diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2.py b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2.py
index 27510918a133..ceb763c3c276 100644
--- a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2.py
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2.py
@@ -247,6 +247,11 @@ def delete_sample(a1000):
     except Exception as e:
         return_error(str(e))
 
+    results, file_result = delete_sample_output(response_json=response_json)
+    return [results, file_result]
+
+
+def delete_sample_output(response_json):
     res = response_json.get('results')
     markdown = f'''## ReversingLabs A1000 delete sample\n **Message:** {res.get('message')}
     **MD5:** {demisto.get(res, 'detail.md5')}
@@ -262,7 +267,7 @@ def delete_sample(a1000):
     file_result = fileResult('Delete sample report file', json.dumps(response_json, indent=4),
                              file_type=EntryType.ENTRY_INFO_FILE)
 
-    return [command_result, file_result]
+    return command_result, file_result
 
 
 def reanalyze(a1000):
@@ -283,6 +288,11 @@ def reanalyze(a1000):
     except Exception as e:
         return_error(str(e))
 
+    results, file_result = reanalyze_output(response_json=response_json)
+    return [results, file_result]
+
+
+def reanalyze_output(response_json):
     try:
         result = response_json.get("results")[0]
     except Exception as e:
@@ -302,7 +312,7 @@ def reanalyze(a1000):
     file_result = fileResult('ReAnalyze sample report file', json.dumps(response_json, indent=4),
                              file_type=EntryType.ENTRY_INFO_FILE)
 
-    return [command_result, file_result]
+    return command_result, file_result
 
 
 def list_extracted_files(a1000):
@@ -483,6 +493,11 @@ def advanced_search(a1000):
     except Exception as e:
         return_error(str(e))
 
+    results, file_result = advanced_search_output(result_list=result_list)
+    return [results, file_result]
+
+
+def advanced_search_output(result_list):
     command_result = CommandResults(
         outputs_prefix='ReversingLabs',
         outputs={'a1000_advanced_search_report': result_list},
@@ -492,7 +507,7 @@ def advanced_search(a1000):
     file_result = fileResult('Advanced search report file', json.dumps(result_list, indent=4),
                              file_type=EntryType.ENTRY_INFO_FILE)
 
-    return [command_result, file_result]
+    return command_result, file_result
 
 
 def get_url_report(a1000):
@@ -1148,7 +1163,7 @@ def sample_classification_command(a1000: A1000):
 
         elif action == "SET CLASSIFICATION":
             classification = demisto.getArg("classification")
-            risk_score = demisto.getArg("risk_score")
+            risk_score = arg_to_number(demisto.getArg("risk_score"))
             threat_platform = demisto.getArg("threat_platform")
             threat_name = demisto.getArg("threat_name")
             threat_type = demisto.getArg("threat_type")
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2_test.py b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2_test.py
index cbc69ee25041..cfdd8080e31e 100644
--- a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2_test.py
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/ReversingLabsA1000v2_test.py
@@ -1,6 +1,9 @@
 import json
 from ReversingLabsA1000v2 import a1000_report_output, list_extracted_files_output, get_classification_output, \
-    classification_to_score, url_report_output, domain_report_output, ip_report_output, format_proxy
+    classification_to_score, url_report_output, domain_report_output, ip_report_output, format_proxy, \
+    file_analysis_status_output, pdf_report_output, static_analysis_report_output, dynamic_analysis_report_output, \
+    sample_classification_output, yara_output, yara_retro_output, list_containers_output, upload_from_url_output, \
+    delete_sample_output, reanalyze_output, advanced_search_output, VERSION, USER_AGENT, RELIABILITY, return_proxies
 import demistomock as demisto
 import pytest
 
@@ -66,6 +69,123 @@ def test_ip_report_output():
     assert result.to_context() == test_context
 
 
+def test_file_analysis_status_output():
+    test_response = util_load_json("test_data/a1000_analysis_status.json")
+
+    result = file_analysis_status_output(resp_json=test_response)
+
+    for k, v in result.to_context().items():
+        if k == "hash_value":
+            assert v == "d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5"
+
+
+def test_pdf_report_output():
+    test_response = util_load_json("test_data/a1000_pdf_report.json")
+
+    result = pdf_report_output(resp=test_response, sample_hash="d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5", action="CHECK STATUS")
+
+    for k, v in result[0].to_context().items():
+        if k == "status":
+            assert v == 2
+
+
+def test_static_analysis_report_output():
+    test_response = util_load_json("test_data/a1000_static_analysis.json")
+
+    result = static_analysis_report_output(resp_json=test_response, sample_hash="d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5")
+
+    for k, v in result.to_context().items():
+        if k == "Contents":
+            assert "a1000_static_analysis_report" in v
+
+
+def test_dynamic_analysis_report_output():
+    test_response = util_load_json("test_data/a1000_dynamic_analysis.json")
+
+    result = dynamic_analysis_report_output(resp=test_response, action="CHECK STATUS", report_format="pdf",
+                                            sample_hash="d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5")
+
+    for k, v in result[0].to_context().items():
+        if k == "status":
+            assert v == 1
+
+
+def test_sample_classification_output():
+    test_response = util_load_json("test_data/a1000_sample_classification.json")
+
+    result = sample_classification_output(resp_json=test_response, action="GET CLASSIFICATION", av_scanners=False,
+                                          sample_hash="d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5")
+
+    for k, v in result.to_context().items():
+        if k == "Contents":
+            assert "a1000_sample_classification" in v
+
+
+def test_yara_output():
+    rulesets = util_load_json("test_data/a1000_yara_get_rulesets.json")
+    contents = util_load_json("test_data/a1000_yara_get_contents.json")
+
+    result_rulesets = yara_output(resp_json=rulesets, action="GET RULESETS")
+    result_contents = yara_output(resp_json=contents, action="GET CONTENTS")
+
+    assert result_rulesets.to_context().get("Contents").get("a1000_yara").get("count") == 4
+    assert result_contents.to_context().get("Contents").get("a1000_yara").get("detail").get("name") == "test_yara_rule"
+
+
+def test_yara_retro_output():
+    local = util_load_json("test_data/a1000_yara_retro_local.json")
+    cloud = util_load_json("test_data/a1000_yara_retro_cloud.json")
+
+    result_local = yara_retro_output(resp_json=local, action="LOCAL SCAN STATUS")
+    result_cloud = yara_retro_output(resp_json=cloud, action="CLOUD SCAN STATUS")
+
+    assert result_local.to_context().get("Contents").get("a1000_yara_retro").get("status").get("state") == "COMPLETED"
+    assert result_cloud.to_context().get("Contents").get("a1000_yara_retro").get("status").get("cloud_status") == "ACTIVE"
+
+
+def test_list_containers_output():
+    containers = util_load_json("test_data/a1000_list_containers.json")
+    result = list_containers_output(resp_json=containers)
+
+    assert result.to_context().get("Contents").get("a1000_list_containers").get("count") == 0
+
+
+def test_upload_from_url_output():
+    upload = util_load_json("test_data/a1000_upload_from_url.json")
+    report = util_load_json("test_data/a1000_report_from_url.json")
+    check = util_load_json("test_data/a1000_check_from_url.json")
+
+    result_upload = upload_from_url_output(resp_json=upload, action="UPLOAD")
+    result_report = upload_from_url_output(resp_json=report, action="GET REPORT")
+    result_check = upload_from_url_output(resp_json=check, action="CHECK ANALYSIS STATUS")
+
+    assert result_upload.to_context().get("Contents").get("a1000_upload_from_url_actions").get("message") == "Done."
+    assert result_report.to_context().get("Contents").get("a1000_upload_from_url_actions").get("processing_status") == "complete"
+    assert result_check.to_context().get("Contents").get("a1000_upload_from_url_actions").get("processing_status") == "complete"
+
+
+def test_delete_sample_output():
+    report = util_load_json("test_data/a1000_delete_sample.json")
+    result = delete_sample_output(response_json=report)
+
+    assert result[0].to_context().get("Contents").get("a1000_delete_report").get("results").get("code") == 200
+
+
+def test_reanalyze_output():
+    report = util_load_json("test_data/a1000_reanalyze.json")
+    result = reanalyze_output(response_json=report)
+
+    assert (result[0].to_context().get("Contents").get("a1000_reanalyze_report").get("results")[0].get("detail").get("sha1") ==
+            "d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5")
+
+
+def test_advanced_search_output():
+    report = util_load_json("test_data/a1000_advanced_search.json")
+    result = advanced_search_output(result_list=report)
+
+    assert result[0].to_context().get("Contents").get("a1000_advanced_search_report")[0].get("available")
+
+
 def test_classification_to_score():
     assert classification_to_score("MALICIOUS") == 3
 
@@ -77,9 +197,21 @@ def test_format_proxy():
         password="pass1"
     )
 
+    formatted_http = format_proxy(
+        addr="http://proxy-address.com",
+        username="user1",
+        password="pass1"
+    )
+
     correct_expected = "https://user1:pass1@proxy-address.com"
 
     assert formatted_correctly == correct_expected
+    assert formatted_http != correct_expected
+
+
+def test_vars():
+    assert USER_AGENT == "ReversingLabs XSOAR A1000 " + VERSION
+    assert RELIABILITY is not None
 
