhQGb:hoFToPYLrrmDm4eWGYWJLFEH8m2Gb |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 4f187f1b4b147633_api-ms-win-core-processthreads-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-processthreads-l1-1-0.dll |
| Size | 19.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 1dda9cb13449ce2c6bb670598fc09dc8 |
| SHA1 | 0a91fe11b9a8321ca369f665a623270e5ac23176 |
| SHA256 | 4f187f1b4b14763360c325df6b04d3ec3cc6d2cecc9b796bc52a6c7196b0b2cc |
| CRC32 | 796BD0B0 |
| ssdeep | 384:Sfk1JzNcKSIdW1hWuQim0GftpBjuksUm3SlSlDCE4E:pcKS1/fVi4Uy14E |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 235fa35cefd933f3_text-newparagraph-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-newparagraph-n.pdf |
| Size | 1013.0B |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 6f3809733a9b7e49d9620f071073561f |
| SHA1 | 4da6395f2b0b776610332bc37af890dcf8624579 |
| SHA256 | 235fa35cefd933f3ccb858f738ebc253f90000c15468dc43d39d66fd1c8214fc |
| CRC32 | 680A136A |
| ssdeep | 24:uD6TYaKWOSjnr/OYwar/fRSVlST8DEOyH6lINRln+XV8UFWnxkoDMbc7AO:A6rAYB7RcsmyDRlnkDUsc7AO |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1ca423db86e2d6eb_zapfding.ttf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\fonts\zapfding.ttf |
| Size | 72.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | TrueType Font data, 13 tables, 1st "OS/2", 14 names, Macintosh, Converted by ALLTYPEZapfDingbatsRegularALLTYPE:ZapfDingbats Regular:MIKEZapfDingbatsConverted f |
| MD5 | 1cf925a931c2bad38ba3e1f10ac1846c |
| SHA1 | 2fed158736513594eeeb095f16a345d5edcb086d |
| SHA256 | 1ca423db86e2d6eb85ca17cae580ce6327c55351b6cb38f2115bf877c4794448 |
| CRC32 | 2DCA7129 |
| ssdeep | 1536:xNW7jb6+41pU2bksx2H9QlgloSNnvKF8cQ5r++ohax:xNEbEiIx2HxGSTca/x |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 27305d4ae13589c5_stamp-forpublicrelease-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-forpublicrelease-n.pdf |
| Size | 14.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | c1376704adcc7fbdf787c4bb0097532f |
| SHA1 | 7366844fa07d5042d0afb660a4c112441ffe6339 |
| SHA256 | 27305d4ae13589c5fcf2c3889d19ba1021da0e38203a1ee14e538e1d990df2cf |
| CRC32 | 1BAEF30F |
| ssdeep | 384:3+WeaSScKKpm5AA5ANkrut8C33Tjg4TtrCO4HpwMpNBCuxeaSkJjRcsm0kNcc:OFSc3m5AA5A6ruZjdJ4HpwOBQf |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | d079f3eb0e161204_stamp-shinitialhere-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-shinitialhere-n.pdf |
| Size | 4.6KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 84dac85b3422962fecdaa90e858836a3 |
| SHA1 | 9246f216cc98c7ade87fa9552e2a983529761fef |
| SHA256 | d079f3eb0e161204199e6d53eb1597a9e78563ff96b9b09dfe90853ffd4d4053 |
| CRC32 | FBD264F5 |
| ssdeep | 96:AaDw2SqewQcKRMwRPWtCVTIiI1GE/yjQ9jRcsmy4klkjcG:3D7yjcKpRPeCVTIYjQ9jRcsmvakjcG |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 5dab6dcc68276f45_text-key-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-key-n.pdf |
| Size | 2.6KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 16279eb70daf7982adbea80ab8478ea3 |
| SHA1 | 39c30414dc07fbf2bfa6510221755dc090bf2d6c |
| SHA256 | 5dab6dcc68276f45c19026e6e52ab747868c79e213b0a9d1f0c411e68de65577 |
| CRC32 | B61BF619 |
| ssdeep | 48:A6l4DalVW47xjfBPEuvoPdOru5h6ml4DalVW4725jfBPEuvoPdOru5h6myYs7Rc1:A6Oaq47Jv4dOrumaq47Kv4dOruFs7Rc1 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 650737ec7589c356_ftl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\freetype\ftl.txt |
| Size | 6.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | UTF-8 Unicode text, with CRLF line terminators |
| MD5 | 02891d3fb5adadff2546b4279649112b |
| SHA1 | 1b299099e16ad96ebf53e67391685d9d0a51b368 |
| SHA256 | 650737ec7589c35600de73b0db88dafb314f7e32e7e3cf38d0c87ceb1a7ed31b |
| CRC32 | 1F1897D2 |
| ssdeep | 96:xDqmTIf7UaKlpjKTpfeaEr1dPB1BSb35v+GUCELqrc6DOh7ZiaHGgwHAWCq:9q3fNoOejnPs35vExAc6DCiag |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | cf11d6b3c18d4c02_d93f411851d7c929.customdestinations-ms |
|---|---|
| Filepath | c:\users\test22\appdata\roaming\microsoft\windows\recent\customdestinations\d93f411851d7c929.customdestinations-ms |
| Size | 7.8KB |
| Processes | 2120 (powershell.exe) |
| Type | data |
| MD5 | f2f5505600e2895c007b3ff3cfe3d4aa |
| SHA1 | f0235a3c8056872d55eeef803d1bc33bac37a753 |
| SHA256 | cf11d6b3c18d4c02466b670bcb0394ac49382e6a87ad58d2561f2660922b586c |
| CRC32 | 9AF5ED3C |
| ssdeep | 96:EtuCojGCPDXBqvsqvJCwoJtuCojGCPDXBqvsEHyqvJCworc7HwxGlUVul:Etu6XoJtu6bHnorXxY |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6976c426e3ac66d6_noConnect[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\noConnect[1] |
| Size | 8.0KB |
| Type | PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced |
| MD5 | 3cb8faccd5de434d415ab75c17e8fd86 |
| SHA1 | 098b04b7237860874db38b22830387937aeb5073 |
| SHA256 | 6976c426e3ac66d66303c114b22b2b41109a7de648ba55ffc3e5a53bd0db09e7 |
| CRC32 | F9D26F41 |
| ssdeep | 192:SSDS0tKg9E05TKPzo6BmMSpEJH8x07oLKsiF+2MxNdcNyVE:tJXE05g/uEJH8m7oLKLo2MxncUVE |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1a73bcb77f5181a2_vcruntime140.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\vcruntime140.dll |
| Size | 84.6KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | c61c08216ce1aa65c6af9b828850876f |
| SHA1 | ab6fef19e88a8711ef00916b3e3ff9e04424ae4d |
| SHA256 | 1a73bcb77f5181a2d7d24775328f02db8846ae595ce65d8e466f31df5db6e0cb |
| CRC32 | 8F1CD0CC |
| ssdeep | 1536:6T+CVR1A15U8NAvh2glhGA/oKENm2eK7oJnoUSgpAY8ODcDcm7cIsjS2ecbVMs2n:6T76U8NCVlhGAAKENm2eK7mnoUSgpAYi |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | b028fd74081d9431_stamp-sbvoid-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbvoid-n.pdf |
| Size | 5.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 600671f25d3101612bb684eb67359bf8 |
| SHA1 | a6fe6a088c3d22db84087c585d220ed2e9799c5a |
| SHA256 | b028fd74081d9431dd3cc58c5ca57b03015a3f7a02acc6fb4115810c12f9d4f1 |
| CRC32 | A873BDBB |
| ssdeep | 96:AalnnbgeaSScKR9Nh23TegxMMZrum6ScLjaIc+d6ZjRcsmyylkkc6:35nceaSScKR9Nk3T3xpla8IiZjRcsm7x |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ea52e54dce7732a8_qwindows.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\platforms\qwindows.dll |
| Size | 1.1MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 329b80590b02ef12b2be949759f3d624 |
| SHA1 | 6d57706c37c094a46d42ee6ec68e14df5ad12ed3 |
| SHA256 | ea52e54dce7732a8c28d13f7baae498de2846124c0f8135106df10e235ada072 |
| CRC32 | 6B6F5D34 |
| ssdeep | 24576:FftcYt1tAzj9dW6O4JdzH4rJvyGZzX2blZd:3cq1i9dt13t |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 79b2d741d467951e_stamp-sbpreliminaryresults-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbpreliminaryresults-n.pdf |
| Size | 14.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 3f0846a1bb27a83557871496436de958 |
| SHA1 | da3aca5c1994126e110b36f3257e8a4c09911f64 |
| SHA256 | 79b2d741d467951ee8b8dce8cfe1ac1c2b447dce5e445ca8a3819ced558f6865 |
| CRC32 | 7249D892 |
| ssdeep | 384:31GeaSScKUT1Anr/ZSxJZ3vFF59wJDU+mb9GQjRcsm8kucc:F1ScH0r/Ip+mbUAb |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 8d11d492cab90b46_windowsprintersupport.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\printsupport\windowsprintersupport.dll |
| Size | 38.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | d814fc5c8c1dda8dae300c6f176c9c7c |
| SHA1 | 4b53b50d9d003ac174619827577b78b3415ce381 |
| SHA256 | 8d11d492cab90b4631f280073a911cf3e37e50dfa6f5f4aad9458e4376fd1a00 |
| CRC32 | DA840F1B |
| ssdeep | 768:4h+PdQfiUc3A1GFkN93hBYNZzWgV5BbYk/7ulWVE/XGz:isQgA1GCf3hBYNsgV5ZYk/7uIua |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f17e4ccc91945651_index.html |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Investintech.com Inc\SPR\2.0\WebContent.tmp\d\startPage\index.html |
| Size | 422.0B |
| Processes | 2544 (SlimPDFReader.exe) |
| Type | HTML document, ASCII text |
| MD5 | b9174914c2428e026e4f4e04d7cd7974 |
| SHA1 | c2d0eb1f0298726fcbf4836864fb37db80aaca5d |
| SHA256 | f17e4ccc919456514d62111299e497361e2d1b308a613ad58b6ebc0d6939081c |
| CRC32 | 3536099F |
| ssdeep | 6:hzAhXtbzjLIfAPLWVHuXarmDmDmIc2yq9GbMo3ljLIfAPLWVHFEH8mDwzcQb:hzs9bzYLrrmDmG9WGYtLFEH8mEAQb |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 557e75acb33ce4cc_mfc140u.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\mfc140u.dll |
| Size | 4.7MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 8560e0ad7821c5a1313c2fb479f656eb |
| SHA1 | fb3eab8d13a3f98c434e4e20c777b8163623f5b3 |
| SHA256 | 557e75acb33ce4cc51ccecba5fdce7165a80ace24d07b39c4d3c05a155472375 |
| CRC32 | 72FC5A27 |
| ssdeep | 98304:sjN6M9saW6YjJKhUB1uQtZwWS87n7L8bBxn51YFLOAkGkzdnEVomFHKnPyDrBH:SfPlYRwW7n7L81xn51YFLOyomFHKnPy1 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | c64b7c6400e9bacc_api-ms-win-core-datetime-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-datetime-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 8894176af3ea65a09ae5cf4c0e6ff50f |
| SHA1 | 46858ea9029d7fc57318d27ca14e011327502910 |
| SHA256 | c64b7c6400e9bacc1a4f1baed6374bfbce9a3f8cf20c2d03f81ef18262f89c60 |
| CRC32 | C5677428 |
| ssdeep | 192:fW1hWiH+49Cjdks/nGfe4pBjSY285a+W5RKTt3E2sVWQ4GW2TwE9qnajuZDAJaaj:fW1hWZ4wm0GftpBj8m3SLwwlUKTf |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 250c2a9906d7f718_qjpeg.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\imageformats\qjpeg.dll |
| Size | 297.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 5b6f2e661915dd456854f9a31f2f01a6 |
| SHA1 | daab71f89d4735ff3d4098c0472478a07b2d8df6 |
| SHA256 | 250c2a9906d7f7187b869014adf8943a41c88b8a2138d1524d724297786d4c1e |
| CRC32 | 3E0289AC |
| ssdeep | 6144:RhHkfQ1ES1h4e64G9/kLM3kA44+VfWU6Cr2ifP1ntgRzUgA5:RRV75lG9/IVeU6CqM |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | b5ff1b14b12eb3ce_eula.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\eula.pdf |
| Size | 79.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.5 |
| MD5 | 45824af8bdcb8da3846c23f87948cde0 |
| SHA1 | fe0dc179f21116dcad01145c3ab8dc1f4b884d90 |
| SHA256 | b5ff1b14b12eb3cebd1ca47ea6efdda0f9f695474c700b80d1a2d514c0b50249 |
| CRC32 | DF6D29D8 |
| ssdeep | 1536:tefsx0mmrngkC34A+PIK5RYzpgrYV3ukfHnTo5Y3fb+bYvMQWstQRh:WQm0xIA+75azpWYBJnUACbYvMfx |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 34c5dee6d566252c_api-ms-win-core-util-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-util-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 29e1922b32e5312a948e6d8b1b34e2d9 |
| SHA1 | 912f54be8438f45e1562a47294091d522cd89356 |
| SHA256 | 34c5dee6d566252c0ceb7d9a21e24d5f297af2b26c32e0c7808bbd088aa9a6a9 |
| CRC32 | 60CFE35A |
| ssdeep | 384:dW1hWxDzDm0GftpBjDNtfm3SXl4aRGW6acyjR:0oVitL2GjR |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | b430b969e8b4da77_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\jpeg\license.txt |
| Size | 2.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 8ffc9ccbaffe673fe440b66c1826b68e |
| SHA1 | 812ae2b873a3a350d69710931e2095d773f79ce5 |
| SHA256 | b430b969e8b4da77f5f854743e5249d5a61c60b68375243e945e7ae40054b309 |
| CRC32 | DEACEF57 |
| ssdeep | 48:/KDQHSxpTM6Lck1Z7i8Pg+ubwc3FT+2tRteDSLNjyNAg36Gb1ctUrUyCb519C2:CDA6di8w6McC1yKaWUgyCd5 |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 1ee8e99190cc31b1_api-ms-win-crt-runtime-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-runtime-l1-1-0.dll |
| Size | 22.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | fb0ca6cbfff46be87ad729a1c4fde138 |
| SHA1 | 2c302d1c535d5c40f31c3a75393118b40e1b2af9 |
| SHA256 | 1ee8e99190cc31b104fb75e66928b8c73138902fefedbcfb54c409df50a364df |
| CRC32 | 6F7835CE |
| ssdeep | 384:Lb7hrKkW1hW54wm0GftpBjGOm3SdWlmTwhctW:LbNrKn8FVinhZW |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f8e3b45fd3e22866_api-ms-win-core-errorhandling-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-errorhandling-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | d91bf81cf5178d47d1a588b0df98eb24 |
| SHA1 | 75f9f2da06aa2735906b1c572dd556a3c30e7717 |
| SHA256 | f8e3b45fd3e22866006f16a9e73e28b5e357f31f3c275b517692a5f16918b492 |
| CRC32 | F790AB9F |
| ssdeep | 192:cnmxD3jW1hWiRcvHCjdks/nGfe4pBjSYrteMMPiW5RKTt3E2sVWQ4GWCxMfqnaj9:cn4W1hWiQim0GftpBj9eXm3SR6lPp/ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 7522609db836a7cd_libeay32.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\libeay32.dll |
| Size | 1.2MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 40ff3af396d40b9968f73aee421b539e |
| SHA1 | 22faedcbfcc9c07e3167f620b36535910ce89d05 |
| SHA256 | 7522609db836a7cd7df9991e99118017c02204ca40f2ac930a432dbaef17638a |
| CRC32 | 4E7B5354 |
| ssdeep | 24576:4Pd+KpP99MM/mT9vPAoj1huNbVvWkm54oyPN8ZI6ZW/uAeZ4emPRqUqC6Zc1MkV:cMumT9cc4Z6w/RHemPRhqnc1MkV |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 7bcab4ca00fb1f85_api-ms-win-crt-stdio-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-stdio-l1-1-0.dll |
| Size | 23.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | d5166ab3034f0e1aa679bfa1907e5844 |
| SHA1 | 851dd640cb34177c43b5f47b218a686c09fa6b4c |
| SHA256 | 7bcab4ca00fb1f85fea29dd3375f709317b984a6f3b9ba12b8cf1952f97beee5 |
| CRC32 | 032AF397 |
| ssdeep | 384:/ZpFVhHW1hWxgYBm0GftpBjMm3SNlndaYhpn3p:boEVi6DBp |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ca3ce43778f29d3a_qt5core.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5core.dll |
| Size | 4.7MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 0caea47636f3979a7e2b40efc52c435b |
| SHA1 | a42fc4b8368601b6768bd9a62ec12a86421a1b74 |
| SHA256 | ca3ce43778f29d3ac7c67bd5120408f6a1775dda1143697e9bae50ae3341b69f |
| CRC32 | E4A6BB5E |
| ssdeep | 98304:rgCL//UG2blGV1Jsv6tWKFdu9Ck1vp74J:rgCrtV1Jsv6tWKFdu9Ck1h7g |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 179240ab3f093371_qtiff.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\imageformats\qtiff.dll |
| Size | 329.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 56109cfeccba7c0c3a935d0c583eb523 |
| SHA1 | 86bac6cce9908956c967f4c28e51d7a0c7651fde |
| SHA256 | 179240ab3f093371ee1c2c70a1c791cdd2ebdb5c54ab91b585cab814e9d846c4 |
| CRC32 | 2CE1E0A6 |
| ssdeep | 6144:tkQq2M3XzTJGoiA277IXDJkukRrIIdeP+2TER9IhQB3:C0MI177IXDWu+rIs/N |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 899aeb620d73747a_stamp-sold-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sold-n.pdf |
| Size | 7.6KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 58f5ef9addefbbc1d6d65b75580908b6 |
| SHA1 | 48b966d1542da1a7cf4eabc6453c48b475121d01 |
| SHA256 | 899aeb620d73747aef8ba5129b17c1aa49ea98efc8f6890e24ea6e6f5e168a78 |
| CRC32 | 2047F890 |
| ssdeep | 192:3SnGeaSScKVHsXspG//ywBaCQEB/GN6TxAxTK4jRcsmfkYcR:30GeaSScKVHwp1QEB5T4jRcsmfkYcR |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | aee20655ca47585e_stamp-sbcompleted-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbcompleted-n.pdf |
| Size | 9.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 03c6b09c363d7df6b031e0404966dcaa |
| SHA1 | 62ddcc1595258b0d368dd31cd9117014cb78d738 |
| SHA256 | aee20655ca47585eeb6191ee219e9756a873a0bf1be030b61822cbb72dba9636 |
| CRC32 | 62598A4F |
| ssdeep | 192:3qnWeaSScKyjUg9XWlFcQt0ZddRhBxyS5N4ckGHbOY59YjRcsmAk3cM:3sWeaSScKqGlShBHLkG1YjRcsmAk3cM |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 39723e61c9870303_api-ms-win-crt-math-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-math-l1-1-0.dll |
| Size | 28.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 8da414c3524a869e5679c0678d1640c1 |
| SHA1 | 60cf28792c68e9894878c31b323e68feb4676865 |
| SHA256 | 39723e61c98703034b264b97ee0fe12e696c6560483d799020f9847d8a952672 |
| CRC32 | C1804F6C |
| ssdeep | 384:jOTEmbM4Oe5grykfIgTmLmW1hWSsngm0GftpBjGm3SAlD16hX:lEMq5grxfIndCngVis5 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 4997fda5d0e90b8a_api-ms-win-core-interlocked-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-interlocked-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | cfe87d58f973daeda4ee7d2cf4ae521d |
| SHA1 | fd0aa97b7cb6e50c6d5d2bf2d21d757040b5204a |
| SHA256 | 4997fda5d0e90b8a0ab7da314cb56f25d1450b366701c45c294d8dd3254de483 |
| CRC32 | F60A4BE7 |
| ssdeep | 384:l5iYsFqW1hWfsngm0GftpBjWfshFIvgCcm3SHlg+0Ix:loZngViwfsh6gxfx |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 455d3040208479f2_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\herr von muellerhoff\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 9d0ce6d5f93db962f4271f62a0f78a66 |
| SHA1 | dd1124029c75aa94657714917f9ffe38c85768f0 |
| SHA256 | 455d3040208479f275127a65825a7147d30b3ad022c9b872940e7703f16ab3a8 |
| CRC32 | 92900605 |
| ssdeep | 96:BDW+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:Bhzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 8784612f4423eb0c_123.exe |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\123.exe |
| Size | 1.0MB |
| Processes | 2820 (INVOICE_64645686826464874949653635373637363736276363726376.pdf.exe) |