 
 def util_load_json(path):
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_advanced_search.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_advanced_search.json
new file mode 100644
index 000000000000..99b05300b869
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_advanced_search.json
@@ -0,0 +1 @@
+[{"available": true, "sha1": "3d615604bf4979f86befbe1358028198d9123a59", "classification": "malicious", "threatname": "Document-PDF.Phishing.Generic", "size": 171465, "sampletype": "Document/None/PDF", "antivirus": 5, "filename": "alldata-v1040w-import-disc-5-19902011-free-download.pdf", "lastseen": "2024-06-11T13:41:15Z", "filecount": 0, "factor": 10, "sha256": "877b8bab995bcb4b7ad52166c07897d1c79d03d4abf6278c78645e74bb86a8c8", "firstseen": "2024-06-11T13:25:14Z", "md5": "bb40a4830252928b43802405a1a03997"}, {"available": true, "sha1": "2954c5702057e44569f8a912ddfcd00e24b6909f", "classification": "malicious", "threatname": "Document-HTML.Trojan.Heuristic", "size": 55236, "sampletype": "Text/HTML/HTML", "antivirus": 5, "lastseen": "2024-06-11T13:38:13Z", "filecount": 0, "factor": 7, "sha256": "65394a2065064c768b44acb77c5b303b0ffdd906bc34d6b7f882f5b72ae2a6bb", "firstseen": "2024-06-11T13:24:37Z", "md5": "2c88feef1f8869a5c42f8f9e48f70cf5"}, {"available": true, "sha1": "12352dcd0a22c2a995d110aa7cb1730bb77bc4d7", "classification": "malicious", "threatname": "Document-HTML.Trojan.Heuristic", "size": 77862, "sampletype": "Text/HTML/HTML", "antivirus": 5, "lastseen": "2024-06-11T13:33:03Z", "filecount": 0, "factor": 7, "sha256": "a8ae9a80d2e77d644bcb979b5969d5033a9d3d57b033471243ebbb1bc0f06796", "firstseen": "2024-06-11T13:24:26Z", "md5": "5ab6250a891abaf4c50a882cd838b07a"}]
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_analysis_status.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_analysis_status.json
new file mode 100644
index 000000000000..e55ad2588f61
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_analysis_status.json
@@ -0,0 +1 @@
+{"hash_type":"sha1","results":[{"hash_value":"d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5","status":"processed"}]}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_check_from_url.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_check_from_url.json
new file mode 100644
index 000000000000..c6751b78df64
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_check_from_url.json
@@ -0,0 +1 @@
+ {"processing_status":"complete","message":"","report":{"id":21416,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","sha256":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267","sha512":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089","md5":"591561a993ef58f8c547f1542c1ed2d8","imphash":"20dd26497880c05caed9305b3c8b9109","category":"application","file_type":"PE","file_subtype":"Exe","identification_name":"InnoSetup","identification_version":"Generic","file_size":16473312,"extracted_file_count":4685,"local_first_seen":"2024-06-05T12:47:28.049306Z","local_last_seen":"2024-06-11T12:02:07.548751Z","classification_origin":null,"classification_reason":"antivirus","classification":"goodware","riskscore":2,"classification_result":null,"av_scanners":[{"record_time":"2023-11-24T01:28:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":null},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":null},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":null},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":null},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":null},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":null},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":null}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":null},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":null},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":null},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":null},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":null},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":null},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":null},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":null},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":null},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":null},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":null},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":null},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":null},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":null},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":null},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":null},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":null},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":null},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":null},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":null},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":null},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":null},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":null},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":null},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":null},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":null},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":null},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":null},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":null}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":null},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":null},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":null},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":null},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":null},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":null},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":null},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":null},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":null},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":null},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":null},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":null},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":null},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":null},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":null},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":null},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":null},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":null},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":null},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":null},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":null},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":null},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":null},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":null},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":null},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":null},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":null},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":null},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":null},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":null},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":null},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":null},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":null},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":null},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":null},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":null}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2023-11-25T01:48:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2023-12-07T01:51:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2024-01-18T14:31:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-04-03T03:46:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-04-21T15:40:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":23,"scanner_percent":0.0},{"record_time":"2024-06-02T02:40:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-06-02T21:11:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-06-05T13:04:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":37,"scanner_percent":0.0},{"record_time":"2024-06-05T13:17:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":37,"scanner_percent":0.0},{"record_time":"2024-06-05T15:21:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":36,"scanner_percent":0.0},{"record_time":"2024-06-11T12:11:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":38,"scanner_percent":0.0},{"record_time":"2024-06-11T12:16:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":38,"scanner_percent":0.0}],"av_scanners_summary":{"scanner_count":29,"scanner_match":0,"scanner_percent":0.0,"vendor_count":19,"vendor_match":0,"vendor_percent":0.0,"antivirus":{"scanner_match":0,"scanner_count":29,"vendor_match":0,"vendor_count":19}},"cape":{"results":[],"status":null},"cuckoo":{"results":[],"status":null},"fireeye":{"results":[],"status":null},"joe":{"results":[],"status":null},"rl_cloud_sandbox":{"results":[{"value":"NO_THREATS_FOUND","key":"classification"}],"status":"Reported","classification_impact_message":"Not configured to be included in the final classification.","included_in_rca2":true},"sample_summary":{"id":21416,"classification_origin":null,"classification_reason":"antivirus","classification_source":"cloud","summary":{"id":21416,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","indicators":[{"priority":7,"category":22,"description":"Deletes files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":101},{"priority":7,"category":11,"description":"Requests permission required to shut down a system.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"},{"propagated":false,"category":"Strings","description":"Contains the following string: SeShutdownPrivilege"}],"id":990},{"priority":6,"category":10,"description":"Executes a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateProcessW"}],"id":21},{"priority":5,"category":22,"description":"Writes to files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":99},{"priority":5,"category":11,"description":"Tampers with user/account privileges.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"}],"id":329},{"priority":5,"category":12,"description":"Checks operating system version.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetVersion"}],"id":930},{"priority":5,"category":9,"description":"Enumerates the values of a registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":18370},{"priority":5,"category":9,"description":"Opens registry keys.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"}],"id":18373},{"priority":4,"category":22,"description":"Deletes files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"}],"id":5},{"priority":4,"category":9,"description":"Accesses/modifies registry.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":7},{"priority":4,"category":22,"description":"Creates/opens files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":95},{"priority":4,"category":22,"description":"Reads from files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":97},{"priority":4,"category":10,"description":"Tampers with system shutdown.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ExitWindowsEx"}],"id":117},{"priority":4,"category":13,"description":"Enumerates system information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":149},{"priority":4,"category":0,"description":"Contains URLs.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: For more detailed information, please visit http://www.jrsoftware.org/"}],"id":310},{"priority":4,"category":12,"description":"Reads paths to system directories on Windows.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":967},{"priority":4,"category":11,"description":"Enumerates user/account privilege information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LookupPrivilegeValueW"}],"id":1215},{"priority":3,"category":22,"description":"Writes to files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":3},{"priority":3,"category":1,"description":"Detects presence of debuggers.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetTickCount"}],"id":9},{"priority":3,"category":7,"description":"Detects/enumerates process modules.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetModuleFileNameW"}],"id":81},{"priority":3,"category":22,"description":"Removes a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RemoveDirectoryW"}],"id":340},{"priority":3,"category":14,"description":"Contains one or more script files.","relevance":0,"reasons":[{"propagated":false,"category":"Tag Match","description":"Matched contains-script tag"}],"id":1160},{"priority":3,"category":4,"description":"Allocates additional memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LocalAlloc"}],"id":17985},{"priority":3,"category":10,"description":"Forces a window to close.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DestroyWindow"}],"id":17990},{"priority":3,"category":22,"description":"Queries file attributes.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileAttributesW"}],"id":17997},{"priority":3,"category":22,"description":"Changes the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetEndOfFile"}],"id":18066},{"priority":3,"category":12,"description":"Enumerates the installed system languages.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetUserDefaultLangID"}],"id":18368},{"priority":2,"category":22,"description":"Reads from files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":1},{"priority":2,"category":10,"description":"Loads additional libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LoadLibraryW"}],"id":69},{"priority":2,"category":10,"description":"Loads additional APIs.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetProcAddress"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Loads additional libraries."}],"id":70},{"priority":2,"category":10,"description":"Tampers with module search locations.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: SetDllDirectoryW"}],"id":92},{"priority":2,"category":12,"description":"Enumerates files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: FindFirstFileW"}],"id":119},{"priority":2,"category":13,"description":"Enumerates system variables.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetEnvironmentVariableW"}],"id":151},{"priority":2,"category":22,"description":"Creates a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateDirectoryW"}],"id":338},{"priority":2,"category":10,"description":"Delays execution.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: Sleep"}],"id":17984},{"priority":2,"category":10,"description":"Displays a dialog box with a message.