| Type | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
| MD5 | 48dfb24f64554a902a2368aaefe8f2e3 |
| SHA1 | 0d0f8c17266944c7c3b6751f5b555c5e7ddc090b |
| SHA256 | 8784612f4423eb0c7f2b6a364d973a2948d8d50a565b028eec36e4fb4bc96d47 |
| CRC32 | 1E9DD490 |
| ssdeep | 12288:hpBJ8M9m5eORKfupzSnJ6w6DU7rTZ8BotAAj16w896r9ONIi5rXQOEG6sUiHj7IT:hpBJD+tiJ6qL6B9UMBEDdzSxUZb |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 675b1b82dd485cc8_api-ms-win-crt-heap-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-heap-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 1776a2b85378b27825cf5e5a3a132d9a |
| SHA1 | 626f0e7f2f18f31ec304fe7a7af1a87cbbebb1df |
| SHA256 | 675b1b82dd485cc8c8a099272db9241d0d2a7f45424901f35231b79186ec47ee |
| CRC32 | D8667874 |
| ssdeep | 384:XY3eBW1hWqvm0GftpBjtzsxm3SKulndaYhp6s:zQzViATv |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | d5160d652b937f96_slimpdfreader.exe |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\slimpdfreader.exe |
| Size | 12.4MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 50b359c20024c41da15ab4e52ea06e7d |
| SHA1 | a0a1da221cfd2e5816e6406ef996092030476af9 |
| SHA256 | d5160d652b937f96adbaad935245629897b43085166dc91e53d889767db7af72 |
| CRC32 | 5F73489D |
| ssdeep | 196608:hZ17P0LhEFqYeG4JuSHwqaKalIMbHxPFSwaKAmdSlCUMPFX3iN86otustxTZX37E:9OGxXL6n |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 7e6b33a4c0c84f18_api-ms-win-crt-utility-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-utility-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 70e9104e743069b573ca12a3cd87ec33 |
| SHA1 | 4290755b6a49212b2e969200e7a088d1713b84a2 |
| SHA256 | 7e6b33a4c0c84f18f2be294ec63212245af4fd8354636804ffe5ee9a0d526d95 |
| CRC32 | 2A6F241C |
| ssdeep | 192:UfHQdurW1hWiSuDz7eCjdks/nGfe4pBjSYp2VZGW5RKTt3E2sVWQ4GWO3uDVqna9:UfVW1hWKDzDm0GftpBjYLm3Sy5lD16hC |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 48f7deb7fef15369_text-circle-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-circle-n.pdf |
| Size | 2.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 05453f68f27d4ec0b8434455de6f4018 |
| SHA1 | c86ed889de9134dc3ebd9b34ce32323b91fd0cb0 |
| SHA256 | 48f7deb7fef15369a7babec6fc89d1b931e57b62a605c7ff307b90a40b5bbb89 |
| CRC32 | F2CC7E65 |
| ssdeep | 48:A6ZNqMK2Vz0fuoIGqMK2V2r0fuoIkYg27RcsmyDzlnko80Cc8:A6ZNRV0LRVrQ97Rcsmyvlkfc8 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | bc451e53edec49d7_isocoated_v2_bas.icc |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\iccs\isocoated_v2_bas.icc |
| Size | 1.0MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ColorSync color profile 2.1, type APPL, CMYK/Lab-prtr device by bICC, 1052608 bytes, 2-2-2007 11:04:54 "ISO Coated v2 (basICColor)" |
| MD5 | 90e574fdb39ae8921a1c28c04b5aa155 |
| SHA1 | 7bac0fec8579a67d27976a9d2a9fc56ab70dce50 |
| SHA256 | bc451e53edec49d76be437db111daf7a8ad122feb5c4b4884f2106082a6622fd |
| CRC32 | 16C24105 |
| ssdeep | 12288:Or6Zs9krQwLERdaVWFeYGfTyouOxgUG7Q69JRISwPB74t6B+16fj6CcczzqEQ+Vl:Ot9WLEe2/dUg6PgLCXzxQ+kvWIvKV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 003d30e7d128c677_errorPageStrings[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\errorPageStrings[1] |
| Size | 2.5KB |
| Type | UTF-8 Unicode (with BOM) text, with CRLF line terminators |
| MD5 | 07d7197d980e82c3ce6b22c0342711ae |
| SHA1 | e3e675f4507d3d2f4f56f06c76abdc40d09dd1a2 |
| SHA256 | 003d30e7d128c6771b36ab2b0f02d36670e42488d86ba7db00ad862528266060 |
| CRC32 | 3485002F |
| ssdeep | 48:zTW8quJiyUlyHWKShUpeHRitRflRynLRX4Y1WW90W2olr8tcUV/9z8/pWMI9EMIN:zTW8qIiyUcAhUpIRSRflRynLRX4LMlrT |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 1f7950e6d2b20c45_recoverystore.{10e934b7-615a-11ec-940e-94de278c3274}.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{10E934B7-615A-11EC-940E-94DE278C3274}.dat |
| Size | 4.5KB |
| Processes | 2840 (iexplore.exe) |
| Type | Composite Document File V2 Document, Cannot read section info |
| MD5 | 478d1ca7e1596f01fcf4f2fbcee4f9d9 |
| SHA1 | 2f82fed2ef1de52756f763d45e2d47106ab358dd |
| SHA256 | 1f7950e6d2b20c452dddaf4655240720b0edeac3ff28d928da01705ca84d703d |
| CRC32 | DD88CE12 |
| ssdeep | 12:rlfF2qrEg5+IaCrI0F7+F20orEg5+IaCrI0F7ugQNlTqbaxntNlTqbaxn:rqq5/1T5/3QNlWANlW |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f1fbaa3a687d2395_text-upleftarrow-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-upleftarrow-n.pdf |
| Size | 1.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 71f826d40b85c0fd7246c332f8939edf |
| SHA1 | 3f0a6464b6b2b3756c99368b419396ceeb07f858 |
| SHA256 | f1fbaa3a687d23956a2b06f20721ec59b67fe8f37c2252115dab21404d1b1995 |
| CRC32 | 63AD0457 |
| ssdeep | 24:uD6TYaQHoUKjtHoUnOYw8r/fRSVlST8DEOyH6lINPln+XV8UiRKr/W+kbc4:A6Oo3ojY37RcsmyDPlnkHgc4 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 707c9a384440d0b2_api-ms-win-crt-process-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-process-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 9d3d6f938c8672a12aea03f85d5330de |
| SHA1 | 6a7d6e84527eaf54d6f78dd1a5f20503e766a66c |
| SHA256 | 707c9a384440d0b2d067fc0335273f8851b02c3114842e17df9c54127910d7fb |
| CRC32 | BCB83D61 |
| ssdeep | 192:hRQqjd7hW1hWif+49Cjdks/nGfe4pBjSYr+c24QLW5RKTt3E2sVWQ4GWw899qnaP:hKwW1hWZ4wm0GftpBjh24Jm3SwlUKTw2 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 95a47e3ed6846c1a_qt5svg.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5svg.dll |
| Size | 267.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | d3598cb7be175a0705f5b9ae826f5bb1 |
| SHA1 | 57de7c58d431f831782df5c52c56d5f8a24af7e4 |
| SHA256 | 95a47e3ed6846c1aa11f2764a985ba8976aef3d4f0b050e86e8151cbfca06212 |
| CRC32 | 41034330 |
| ssdeep | 6144:kFqJQhPTe6Wxux73iJ3WH5+cy8Dv5Ynm69/a+9PY6uZAsokTEQFpeypY:kVPTcuxo3WHD9eypY |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 4bd75c79c088b824_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\md5, rc4\license.txt |
| Size | 987.0B |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 7a1187c18d6541cff8a73f234ddaff62 |
| SHA1 | f76911b612f85fc2236efac8abf148a325b5141d |
| SHA256 | 4bd75c79c088b824c278781895bafc3d5fe47bedfcbb0c8d539fad2a7bcbafea |
| CRC32 | C9EDEB8D |
| ssdeep | 12:UWnOC2XWsEJ9iWfa7FP96yPXUbUEDEGUr2miQYkNMVFnFRpxGvZBM0x/O0Mph82i:HOZeMvvcxAbr2tQNNMTpxGvNbyU |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | b7c3ebc36c84630a_api-ms-win-crt-convert-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-convert-l1-1-0.dll |
| Size | 21.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 9ddea3cc96e0fdd3443cc60d649931b3 |
| SHA1 | af3cb7036318a8427f20b8561079e279119dca0e |
| SHA256 | b7c3ebc36c84630a52d23d1c0e79d61012dfa44cdebdf039af31ec9e322845a5 |
| CRC32 | F47B82A5 |
| ssdeep | 384:FuyhW1hWF4wm0GftpBjErIm3StlndaYhpFeD:4cFViUIbi |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 469fdfcaca047a13_dnserror[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKMIWH9C\dnserror[1] |
| Size | 6.1KB |
| Type | HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators |
| MD5 | 8c98552955cbb31ebed64742bf23349a |
| SHA1 | e1d12cf6c84e4dca1c69421209e12237633f8e75 |
| SHA256 | 469fdfcaca047a13a75283d5fd4bb96b56a28666d9df02195fdc2a4b78250539 |
| CRC32 | 1A5BE0FF |
| ssdeep | 96:uATpCAEQIgGN2P8bWF2oxrjSaFXQsgUkn:ukp4QSN2aWFFjSGXQVUkn |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | fc1d543b056729c9_msvcp140.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\msvcp140.dll |
| Size | 451.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | d68cab1b9b9fdbe6b064f631c47be975 |
| SHA1 | af9b4fb6ea379cefab0138dfa841107f628de33e |
| SHA256 | fc1d543b056729c997286a619f8b16bf056449ead3a5da3f76c7e29b6124f157 |
| CRC32 | 82D7869C |
| ssdeep | 12288:K3QUergtVD7jfIobCFPUkIShUgiW6QR7t5s03Ooc8dHkC2esIo:zUXzD3IoCFPUd03Ooc8dHkC2eJo |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ad98d8fe15dbbfc6_startpage.svg |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\webcontent\d\startpage\startpage.svg |
| Size | 41.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | SVG Scalable Vector Graphics image |
| MD5 | 29d883fc97e56f417c54f5092b3aafbf |
| SHA1 | 93c0839f4169d25451d0c85d5b4993a5c0f4d94a |
| SHA256 | ad98d8fe15dbbfc6b06eeff7bd5aa43afc1d13e7ce45163316b48b9b44bcda9f |
| CRC32 | B481331F |
| ssdeep | 384:fSeYvSUzEky4JqKG0vEStJZPFn4o52WNUNTz60wLyHxMy:BfkyCqKHMI14o52WWNS0kMxn |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 56d8b7ee7619579a_api-ms-win-crt-environment-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-environment-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 39325e5f023eb564c87d30f7e06dff23 |