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxW"}],"id":17989},{"priority":2,"category":22,"description":"Queries the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileSize"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17991},{"priority":2,"category":12,"description":"Queries the free disk space.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetDiskFreeSpaceW"}],"id":18001},{"priority":2,"category":4,"description":"Frees previously allocated memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: VirtualFree"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Allocates additional memory in the calling process."}],"id":18585},{"priority":1,"category":22,"description":"Creates/Opens a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"}],"id":0},{"priority":1,"category":12,"description":"Enumerates user locale information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: EnumCalendarInfoW"}],"id":287},{"priority":1,"category":12,"description":"Contains references to executable file extensions.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: ernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: userenv.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":313},{"priority":1,"category":10,"description":"Contains reference to apphelp.dll which is Application Compatibility Client Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"}],"id":3502},{"priority":1,"category":10,"description":"Contains reference to clbcatq.dll which is COM+ Configuration Catalog.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"}],"id":4146},{"priority":1,"category":10,"description":"Contains reference to comres.dll which is COM+ Resources.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"}],"id":5025},{"priority":1,"category":10,"description":"Contains reference to cryptbase.dll which is Base cryptographic API DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"}],"id":5076},{"priority":1,"category":10,"description":"Contains reference to dwmapi.dll which is Microsoft Desktop Window Manager API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"}],"id":5616},{"priority":1,"category":10,"description":"Contains reference to kernel32.dll which is Windows NT BASE API Client DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"}],"id":7482},{"priority":1,"category":10,"description":"Contains reference to oleacc.dll which is Active Accessibility Core Component.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"}],"id":9174},{"priority":1,"category":10,"description":"Contains reference to profapi.dll which is User Profile Basic API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"}],"id":9519},{"priority":1,"category":10,"description":"Contains reference to propsys.dll which is Microsoft Property System.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"}],"id":9523},{"priority":1,"category":10,"description":"Contains reference to setupapi.dll which is Windows Setup API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"}],"id":10253},{"priority":1,"category":10,"description":"Contains reference to shell32.dll which is Windows Shell Common Dll.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"}],"id":10300},{"priority":1,"category":10,"description":"Contains reference to uxtheme.dll which is Microsoft UxTheme Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"}],"id":11278},{"priority":1,"category":10,"description":"Contains reference to version.dll which is Version Checking and File Installation Libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":11315},{"priority":1,"category":22,"description":"Sets or updates the file pointer position within an open file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetFilePointer"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17986},{"priority":1,"category":9,"description":"Closes a previously open registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegCloseKey"}],"id":17987},{"priority":1,"category":22,"description":"Closes a previously open file descriptor.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CloseHandle"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":18020},{"priority":1,"category":16,"description":"Uses string related methods.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: lstrcpynW"}],"id":18050}],"unpacking_status":{"failed":0,"success":1,"partial":0}},"aliases":["https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"],"tags":{"ticore":["antivirus","arch-x86","capability-execution","desktop","entropy-high","gui","overlay","contains-archive","contains-pe","antidebugging","capability-filesystem","capability-security","indicator-registry","indicator-search","indicator-settings","string-http","indicator-execution","indicator-file","indicator-network","protection-aslr","protection-dep","version-info","contains-script","indicator-permissions","capability-cryptography","string-https","cert-signed","crypto-pkcs","privilege-escalation","installer","cert-weak-crypto","sfx","cert-weak-crypto-digest","cert-timestamped"],"user":["URL Download"]},"classification":"goodware","riskscore":2,"classification_result":null,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","sha256":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267","sha512":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089","md5":"591561a993ef58f8c547f1542c1ed2d8","category":1,"file_type":"PE","file_subtype":"Exe","identification_name":"InnoSetup","identification_version":"Generic","file_size":16473312,"extracted_file_count":4685,"local_first_seen":"2024-06-05T12:47:28.049306Z","local_last_seen":"2024-06-11T12:02:07.548751Z","goodware_override":false},"sources":{"ticloud_sources":{"entries":[{"record_time":"2024-06-06T08:47:36","tag":"reversing_labs","properties":[{"name":"url","value":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"ip_address","value":"104.236.0.104"}],"domain":{"name":"sublimetext.com"}},{"record_time":"2024-04-06T17:39:37","tag":"reversing_labs","properties":[{"name":"os_name","value":"Windows, macOS, Linux"},{"name":"url","value":"https://www.techspot.com/downloads/5546-sublime-text.html"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"application_description","value":"Sublime Text is a sophisticated text editor for code, markup and prose. You'll love the slick user interface, extraordinary features and amazing performance."},{"name":"application_name","value":"Sublime Text"},{"name":"ip_address","value":"104.26.15.232"},{"name":"release_date","value":"2024-04-03"}],"domain":{"name":"techspot.com"}},{"record_time":"2024-01-18T16:07:58","tag":"reversing_labs"},{"record_time":"2024-01-18T12:55:38","tag":"reversing_labs"},{"record_time":"2023-12-18T08:09:09","tag":"reversing_labs","properties":[{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"}]},{"record_time":"2023-12-02T18:59:20","tag":"reversing_labs","properties":[{"name":"file_name","value":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"}]},{"record_time":"2023-11-26T15:24:52","tag":"reversing_labs"},{"record_time":"2023-11-25T06:38:41","tag":"reversing_labs","properties":[{"name":"url","value":"https://www.filehorse.com/download-sublime-text/download/"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"application_description","value":"A super fast and modern-looking text and development editor"},{"name":"application_version","value":"Sublime Text 4169 "},{"name":"application_name","value":"Sublime Text"},{"name":"ip_address","value":"83.149.84.232"},{"name":"release_date","value":"2023-11-24"}],"domain":{"name":"filehorse.com"}},{"record_time":"2023-11-24T17:08:13","tag":"reversing_labs","properties":[{"name":"url","value":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"ip_address","value":"104.236.0.104"}],"domain":{"name":"sublimetext.com"}},{"record_time":"2023-11-24T01:18:58","tag":"external_feed","properties":[{"name":"tags","value":"malware"}]}],"named_group":{"reversing_labs":[{"record_time":"2024-06-06T08:47:36","url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","file_name":"sublime_text_build_4169_x64_setup.exe","ip_address":"104.236.0.104"},{"record_time":"2024-04-06T17:39:37","os_name":"Windows, macOS, Linux","url":"https://www.techspot.com/downloads/5546-sublime-text.html","file_name":"sublime_text_build_4169_x64_setup.exe","application_description":"Sublime Text is a sophisticated text editor for code, markup and prose. You'll love the slick user interface, extraordinary features and amazing performance.","application_name":"Sublime Text","ip_address":"104.26.15.232","release_date":"2024-04-03"},{"record_time":"2023-12-18T08:09:09","file_name":"sublime_text_build_4169_x64_setup.exe"},{"record_time":"2023-12-02T18:59:20","file_name":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"},{"record_time":"2023-11-25T06:38:41","url":"https://www.filehorse.com/download-sublime-text/download/","file_name":"sublime_text_build_4169_x64_setup.exe","application_description":"A super fast and modern-looking text and development editor","application_version":"Sublime Text 4169 ","application_name":"Sublime Text","ip_address":"83.149.84.232","release_date":"2023-11-24"},{"record_time":"2023-11-24T17:08:13","url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","file_name":"sublime_text_build_4169_x64_setup.exe","ip_address":"104.236.0.104"}],"external_feed":[{"record_time":"2023-11-24T01:18:58","tags":"malware"}]},"count":7},"other_sources":[],"relationships":{"container_samples":[{"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","classification":"goodware","threat_name":null,"sample_size":16473312,"factor":2,"format":"InnoSetup:Generic","location":"local"},{"sha1":"2e80025605916aa0f39f6f85d04ece95f4fba709","classification":"goodware","threat_name":null,"factor":3,"format":"Binary/Archive/GZIP","location":"cloud"},{"sha1":"b0bf3eef43d2316d3225ca21cac3c8648b905ba8","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/GZIP","location":"cloud"},{"sha1":"25a6a84449d56aaaf2632cf7f075b19eb635b360","classification":"suspicious","threat_name":"Win64.Certificate.Invalid","factor":6,"format":"Binary/Archive/RAR","location":"cloud"},{"sha1":"c6c8d5240988228c52f23d3bfc5a66205a6d800a","classification":"suspicious","threat_name":"Win64.Malware.Generic","factor":7,"format":"PE+/Exe/ZIP","location":"cloud"}],"parent_samples":[{"sha1":"b0bf3eef43d2316d3225ca21cac3c8648b905ba8","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/GZIP","location":"cloud"},{"sha1":"d6533ef1ec80a07c7aefe9d69f1849a9d4d7fb09","classification":"malicious","threat_name":"Win32.Trojan.Swisyn","factor":10,"format":"PE/Exe","location":"cloud"},{"sha1":"2278ba8946215481d8269648193d31de42e3e8fa","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/ZIP","location":"cloud"},{"sha1":"06f21fe88a839a4cc2037b99a11681fab4a8eeb5","classification":"unclassified","threat_name":null,"factor":3,"format":"Binary/Archive/TAR","location":"cloud"},{"sha1":"828112f0fd84dbbc557b857e0654b0d0980d2e83","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/ZIP","location":"cloud"}]}},"tags":{"ticore":["antivirus","arch-x86","capability-execution","desktop","entropy-high","gui","overlay","contains-archive","contains-pe","antidebugging","capability-filesystem","capability-security","indicator-registry","indicator-search","indicator-settings","string-http","indicator-execution","indicator-file","indicator-network","protection-aslr","protection-dep","version-info","contains-script","indicator-permissions","capability-cryptography","string-https","cert-signed","crypto-pkcs","privilege-escalation","installer","cert-weak-crypto","sfx","cert-weak-crypto-digest","cert-timestamped"],"user":["URL Download"]},"ticloud":{"classification":"goodware","riskscore":2,"first_seen":"2023-11-24T01:18:58Z","last_seen":"2024-06-11T12:17:52Z","classification_result":null,"classification_reason":"antivirus"},"ticore":{"info":{"statistics":{"file_stats":[{"type":"Binary","subtype":"Archive","count":55,"identifications":[{"count":55,"name":"ZIP:Generic"}]},{"type":"Binary","subtype":"None","count":1309,"identifications":[{"count":17,"name":"ICC:Generic"},{"count":11,"name":"IconResource:Generic"},{"count":1144,"name":"PythonPYC:Generic"},{"count":137,"name":"Unknown"}]},{"type":"Document","subtype":"None","count":164,"identifications":[{"count":1,"name":"AffixAFF:Generic"},{"count":163,"name":"DocumentYAML:Generic"}]},{"type":"Image","subtype":"None","count":437,"identifications":[{"count":2,"name":"BMP:Generic"},{"count":11,"name":"ICO:Generic"},{"count":424,"name":"PNG:Generic"}]},{"type":"None","subtype":"None","count":20,"identifications":[{"count":20,"name":"Unknown"}]},{"type":"PE+","subtype":"Dll","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"PE+","subtype":"Exe","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"PE","subtype":"Exe","count":1,"identifications":[{"count":1,"name":"InnoSetup:Generic"}]},{"type":"Text","subtype":"ActionScript","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Assembly","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"AutoIt","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Batch","count":4,"identifications":[{"count":4,"name":"Unknown"}]},{"type":"Text","subtype":"CCPP","count":9,"identifications":[{"count":9,"name":"Unknown"}]},{"type":"Text","subtype":"CSS","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"CSharp","count":10,"identifications":[{"count":10,"name":"Unknown"}]},{"type":"Text","subtype":"Clojure","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"CoffeeScript","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Common Lisp","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"D","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Dart","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Erlang","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Go","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Groovy","count":28,"identifications":[{"count":28,"name":"Unknown"}]},{"type":"Text","subtype":"HTML","count":1,"identifications":[{"count":1,"name":"HTML:Generic"}]},{"type":"Text","subtype":"Haskell","count":4,"identifications":[{"count":4,"name":"Unknown"}]},{"type":"Text","subtype":"JSON","count":76,"identifications":[{"count":76,"name":"Unknown"}]},{"type":"Text","subtype":"Java","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"JavaScript","count":9,"identifications":[{"count":9,"name":"Unknown"}]},{"type":"Text","subtype":"Lua","count":8,"identifications":[{"count":8,"name":"Unknown"}]},{"type":"Text","subtype":"Makefile","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Matlab","count":7,"identifications":[{"count":7,"name":"Unknown"}]},{"type":"Text","subtype":"None","count":1004,"identifications":[{"count":1,"name":"Certutil:Generic"},{"count":1003,"name":"Unknown"}]},{"type":"Text","subtype":"Objective-C","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"PHP","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Pascal","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Perl","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Python","count":1188,"identifications":[{"count":1188,"name":"Unknown"}]},{"type":"Text","subtype":"R","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Ruby","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Rust","count":14,"identifications":[{"count":14,"name":"Unknown"}]},{"type":"Text","subtype":"Scala","count":7,"identifications":[{"count":7,"name":"Unknown"}]},{"type":"Text","subtype":"Shell","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Smalltalk","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Tcl","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"Text","subtype":"TypeScript","count":8,"identifications":[{"count":8,"name":"Unknown"}]},{"type":"Text","subtype":"VBS","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"XML","count":267,"identifications":[{"count":267,"name":"Unknown"}]}]},"file":{"file_type":"PE","file_subtype":"Exe","proposed_filename":"Sublime