| SHA1 | 03dd79a7fbe3de1a29359b94ba2d554776bdd3fe |
| SHA256 | 56d8b7ee7619579a3c648eb130c9354ba1ba5b33a07a4f350370ee7b3653749a |
| CRC32 | 124E426A |
| ssdeep | 192:4rW1hWiSu7jCjdks/nGfe4pBjSYC69poCxW5RKTt3E2sVWQ4GWmEsSC9qnajuZDW:AW1hW6am0GftpBjtBQm3SzSKlUKTT |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | c87d1a4e127045c9_vcomp140.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\vcomp140.dll |
| Size | 133.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | e5d016d17fb8c77c8695eb38298de5e7 |
| SHA1 | 8fee83fc9a736e3739c6bb9abc9ee9a967809092 |
| SHA256 | c87d1a4e127045c94e809d66ea2ad99ba8e1e9404b1bfc31752e2b8e8f9cdceb |
| CRC32 | 7AE62289 |
| ssdeep | 1536:1JuZ6sWN0q6cdSTxOxTnBtyvW9JTUOV+fSNYbjI6DQ1iZnbwhXdNXpi//LSYW8IG:PuiS42eD+aNYA6DQ1iB0hpitW8I/yAxA |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 7e4cba620b871892_api-ms-win-core-debug-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-debug-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 879920c7fa905036856bcb10875121d9 |
| SHA1 | a82787ea553eefa0e7c3bb3aedb2f2c60e39459a |
| SHA256 | 7e4cba620b87189278b5631536cdad9bfda6e12abd8e4eb647cb85369a204fe8 |
| CRC32 | DF1D480A |
| ssdeep | 384:uW1hWcFm0GftpBjOQElEm3SQalndaYhppz:llVijElEXj |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 9ee37d72966bb4a8_license |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\openssl\license |
| Size | 6.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text |
| MD5 | 057d9218c6180e1d9ee407572b2dd225 |
| SHA1 | 0227f86d9adc286233b7c1ee7ae14a4f06897867 |
| SHA256 | 9ee37d72966bb4a841343f0606ce44d41b3eae4df4285200c5a8ddc2b935992a |
| CRC32 | E23B52A2 |
| ssdeep | 192:TZWVkOrsQrslvgQgk3eZ+Y1ibrsArsQ2i3+3r6ZCx:TZWVbrsQrslsWKRCrsArs/MQr2Cx |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 5b8c1dab793d701e_stamp-shwitness-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-shwitness-n.pdf |
| Size | 7.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | b43332bb3d82162ecc6bb41c48a42fc9 |
| SHA1 | 3267eab0d4e8928eff6f80b174bb2b05700f633b |
| SHA256 | 5b8c1dab793d701e0a6f831358f25f0603f73fc84dd03114029b69a6a6b04c7d |
| CRC32 | 04206368 |
| ssdeep | 192:337xjcKxJ7zaaEpGEs1gCCC08FnzuPSPSP19rd9khy2aUBC2L77WxjRcsmgkIcg:33NcKT7OaEpGM8Fg/k0WC2SxjRcsmgkE |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1d1c11fc1ad1febf_api-ms-win-core-file-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-file-l1-1-0.dll |
| Size | 21.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | eefe86b5a3ab256beed8621a05210df2 |
| SHA1 | 90c1623a85c519adbc5ef67b63354f881507b8a7 |
| SHA256 | 1d1c11fc1ad1febf9308225c4ccf0431606a4ab08680ba04494d276cb310bf15 |
| CRC32 | 96AFAFF2 |
| ssdeep | 384:Y6PvVX7W1hWC1m0GftpBj4xm3SBvlmTwhsH:jPvVXeTVic1i |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | cbd3fef707abf622_api-ms-win-core-xstate-l2-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-xstate-l2-1-0.dll |
| Size | 2.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 9e683825eae3b6375cbd63623196be96 |
| SHA1 | 1b30500a36883bf7e3eb63476e6b49151d51af78 |
| SHA256 | cbd3fef707abf622b150db1d10b5443264eb6da8f4d7aa2adc97c50a22d4d594 |
| CRC32 | F2C4F04B |
| ssdeep | 24:eH1GSbNj0QEVsXnpkDtf5bdtI1AIZW0HRNfiV9h7r35WWdPO6PN7:y5jWOnputf5bdtIOIZWU7fSh/5WwG2 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 463dc293a24dd5f3_text-star-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-star-n.pdf |
| Size | 1.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | f90b57ef6a9d9a76def37b7b51e8455b |
| SHA1 | 932d1a9c0337de222dca0d11b50c8f3605d46369 |
| SHA256 | 463dc293a24dd5f30417b259e7b3d0ece7a87d5bd9cc1872de75c214d29fad1d |
| CRC32 | CEDC1CD0 |
| ssdeep | 24:uD6TYa3cpIj8dcppOYwKr/fRSVlST8DEOyH6lINxln+XV8U3TgMbybcO:A6l0ZYR7RcsmyDxlnkccO |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 671416a5df57b37f_concrt140.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\concrt140.dll |
| Size | 244.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 4c53d63bc0596d978e4ae9e985769efc |
| SHA1 | ec05ec219de5cc9b463c2b8418926add8013323a |
| SHA256 | 671416a5df57b37f84e459d4c66a0763a91f9ef995518dded75d2b70b9f5d399 |
| CRC32 | 3C058DAB |
| ssdeep | 6144:6tUrdGExD8ez8wFMxxquuFNuerCHyKuX7mkqAFCm8e412z/bh/o72T:6tUrRxOuFUerCkEr4zm4 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 9f1f26794fd664e0_api-ms-win-core-processenvironment-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-processenvironment-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 0c700b07c3497df4863c3f2fe37cd526 |
| SHA1 | f835118244d02304de9eb3a355420ba9d0bd9c13 |
| SHA256 | 9f1f26794fd664e0a8b6fbd53bfca33dcf7b0dc37faf3eb7782bc38dff62cd8c |
| CRC32 | 6E9B213B |
| ssdeep | 192:qHW1hWinluZCCjdks/nGfe4pBjSYUe0DFtct2W5RKTt3E2sVWQ4GWMZ6k8xL9qnP:qHW1hWRFm0GftpBjqt2m3Sn6R5lUKT4 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | e61460b11008b451_unins000.msg |
|---|---|
| Filepath | C:\Program Files (x86)\Investintech.com Inc\Slim PDF Reader 2.0\unins000.msg |
| Size | 22.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | data |
| MD5 | b3357ceada3ecba99acfad122e7aa03e |
| SHA1 | 58fb601e417428ad7987501b0b7ed900ee7f9de3 |
| SHA256 | e61460b11008b4512e2da1d4ef19739228b15eb47b5609557e43136bc22f5794 |
| CRC32 | A0BD1D84 |
| ssdeep | 192:Z1EjXSCkf3STsfr69FTyPanTa1tznL7VF+Iqfc51U5YQDzYfbKJg/Bfvo:Z1EY6ir64+WX+7Q1U5YQDzs/B3o |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | ac0cec8644340125_api-ms-win-crt-filesystem-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-filesystem-l1-1-0.dll |
| Size | 19.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 228c6bbe1bce84315e4927392a3baee5 |
| SHA1 | ba274aa567ad1ec663a2f9284af2e3cb232698fb |
| SHA256 | ac0cec8644340125507dd0bc9a90b1853a2d194eb60a049237fb5e752d349065 |
| CRC32 | 2B6D42B0 |
| ssdeep | 384:Cq6nWm5CZW1hW9YBm0GftpBjVem3SuPvlg+0Pd:T6nWm5CIhViDeKPmd |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 74ab6c6f1378da72_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\aes\license.txt |
| Size | 1.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 6c13d93109e30985c8211df49657336b |
| SHA1 | 16dbd5babe97dd5f23698e8a69b9aee0f0250343 |
| SHA256 | 74ab6c6f1378da72158839eea28454cec47f919cce29f6a4bf2247fb7c82bf38 |
| CRC32 | E1904308 |
| ssdeep | 24:/2w6M6vcxAbr2tQNNMTpxGvNbyOiWK4oaP:/R6Tvcebyt6NMTpxe1yOiWKfA |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 73ab2161a7700835_api-ms-win-crt-string-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-string-l1-1-0.dll |
| Size | 23.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | ad99c2362f64cde7756b16f9a016a60f |
| SHA1 | 07c9a78ee658bfa81db61dab039cffc9145cc6cb |
| SHA256 | 73ab2161a7700835b2a15b7487045a695706cc18bcee283b114042570bb9c0aa |
| CRC32 | 6A049066 |
| ssdeep | 384:jiFMx0C5yguNvZ5VQgx3SbwA7yMVIkFGlbW1hWS4wm0GftpBjwwO5m3S9lJrm:j6S5yguNvZ5VQgx3SbwA71IkFhbFViWs |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | a7fa48de6c06666b_api-ms-win-core-localization-l1-2-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-localization-l1-2-0.dll |
| Size | 20.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 23bd405a6cfd1e38c74c5150eec28d0a |
| SHA1 | 1d3be98e7dfe565e297e837a7085731ecd368c7b |
| SHA256 | a7fa48de6c06666b80184afee7e544c258e0fb11399ab3fe47d4e74667779f41 |
| CRC32 | 10E45F8E |
| ssdeep | 384:9OMw3zdp3bwjGjue9/0jCRrndb5W1hW54wm0GftpBjvTNvwm3SBMltZ2m:9OMwBprwjGjue9/0jCRrndboUFViZ2Vu |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 27eab36ff0f81b6a_text-paragraph-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-paragraph-n.pdf |
| Size | 2.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 61501f88ba76f101b5c23b5e62c59777 |
| SHA1 | 3503e09d9a28850c113794e2a70a0f9d9420f0a9 |
| SHA256 | 27eab36ff0f81b6af05ea5f460d3e66d7f03e24d7e0d7e388b7f888d8d5e3d04 |
| CRC32 | 00A9721D |
| ssdeep | 48:A6MaRGmpjwaxTwDHOAVOL16SjwaxTwDHOAVOL16MY27RcsmyDNWlnk6YGzcv+:A6lRfG6TwDHOAkZ66TwDHOAkZs27RcsQ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 73bd1a5e1cf70c2b_stamp-departmental-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-departmental-n.pdf |
| Size | 7.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | ad65a460062fc35ebdb1de095312851d |
| SHA1 | 8bd86c7b4840f7caa100a58e9d35c344dd8c5929 |