Text_v0.0.0.0.exe","size":16473312,"entropy":7.998901166799472,"hashes":[{"name":"imphash","value":"20dd26497880c05caed9305b3c8b9109"},{"name":"md5","value":"591561a993ef58f8c547f1542c1ed2d8"},{"name":"rha0","value":"62cee0c5c0060759566151bc2fa58387d76528d8"},{"name":"sha1","value":"1177c6451fdaa841f7a8cb0feed53b6621e3356d"},{"name":"sha256","value":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"},{"name":"sha512","value":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089"},{"name":"ssdeep","value":"393216:fXI2GZeymKWixJkWwmP7o/OVHLBL5Y7rFQD0t1/26tTK:f4NoymKPQOVHLBLG9+wN1t"}]},"identification":{"success":true,"name":"InnoSetup","version":"Generic","author":"ReversingLabs"},"validation":{"valid":true,"scan_results":[{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28","warnings":["Certificate uses weak hashing algorithm (SHA1)"]},{"valid":true,"type":5,"name":"TitaniumCore PE Checksum Validator","version":"5.0.1.28"},{"valid":true,"type":3,"name":"TitaniumCore PECOFF Validator","version":"5.0.6","warnings":["FileHeader.Characteristics is fixable","PE.TLSTable is fixable"]}]},"unpacking":{"status":2},"properties":[{"name":"AppId","value":"Sublime Text"},{"name":"AppName","value":"Sublime Text"},{"name":"AppPublisher","value":"Sublime HQ Pty Ltd"},{"name":"AppPublisherURL","value":"https://www.sublimetext.com"},{"name":"AppVersionedName","value":"sublime_text_build_4169"},{"name":"DefaultDirName","value":"%ProgramFiles%/Sublime Text"},{"name":"DefaultGroupName","value":"Sublime Text"},{"name":"DefaultUserInfoName","value":"{sysuserinfoname}"},{"name":"DefaultUserInfoOrganization","value":"{sysuserinfoorg}"},{"name":"UninstallDisplayIcon","value":"%InstallDir%/sublime_text.exe"},{"name":"UninstallFilesDir","value":"%InstallDir%"}],"overlays":[{"from":0,"offset":121344,"size":16344728,"entropy":0,"hashes":[{"name":"md5","value":"6681605ec86a2535ff667564142f69a5"},{"name":"sha1","value":"81d9f2e7b1fe83ec9611364db3ca484952e74a06"},{"name":"sha256","value":"7c6adce27f959ac8187f35a3f2ddd103487c718b8054706cf8edf0e6819a0b39"}]}]},"application":{"capabilities":[["clipboard",false],["ipc",true],["threads",true],["processes",true],["storage",true],["filesystem",true],["peripherals",true],["user_input",true],["hardware_interfaces",false],["networking",false],["cryptography",true],["security",true],["system",true],["modules",true],["memory_management",true],["user_interface",true],["command_line",true],["time_and_date",true],["identity",false],["monitoring",true],["configuration",true],["compression",false],["multimedia",true],["deprecated",false],["undocumented",false],["application_management",false],["service_management",false],["messaging",false],["protection",false],["drivers",true]],"pe":{"analysis":{"analysis_state":2,"security_grade":3,"issues":[{"code":18250,"name":"RC18250","description":"Invalid tls table content detected. One or more of its elements refer to data that is not physically available within the file.","relevance":0,"count":1},{"code":22005,"name":"WC22005","description":"Unused file_header_t::characteristics flag image_file_bytes_reversed_lo_k is set.","relevance":0,"count":1},{"code":22006,"name":"WC22006","description":"Unused file_header_t::characteristics flag image_file_bytes_reversed_hi_k is set.","relevance":0,"count":1},{"code":23008,"name":"WC23008","description":"Unexpected optional_header_t::address_of_entry_point value. It is expected that this value is within the bounds defined by optional_header_t::base_of_code and optional_header_t::size_of_code.","relevance":0,"count":1},{"code":24014,"name":"WC24014","description":"Section virtual size will be automatically rounded up by section alignment value.","relevance":0,"count":8},{"code":28105,"name":"WC28105","description":"Data duplication detected within import library list.","relevance":0,"count":23},{"code":28204,"name":"WC28204","description":"Unexpected raw TLS start section attributes detected. It is expected that image_scn_cnt_initialized_data_k attribute is set.","relevance":0,"count":1},{"code":28208,"name":"WC28208","description":"Empty TLS callback element list detected. No functions will be executed prior to entry point or during program termination.","relevance":0,"count":1},{"code":32004,"name":"SC32004","description":"Non-optimal file_header_t::characteristics value. File has relocations stripped, which eliminates the possibility of ASLR being used. Lowers grade to C.","relevance":0,"count":1},{"code":32006,"name":"SC32006","description":"Non-optimal file_header_t::characteristics value. File has relocations stripped while requesting ASLR support. For Intel x86 images relocations are required for ASLR mitigation to be enabled. Lowers grade to D.","relevance":0,"count":2},{"code":33013,"name":"SC33013","description":"Detected security mitigation policy issue in optional_header_t::dll_characteristics. Control flow guard feature flag is not set. Lowers grade to B.","relevance":0,"count":1},{"code":38103,"name":"SC38103","description":"Detected that import thunk are present in a segment with writable access. This exposes the imported functions to risks of pointer hijacking. Lowers grade to D.","relevance":0,"count":1},{"code":38610,"name":"SC38610","description":"Detected security mitigation policy issue in dll_extended_data_t::flags. The image is not compatible with Intel Control Flow Enforcement Technology. No impact to the final grade at this time.","relevance":0,"count":1},{"code":39195,"name":"SC39195","description":"Detected the use of SDLC banned function kernel32.lstrcpynW. Use of this function is considered unsafe because it's an unbound string operation. Lowers grade to C.","relevance":0,"count":1}]},"dos_header":{"e_cblp":80,"e_cp":2,"e_crlc":0,"e_cparhdr":4,"e_minalloc":15,"e_maxalloc":65535,"e_ss":0,"e_sp":184,"e_csum":0,"e_ip":0,"e_cs":0,"e_lfarlc":64,"e_ovno":26,"e_res":"0000000000000000","e_oemid":0,"e_oeminfo":0,"e_res2":"0000000000000000000000000000000000000000","e_lfanew":256},"file_header":{"machine":332,"number_of_sections":8,"time_date_stamp":1459953544,"time_date_stamp_decoded":"2016-04-06T14:39:04Z","pointer_to_symbol_table":0,"number_of_symbols":0,"size_of_optional_headers":224,"characteristics":33167},"optional_header":{"is_checksum_valid":true,"major_linker_version":2,"minor_linker_version":25,"size_of_code":66560,"size_of_initialized_data":53760,"size_of_uninitialized_data":0,"address_of_entry_point":71644,"base_of_code":4096,"base_of_data":73728,"image_base":4194304,"section_alignment":4096,"file_alignment":512,"major_os_version":5,"minor_os_version":0,"major_image_version":6,"minor_image_version":0,"major_subsystem_version":5,"minor_subsystem_version":0,"win32_version_value":0,"size_of_image":163840,"size_of_headers":4096,"checksum":16515937,"subsystem":2,"dll_characteristics":33088,"size_of_stack_reserve":1048576,"size_of_stack_commit":16384,"size_of_heap_reserve":1048576,"size_of_heap_commit":4096,"loader_flags":0,"number_of_rva_and_sizes":16,"data_directories":[{"address":0,"size":0},{"address":102400,"size":3588},{"address":114688,"size":45568},{"address":0,"size":0},{"address":16466072,"size":7240},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0},{"address":110592,"size":24},{"address":0,"size":0},{"address":0,"size":0},{"address":103172,"size":532},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0}]},"sections":[{"name":".text","flags":1610612768,"relative_base":4096,"physical_base":1024,"relative_size":65536,"physical_size":62464,"entropy":6.37521350405155,"hashes":[{"name":"md5","value":"a33e9ff7181115027d121cd377c28c8f"},{"name":"sha1","value":"3dafbb4f2d1eb2164e193102e863ce4d7cabb6fb"},{"name":"sha256","value":"11a963697f424d62b984f4a71b5b39a9212a2ccb07f320d98d9f84c2da74c6dd"}]},{"name":".itext","flags":1610612768,"relative_base":69632,"physical_base":63488,"relative_size":4096,"physical_size":4096,"entropy":5.732200666157374,"hashes":[{"name":"md5","value":"caec456c18277b579a94c9508daf36ec"},{"name":"sha1","value":"2f9d566890abd0f66230a92bedf71afe6d110b37"},{"name":"sha256","value":"7f26d734f1c91987ba9e8f9100bb4d742f5bfef70e88763bbdbc3ce181bf6651"}]},{"name":".data","flags":3221225536,"relative_base":73728,"physical_base":67584,"relative_size":4096,"physical_size":3584,"entropy":2.2967209087898315,"hashes":[{"name":"md5","value":"746954890499546d73dce0e994642192"},{"name":"sha1","value":"2e71d1453d5d7fed43fd87a4ad48ae14c4969c6f"},{"name":"sha256","value":"42f6faae65550b06e3ebbb5a5a19d6ac41911ca2690b14db237928bc63453d96"}]},{"name":".bss","flags":3221225472,"relative_base":77824,"physical_base":71168,"relative_size":24576,"physical_size":0,"entropy":0},{"name":".idata","flags":3221225536,"relative_base":102400,"physical_base":71168,"relative_size":4096,"physical_size":4096,"entropy":4.597812557707957,"hashes":[{"name":"md5","value":"e9b9c0328fd9628ad4d6ab8283dcb20e"},{"name":"sha1","value":"fd2927174e310130a51bdd648aefde6f89fe0007"},{"name":"sha256","value":"68a126ba6dddfa52cdc395cca81ae415921071acf02f75b7c00faf9d90353760"}]},{"name":".tls","flags":3221225472,"relative_base":106496,"physical_base":75264,"relative_size":4096,"physical_size":0,"entropy":0},{"name":".rdata","flags":1073741888,"relative_base":110592,"physical_base":75264,"relative_size":4096,"physical_size":512,"entropy":0.2044881574398449,"hashes":[{"name":"md5","value":"3dffc444ccc131c9dcee18db49ee6403"},{"name":"sha1","value":"45d8f890e32cc1adf7ded113fd19004c8869f419"},{"name":"sha256","value":"821b0bda5922cc6f5fb74fb3a160e39c97727c21beb1ecf4f96e3bcfad9edbe3"}]},{"name":".rsrc","flags":1073741888,"relative_base":114688,"physical_base":75776,"relative_size":49152,"physical_size":45568,"entropy":4.1414851695324275,"hashes":[{"name":"md5","value":"a3af9e006c275f9b16645977edbadec0"},{"name":"sha1","value":"b064ef49daf72887a53b4cecd236b4ee0ed2a01d"},{"name":"sha256","value":"f97c111b81a8b5794b9ee7e81f75e4de84677119c160c8fcda6ad62578b33e64"}]}],"imports":[{"name":"advapi32.dll","apis":["RegQueryValueExW","RegOpenKeyExW","RegCloseKey","RegQueryValueExW","RegOpenKeyExW","RegCloseKey","OpenProcessToken","LookupPrivilegeValueW","AdjustTokenPrivileges"]},{"name":"comctl32.dll","apis":["InitCommonControls"]},{"name":"kernel32.dll","apis":["GetACP","Sleep","VirtualFree","VirtualAlloc","GetSystemInfo","GetTickCount","QueryPerformanceCounter","GetVersion","GetCurrentThreadId","VirtualQuery","WideCharToMultiByte","MultiByteToWideChar","lstrlenW","lstrcpynW","LoadLibraryExW","GetThreadLocale","GetStartupInfoA","GetProcAddress","GetModuleHandleW","GetModuleFileNameW","GetLocaleInfoW","GetCommandLineW","FreeLibrary","FindFirstFileW","FindClose","ExitProcess","WriteFile","UnhandledExceptionFilter","RtlUnwind","RaiseException","GetStdHandle","CloseHandle","TlsSetValue","TlsGetValue","LocalAlloc","GetModuleHandleW","WriteFile","WideCharToMultiByte","WaitForSingleObject","VirtualQuery","VirtualProtect","VirtualFree","VirtualAlloc","SizeofResource","SignalObjectAndWait","SetLastError","SetFilePointer","SetEvent","SetErrorMode","SetEndOfFile","ResetEvent","RemoveDirectoryW","ReadFile","MultiByteToWideChar","LockResource","LoadResource","LoadLibraryW","GetWindowsDirectoryW","GetVersionExW","GetVersion","GetUserDefaultLangID","GetThreadLocale","GetSystemInfo","GetSystemDirectoryW","GetStdHandle","GetProcAddress","GetModuleHandleW","GetModuleFileNameW","GetLocaleInfoW","GetLastError","GetFullPathNameW","GetFileSize","GetFileAttributesW","GetExitCodeProcess","GetEnvironmentVariableW","GetDiskFreeSpaceW","GetCurrentProcess","GetCommandLineW","GetCPInfo","InterlockedExchange","InterlockedCompareExchange","FreeLibrary","FormatMessageW","FindResourceW","EnumCalendarInfoW","DeleteFileW","CreateProcessW","CreateFileW","CreateEventW","CreateDirectoryW","CloseHandle","Sleep"]},{"name":"oleaut32.dll","apis":["SysFreeString","SysReAllocStringLen","SysAllocStringLen"]},{"name":"user32.dll","apis":["GetKeyboardType","LoadStringW","MessageBoxA","CharNextW","CreateWindowExW","TranslateMessage","SetWindowLongW","PeekMessageW","MsgWaitForMultipleObjects","MessageBoxW","LoadStringW","GetSystemMetrics","ExitWindowsEx","DispatchMessageW","DestroyWindow","CharUpperBuffW","CallWindowProcW"]}],"resources":[{"type":"RT_ICON","name":"1","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":76828,"size":296,"entropy":0,"hashes":[{"name":"md5","value":"c5af786bfd9fd1c53c8fe9f0bd9ce38b"},{"name":"sha1","value":"4f6f7d9973b47063aa5353225a2bc5a76aa2a96a"},{"name":"sha256","value":"f59f62e7843b3ff992cf769a3c608acd4a85a38b3b302cda8507b75163659d7b"}]},{"type":"RT_ICON","name":"2","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":77124,"size":1384,"entropy":0,"hashes":[{"name":"md5","value":"0a451222f7037983439a58e3b44db529"},{"name":"sha1","value":"6881cba71174502883d53a8885fb90dad81fd0c0"},{"name":"sha256","value":"dc785b2a3e4ea82bd34121cc04e80758e221f11ee686fcfd87ce49f8e6730b22"}]},{"type":"RT_ICON","name":"3","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":78508,"size":744,"entropy":0,"hashes":[{"name":"md5","value":"90ed3aac2a942e3067e6471b32860e77"},{"name":"sha1","value":"b849a2b9901473810b5d74e6703be78c3a7e64e3"},{"name":"sha256","value":"ca8fc96218d0a7e691dd7b95da05a27246439822d09b829af240523b28fd5bb3"}]},{"type":"RT_ICON","name":"4","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":79252,"size":2216,"entropy":0,"hashes":[{"name":"md5","value":"af05dd5bd4c3b1fc94922c75ed4f9519"},{"name":"sha1","value":"f54685a8a314e6f911c75cf7554796212fb17c3e"},{"name":"sha256","value":"3bbacbad1458254c59ad7d0fd9bea998d46b70b8f8dcfc56aad561a293ffdae3"}]},{"type":"RT_STRING","name":"4091","language_id_name":"Default","language_id":0,"code_page":0,"offset":81468,"size":104,"entropy":0,"hashes":[{"name":"md5","value":"e518b8ae009986dd90363fcc61d7fff7"},{"name":"sha1","value":"24ed3f9f44fce167e79b53ea5f9b0505c4d567e1"},{"name":"sha256","value":"34ea1c2173226ecc593f8a2b0224c51ebbee1928715bda9339eec7717a822b89"}