| SHA256 | 73bd1a5e1cf70c2bc8be0a0580b67376eb6d28b3d6928781ca75d51d3ba569a8 |
| CRC32 | F9A066FC |
| ssdeep | 192:3+nGeaSScKvGDUi89QwQFdoyBYeBpfiM/LsfjRcsmSkVcHo:3YGeaSScKmUi8lQFdoyBYef/QfjRcsmT |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 8b543b1bb241f5b7_api-ms-win-crt-locale-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-locale-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 034379bcea45eb99db8cdfeacbc5e281 |
| SHA1 | bbf93d82e7e306e827efeb9612e8eab2b760e2b7 |
| SHA256 | 8b543b1bb241f5b773eb76f652dad7b12e3e4a09230f2e804cd6b0622e8baf65 |
| CRC32 | 8D6498D0 |
| ssdeep | 192:lW1hWi6+49Cjdks/nGfe4pBjSY38yMsW5RKTt3E2sVWQ4GWbGBfqnajE49dRX3tK:lW1hWa4wm0GftpBjlWm3S7dlPptZA |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 3ddf9be5c28fe27d_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\roboto condensed\license.txt |
| Size | 11.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | d273d63619c9aeaf15cdaf76422c4f87 |
| SHA1 | 47b573e3824cd5e02a1a3ae99e2735b49e0256e4 |
| SHA256 | 3ddf9be5c28fe27dad143a5dc76eea25222ad1dd68934a047064e56ed2fa40c5 |
| CRC32 | 495FC599 |
| ssdeep | 192:qf9qG4QSAVOSbwF1wOFXuFJyQtxmG3ep/7rlzKfHbxc+Xq0rhlkT8SHfH2:kOu9b01DY/rGBt+dc+aclkT8SH+ |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 237fdfbb1341abe4_text-uparrow-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-uparrow-n.pdf |
| Size | 1.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | d6c9192b4f6b9a266530823d74cdcfa4 |
| SHA1 | 46c663f81714aa775fff61fed87950e878d9f085 |
| SHA256 | 237fdfbb1341abe4446de3c0f67a8d41f7a577f39995117faa9252ceb8335193 |
| CRC32 | 97EE8E12 |
| ssdeep | 24:uD6TYamFc+jaoFcLOYwihr/fRSVlST8DEOyH6lINwln+XV8UA1+D5R+0kbc0:A6IN9YTh7RcsmyDwlnkmUgc0 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6138d20a9f0da764_text-note-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-note-n.pdf |
| Size | 1.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 7906d83e9909f76d1da63ba743c0e578 |
| SHA1 | c3081c9baa1ba16450e08dd87c58cbbd45c16420 |
| SHA256 | 6138d20a9f0da7643c21144a0ba31944db86057cef4fd1dabe565dbaa7da5918 |
| CRC32 | A466EC8C |
| ssdeep | 24:uD6TYaVrY/jPYmjzq2jiZXjqSccgOYwtTr/fRSVlST8DEOyH6lINUln+XV8UQ8OT:A6IEDtckYMT7RcsmyDUlnkDc7 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | b7f32c31e690ec28_stamp-shsignhere-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-shsignhere-n.pdf |
| Size | 8.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 626d92d3d88911c0f2722ff414483a65 |
| SHA1 | 2baf367a587e39d3bc32c28812c1f222508a5034 |
| SHA256 | b7f32c31e690ec28cae9867d2fcf819c88e70d6f8910badfc013392672f75b83 |
| CRC32 | E0243CAF |
| ssdeep | 192:3z7EjcKKzwghqIi+wGGOTuDuck6uSp3mRP6xhbIa6vjRcsm8k9ccPr:3zIcKnIi+wThTIBvjRcsm8k2cPr |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | c59b9191d1e660a4_stamp-asis-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-asis-n.pdf |
| Size | 6.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | b12a077ccda5fc1f808833d225646363 |
| SHA1 | 8bdf1b6e8bbde5304b3e48dae98fe17b59178b74 |
| SHA256 | c59b9191d1e660a470f3cba3f57e6cde7f79b5dba8c0c86df37d2cb9d5b26b6f |
| CRC32 | A34275C6 |
| ssdeep | 192:3PnceaSScKVgkvRl75qAmFW6gH7FcjRcsmhk4cH4:3vceaSScKVgkvJTujRcsmhk4cH4 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 8a69a882a04f13c9_license.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\luradocumentjbig2\license.pdf |
| Size | 70.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.5 |
| MD5 | 3ad0248948bf56f69a47867b09e9b1f9 |
| SHA1 | 789e0b351b8078e382a8e9094b77fecb40bf5cd8 |
| SHA256 | 8a69a882a04f13c90e7533974a2323021c65300fc7ddb06908bfbe47d1e3e0c7 |
| CRC32 | CACD2EAC |
| ssdeep | 1536:7TTD5tnV+DzlUN2XP+EH+bshz4BNdRqWnzn4mLBivhJb6kKX5M1:7TTbAzl95hcBzNnUmc5Jb6kKJ8 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | cc76a4e82e0e0cd0_api-ms-win-core-synch-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-synch-l1-1-0.dll |
| Size | 19.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | c1dcdb0fabc8ae671a7c7a94f42fb79a |
| SHA1 | 99355912d7a7d622753b2a855cae4f5a4e50146f |
| SHA256 | cc76a4e82e0e0cd08df3bb8f5ad57142305e0f666cc32599d76e363d0b43efcb |
| CRC32 | B737FC8B |
| ssdeep | 384:rdv3V0dfpkXc0vVa7W1hWf1m0GftpBjum3Su5TlD16ho:rdv3VqpkXc0vVaewVi4a5l |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 49e3f46b4cb333e0_text-cross-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-cross-n.pdf |
| Size | 1.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 983581c8a4628f45a5af01d32dbbe788 |
| SHA1 | eb2a61aaee7855782800caf31b5e6faad5a84871 |
| SHA256 | 49e3f46b4cb333e02c3718e40e841826e353a8b754cf1afff542c336b15853a3 |
| CRC32 | 70187D11 |
| ssdeep | 24:uD6TYaXtsWQ7klq4jDWQ7klq5OYwzr/fRSVlST8DEOyH6lINLln+XV8UDF0GdkSY:A6Jt3Qolq5QolqYYA7RcsmyDLlnkJx4j |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | a6b83b764555d517_api-ms-win-crt-multibyte-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-crt-multibyte-l1-1-0.dll |
| Size | 25.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 19d7f2d6424c98c45702489a375d9e17 |
| SHA1 | 310bc4ed49492383e7c669ac9145bda2956c7564 |
| SHA256 | a6b83b764555d517216e0e34c4945f7a7501c1b7a25308d8f85551fe353f9c15 |
| CRC32 | B2C93CC8 |
| ssdeep | 384:2y+Kr6aLPmIHJI6/CpG3t2G3t4odXLNW1hWOXRm0GftpBjVm3SKlDCEIy:2ZKrZPmIHJI6abVi/Q1Iy |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | c4a254f8893d8b63_text-comment-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-comment-n.pdf |
| Size | 1.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 60b4b8c8ebceb06855edf29e0f26f116 |
| SHA1 | 3042f1d7aa154447f83070e2e5ff1b1c95769e2b |
| SHA256 | c4a254f8893d8b63b441a17cc5a4f9f9c4a9c6286f1259f68065445c69f4388d |
| CRC32 | 922FAE23 |
| ssdeep | 24:uD6TYaLTug7ZnjYjqug7Z4OYwHr/fRSVlST8DEOyH6lIN/ln+XV8U3xnWKmcwWbN:A6Fpt3pthYs7RcsmyD/lnkk+c8 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f941c232964d01e4_api-ms-win-core-profile-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-profile-l1-1-0.dll |
| Size | 17.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | cedefd460bc1e36ae111668f3b658052 |
| SHA1 | 9bd529fe189e0b214b9e0e51717bdf62f1da44ea |
| SHA256 | f941c232964d01e4680e54ab04955ec6264058011b03889fe29db86509511eba |
| CRC32 | F28D07DD |
| ssdeep | 192:DgW1hWiIOuDz7eCjdks/nGfe4pBjSYpRrW5RKTt3E2sVWQ4GWN/VWkqnajTWOwCd:DgW1hW7DzDm0GftpBjem3SShlgCopp2 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f425479df48e22a8_qt5xml.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5xml.dll |
| Size | 152.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 6623f83476390d6b3d4383aa179235c5 |
| SHA1 | 25112ddff58e4e91bdf14bf08fa9ab5dea4a389b |
| SHA256 | f425479df48e22a89a43cc8167bba0d38f68f185e9c3bc1524503cce39599a10 |
| CRC32 | 0E1C00A0 |
| ssdeep | 3072:n9KaMTQMYAJuuWilwUvklnQt1kjBclUAmqkr1IRzDv0Uy:nYaMTQM1wU+nhIkr1sI |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | fc12659da5b4326f_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\allura\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 00fe641b11d11f1b471f36bb08fdb219 |
| SHA1 | 308384b86c74405149e6dba90f190605bf85176d |
| SHA256 | fc12659da5b4326fc29ea205bb67a568a431332b5f5a207d6ac57d20aaf82603 |
| CRC32 | DFDFDC42 |
| ssdeep | 96:pXBXW+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:pxVzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | c924855b72e76e9c_caret-p-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\caret-p-n.pdf |
| Size | 2.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | d0b5a7c59bd88d79ed4d70f8194b1ac9 |
| SHA1 | 6605ea80eb0743998a30b4920f2d6491052cd8d7 |
| SHA256 | c924855b72e76e9c83d907ef68235d212f3cd42df42d849d14ca382cb17905d9 |
| CRC32 | 29C574F3 |
| ssdeep | 48:A6B6pfsNlFHku5x/ocpfsNlFHku5x/o2EY77RcsmyDshlnkTcH3:A6Ipf8lFVhocpf8lFVhoK77Rcsmyolky |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 4ca3e87a643a1524_text-rightpointer-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-rightpointer-n.pdf |
| Size | 1.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | e0eaaf7f3c2014e39ea508a5343436b0 |
| SHA1 | 23ff980c93d973e9d5c6c9d25fe5e4c34fa3784a |
| SHA256 | 4ca3e87a643a1524b28cff8a442b6c36ef4bc48600b757c9c072a7335664bd9f |
| CRC32 | CF313F89 |
| ssdeep | 24:uD6TYa4HHuL5bj/DuL5MOYw/r/fRSVlST8DEOyH6lINcln+XV8Uys6XkkKJSbcm:A6mni5nDi51Yw7RcsmyDclnkmpcm |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | dba84e704ffe5fcd_api-ms-win-core-handle-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-handle-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 18fd51821d0a6f3e94e3fa71db6de3af |