]},{"type":"RT_STRING","name":"4092","language_id_name":"Default","language_id":0,"code_page":0,"offset":81572,"size":212,"entropy":0,"hashes":[{"name":"md5","value":"ac85ded4e576ce909f5460536b63a4f1"},{"name":"sha1","value":"07e0380006e58eec02eaaa047a58aceeef1552d3"},{"name":"sha256","value":"e1d818d622875ce2cf81883816ef982aa05a724c46f82b3e67875e0bc24228b1"}]},{"type":"RT_STRING","name":"4093","language_id_name":"Default","language_id":0,"code_page":0,"offset":81784,"size":164,"entropy":0,"hashes":[{"name":"md5","value":"519a33f5d2b4442ef3caf6d4501995fb"},{"name":"sha1","value":"e54df9d112555eb11a132bfee15b69ac186b422e"},{"name":"sha256","value":"80bc91470ef70d527d0c4e0824945bc3b17ff84f464bca425661c3e7e1972ce7"}]},{"type":"RT_STRING","name":"4094","language_id_name":"Default","language_id":0,"code_page":0,"offset":81948,"size":684,"entropy":0,"hashes":[{"name":"md5","value":"234c2763997eec9c8a72ef190b928d68"},{"name":"sha1","value":"089fcaabba97f63455ce8a47e2d5d07fa56ba55b"},{"name":"sha256","value":"33ef72f38fc1fe2842c44e11bb351f94385bb186fee0fadbefc9364ed52aeb93"}]},{"type":"RT_STRING","name":"4095","language_id_name":"Default","language_id":0,"code_page":0,"offset":82632,"size":844,"entropy":0,"hashes":[{"name":"md5","value":"2596d19a6b88cbba9c9c9cb003affbc6"},{"name":"sha1","value":"37091a716fd1eed000e0c3bb195fbd589a750608"},{"name":"sha256","value":"7f63f3f944a0b62f8f3b35a60141081599f7f175605ced7e1b4dcb80fda58c8a"}]},{"type":"RT_STRING","name":"4096","language_id_name":"Default","language_id":0,"code_page":0,"offset":83476,"size":660,"entropy":0,"hashes":[{"name":"md5","value":"1f9009e4d5b61392e05aa8ac6eceb6aa"},{"name":"sha1","value":"4af6f3144fff0951da37370a3d200e8d74fc4862"},{"name":"sha256","value":"cb21f2b28bfc6b8046348c7a96bf97149dc5f91e1cc1a4f2904a1044a008425a"}]},{"type":"RT_RCDATA","name":"CHARTABLE","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":84136,"size":33512,"entropy":0,"hashes":[{"name":"md5","value":"6e9c1c8c0a0ec8d73165779560cd7ba4"},{"name":"sha1","value":"d044c45e2ffd24e1abef00079577df385e325ab4"},{"name":"sha256","value":"677245e2a6b2eb5495b4965b8c26025a4b26e8b8c21a825f658cb390b493b9a0"}]},{"type":"RT_RCDATA","name":"DVCLAL","language_id_name":"Default","language_id":0,"code_page":0,"offset":117648,"size":16,"entropy":0,"hashes":[{"name":"md5","value":"d8090aba7197fbf9c7e2631c750965a8"},{"name":"sha1","value":"04f73efb0801b18f6984b14cd057fb56519cd31b"},{"name":"sha256","value":"88d14cc6638af8a0836f6d868dfab60df92907a2d7becaefbbd7e007acb75610"}]},{"type":"RT_RCDATA","name":"PACKAGEINFO","language_id_name":"Default","language_id":0,"code_page":0,"offset":117664,"size":336,"entropy":0,"hashes":[{"name":"md5","value":"9247d9dfc002426bf15a38569e1117d6"},{"name":"sha1","value":"724fbe0b18bf415f1871fbc45570b1ba809b1acd"},{"name":"sha256","value":"05efbff33471fec1389d42d84ee0572448b1dabb86c18ee38dd6463ff7f927af"}]},{"type":"RT_RCDATA","name":"11111","language_id_name":"Default","language_id":0,"code_page":0,"offset":118000,"size":44,"entropy":0,"hashes":[{"name":"md5","value":"4a0dcc718256df4a19dda31db8afd102"},{"name":"sha1","value":"ce39dc2c93f138d1d305b289c52bde0b5974fa94"},{"name":"sha256","value":"f105ca84f731dcae5d9bfa87c4e06c5a393b3f96da53d5c0199087ba312407b1"}]},{"type":"RT_GROUP_ICON","name":"MAINICON","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":118044,"size":62,"entropy":0,"hashes":[{"name":"md5","value":"f6262f462f61a1af1cac10cf4b790e5a"},{"name":"sha1","value":"4aa3239c2c59fa5f246b0dd68da564e529b98ff4"},{"name":"sha256","value":"44b095a62d7e401671f57271e6cada367bb55cf7b300ef768b3487b841facd3c"}]},{"type":"RT_VERSION","name":"1","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":118108,"size":1268,"entropy":0,"hashes":[{"name":"md5","value":"fe4f3a3eb1e286571947e04d90df8564"},{"name":"sha1","value":"71745e9cd0c6269fc17b756f749158fe4a09cedc"},{"name":"sha256","value":"5e22d9b6c8fcbd138f717bcf37233282888efcd824c89c90fa87526267dcbd60"}]},{"type":"RT_MANIFEST","name":"1","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":119376,"size":1580,"entropy":0,"hashes":[{"name":"md5","value":"f78a870573f5bf2f15570e286257fae7"},{"name":"sha1","value":"eaccbf47cd42836b0e21ab2196b86d98a28733ca"},{"name":"sha256","value":"356ca8abf11d97bf9dcbff47c04bf1ddcb8685ef84d38e6850ec6c28a37655b9"}]}],"version_info":[{"name":"fileVersion","value":"0,0,0,0"},{"name":"productVersion","value":"0,0,0,0"},{"name":"fileOS","value":"VOS_WINDOWS32"},{"name":"fileType","value":"VFT_APP"},{"name":"fileSubtype","value":"00000000"},{"name":"Comments","value":"This installation was built with Inno Setup."},{"name":"CompanyName","value":"Sublime HQ Pty Ltd"},{"name":"FileDescription","value":"Sublime Text Setup"},{"name":"FileVersion","value":""},{"name":"LegalCopyright","value":""},{"name":"ProductName","value":"Sublime Text"},{"name":"ProductVersion","value":""},{"name":"translate","value":"Default, Unicode"}]},"libraries":[{"type":3,"linking":2,"community":0,"verified":0,"name":"advapi32","version":"Generic","publisher":"Microsoft Corporation","description":"Advanced Windows 32 Base API Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"comctl32","version":"Generic","publisher":"Microsoft Corporation","description":"Common Controls Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"kernel32","version":"Generic","publisher":"Microsoft Corporation","description":"Windows NT BASE API Client Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"user32","version":"Generic","publisher":"Microsoft Corporation","description":"Multi-User Windows USER API Client Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"oleaut32","version":"Generic","publisher":"Microsoft Corporation","description":"Object Linking and Embedding Automation Library","license":"Proprietary (Microsoft Windows Operating System License)"}],"identity":{"type":3,"linking":0,"community":0,"verified":4,"name":"Sublime Text","version":"0.0.0.0","publisher":"Sublime HQ Pty Ltd","description":"Sublime Text Setup"}},"protection":{"crypto":["pkcs_digestdecoration_sha256"]},"security":{"features":["ASLR","DEP"]},"behaviour":{"registry":[{"key":"HKLM\\Software\\Classes\\*\\Shell\\Open with Sublime Text","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\*\\Shell\\Open with Sublime Text\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\.sublime-build\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.build-system","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-color-scheme\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.color-scheme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-commands\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.commands","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-completions\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.completions","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-keymap\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.keymap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-macro\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.macro","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-menu\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.menu","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-mousemap\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.mousemap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-project\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.project","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-settings\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.settings","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-snippet\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.snippet","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-syntax\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.syntax","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-theme\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.theme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-workspace\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.workspace","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-build","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-color-scheme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-commands","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-completions","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-keymap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-macro","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-menu","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-mousemap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-project","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-settings","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-snippet","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-syntax","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-theme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-workspace","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""}],"process_start":[{"create_no_window":true,"filename":"%InstallDir%\\sublime_text.exe","username":"","domain":"","working_directory":"","arguments":"","environment_variables":"","password":""}],"shortcut":[{"source_path":"%StartMenuProgramsCommon%\\Sublime Text","destination_path":"%InstallDir%\\sublime_text.exe","icon_index":0,"description":"","command_options":"","working_directory":"","hotkey":"","icon_path":""}],"remove":[{"path":"%InstallDir%\\*.pyc"}]},"certificate":{},"document":{},"email":{},"mobile":{},"media":{},"web":{},"strings":[{"f":5,"c":1,"v":"Friday","o":81470},{"f":5,"c":1,"v":"Saturday","o":81484},{"f":5,"c":1,"v":"Invalid file name - %s","o":81502},{"f":5,"c":1,"v":"September","o":81574},{"f":5,"c":1,"v":"October","o":81594},{"f":5,"c":1,"v":"November","o":81610},{"f":5,"c":1,"v":"December","o":81628},{"f":5,"c":1,"v":"Sunday","o":81702},{"f":5,"c":1,"v":"Monday","o":81716},{"f":5,"c":1,"v":"Tuesday","o":81730},{"f":5,"c":1,"v":"Wednesday","o":81746},{"f":5,"c":1,"v":"Thursday","o":81766},{"f":5,"c":1,"v":"January","o":81850},{"f":5,"c":1,"v":"February","o":81866},{"f":5,"c":1,"v":"March","o":81884},{"f":5,"c":1,"v":"April","o":81896},{"f":5,"c":1,"v":"June","o":81916},{"f":4,"c":1,"v":"July","o":81926},{"f":5,"c":1,"v":"August","o":81936},{"f":5,"c":1,"v":"Invalid variant type conversion","o":81950},{"f":5,"c":1,"v":"Invalid variant operation","o":82014},{"f":5,"c":1,"v":"Invalid argument","o":82066},{"f":5,"c":1,"v":"External exception %x","o":82100},{"f":5,"c":1,"v":"Assertion failed","o":82144},{"f":5,"c":1,"v":"Interface not supported","o":82178},{"f":5,"c":1,"v":"Exception in safecall method","o":82226},{"f":5,"c":1,"v":"Object lock not owned","o":82284},{"f":5,"c":1,"v":"Monitor support function not initialized","o":82328},{"f":5,"c":1,"v":"%s (%s, line %d)","o":82410},{"f":5,"c":1,"v":"Abstract Error","o":82444},{"f":5,"c":1,"v":"Access violation at address %p in module '%s'. %s of address %p","o":82474},{"f":5,"c":1,"v":"Invalid class typecast","o":82634},{"f":5,"c":1,"v":"Access violation at address %p. %s of address %p","o":82680},{"f":5,"c":1,"v":"Access violation","o":82778},{"f":5,"c":1,"v":"Stack overflow","o":82812},{"f":5,"c":1,"v":"Control-C hit","o":82842},{"f":5,"c":1,"v":"Privileged instruction","o":82870},{"f":5,"c":1,"v":"Operation aborted","o":82916},{"f":5,"c":1,"v":"Exception %s in module %s at %p.\r\n%s%s\r\n","o":82952},{"f":5,"c":1,"v":"Application Error","o":83034},{"f":5,"c":1,"v":"Format '%s' invalid or incompatible with argument","o":83070},{"f":5,"c":1,"v":"No argument for format '%s'","o":83170},{"f":5,"c":1,"v":"Variant method calls not supported","o":83226},{"f":5,"c":1,"v":"Read","o":83296},{"f":5,"c":1,"v":"Write","o":83306},{"f":5,"c":1,"v":"Error creating variant or safe array","o":83318},{"f":5,"c":1,"v":"Variant or safe array index out of bounds","o":83392},{"f":5,"c":1,"v":"Out of memory","o":83478},{"f":5,"c":1,"v":"I/O error %d","o":83506},{"f":5,"c":1,"v":"File not found","o":83532},{"f":5,"c":1,"v":"Too many open files","o":83562},{"f":5,"c":1,"v":"File access denied","o":83602},{"f":5,"c":1,"v":"Read beyond end of file","o":83640},{"f":5,"c":1,"v":"Disk full","o":83688},{"f":5,"c":1,"v":"Invalid numeric input","o":83708},{"f":5,"c":1,"v":"Division by zero","o":83752},{"f":5,"c":1,"v":"Range check error","o":83786},{"f":5,"c":1,"v":"Integer overflow","o":83822},{"f":5,"c":1,"v":"Invalid floating point operation","o":83856},{"f":5,"c":1,"v":"Floating point division by zero","o":83922},{"f":5,"c":1,"v":"Floating point overflow","o":83986},{"f":5,"c":1,"v":"Floating point underflow","o":84034},{"f":5,"c":1,"v":"Invalid pointer operation","o":84084},{"f":3,"c":1,"v":"AnsiChar","o":1030},{"f":2,"c":1,"v":"string(","o":1054},{"f":3,"c":1,"v":"\n\nAnsiString","o":1064},{"f":3,"c":1,"v":"TObject","o":1169},{"f":3,"c":1,"v":"FastMM Borland Edition (c) 2004 - 2008 Pierre le Riche / Professional Software Development","o":1552},{"f":3,"c":1,"v":"An unexpected memory leak has occurred. ","o":1644},{"f":3,"c":1,"v":"The unexpected small block leaks are:\r\n","o":1688},{"f":3,"c":1,"v":"The sizes of unexpected leaked medium and large blocks are: ","o":1728},{"f":3,"c":1,"v":" bytes: ","o":1792},{"f":3,"c":3,"v":"Unknown","o":1804},{"f":3,"c":1,"v":"AnsiString","o":1812},{"f":3,"c":1,"v":"UnicodeString","o":1824},{"f":3,"c":1,"v":"Unexpected Memory Leak","o":1844},{"f":2,"c":5,"v":"=<:A","o":2425},{"f":2,"c":4,"v":"\r<:A","o":2519},{"f":2,"c":5,"v":"=M0A","o":2653},{"f":2,"c":18,"v":"SVWU","o":2724},{"f":2,"c":20,"v":"]_^[","o":2817},{"f":2,"c":1,"v":"D$\fPS","o":2901},{"f":2,"c":1,"v":"$]_^[","o":2981},{"f":2,"c":6,"v":"D$\fP","o":3133},{"f":2,"c":1,"v":" ]_^[","o":3314},{"f":2,"c":1,"v":"\rM0A","o":3333},{"f":2,"c":1,"v":";C\fwv","o":3409},{"f":2,"c":10,"v":"%4:A","o":3551},{"f":2,"c":1,"v":"t\tj\n","o":3589},{"f":2,"c":1,"v":"#5@:A","o":3604},{"f":2,"c":2,"v":"58:A","o":3739},{"f":2,"c":1,"v":")=<:A","o":3762},{"f":2,"c":1,"v":"t*j\n","o":3914},{"f":2,"c":2,"v":"QRj\n","o":4392},{"f":2,"c":1,"v":"t!j\n","o":4454},{"f":2,"c":1,"v":"L\t W","o":4809},{"f":2,"c":1,"v":"t\fQj\n","o":5030},{"f":2,"c":1,"v":"wt=0\u000b","o":5303},{"f":2,"c":1,"v":";Z\fv","o":5687},{"f":2,"c":5,"v":"_^[]","o":6333},{"f":2,"c":1,"v":"|&B3","o":6593},{"f":2,"c":1,"v":"=(:A","o":7179},{"f":2,"c":1,"v":"t!Ht:","o":7717},{"f":2,"c":1,"v":"rAF3","o":7966},{"f":2,"c":1,"v":"=\":A","o":8104},{"f":2,"c":1,"v":"0=0\u000b","o":8231},{"f":2,"c":1,"v":"= 0A","o":8929},{"f":2,"c":1,"v":"YZXu","o":9083},{"f":3,"c":1,"v":"OFTWARE\\Borland\\Delphi\\RTL","o":11181},{"f":3,"c":2,"v":"FPUMaskValue","o":11235},{"f":3,"c":1,"v":"SOFTWARE\\Borland\\Delphi\\RTL","o":11180},{"f":2,"c":1,"v":"=00A","o":9497},{"f":2,"c":1,"v":"=$3A","o":9555},{"f":2,"c":1,"v":"r/f=","o":9622},{"f":2,"c":1,"v":"w)f%","o":9628},{"f":3,"c":1,"v":"uENt","o":9712},{"f":2,"c":1,"v":":\nu0Nt","o":9752},{"f":2,"c":1,"v":"u%Nt","o":9765},{"f":2,"c":1,"v":"-tvf","o":10004},{"f":2,"c":1,"v":"+trf","o":10010},{"f":2,"c":1,"v":"$ttf","o":10016},{"f":2,"c":1,"v":"xtnf","o":10022},{"f":2,"c":1,"v":"Xthf","o":10028},{"f":2,"c":1,"v":"xtVf","o":10046},{"f":2,"c":1,"v":"XtPf","o":10052},{"f":2,"c":1,"v":"\tw+9","o":10074},{"f":2,"c":1,"v":"~]x[[)","o":10116},{"f":2,"c":1,"v":"2_^[","o":10217},{"f":2,"c":2,"v":"Cw6@","o":10307},{"f":2,"c":2,"v":"@v:k\u000b","o":10593},{"f":2,"c":1,"v":"@aQY","o":10664},{"f":2,"c":1,"v":"E@|o","o":10724},{"f":2,"c":1,"v":"BkU'9","o":10780},{"f":2,"c":78,"v":"ZYYd","o":11120},{"f":2,"c":1,"v":"\n[YZ","o":11784},{"f":2,"c":8,"v":"QSVW","o":11839},{"f":2,"c":1,"v":"Uhk:@","o":11848},{"f":2,"c":12,"v":"_^[Y]","o":11908},{"f":2,"c":12,"v":"=  A","o":12017},{"f":2,"c":1,"v":"PPRTj","o":12053},{"f":2,"c":1,"v":"YYZX","o":12210},{"f":2,"c":4,"v":"=$ A","o":12359},{"f":2,"c":1,"v":"YZXtp","o":12451},{"f":2,"c":1,"v":"VWUd","o":12463},{"f":2,"c":3,"v":"SPRQ","o":12469},{"f":2,"c":1,"v":"T$(j","o":12474},{"f":2,"c":1,"v":":\nu\t@B","o":12692},{"f":2,"c":1,"v":"YZXtm1","o":12846},{"f":2,"c":1,"v":"PhT>@","o":12871},{"f":2,"c":1,"v":"VWUUh(?