| SHA1 | 7d9700e98ef2d93fdbf8f27592678194b740f4e0 |
| SHA256 | dba84e704ffe5fcd42548856258109dc77c6a46fd0b784119a3548ec47e5644b |
| CRC32 | 7B879B51 |
| ssdeep | 384:4W1hWypFm0GftpBjTnom3S4tOlDCEY5kD:zvViFoUtQ1Y5kD |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6f8f05993b8a25ca_ucrtbase.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\ucrtbase.dll |
| Size | 1.1MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 6343ff7874ba03f78bb0dfe20b45f817 |
| SHA1 | 82221a9ac1c1b8006f3f5e8539e74e3308f10bcb |
| SHA256 | 6f8f05993b8a25cadf5e301e58194c4d23402e467229b12e40956e4f128588b3 |
| CRC32 | F216E871 |
| ssdeep | 24576:Os974wcfeCepgb9qqu+XMO4nXIzvQVbe1SmcvIZPoy4/ZBVX:b96WghMOqI8Vbe1GZBVX |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6c532430ff0ae738_stamp-confidential-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-confidential-n.pdf |
| Size | 8.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 085e14475b382691b766a64a0e397ad6 |
| SHA1 | 7a6b3183f1bdffa708d0f3f03661f0430dde6ed9 |
| SHA256 | 6c532430ff0ae738ff100471f0d0fa898ec1638b3f33b9a075c7a3bab74bac83 |
| CRC32 | 005D1035 |
| ssdeep | 192:3CnceaSScKZiIOD0Z3bpSn1DxwWHdmyDUH3jRcsmfkCcHJ:3kceaSScKYXwsdmyDUH3jRcsmfkCcHJ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | afce792469d28568_ErrorPageTemplate[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\ErrorPageTemplate[1] |
| Size | 2.2KB |
| Type | UTF-8 Unicode (with BOM) text, with CRLF line terminators |
| MD5 | cd78307e5749eb8aa467b025dc66bcd3 |
| SHA1 | 7f85f932532719bc0ca23a21a24e146cdcd40668 |
| SHA256 | afce792469d28568da605230d27a6d5354f9451c60b5a3ce998edeaf098c8327 |
| CRC32 | 12B03B3E |
| ssdeep | 24:5Lj5x55k5N0ndgvoyeP0yyiyQCDr3nowMVworDtX3orKxWxDnCMA0da+BieyuSQK:5f5H5k5pvFehWrrarrZIrHd35IQfOS6 |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 29ae7b30ed8394c5_039316b4-c027-429a-95a4-9762f98f495a.exe |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\64fa8e26-afcb-4883-8b36-883ae60b673d\039316b4-c027-429a-95a4-9762f98f495a.exe |
| Size | 88.9KB |
| Processes | 2936 (123.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 17fc12902f4769af3a9271eb4e2dacce |
| SHA1 | 9a4a1581cc3971579574f837e110f3bd6d529dab |
| SHA256 | 29ae7b30ed8394c509c561f6117ea671ec412da50d435099756bbb257fafb10b |
| CRC32 | CC276C7F |
| ssdeep | 1536:JW3osrWjET3tYIrrRepnbZ6ObGk2nLY2jR+utQUN+WXim:HjjET9nX0pnUOik2nXjR+utQK+g3 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 339966ae75675a03_api-ms-win-core-string-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-string-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | e7a266dd3a2a1e03d8716f92bede582d |
| SHA1 | d4b97ce87c96de1f39fea97cca3992d292b2c14e |
| SHA256 | 339966ae75675a03f628c4ddd5d3218abb36cbcf6ddce83b88c07336d732b8ae |
| CRC32 | 35E8BD5A |
| ssdeep | 384:EyMvlW1hWBYBm0GftpBjnmm3SC1lDCE9xt:EyMvcNViYm19xt |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 07d07a467e4988d3_favcenter[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BYECVYBT\favcenter[1] |
| Size | 3.3KB |
| Type | PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced |
| MD5 | 25d76ee5fb5b890f2cc022d94a42fe19 |
| SHA1 | 62c180ec01ff2c30396fb1601004123f56b10d2f |
| SHA256 | 07d07a467e4988d3c377acd6dc9e53abca6b64e8fbf70f6be19d795a1619289b |
| CRC32 | 7FE3FBCC |
| ssdeep | 96:RZ/I09Da01l+gmkyTt6Hk8nT1ny5y3iw+BT:RS0tKg9E05T1yIyw6 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1471693be91e53c2_background_gradient[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTY94C7J\background_gradient[1] |
| Size | 453.0B |
| Type | JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x800, frames 3 |
| MD5 | 20f0110ed5e4e0d5384a496e4880139b |
| SHA1 | 51f5fc61d8bf19100df0f8aadaa57fcd9c086255 |
| SHA256 | 1471693be91e53c2640fe7baeecbc624530b088444222d93f2815dfce1865d5b |
| CRC32 | C2D0CE77 |
| ssdeep | 6:3llVuiPjlXJYhg5suRd8PImMo23C/kHrJ8yA/NIeYoWg78C/vTFvbKLAh3:V/XPYhiPRd8j7+9LoIrobtHTdbKi |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 00ea3614d5019774_{10e934b8-615a-11ec-940e-94de278c3274}.dat |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{10E934B8-615A-11EC-940E-94DE278C3274}.dat |
| Size | 4.5KB |
| Processes | 2840 (iexplore.exe) |
| Type | Composite Document File V2 Document, Cannot read section info |
| MD5 | 77d8937688e2ad90e91a6c8c6a1e89b7 |
| SHA1 | f73858d8e77199829d43c841882198a92fcae661 |
| SHA256 | 00ea3614d5019774c068d5222f6873801414e09070842ed4e03dab72aec55625 |
| CRC32 | A98BD500 |
| ssdeep | 12:rl0ZGFfrEgmf8x06FfDrEgmfh0qgNNlTVbaxGNlg89baxngAswmKl1cmi:rDG0HGmNNlpTNlJWEwm+1 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1beb05868ce93bcc_IE9CompatViewList[1].xml |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTDTA402\IE9CompatViewList[1].xml |
| Size | 141.8KB |
| Type | XML 1.0 document, ASCII text, with CRLF line terminators |
| MD5 | 9b63e0fb3785ffa49686dd75e303d177 |
| SHA1 | e3992de5a1b8f58a11a52ad71f275ae413927eb4 |
| SHA256 | 1beb05868ce93bcc8fafc46adccdda6d104f3c6f6c6ed454d8a6c0c208d9bd0e |
| CRC32 | F778EDEF |
| ssdeep | 3072:AoSMrEDL1FwhdFFaz6l8vHG+TbFPAzepobjyG7I1K1IB2+Tir8v1IG9aIedyPcFC:dSMrEDL1FwhdFFaz6l8vHG+TbFPAzepR |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 31010e0bc26df300_license.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\zlib\license.txt |
| Size | 1.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | eb2e272c4c53736d213f817420ee3216 |
| SHA1 | cd6ed0029301129614cc86fad4b7dad180ead5b9 |
| SHA256 | 31010e0bc26df3001c7bb3c1b7a7094a8972bf6d37a5d0c59d3d3c98fbfaf463 |
| CRC32 | D595DBEF |
| ssdeep | 48:s4vcebyt6NMTpxe1ypWqZ86Ji+jI1Yn9PK:PD1MzJIY9PK |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 96515fae8645ae41_text-rightarrow-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-rightarrow-n.pdf |
| Size | 1.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 04082534c80c5de75f24b836fa9a1426 |
| SHA1 | 3a9b91eabed8bfd09f8b97d3c069ad65eefbd8a9 |
| SHA256 | 96515fae8645ae414afd4a3a8bdcf490a6a354e0ff8507109d2f7a91c0274331 |
| CRC32 | AE74A00D |
| ssdeep | 24:uD6TYaRNvNseiGAeOt1/CttTPv0jH/CttTPv1OYwKr/fRSVlST8DEOyH6lIN8lnT:A6jtaRGm1CthPGCthP8Yt7RcsmyD8lnT |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ccf6cba82300b91b_qsvg.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\imageformats\qsvg.dll |
| Size | 26.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | ae5e2a36c2afb9ea4b4c56bb7aa6ab86 |
| SHA1 | ac249f5d461a59d2f868764a0cf82d875f7e24ca |
| SHA256 | ccf6cba82300b91ba3f17f26a9ccb3301fed4e6c3843cdbe83f8a9e0bc6a6c27 |
| CRC32 | 07725D30 |
| ssdeep | 384:JRl59XFtzMEWuNPXc8Lc6WPSSSDIvR5xn5IcuTOiGnYPL3/XAN:V59LzVWOPs8LLbkbxecuT9GE/Xk |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 24dfd904c5650fda_ssleay32.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\ssleay32.dll |
| Size | 281.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 1ee4cfbc29909da1f3fedf57cc614abb |
| SHA1 | 4bf7302d84246ded211f856b5f3bff23c4ae9ad3 |
| SHA256 | 24dfd904c5650fda1056527150c6d60fe3f5848533d6479c57712adaa0ceba33 |
| CRC32 | 6CBF9E76 |
| ssdeep | 6144:xw6WtYPm0IZz79tCJHNPU9vNZtNBvIED/xEN4WNkhumaPpiPq3WuBm2MjWXns7JI:xw6WtYPm0IZz79tCJHNU9vNZtNlIEDpg |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 93e9eb188fcefd07_uninstall slim pdf reader 2.0.lnk |
|---|---|
| Filepath | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slim PDF Reader\Uninstall Slim PDF Reader 2.0.lnk |
| Size | 1.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Sun Dec 19 20:59:49 2021, mtime=Sun Dec 19 20:59:49 2021, atime=Sun Dec 19 20:59:31 2021, length=2681832, window=hide |
| MD5 | 9d97dee1272e79e1291ba30c21317cc9 |
| SHA1 | 10f78c89701f806d8620615672e465d0aef1a624 |
| SHA256 | 93e9eb188fcefd074cacaa2c1ae80519c882a552044d6a10f6f754645a4d73d8 |
| CRC32 | 51ED7EDD |
| ssdeep | 24:8m6udOEHbHCpvQf9Az/QRwdodzH6dodLUPPyh:8mldOkbHrf2zGwdodzH6dodgnyh |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ae5e73416eb64bc1_api-ms-win-core-file-l2-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-file-l2-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 3f224766fe9b090333fdb43d5a22f9ea |
| SHA1 | 548d1bb707ae7a3dfccc0c2d99908561a305f57b |
| SHA256 | ae5e73416eb64bc18249ace99f6847024eceea7ce9c343696c84196460f3a357 |
| CRC32 | 669DCF47 |