@","o":12988},{"f":2,"c":1,"v":"ZTUWVSPR","o":13206},{"f":2,"c":1,"v":"I\fQj","o":13277},{"f":2,"c":1,"v":"d$,1","o":13417},{"f":2,"c":1,"v":",t\\=","o":13450},{"f":2,"c":1,"v":"t=HtN","o":13474},{"f":2,"c":1,"v":"r6t0","o":13489},{"f":2,"c":1,"v":"t.Ht","o":13509},{"f":2,"c":1,"v":"PhbA@","o":13653},{"f":2,"c":1,"v":"UhMB@","o":13854},{"f":2,"c":1,"v":"Uh`C@","o":14117},{"f":2,"c":1,"v":"hgC@","o":14162},{"f":2,"c":7,"v":"^[Y]","o":14183},{"f":2,"c":1,"v":"It\u000bIt","o":14317},{"f":3,"c":1,"v":"0123456789ABCDEF","o":14404},{"f":2,"c":1,"v":"=L0A","o":14578},{"f":2,"c":1,"v":"=(3A","o":14588},{"f":2,"c":1,"v":"=03A","o":14598},{"f":2,"c":2,"v":"hx'A","o":14626},{"f":2,"c":1,"v":"h|E@","o":14653},{"f":2,"c":1,"v":"=( A","o":14674},{"f":2,"c":1,"v":"hp'A","o":14684},{"f":2,"c":1,"v":"=,0A","o":14970},{"f":2,"c":2,"v":"E\fPQj","o":15320},{"f":2,"c":7,"v":"_^[YY]","o":15561},{"f":2,"c":2,"v":"\f$Q1","o":15573},{"f":3,"c":2,"v":"t-Rf;\nt f;J","o":15580},{"f":2,"c":1,"v":"t!P1","o":15638},{"f":2,"c":1,"v":"t\u000b:H","o":15655},{"f":2,"c":1,"v":"@@@Y)","o":15667},{"f":2,"c":1,"v":"It6S","o":15741},{"f":2,"c":1,"v":"\rp$P","o":15872},{"f":2,"c":1,"v":";]_^[","o":15957},{"f":2,"c":1,"v":"t!R:\nt","o":16324},{"f":2,"c":1,"v":"t\u000b:J","o":16339},{"f":2,"c":6,"v":"SVWQ","o":16428},{"f":2,"c":5,"v":"Z_^[","o":16504},{"f":2,"c":2,"v":";_^[","o":16895},{"f":3,"c":9,"v":"kernel32.dll","o":20919},{"f":3,"c":1,"v":"oftware\\CodeGear\\Locales","o":21609},{"f":3,"c":2,"v":"Software\\Borland\\Locales","o":21659},{"f":3,"c":2,"v":"Software\\Borland\\Delphi\\Locales","o":21711},{"f":3,"c":1,"v":"Software\\CodeGear\\Locales","o":21608},{"f":2,"c":1,"v":"X_^[","o":17436},{"f":2,"c":1,"v":"$\u000bD$","o":17663},{"f":2,"c":1,"v":"SVWRP","o":17729},{"f":2,"c":1,"v":"XZ_^[X]X","o":17990},{"f":2,"c":1,"v":"h$S@","o":18191},{"f":2,"c":1,"v":"UhJT@","o":18247},{"f":2,"c":1,"v":"hQT@","o":18492},{"f":2,"c":1,"v":"It4S","o":18545},{"f":2,"c":1,"v":"PSVW","o":18769},{"f":2,"c":1,"v":"<\nt-<","o":18786},{"f":2,"c":1,"v":"tc<\u000btB<\ftr<\rt}<","o":18792},{"f":2,"c":1,"v":"\u000b_^[X","o":19014},{"f":2,"c":1,"v":"_^[X","o":19026},{"f":2,"c":1,"v":"u+h\n","o":20310},{"f":2,"c":1,"v":"t ;s","o":20381},{"f":2,"c":1,"v":"t\n;s","o":20386},{"f":2,"c":1,"v":";s\fu\u000b","o":20393},{"f":2,"c":1,"v":"8\\u;","o":20575},{"f":3,"c":1,"v":"GetLongPathNameW","o":20948},{"f":2,"c":2,"v":"hh`@","o":21018},{"f":2,"c":1,"v":"h#_@","o":21261},{"f":2,"c":1,"v":";.t\n","o":21388},{"f":2,"c":1,"v":"=0 A","o":21819},{"f":2,"c":1,"v":"Uhhb@","o":22029},{"f":2,"c":1,"v":"hob@","o":22060},{"f":2,"c":1,"v":"vKVS","o":22224},{"f":2,"c":1,"v":"h\re@","o":22784},{"f":2,"c":1,"v":"\rD[A","o":22921},{"f":2,"c":1,"v":"u\u000bSV","o":23368},{"f":2,"c":1,"v":"=T[A","o":23902},{"f":2,"c":1,"v":"Uh>j@","o":24032},{"f":2,"c":1,"v":"Uh j@","o":24049},{"f":2,"c":1,"v":"h'j@","o":24085},{"f":2,"c":1,"v":"hEj@","o":24111},{"f":3,"c":1,"v":"\tException0n@","o":25038},{"f":3,"c":1,"v":"EAbort","o":25145},{"f":3,"c":1,"v":"EHeapException","o":25249},{"f":3,"c":1,"v":"\fEOutOfMemory","o":25360},{"f":3,"c":1,"v":"\u000bEInOutError","o":25472},{"f":3,"c":1,"v":"\tEExternal","o":25580},{"f":3,"c":1,"v":"INFNAN","o":32368},{"f":2,"c":1,"v":"@INFNAN","o":32367},{"f":3,"c":1,"v":"EExternalException","o":25689},{"f":3,"c":1,"v":"\tEIntError","o":25804},{"f":3,"c":1,"v":"\nEDivByZero","o":25912},{"f":3,"c":1,"v":"\u000bERangeError","o":26020},{"f":3,"c":1,"v":"\fEIntOverflow","o":26128},{"f":3,"c":1,"v":"\nEMathError","o":26240},{"f":3,"c":1,"v":"\nEInvalidOp","o":26348},{"f":3,"c":1,"v":"\u000bEZeroDivide","o":26456},{"f":3,"c":1,"v":"\tEOverflow","o":26564},{"f":3,"c":1,"v":"\nEUnderflow","o":26672},{"f":3,"c":1,"v":"EInvalidPointer","o":26781},{"f":3,"c":1,"v":"\fEInvalidCast","o":26892},{"f":3,"c":1,"v":"\rEConvertError","o":27004},{"f":3,"c":1,"v":"EAccessViolation","o":27117},{"f":3,"c":1,"v":"\nEPrivilege","o":27232},{"f":3,"c":1,"v":"EStackOverflow","o":27341},{"f":3,"c":1,"v":"\tEControlC","o":27452},{"f":3,"c":1,"v":"\rEVariantError","o":27560},{"f":3,"c":1,"v":"EAssertionFailed","o":27673},{"f":3,"c":1,"v":"EAbstractError","o":27789},{"f":3,"c":1,"v":"EIntfCastError","o":27901},{"f":3,"c":1,"v":"ESafecallException","o":28013},{"f":3,"c":1,"v":"EMonitor","o":28129},{"f":3,"c":1,"v":"EMonitorLockException","o":28237},{"f":3,"c":1,"v":"ENoMonitorSupportException","o":28357},{"f":3,"c":4,"v":"SysUtils","o":28410},{"f":3,"c":1,"v":"\tTEncoding","o":28588},{"f":2,"c":1,"v":"SUVj","o":28658},{"f":2,"c":1,"v":"tgf9","o":28743},{"f":2,"c":1,"v":"0<:r","o":29357},{"f":2,"c":7,"v":"SVWUQ","o":29992},{"f":2,"c":2,"v":"$Z]_^[","o":30042},{"f":2,"c":1,"v":";\f$sH","o":30067},{"f":2,"c":1,"v":"A;\f$r","o":30138},{"f":2,"c":2,"v":"YZ_^[","o":30154},{"f":2,"c":1,"v":"D$D\n","o":30293},{"f":2,"c":1,"v":"-u\u000b)","o":31225},{"f":2,"c":1,"v":"t&f=0","o":31284},{"f":2,"c":1,"v":"r@f=9","o":31290},{"f":2,"c":1,"v":"\nf-0","o":31300},{"f":2,"c":1,"v":"_^[[","o":32025},{"f":2,"c":1,"v":";E\f~","o":32316},{"f":2,"c":1,"v":"Jt\rAu","o":32681},{"f":2,"c":1,"v":"<@t!QS<$t\n<*t\r2","o":32744},{"f":2,"c":1,"v":"$*@@@*$@@@$ *@@* $@@($*)@-$*@@$-*@@$*-@@(*$)@-*$@@*-$@@*$-@@-* $@-$ *@* $-@$ *-@$ -*@*- $@($ *)(* $)","o":32798},{"f":2,"c":1,"v":";}\fr","o":33129},{"f":2,"c":1,"v":"QQQQQQSVW3","o":33645},{"f":2,"c":2,"v":"yyyy","o":34915},{"f":2,"c":2,"v":"eeee","o":34939},{"f":2,"c":1,"v":"jjjV","o":35578},{"f":2,"c":2,"v":"m/d/yy","o":40111},{"f":2,"c":2,"v":"mmmm d, yyyy","o":40139},{"f":3,"c":2,"v":" AMPM","o":40255},{"f":3,"c":2,"v":"AMPM ","o":40279},{"f":2,"c":2,"v":":mm:ss","o":40323},{"f":3,"c":2,"v":"GetDiskFreeSpaceExW","o":41035},{"f":2,"c":4,"v":"jjjj","o":35577},{"f":2,"c":1,"v":"QQQQQQSVW","o":34297},{"f":2,"c":10,"v":"SVW3","o":35017},{"f":2,"c":1,"v":"=h[A","o":36292},{"f":2,"c":1,"v":"=d[A","o":36366},{"f":3,"c":1,"v":"\tTErrorRec","o":36553},{"f":2,"c":1,"v":"\rD+A","o":36649},{"f":2,"c":2,"v":"YZ^[","o":36669},{"f":3,"c":1,"v":"\nTExceptRec","o":36681},{"f":2,"c":1,"v":"\r\\+A","o":37005},{"f":2,"c":1,"v":",tY=","o":37036},{"f":2,"c":1,"v":"t<HtH","o":37060},{"f":2,"c":1,"v":"r3t7","o":37075},{"f":2,"c":1,"v":"t(Ht","o":37095},{"f":2,"c":1,"v":"\rL+A","o":37901},{"f":2,"c":1,"v":"u\u000bQR","o":38553},{"f":2,"c":1,"v":"D$\f%","o":38804},{"f":2,"c":1,"v":"Y_^[","o":39295},{"f":2,"c":1,"v":"=<\\A","o":39377},{"f":3,"c":1,"v":"TUnitHashArray","o":40346},{"f":3,"c":1,"v":"\u000bTModuleInfo","o":40393},{"f":2,"c":1,"v":"WVUSj","o":40488},{"f":2,"c":1,"v":"t\u000b;B","o":40645},{"f":2,"c":1,"v":"\f]_^[","o":40902},{"f":3,"c":2,"v":"TEMP","o":44767},{"f":3,"c":2,"v":"USERPROFILE","o":44791},{"f":3,"c":1,"v":"etUserDefaultUILanguage","o":45501},{"f":3,"c":2,"v":".DEFAULT\\Control Panel\\International","o":45579},{"f":3,"c":2,"v":"Locale","o":45655},{"f":3,"c":2,"v":"Control Panel\\Desktop\\ResourceLocale","o":45671},{"f":3,"c":2,"v":"[ExceptObject=nil]","o":45915},{"f":3,"c":2,"v":"File I/O error %d","o":46527},{"f":3,"c":6,"v":"Compressed block is corrupted","o":48499},{"f":3,"c":2,"v":"lzmadecompsmall: Compressed data is corrupted (%d)","o":49267},{"f":3,"c":2,"v":"lzmadecompsmall: %s","o":49427},{"f":3,"c":2,"v":"LzmaDecode failed (%d)","o":50039},{"f":3,"c":1,"v":"GetUserDefaultUILanguage","o":45500},{"f":2,"c":1,"v":"\\t\tf","o":42807},{"f":2,"c":1,"v":"}$C;","o":43038},{"f":2,"c":5,"v":"Z]_^[","o":43180},{"f":2,"c":2,"v":"YZ]_^[","o":43290},{"f":2,"c":1,"v":"SVWP","o":43300},{"f":2,"c":1,"v":"^[YY]","o":44102},{"f":2,"c":1,"v":"[YY]","o":44730},{"f":2,"c":1,"v":";E\ft\f","o":44928},{"f":2,"c":1,"v":";E\ft","o":45047},{"f":2,"c":1,"v":"8.v\f","o":45797},{"f":3,"c":1,"v":"\u000bTCustomFile","o":46144},{"f":3,"c":1,"v":"TFile","o":46269},{"f":3,"c":1,"v":"\nEFileError","o":46372},{"f":2,"c":1,"v":"Q\fYZ","o":46641},{"f":2,"c":1,"v":"$Z_^[","o":47049},{"f":2,"c":1,"v":";4$t\f","o":47187},{"f":3,"c":1,"v":"ECompressError","o":47309},{"f":3,"c":1,"v":"ECompressDataError","o":47421},{"f":3,"c":1,"v":"ECompressInternalError","o":47537},{"f":3,"c":1,"v":"TCustomDecompressor","o":47661},{"f":3,"c":1,"v":"TCompressedBlockReader","o":47769},{"f":2,"c":1,"v":")s\f3","o":48729},{"f":3,"c":1,"v":"TLZMA1SmallDecompressorS","o":49189},{"f":2,"c":1,"v":"t$\f;sht'","o":49819},{"f":2,"c":1,"v":"T$\f3","o":49985},{"f":3,"c":2,"v":"Itanium","o":53143},{"f":3,"c":5,"v":"The setup files are corrupted. Please obtain a new copy of the program.","o":54147},{"f":2,"c":1,"v":"jjjjjjS","o":55036},{"f":2,"c":4,"v":".tmp","o":55587},{"f":3,"c":2,"v":"SeShutdownPrivilege","o":55731},{"f":2,"c":2,"v":"/SP-","o":56755},{"f":2,"c":2,"v":"/SPAWNWND=","o":56779},{"f":2,"c":2,"v":"/Lang=","o":56815},{"f":2,"c":2,"v":"/HELP","o":56843},{"f":2,"c":1,"v":"jjjjj","o":57258},{"f":2,"c":2,"v":"jjjjjjj","o":55035},{"f":2,"c":2,"v":"jjjjjj","o":57257},{"f":2,"c":1,"v":"p\ft0","o":50252},{"f":2,"c":1,"v":";S\fv;","o":50339},{"f":2,"c":1,"v":"$;4$","o":50547},{"f":2,"c":1,"v":"F;4$|","o":50581},{"f":2,"c":1,"v":";E\fr","o":51500},{"f":2,"c":2,"v":"\f:G;}","o":51796},{"f":2,"c":1,"v":"8G;}","o":52500},{"f":2,"c":1,"v":";M\fr","o":52535},{"f":2,"c":1,"v":"\n[Y]","o":52767},{"f":3,"c":1,"v":"\fTSetupHeader","o":53165},{"f":3,"c":1,"v":"TSetupLanguageEntry=","o":53450},{"f":2,"c":1,"v":";C\fu\n","o":54403},{"f":2,"c":1,"v":";,$r","o":54430},{"f":2,"c":1,"v":"u[Tj(","o":55619},{"f":2,"c":1,"v":"|GF3","o":55789},{"f":2,"c":1,"v":";^\fr","o":57801},{"f":2,"c":1,"v":"L]_^[","o":57869},{"f":2,"c":1,"v":"Sj\nhg+","o":57876},{"f":3,"c":2,"v":"The Setup program accepts optional command line parameters.\r\n\r\n/HELP, /?\r\nShows this information.\r\n/SP-\r\nDisables the This will install... Do you wish to continue? prompt at the beginning of Setup.\r\n/SILENT, /VERYSILENT\r\nInstructs Setup to be silent or very silent.\r\n/SUPPRESSMSGBOXES\r\nInstructs Setup to suppress message boxes.\r\n/LOG\r\nCauses Setup to create a log file in the user's TEMP directory.\r\n/LOG=\"filename\"\r\nSame as /LOG, except it allows you to specify a fixed path/filename to use for the log file.\r\n/NOCANCEL\r\nPrevents the user from cancelling during the installation process.\r\n/NORESTART\r\nPrevents Setup from restarting the system following a successful installation, or after a Preparing to Install failure that requests a restart.\r\n/RESTARTEXITCODE=exit code\r\nSpecifies a custom exit code that Setup is to return when the system needs to be restarted.\r\n/CLOSEAPPLICATIONS\r\nInstructs Setup to close applications using files that need to be updated.\r\n/NOCLOSEAPPLICATIONS\r\nPrevents Setup from closing applications using files that need to be updated.\r\n/RESTARTAPPLICATIONS\r\nInstructs Setup to restart applications.\r\n/NORESTARTAPPLICATIONS\r\nPrevents Setup from restarting applications.\r\n/LOADINF=\"filename\"\r\nInstructs Setup to load the settings from the specified file after having checked the command line.\r\n/SAVEINF=\"filename\"\r\nInstructs Setup to save installation settings to the specified file.\r\n/LANG=language\r\nSpecifies the internal name of the language to use.\r\n/DIR=\"x:\\dirname\"\r\nOverrides the default directory name.\r\n/GROUP=\"folder name\"\r\nOverrides the default folder name.\r\n/NOICONS\r\nInstructs Setup to initially check the Don't create a Start Menu folder check box.\r\n/TYPE=type name\r\nOverrides the default setup type.\r\n/COMPONENTS=\"comma separated list of component names\"\r\nOverrides the default component settings.\r\n/TASKS=\"comma separated list of task names\"\r\nSpecifies a list of tasks that should be initially selected.\r\n/MERGETASKS=\"comma separated list of task names\"\r\nLike the /TASKS parameter, except the specified tasks will be merged with the set of tasks that would have otherwise been selected by default.\r\n/PASSWORD=password\r\nSpecifies the password to use.