| ssdeep | 192:FZkW1hWiecvHCjdks/nGfe4pBjSYo3Vq34W5RKTt3E2sVWQ4GW2rOqnajd2siD+k:MW1hWdQim0GftpBj4VuFm3SWlg+0mw |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 2dd4ebaa12cbba14_api-ms-win-core-libraryloader-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-libraryloader-l1-1-0.dll |
| Size | 18.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 0c48220a4485f36feed84ef5dd0a5e9c |
| SHA1 | 1e7d4038c2765cffa6d4255737a2a8aa86b5551c |
| SHA256 | 2dd4ebaa12cbba142b5d61a0ebf84a14d0d1bb8826ba42b63e303fe6721408df |
| CRC32 | FF32BBDA |
| ssdeep | 384:b+g4vuBL3BmW1hWZ1m0GftpBjLOoZm3SNvVlgCopp3y:b+YBL3BdOViUyRv4Hn3y |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 43eb19780ee02891_qt5network.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\qt5network.dll |
| Size | 1.0MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | bee47bdeda4eeb649bfafea500e0beb6 |
| SHA1 | 01a08834a61363217825e1b235fe10ba5fc75265 |
| SHA256 | 43eb19780ee02891f084ef87bccf93b98e3d6f0a9d6ca608c6793fd43307e666 |
| CRC32 | 0DCD4E49 |
| ssdeep | 24576:TQN+dt9d/xkDFPJ0NlhrQt4DirhUpw3J0q7s:TRdt9deUH44Dir6pw3J0Gs |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 2457234aa7b3b0f3_stamp-sbforcomment-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-sbforcomment-n.pdf |
| Size | 11.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 4d3e626f4f6d29459208963b2e876148 |
| SHA1 | 719ac4208682eace729d3781020f04b737b164f0 |
| SHA256 | 2457234aa7b3b0f32c9dabea7dec2c9f3c4af6e0d3164bd659f12a4e4f27242a |
| CRC32 | 5612A6BD |
| ssdeep | 192:3LnWeaSScK6oZ5zj2E2gg427YlEZSM0PmR8oSIU+W3VHqqe+XO9V4Jad7Fj4/G6F:3jWeaSScKh+gg427SM0PmR8oSIU+W3Vt |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 08de97e3739a4244_qwindowsvistastyle.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\styles\qwindowsvistastyle.dll |
| Size | 125.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | efd8e148ee747240c35f489bc1e8d6b7 |
| SHA1 | cf77a16e1b6f3a93a5b14ca4d898389ce9a17a42 |
| SHA256 | 08de97e3739a42443b6013434ab49c0925b615829932c47d5d2b8d1edec8d1a3 |
| CRC32 | E6AFA593 |
| ssdeep | 3072:1d7GxGE+qL9v6BRSbx3E3sghdZ4EYxt6gdr3UM53UFxLKefqC67B+MRVg:YGqQcxeckgdYPFxLKefqC67B+Mc |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 9f7bda59faafc8a4_api-ms-win-core-file-l1-2-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-file-l1-2-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 79ee4a2fcbe24e9a65106de834ccda4a |
| SHA1 | fd1ba674371af7116ea06ad42886185f98ba137b |
| SHA256 | 9f7bda59faafc8a455f98397a63a7f7d114efc4e8a41808c791256ebf33c7613 |
| CRC32 | 2632B956 |
| ssdeep | 192:Y+W1hWifcvHCjdks/nGfe4pBjSYA89sX5W5RKTt3E2sVWQ4GWFuLOgVqnaj6uDp6:Y+W1hWoQim0GftpBj7sIm3SFOslD16hP |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 785c7d67626f13e9_stamp-experimental-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-experimental-n.pdf |
| Size | 6.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 298a853b464ecf193bb309eb174b7861 |
| SHA1 | ee800c96da048f0bc9bb4cf11184059d0e3d1b1c |
| SHA256 | 785c7d67626f13e99a888bd701ab3881f7b1a4d843d33bbe1bda31d30a11a3c1 |
| CRC32 | 36D61546 |
| ssdeep | 192:34nGeaSScKDof5HMNC+I0M4OQjRcsmVkTcHD:3yGeaSScKy45OQjRcsmVkTcHD |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 6ba0875b31529c36_stamp-notforpublicrelease-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-notforpublicrelease-n.pdf |
| Size | 17.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 6c90e5fe5898c8ef539a9213d4db1644 |
| SHA1 | caf7f8eadac7487ef54fdb642d6a3769e92052c2 |
| SHA256 | 6ba0875b31529c369a83af26c6cb0a3eeca402f2cd33e6d42e36baa15023d261 |
| CRC32 | C9A31296 |
| ssdeep | 384:3wceaSScKQNlgaJJavLi2ppYjmRYs/xs66jZ11QprfC33+jK55tLwGswMpCBvTPa:ALScrllJav+2ppBYUDjk/sw5BQh |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 8484b55368264648_text-crosshairs-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-crosshairs-n.pdf |
| Size | 1.5KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | deccf6afd54dbaf4d23456ba6f6d6013 |
| SHA1 | 4100342c302e69da96fc01a5cb5afaea76e0b4d2 |
| SHA256 | 8484b55368264648075cad8a893007f1d8a1e01a6b83ae796f1c8d3af0d2ed98 |
| CRC32 | 169A4C19 |
| ssdeep | 24:uD6TYayzvNseiGAeOtGJj/YuOYwRr/fRSVlST8DEOyH6lINb/ln+XV8UX/WT5ocH:A6kaRGmG5YvYy7RcsmyDrlnkh+cG |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 41e3f69ecc09290e_httpErrorPagesScripts[1] |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZTDTA402\httpErrorPagesScripts[1] |
| Size | 5.4KB |
| Type | UTF-8 Unicode (with BOM) text, with CRLF line terminators |
| MD5 | dea81ac0a7951fb7c6cae182e5b19524 |
| SHA1 | 8022d0b818a0aea1af61346d86e6c374737bc95a |
| SHA256 | 41e3f69ecc09290ebc49be16d2415036ddb2f7a4b868eef4091d0b5a301762fe |
| CRC32 | 5E7F4A18 |
| ssdeep | 96:JCc1g1V1riA1CiOcitXred1cILqcpOnZ1g1V1OWnvvqt:xmjriGCiOciwd1BPOPmjOWnvC |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 19bc8e058a4134a0_text-checkmark-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-checkmark-n.pdf |
| Size | 1.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | c21c1d23be0098037741a5fc075686a3 |
| SHA1 | fa426f57f2be39776ae3dbeb523628dca0c3a0ce |
| SHA256 | 19bc8e058a4134a0690d2b102f23131fd0ba85ebbeed9ab2f68b1a3ce1570e75 |
| CRC32 | FD0EEFDD |
| ssdeep | 24:uD6TYauHhij2Hhp1OYwIr/fRSVlST8DEOyH6lINhln+XV8UmJ0xKV0JBbcMFV:A6MHhHHhpEYH7RcsmyDhlnk2pMcWV |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 4eaa21b0d801fc9c_license |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\libpng\license |
| Size | 5.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | bee5389b0a8d868ef481ddc4677da46c |
| SHA1 | fae68aadae5aa930556f807b2e4c5b3ca5f376b5 |
| SHA256 | 4eaa21b0d801fc9c046923da19a89ceed9269ffc50cb3cb813004e8777ac08af |
| CRC32 | 8027D27D |
| ssdeep | 96:kUa6UgkC3Atvgjoy1ecy85ilpTeLMt849JbLNG0y0/fziMkT4X3kF:kUalgH3AtYj9f22Mt849RVt/fyi3kF |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 1d85d45e834a7ef0_stamp-topsecret-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-topsecret-n.pdf |
| Size | 11.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 2d675f91c6e44d5c2a9d4cbb883eab3c |
| SHA1 | 475867348f4b788b1b14257a35235035b3200b6d |
| SHA256 | 1d85d45e834a7ef0a359eb31fe697ca79542e480431d100295ed10aaf6c147b4 |
| CRC32 | 1FF2CCBB |
| ssdeep | 192:3ignceaSScKqWGKI4cZNZZAppLDXsMprgpUNsPPkoHFFrAfLJPVRcfsJmx3jRcsP:3iaceaSScKt5IJZZAppLIMpNtolC1tRY |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 758a2f9ef6908b51_api-ms-win-core-synch-l1-2-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-synch-l1-2-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 6e704280d632c2f8f2cadefcae25ad85 |
| SHA1 | 699c5a1c553d64d7ff3cf4fe57da72bb151caede |
| SHA256 | 758a2f9ef6908b51745db50d89610fe1de921d93b2dbea919bfdba813d5d8893 |
| CRC32 | C89ED697 |
| ssdeep | 384:DtZ3UW1hWxDzDm0GftpBjEILkm3ScrlPpU9:n0ViIQxi |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 1b9e9ef4e372ae38_stamp-shaccepted-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-shaccepted-n.pdf |
| Size | 8.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | ac4569932e1d5abc1ba8f17f4c95b429 |
| SHA1 | 4ae0757919b4698da02f2d8c88f956f798ea9b8f |
| SHA256 | 1b9e9ef4e372ae38d1dc66e62a6bd8009918440e4efd5c0589f58e2562bc2f7a |
| CRC32 | E7628663 |
| ssdeep | 192:3BnWeaSScKh7FbUtouiovmDGMBE2uIOVz9pOmZFf7Q/eZjRcsmekkXcI:35WeaSScKpFToWk99ZC/eZjRcsmekkXp |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 5920be8802438d5d_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\dancing script\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | UTF-8 Unicode text, with CRLF line terminators |
| MD5 | ba0927d49e37b634f59834bd5cc60c15 |
| SHA1 | 0b40af490c91858747a8b21e1b52c8c1d4b2f92f |
| SHA256 | 5920be8802438d5d88ef51a3e26c8bbd0b087154f5d251615777d17cc7dab5dd |
| CRC32 | 882380CF |
| ssdeep | 96:DW+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:hzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | c725daac91a9259c_copying |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\littlecms\copying |
| Size | 1.1KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with very long lines |
| MD5 | 6c786c3b7a4afbd3c990f1b81261d516 |
| SHA1 | f595de201a37b00737678b96b4c4a10d5bc5f6d9 |
| SHA256 | c725daac91a9259ce5e195683c0eeb797d345035c36ac5ba114c9fa80e11639a |
| CRC32 | A7194A2D |
| ssdeep | 24:snDr4JHBH0yPP3gtAHw1hl9QHcsUv48Ok4/+dbo3oqxFD:snD8JplPvEDvQHcs5ITc3omFD |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 15755c9d488d5444_stamp-draft-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-draft-n.pdf |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 9301a8991fbc8538aebe8871573b13d6 |
| SHA1 | f06d8b72d2180194f31c1e2e58ac249566846bd9 |
| SHA256 | 15755c9d488d5444ea7974a876fb5ec51ee8404915ea3d42f119334c5a38cf5b |
| CRC32 | 1739B924 |
| ssdeep | 96:AaJnnbgeaSScKhxW7TbknnYGysvH4NDVtyCCb9UPmsjRcsmyJlk1cHk:31nceaSScKIwysvZCGUPmsjRcsm0k1cE |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | c870941ccd854860_installerpdf.exe |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\installerpdf.exe |
| Size | 15.1MB |
| Processes | 2820 (INVOICE_64645686826464874949653635373637363736276363726376.pdf.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | cde9935aa4cc6713eb6c31572c134f97 |
| SHA1 | 714330893cc6f8763c061b22e80dabd6e811ee4b |
| SHA256 | c870941ccd8548606b0b64bcaad787ad5d4bfb996d8743294b2edbdce1836730 |
| CRC32 | F65F943E |
| ssdeep | 393216:LRIBOa06CM3cTDN8blTXUFBK2zBKpr4P9vOULjZbH:mD5CdATXUPKea4VvTLh |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ec57343133837150_api-ms-win-core-memory-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-memory-l1-1-0.dll |
| Size | 18.3KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 3940167ffb4383992e73f9a10e4b8b1e |
| SHA1 | 53541c824003b0f90b236eda83b06bec5e1acbf5 |
| SHA256 | ec573431338371504b7b9e57b2d91382b856aabf25d2b4ad96486efb794c198e |
| CRC32 | B64AA8BB |
| ssdeep | 384:tbtW1hWwDzDm0GftpBjQxY8m3SSlPpT2R:OzViiDqp2R |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 77b5b188bd1a9f40_fileattachment-paperclip-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\fileattachment-paperclip-n.pdf |
| Size | 3.2KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | ce73c5078afef2888b36980d2d7ce781 |
| SHA1 | 57680e483fe36b9cea80c5fcfd52c7f9a8acea62 |
| SHA256 | 77b5b188bd1a9f40c2935f94d015621bd99b64df0131370a727076efb02b85d2 |
| CRC32 | FDD08F53 |
| ssdeep | 96:A6AgKsM7xUECdgKsM7xUECKL7Rcsmyulkl8cH9:N5KI2KIWL7Rcsm/kCcH9 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | e57fb0db7707e980_fileattachment-tag-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\fileattachment-tag-n.pdf |
| Size | 2.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | 56e65d5569963fa1b3c0b4960a532b09 |
| SHA1 | a3928b449f396d32afd5eb5f8bb79306d6519917 |
| SHA256 | e57fb0db7707e980e6a0c435b5ed76d5f400b1dc4f118b82ff7b07a788b26a49 |
| CRC32 | 09C9BA4C |
| ssdeep | 48:A6ifn7srUFgBCneFzBH4yfn7srUFgBekneFzBH41Ysl7RcsmyDBHlnkZcHV:A6iQrcgBCazR4yQrcgB/azR4msl7RcsL |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 74d8527833cfae51_qgif.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\imageformats\qgif.dll |
| Size | 31.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 1ae03e5dc7e2f63f95f71454589a8a93 |
| SHA1 | 2cfb0a4b16bad59412229be3faab3dc3838fceb5 |
| SHA256 | 74d8527833cfae5105c154fbc2ec195f3245f4e7a2a8ff1e2e340f811f89d6e5 |
| CRC32 | 4F79E6FB |
| ssdeep | 768:PrQNMPJisW4ycMZ5lOO3WHceA4sFVaWsjb7UchdNxJlE/XTkP:PrAqRk5UO3W8exWsn7UchDn+TkP |
| Yara |
|
| VirusTotal | Search for analysis |
| Name |
e3b0c44298fc1c14___tmp_rar_sfx_access_check_28859750
Empty file or file not found
|
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\__tmp_rar_sfx_access_check_28859750 |
| Size | 0.0B |
| Type | empty |
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| CRC32 | 00000000 |
| ssdeep | 3:: |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 388a796580234efc__setup64.tmp |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\is-CKL3F.tmp\_isetup\_setup64.tmp |
| Size | 6.0KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32+ executable (console) x86-64, for MS Windows |
| MD5 | e4211d6d009757c078a9fac7ff4f03d4 |
| SHA1 | 019cd56ba687d39d12d4b13991c9a42ea6ba03da |
| SHA256 | 388a796580234efc95f3b1c70ad4cb44bfddc7ba0f9203bf4902b9929b136f95 |
| CRC32 | 2CDCC338 |
| ssdeep | 96:sfkcXegaJ/ZAYNzcld1xaX12p+gt1sONA0:sfJEVYlvxaX12C6A0 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | e2f9c6d03abede05_installerpdf.tmp |
|---|---|
| Filepath | C:\Users\test22\AppData\Local\Temp\is-J90CH.tmp\installerpdf.tmp |
| Size | 2.6MB |
| Processes | 2988 (installerpdf.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 01b185b85ff7a866c96d966511286818 |
| SHA1 | 9a880a6c24e3b04953521544b8df511f3b3055bc |
| SHA256 | e2f9c6d03abede052a5090964650ddcad417fbb7ce5ac12b602eae99ca53189a |
| CRC32 | C106824E |
| ssdeep | 49152:Xg2qPtc1e5OS7bPGoUl+x/grN4azvchYk2f5:XvqPCnrN4azvSYJ |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | dbd788b1c5694d65_api-ms-win-core-namedpipe-l1-1-0.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\api-ms-win-core-namedpipe-l1-1-0.dll |
| Size | 17.8KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| MD5 | 990ac84ae2d83eeb532a28fe29602827 |
| SHA1 | 0916f85cc6cc1f01dc08bdf71517a1dc1b8eaf78 |
| SHA256 | dbd788b1c5694d65fa6f6e2202bfabb30adf77eb1973ceb9a737efb16e9edae2 |
| CRC32 | B43B4E92 |
| ssdeep | 192:DW1hWBuI2WksSrCjdks/nGfe4pBjSY7ecjkUA/W5RKTt3E2sVWQ4GWZ0MVqnaj6f:DW1hWQ3szm0GftpBjH2Wm3SPAlD16h9 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 97556cae0f7d498f_stamp-approved-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\stamp-approved-n.pdf |
| Size | 8.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | a9c5599373b106c5f1eddaf5e1a115e3 |
| SHA1 | d4d8d3f6306fc7fc06c08a0f0bbe485e55b9ad68 |
| SHA256 | 97556cae0f7d498f9f3b4a8b5ba24fcceae569618beca4330a7e37866635bf33 |
| CRC32 | 367D54FE |
| ssdeep | 192:3BnWeaSScKnAzqrSWld3nbRWjceTDX/r/XjRcsmMkscHc:35WeaSScKAzqrN3bwjFT/XjRcsmMksc8 |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 44be74fab077cd38_nn-1.crt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\certs\nn-1.crt |
| Size | 2.3MB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with very long lines, with CRLF line terminators |
| MD5 | 6e832f5703f8e6c19bdbcb4ec47c76a5 |
| SHA1 | 4700fd25c86ac4abb559959052ed624e09f69e98 |
| SHA256 | 44be74fab077cd38ba718a470b2d9bb198d4cac064e3f9f417d6a2c0ddd15750 |
| CRC32 | 893129AC |
| ssdeep | 49152:0WNFZyF0kgHKcxnqitI6lMFy53yaT9ITtnney7DMm7xi4LsbKhyn/ZAkalihfsT7:q |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 7095897bcf5e7c52_text-insert-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\text-insert-n.pdf |
| Size | 1009.0B |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | b674cdfc2c7069ddb1493fb3c6260ba5 |
| SHA1 | ffd444f8f8157dbf830a55a899473a91a61501eb |
| SHA256 | 7095897bcf5e7c5201d2ee5456e3d3370087602dd0bd7a67ca86756be7469d3b |
| CRC32 | CBE5CBBD |
| ssdeep | 24:uD6TYaEAjixOYwUr/fRSVlST8DEOyH6lINaAln+XV8UWx84V8x4+gbcq:A61Y/7RcsmyDblnkyVBcq |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 873d7653ae9a0bbd_qsvgicon.dll |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\iconengines\qsvgicon.dll |
| Size | 39.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| MD5 | 73225af20163a07237336626e6fb070d |
| SHA1 | 86bcfb5b689ad3609a78611c0fa2cd95b3fc549e |
| SHA256 | 873d7653ae9a0bbd4394f2510fc671b15b12691f31f7b39e307dd04072a8f465 |
| CRC32 | 78D2D92B |
| ssdeep | 768:y1cfHWYTrfRI/olAT3AYiv0JGHaCXP5j5w33szcb+fI0T4BE/XG:y1c7fRBlAT3AYi8JGHTFS3czm+fI0T4x |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | aff913cf09bde511_fileattachment-pushpin-n.pdf |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\annots\fileattachment-pushpin-n.pdf |
| Size | 1.9KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | PDF document, version 1.7 |
| MD5 | b027614365ce435ffd791f15beae642f |
| SHA1 | 72a8787315e2a92fb965ddfecd9dca2694b80316 |
| SHA256 | aff913cf09bde51140affecd2783d1336af69654eb351badc485b67e24c2067c |
| CRC32 | 727AD74C |
| ssdeep | 48:A65LfuakpQa9BBPLfuakpQa9BOn5Yr7RcsmyD/lnkGrncs:A65MQaBMQarr7RcsmyjlkGTcs |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | ec1d7de447a90e4b_ofl.txt |
|---|---|
| Filepath | c:\program files (x86)\investintech.com inc\slim pdf reader 2.0\licenses\clicker script\ofl.txt |
| Size | 4.4KB |
| Processes | 3048 (installerpdf.tmp) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 7799a5567dca0b114021f021f8ae1a9c |
| SHA1 | 90838edbe90af25dfafa3f19d509fce3f87f326a |
| SHA256 | ec1d7de447a90e4b6d8f2b4f95c7f89a70e315fdb41969bc716059e4f2461fa4 |
| CRC32 | AFC7919D |
| ssdeep | 96:l27W+bHiilxwnEOWOKajy4vyviXQaGYBC23zCdZuKy0iQHZoG:l2Jzl7hqyvaQ1+3zCdyQHZV |
| Yara | None matched |
| VirusTotal | Search for analysis |