\r\n\r\nFor more detailed information, please visit http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline","o":58059},{"f":3,"c":3,"v":"Setup","o":62667},{"f":3,"c":1,"v":"ernel32.dll","o":64301},{"f":3,"c":2,"v":"uxtheme.dll","o":64407},{"f":3,"c":2,"v":"userenv.dll","o":64443},{"f":3,"c":2,"v":"setupapi.dll","o":64479},{"f":3,"c":2,"v":"apphelp.dll","o":64519},{"f":3,"c":2,"v":"propsys.dll","o":64555},{"f":3,"c":2,"v":"dwmapi.dll","o":64591},{"f":3,"c":2,"v":"cryptbase.dll","o":64627},{"f":3,"c":2,"v":"oleacc.dll","o":64667},{"f":3,"c":2,"v":"version.dll","o":64703},{"f":3,"c":2,"v":"profapi.dll","o":64739},{"f":3,"c":2,"v":"comres.dll","o":64775},{"f":3,"c":2,"v":"clbcatq.dll","o":64811},{"f":3,"c":2,"v":"Wow64DisableWow64FsRedirection","o":65311},{"f":3,"c":2,"v":"Wow64RevertWow64FsRedirection","o":65403},{"f":3,"c":2,"v":"shell32.dll","o":65475},{"f":3,"c":2,"v":"InnoSetupLdrWindow","o":67303},{"f":3,"c":2,"v":"STATIC","o":67343},{"f":2,"c":2,"v":"/SL5=\"$%x,%d,%d,","o":67371},{"f":2,"c":1,"v":"-P[A","o":63665},{"f":2,"c":1,"v":"QSVW3","o":63699},{"f":2,"c":1,"v":"-X[A","o":63718},{"f":2,"c":1,"v":"=\\[A","o":63839},{"f":3,"c":1,"v":"SetDefaultDllDirectories","o":64328},{"f":3,"c":1,"v":"SetDllDirectoryW","o":64356},{"f":3,"c":1,"v":"SetSearchPathMode","o":64836},{"f":3,"c":1,"v":"SetProcessDEPPolicy","o":64856},{"f":2,"c":1,"v":"-`[A","o":64877},{"f":2,"c":1,"v":"=E[A","o":64939},{"f":2,"c":1,"v":";B(u.","o":65720},{"f":2,"c":1,"v":"|%C3","o":65959},{"f":2,"c":1,"v":"uGj$","o":66087},{"f":2,"c":1,"v":"u.h0","o":67136},{"f":2,"c":1,"v":"0123456789ABCDEFGHIJKLMNOPQRSTUV","o":70299},{"f":2,"c":1,"v":"@0123456789ABCDEFGHIJKLMNOPQRSTUV","o":70298},{"f":3,"c":2,"v":"Error","o":69488},{"f":3,"c":1,"v":"Runtime error     at 00000000","o":69496},{"f":3,"c":1,"v":"Inno Setup Setup Data (5.5.7) (u)","o":70156},{"f":3,"c":1,"v":"Inno Setup Messages (5.5.3) (u)","o":70220},{"f":13,"c":1,"v":"&About Setup...","o":-1},{"f":13,"c":1,"v":"%1 version %2\r\n%3\r\n\r\n%1 home page:\r\n%4","o":-1},{"f":13,"c":1,"v":"About Setup","o":-1},{"f":13,"c":1,"v":"You must be logged in as an administrator when installing this program.","o":-1},{"f":13,"c":1,"v":"The following applications are using files that need to be updated by Setup. It is recommended that you allow Setup to automatically close these applications.","o":-1},{"f":13,"c":1,"v":"The following applications are using files that need to be updated by Setup. It is recommended that you allow Setup to automatically close these applications. After the installation has completed, Setup will attempt to restart the applications.","o":-1},{"f":13,"c":1,"v":"Folder names cannot include any of the following characters:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"The folder name cannot include any of the following characters:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"Select a folder in the list below, then click OK.","o":-1},{"f":13,"c":1,"v":"Browse For Folder","o":-1},{"f":12,"c":1,"v":"< &Back","o":-1},{"f":13,"c":1,"v":"&Browse...","o":-1},{"f":13,"c":1,"v":"Cancel","o":-1},{"f":13,"c":1,"v":"&Finish","o":-1},{"f":13,"c":1,"v":"&Install","o":-1},{"f":13,"c":1,"v":"&Make New Folder","o":-1},{"f":12,"c":1,"v":"&Next >","o":-1},{"f":13,"c":1,"v":"N&o to All","o":-1},{"f":13,"c":1,"v":"B&rowse...","o":-1},{"f":12,"c":1,"v":"&Yes","o":-1},{"f":13,"c":1,"v":"Yes to &All","o":-1},{"f":13,"c":1,"v":"Setup cannot continue. Please click Cancel to exit.","o":-1},{"f":13,"c":1,"v":"Setup cannot install to a network drive.","o":-1},{"f":13,"c":1,"v":"Setup cannot install to a UNC path.","o":-1},{"f":13,"c":1,"v":"Setup Needs the Next Disk","o":-1},{"f":13,"c":1,"v":"Click Finish to exit Setup.","o":-1},{"f":13,"c":1,"v":"Click Next to continue, or Cancel to exit Setup.","o":-1},{"f":13,"c":1,"v":"&Automatically close the applications","o":-1},{"f":13,"c":1,"v":"Compact installation","o":-1},{"f":12,"c":1,"v":"%1 KB","o":-1},{"f":12,"c":1,"v":"%1 MB","o":-1},{"f":13,"c":1,"v":"Current selection requires at least [mb] MB of disk space.","o":-1},{"f":13,"c":1,"v":"The system indicates that the following shared file is no longer in use by any programs. Would you like for Uninstall to remove this shared file?\r\n\r\nIf any programs are still using this file and it is removed, those programs may not function properly. If you are unsure, choose No. Leaving the file on your system will not cause any harm.","o":-1},{"f":13,"c":1,"v":"Remove Shared File?","o":-1},{"f":13,"c":1,"v":"Confirm","o":-1},{"f":13,"c":1,"v":"Are you sure you want to completely remove %1 and all of its components?","o":-1},{"f":13,"c":1,"v":"Custom installation","o":-1},{"f":13,"c":1,"v":"The folder:\r\n\r\n%1\r\n\r\ndoes not exist. Would you like the folder to be created?","o":-1},{"f":13,"c":1,"v":"Folder Does Not Exist","o":-1},{"f":13,"c":1,"v":"The folder:\r\n\r\n%1\r\n\r\nalready exists. Would you like to install to that folder anyway?","o":-1},{"f":13,"c":1,"v":"Folder Exists","o":-1},{"f":13,"c":2,"v":"The folder name or path is too long.","o":-1},{"f":13,"c":1,"v":"At least [mb] MB of free disk space is required.","o":-1},{"f":13,"c":1,"v":"Setup requires at least %1 KB of free space to install, but the selected drive only has %2 KB available.\r\n\r\nDo you want to continue anyway?","o":-1},{"f":13,"c":1,"v":"Not Enough Disk Space","o":-1},{"f":13,"c":1,"v":"&Do not close the applications","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to proceed anyway, or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to change the attributes of the existing file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to automatically close all applications. It is recommended that you close all applications using files that need to be updated by Setup before continuing.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to copy a file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to create the directory \"%1\"","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to create a file in the destination directory:","o":-1},{"f":13,"c":1,"v":"Unable to execute file:\r\n%1","o":-1},{"f":13,"c":1,"v":"%1 failed; code %2","o":-1},{"f":13,"c":1,"v":"%1 failed","o":-1},{"f":13,"c":1,"v":"%1 failed; code %2.\r\n%3","o":-1},{"f":13,"c":1,"v":"Error creating INI entry in file \"%1\".","o":-1},{"f":13,"c":1,"v":"Internal error: %1","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to open the README file.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to read the existing file:","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to read the source file:","o":-1},{"f":13,"c":1,"v":"Error creating registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"Unable to register the DLL/OCX: %1","o":-1},{"f":13,"c":1,"v":"Unable to register the type library: %1","o":-1},{"f":13,"c":1,"v":"Error opening registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"RegSvr32 failed with exit code %1","o":-1},{"f":13,"c":1,"v":"Error writing to registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to rename a file in the destination directory:","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to replace the existing file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to restart the computer. Please do this manually.","o":-1},{"f":13,"c":1,"v":"RestartReplace failed:","o":-1},{"f":13,"c":1,"v":"Unable to create a file in the directory \"%1\" because it contains too many files","o":-1},{"f":13,"c":1,"v":"The existing file is newer than the one Setup is trying to install. It is recommended that you keep the existing file.\r\n\r\nDo you want to keep the existing file?","o":-1},{"f":13,"c":1,"v":"The existing file is marked as read-only.\r\n\r\nClick Retry to remove the read-only attribute and try again, Ignore to skip this file, or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"Setup is not complete. If you exit now, the program will not be installed.\r\n\r\nYou may run Setup again at another time to complete the installation.\r\n\r\nExit Setup?","o":-1},{"f":13,"c":1,"v":"Exit Setup","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to skip this file (not recommended), or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to proceed anyway (not recommended), or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"The file already exists.\r\n\r\nWould you like Setup to overwrite it?","o":-1},{"f":13,"c":1,"v":"The file \"%1\" could not be located in \"%2\". Please insert the correct disk or select another folder.","o":-1},{"f":13,"c":1,"v":"Completing the [name] Setup Wizard","o":-1},{"f":13,"c":1,"v":"Setup has finished installing [name] on your computer. The application may be launched by selecting the installed shortcuts.","o":-1},{"f":13,"c":1,"v":"Setup has finished installing [name] on your computer.","o":-1},{"f":13,"c":1,"v":"To complete the installation of [name], Setup must restart your computer. Would you like to restart now?","o":-1},{"f":13,"c":1,"v":"To complete the installation of [name], Setup must restart your computer.\r\n\r\nWould you like to restart now?","o":-1},{"f":13,"c":1,"v":"Full installation","o":-1},{"f":13,"c":1,"v":"The password you entered is not correct. Please try again.","o":-1},{"f":13,"c":2,"v":"When you are ready to continue with Setup, click Next.","o":-1},{"f":13,"c":3,"v":"Please read the following important information before continuing.","o":-1},{"f":13,"c":3,"v":"Information","o":-1},{"f":13,"c":1,"v":"Please wait while Setup installs [name] on your computer.","o":-1},{"f":13,"c":2,"v":"The folder name is not valid.","o":-1},{"f":13,"c":1,"v":"The drive or UNC share you selected does not exist or is not accessible. Please select another.","o":-1},{"f":13,"c":1,"v":"An invalid parameter was passed on the command line:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"You must enter a full path with drive letter; for example:\r\n\r\nC:\\APP\r\n\r\nor a UNC path in the form:\r\n\r\n\\\\server\\share","o":-1},{"f":13,"c":1,"v":"%1.\r\n\r\nError %2: %3","o":-1},{"f":13,"c":1,"v":"Unable to create a temporary file. Setup aborted","o":-1},{"f":13,"c":1,"v":"Unable to execute file in the temporary directory. Setup aborted","o":-1},{"f":13,"c":1,"v":"I &accept the agreement","o":-1},{"f":13,"c":1,"v":"Please read the following License Agreement. You must accept the terms of this agreement before continuing with the installation.","o":-1},{"f":13,"c":1,"v":"I &do not accept the agreement","o":-1},{"f":13,"c":1,"v":"The version of Windows you are running does not include functionality required by Setup to perform a 64-bit installation. To correct this problem, please install Service Pack %1.","o":-1},{"f":13,"c":1,"v":"You must enter a folder name.","o":-1},{"f":13,"c":1,"v":"New Folder","o":-1},{"f":13,"c":1,"v":"&Don't create a Start Menu folder","o":-1},{"f":13,"c":1,"v":"&No, I will restart the computer later","o":-1},{"f":13,"c":1,"v":"This program will not run on %1.","o":-1},{"f":13,"c":1,"v":"Setup has detected that the following components are already installed on your computer:\r\n\r\n%1\r\n\r\nDeselecting these components will not uninstall them.\r\n\r\nWould you like to continue anyway?","o":-1},{"f":13,"c":1,"v":"Components Exist","o":-1},{"f":13,"c":1,"v":"This installation can only be uninstalled by a user with administrative privileges.","o":-1},{"f":13,"c":1,"v":"This program can only be installed on versions of Windows designed for the following processor architectures:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"This program must be run on %1.","o":-1},{"f":13,"c":1,"v":"&Password:","o":-1},{"f":13,"c":1,"v":"This installation is password protected.","o":-1},{"f":13,"c":1,"v":"Please provide the password, then click Next to continue. Passwords are case-sensitive.","o":-1},{"f":12,"c":1,"v":"&Path:","o":-1},{"f":13,"c":1,"v":"You must be logged in as an administrator or as a member of the Power Users group when installing this program.","o":-1},{"f":13,"c":1,"v":"Setup is preparing to install [name] on your computer.","o":-1},{"f":13,"c":1,"v":"The installation/removal of a previous program was not completed. You will need to restart your computer to complete that installation.\r\n\r\nAfter restarting your computer, run Setup again to complete the installation of [name].","o":-1},{"f":13,"c":1,"v":"Setup is now ready to begin installing [name] on your computer.","o":-1},{"f":13,"c":1,"v":"Click Install to continue with the installation, or click Back if you want to review or change any settings.","o":-1},{"f":13,"c":1,"v":"Click Install to continue with the installation.","o":-1},{"f":13,"c":1,"v":"Selected components:","o":-1},{"f":13,"c":1,"v":"Destination location:","o":-1},{"f":13,"c":1,"v":"Start Menu folder:","o":-1},{"f":13,"c":1,"v":"Additional tasks:","o":-1},{"f":13,"c":1,"v":"Setup type:","o":-1},{"f":13,"c":1,"v":"User information:","o":-1},{"f":12,"c":1,"v":"Run %1","o":-1},{"f":12,"c":1,"v":"View %1","o":-1},{"f":13,"c":1,"v":"Which components should be installed?","o":-1},{"f":13,"c":1,"v":"Select the components you want to install; clear the components you do not want to install. Click Next when you are ready to continue.","o":-1},{"f":13,"c":2,"v":"To continue, click Next. If you would like to select a different folder, click Browse.","o":-1},{"f":13,"c":1,"v":"Where should [name] be installed?","o":-1},{"f":13,"c":1,"v":"Please specify the location of the next disk.","o":-1},{"f":13,"c":1,"v":"Setup will install [name] into the following folder.","o":-1},{"f":13,"c":1,"v":"Please insert Disk %1 and click OK.\r\n\r\nIf the files on this disk can be found in a folder other than the one displayed below, enter the correct path or click Browse.","o":-1},{"f":13,"c":1,"v":"Select the language to use during the installation:","o":-1},{"f":13,"c":1,"v":"Select Setup Language","o":-1},{"f":13,"c":1,"v":"Where should Setup place the program's shortcuts?","o":-1},{"f":13,"c":1,"v":"Setup will create the program's shortcuts in the following Start Menu folder.","o":-1},{"f":13,"c":1,"v":"Which additional tasks should be performed?","o":-1},{"f":13,"c":1,"v":"Select the additional tasks you would like Setup to perform while installing [name], then click Next.","o":-1},{"f":13,"c":1,"v":"Setup was not completed.\r\n\r\nPlease correct the problem and run Setup again.","o":-1},{"f":13,"c":1,"v":"Setup is already running.","o":-1},{"f":13,"c":1,"v":"Setup has detected that %1 is currently running.\r\n\r\nPlease close all instances of it now, then click OK to continue, or Cancel to exit.","o":-1},{"f":13,"c":1,"v":"The setup files are corrupted, or are incompatible with this version of Setup. Please correct the problem or obtain a new copy of the program.","o":-1},{"f":13,"c":1,"v":"The file %1 is missing from the installation directory. Please correct the problem or obtain a new copy of the program.","o":-1},{"f":13,"c":1,"v":"This will install %1. Do you wish to continue?","o":-1},{"f":13,"c":1,"v":"Setup - %1","o":-1},{"f":13,"c":1,"v":"File name:","o":-1},{"f":13,"c":1,"v":"Location:","o":-1},{"f":13,"c":1,"v":"Yes, I would like to view the README file","o":-1},{"f":13,"c":1,"v":"Installing %1.","o":-1},{"f":13,"c":1,"v":"Uninstalling %1.","o":-1},{"f":13,"c":1,"v":"The source file \"%1\" does not exist","o":-1},{"f":13,"c":1,"v":"The source file is corrupted","o":-1},{"f":13,"c":1,"v":"Closing applications...","o":-1},{"f":13,"c":1,"v":"Creating directories...","o":-1},{"f":13,"c":1,"v":"Creating shortcuts...","o":-1},{"f":13,"c":1,"v":"Creating INI entries...","o":-1},{"f":13,"c":1,"v":"Creating registry entries...","o":-1},{"f":13,"c":1,"v":"Extracting files...","o":-1},{"f":13,"c":1,"v":"Registering files...","o":-1},{"f":13,"c":1,"v":"Restarting applications...","o":-1},{"f":13,"c":1,"v":"Rolling back changes...","o":-1},{"f":13,"c":1,"v":"Saving uninstall information...","o":-1},{"f":13,"c":1,"v":"Finishing installation...","o":-1},{"f":13,"c":1,"v":"Uninstalling %1...","o":-1},{"f":13,"c":1,"v":"%1 Uninstall","o":-1},{"f":13,"c":1,"v":"Uninstall","o":-1},{"f":13,"c":1,"v":"\"%1\" file is corrupted. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"%1 was successfully removed from your computer.","o":-1},{"f":13,"c":1,"v":"To complete the uninstallation of %1, your computer must be restarted.\r\n\r\nWould you like to restart now?","o":-1},{"f":13,"c":1,"v":"%1 uninstall complete.\r\n\r\nSome elements could not be removed. These can be removed manually.","o":-1},{"f":13,"c":1,"v":"Uninstall has detected that %1 is currently running.\r\n\r\nPlease close all instances of it now, then click OK to continue, or Cancel to exit.","o":-1},{"f":13,"c":1,"v":"File \"%1\" does not exist. Cannot uninstall.","o":-1},{"f":13,"c":1,"v":"This installation can only be uninstalled on 64-bit Windows.","o":-1},{"f":13,"c":1,"v":"File \"%1\" could not be opened. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"Please wait while %1 is removed from your computer.","o":-1},{"f":13,"c":1,"v":"An unknown entry (%1) was encountered in the uninstall log","o":-1},{"f":13,"c":1,"v":"The uninstall log file \"%1\" is in a format not recognized by this version of the uninstaller. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"Please enter your information.","o":-1},{"f":13,"c":1,"v":"&User Name:","o":-1},{"f":13,"c":1,"v":"You must enter a name.","o":-1},{"f":13,"c":1,"v":"&Organization:","o":-1},{"f":13,"c":1,"v":"&Serial Number:","o":-1},{"f":13,"c":1,"v":"Welcome to the [name] Setup Wizard","o":-1},{"f":13,"c":1,"v":"This will install [name/ver] on your computer.\r\n\r\nIt is recommended that you close all other applications before continuing.","o":-1},{"f":13,"c":1,"v":"This program requires %1 Service Pack %2 or later.","o":-1},{"f":13,"c":1,"v":"This program does not support the version of Windows your computer is running.","o":-1},{"f":13,"c":1,"v":"This program cannot be installed on %1 version %2 or later.","o":-1},{"f":13,"c":1,"v":"This program requires %1 version %2 or later.","o":-1},{"f":13,"c":1,"v":"Installing","o":-1},{"f":13,"c":1,"v":"License Agreement","o":-1},{"f":13,"c":1,"v":"Password","o":-1},{"f":13,"c":1,"v":"Preparing to Install","o":-1},{"f":13,"c":1,"v":"Ready to Install","o":-1},{"f":13,"c":1,"v":"Select Destination Location","o":-1},{"f":13,"c":1,"v":"Select Components","o":-1},{"f":13,"c":1,"v":"Select Start Menu Folder","o":-1},{"f":13,"c":1,"v":"Select Additional Tasks","o":-1},{"f":13,"c":1,"v":"Uninstall Status","o":-1},{"f":13,"c":1,"v":"User Information","o":-1},{"f":13,"c":1,"v":"&Yes, restart the computer now","o":-1},{"f":13,"c":1,"v":"%1 version %2","o":-1},{"f":13,"c":1,"v":"Additional shortcuts:","o":-1},{"f":13,"c":1,"v":"Create a &desktop shortcut","o":-1},{"f":13,"c":1,"v":"Create a &Quick Launch shortcut","o":-1},{"f":13,"c":1,"v":"%1 on the Web","o":-1},{"f":13,"c":1,"v":"Uninstall %1","o":-1},{"f":12,"c":1,"v":"Launch %1","o":-1},{"f":13,"c":1,"v":"&Associate %1 with the %2 file extension","o":-1},{"f":13,"c":1,"v":"Associating %1 with the %2 file extension...","o":-1},{"f":13,"c":1,"v":"Startup:","o":-1},{"f":13,"c":1,"v":"Automatically start %1","o":-1},{"f":13,"c":1,"v":"%1 could not be located in the folder you selected.\r\n\r\nDo you want to continue anyway?","o":-1},{"f":13,"c":1,"v":"contextentry","o":-1},{"f":13,"c":1,"v":"Add to explorer context menu","o":-1}],"interesting_strings":[{"category":"http","values":[{"offset":60300,"occurrences":1,"value":"http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline"},{"offset":13509,"occurrences":1,"value":"t.ht"}]},{"category":"https","values":[{"offset":18446744073709551615,"occurrences":1,"value":"https://www.sublimetext.com"}]}],"classification":{"propagated":false,"classification":1,"factor":2,"scan_results":[{"ignored":false,"type":1,"classification":1,"factor":2,"name":"Antivirus (based on the RCA Classify)","version":"2.91","rca_factor":2,"result":""}],"rca_factor":2},"indicators":[{"priority":7,"category":22,"description":"Deletes files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":101},{"priority":7,"category":11,"description":"Requests permission required to shut down a system.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"},{"propagated":false,"category":"Strings","description":"Contains the following string: SeShutdownPrivilege"}],"id":990},{"priority":6,"category":10,"description":"Executes a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateProcessW"}],"id":21},{"priority":5,"category":22,"description":"Writes to files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":99},{"priority":5,"category":11,"description":"Tampers with user/account privileges.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"}],"id":329},{"priority":5,"category":12,"description":"Checks operating system version.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetVersion"}],"id":930},{"priority":5,"category":9,"description":"Enumerates the values of a registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":18370},{"priority":5,"category":9,"description":"Opens registry keys.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"}],"id":18373},{"priority":4,"category":22,"description":"Deletes files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"}],"id":5},{"priority":4,"category":9,"description":"Accesses/modifies registry.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":7},{"priority":4,"category":22,"description":"Creates/opens files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":95},{"priority":4,"category":22,"description":"Reads from files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":97},{"priority":4,"category":10,"description":"Tampers with system shutdown.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ExitWindowsEx"}],"id":117},{"priority":4,"category":13,"description":"Enumerates system information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":149},{"priority":4,"category":0,"description":"Contains URLs.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: For more detailed information, please visit http://www.jrsoftware.org/"}],"id":310},{"priority":4,"category":12,"description":"Reads paths to system directories on Windows.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":967},{"priority":4,"category":11,"description":"Enumerates user/account privilege information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LookupPrivilegeValueW"}],"id":1215},{"priority":3,"category":22,"description":"Writes to files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":3},{"priority":3,"category":1,"description":"Detects presence of debuggers.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetTickCount"}],"id":9},{"priority":3,"category":7,"description":"Detects/enumerates process modules.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetModuleFileNameW"}],"id":81},{"priority":3,"category":22,"description":"Removes a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RemoveDirectoryW"}],"id":340},{"priority":3,"category":14,"description":"Contains one or more script files.","relevance":0,"reasons":[{"propagated":false,"category":"Tag Match","description":"Matched contains-script tag"}],"id":1160},{"priority":3,"category":4,"description":"Allocates additional memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LocalAlloc"}],"id":17985},{"priority":3,"category":10,"description":"Forces a window to close.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DestroyWindow"}],"id":17990},{"priority":3,"category":22,"description":"Queries file attributes.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileAttributesW"}],"id":17997},{"priority":3,"category":22,"description":"Changes the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetEndOfFile"}],"id":18066},{"priority":3,"category":12,"description":"Enumerates the installed system languages.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetUserDefaultLangID"}],"id":18368},{"priority":2,"category":22,"description":"Reads from files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":1},{"priority":2,"category":10,"description":"Loads additional libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LoadLibraryW"}],"id":69},{"priority":2,"category":10,"description":"Loads additional APIs.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetProcAddress"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Loads additional libraries."}],"id":70},{"priority":2,"category":10,"description":"Tampers with module search locations.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: SetDllDirectoryW"}],"id":92},{"priority":2,"category":12,"description":"Enumerates files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: FindFirstFileW"}],"id":119},{"priority":2,"category":13,"description":"Enumerates system variables.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetEnvironmentVariableW"}],"id":151},{"priority":2,"category":22,"description":"Creates a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateDirectoryW"}],"id":338},{"priority":2,"category":10,"description":"Delays execution.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: Sleep"}],"id":17984},{"priority":2,"category":10,"description":"Displays a dialog box with a message.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxW"}],"id":17989},{"priority":2,"category":22,"description":"Queries the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileSize"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17991},{"priority":2,"category":12,"description":"Queries the free disk space.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetDiskFreeSpaceW"}],"id":18001},{"priority":2,"category":4,"description":"Frees previously allocated memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: VirtualFree"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Allocates additional memory in the calling process."}],"id":18585},{"priority":1,"category":22,"description":"Creates/Opens a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"}],"id":0},{"priority":1,"category":12,"description":"Enumerates user locale information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: EnumCalendarInfoW"}],"id":287},{"priority":1,"category":12,"description":"Contains references to executable file extensions.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: ernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: userenv.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":313},{"priority":1,"category":10,"description":"Contains reference to apphelp.dll which is Application Compatibility Client Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"}],"id":3502},{"priority":1,"category":10,"description":"Contains reference to clbcatq.dll which is COM+ Configuration Catalog.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"}],"id":4146},{"priority":1,"category":10,"description":"Contains reference to comres.dll which is COM+ Resources.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"}],"id":5025},{"priority":1,"category":10,"description":"Contains reference to cryptbase.dll which is Base cryptographic API DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"}],"id":5076},{"priority":1,"category":10,"description":"Contains reference to dwmapi.dll which is Microsoft Desktop Window Manager API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"}],"id":5616},{"priority":1,"category":10,"description":"Contains reference to kernel32.dll which is Windows NT BASE API Client DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"}],"id":7482},{"priority":1,"category":10,"description":"Contains reference to oleacc.dll which is Active Accessibility Core Component.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"}],"id":9174},{"priority":1,"category":10,"description":"Contains reference to profapi.dll which is User Profile Basic API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"}],"id":9519},{"priority":1,"category":10,"description":"Contains reference to propsys.dll which is Microsoft Property System.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"}],"id":9523},{"priority":1,"category":10,"description":"Contains reference to setupapi.dll which is Windows Setup API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"}],"id":10253},{"priority":1,"category":10,"description":"Contains reference to shell32.dll which is Windows Shell Common Dll.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"}],"id":10300},{"priority":1,"category":10,"description":"Contains reference to uxtheme.dll which is Microsoft UxTheme Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"}],"id":11278},{"priority":1,"category":10,"description":"Contains reference to version.dll which is Version Checking and File Installation Libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":11315},{"priority":1,"category":22,"description":"Sets or updates the file pointer position within an open file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetFilePointer"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17986},{"priority":1,"category":9,"description":"Closes a previously open registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegCloseKey"}],"id":17987},{"priority":1,"category":22,"description":"Closes a previously open file descriptor.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CloseHandle"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":18020},{"priority":1,"category":16,"description":"Uses string related methods.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: lstrcpynW"}],"id":18050}],"story":"This file (SHA1: 1177c6451fdaa841f7a8cb0feed53b6621e3356d) is a 32-bit portable executable application. Additionally, it was identified as InnoSetup installer, and unpacking was successful. The application uses the Windows graphical user interface (GUI) subsystem, while the languages used are Dutch from Netherlands and English from United States. According to version information, this is Sublime Text from Sublime HQ Pty Ltd. Appended data was detected at the file&#x27;s end. Its length is greater than the size of the image. Cryptography related data was found in the file. This application has access to device configuration, monitoring and running processes and has cryptography and security related capabilities. Libraries advapi32 Generic, comctl32 Generic, kernel32 Generic, oleaut32 Generic and user32 Generic were detected in the file. The application is digitally signed, and the signature is valid. Additionally, the certificate uses a weak hashing algorithm. There are 4685 extracted files.","signatures":[{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":1,"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"serial_number":"0efea0081659e4a8586f284c8d817206","digest_algorithm":"sha256","digest_encryption_algorithm":"ecdsa-with-SHA256","encrypted_digest":"304502207d94a0db6827748ae98c2edc8e4e375980d0c0cd3c76e70bf87a57c9f68417dc0221008673af9c2bfd9045dde234fdeb1ee6adb36ce00d08c7775247afcfac52d104ce","authenticated_attributes":[{"name":"contentType","value":"SPC_INDIRECT_DATA_OBJID"},{"name":"signingTime","value":"2023-11-23T21:46:11Z"},{"name":"1.3.6.1.4.1.311.2.1.11","value":"#300C060A2B060104018237020115"},{"name":"messageDigest","value":"#0420269D029208F10B371A35A430C933F714A41CE5869BE40A90C67E796C32FD88B6"}],"certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2023-08-01T00:00:00Z","valid_to":"2024-08-04T23:59:59Z","serial_number":"0efea0081659e4a8586f284c8d817206","subject":[{"name":"countryName","value":"AU"},{"name":"stateOrProvinceName","value":"New South Wales"},{"name":"localityName","value":"Woollahra"},{"name":"organizationName","value":"Sublime HQ Pty Ltd"},{"name":"commonName","value":"Sublime HQ Pty Ltd"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2021-04-29T00:00:00Z","valid_to":"2036-04-28T23:59:59Z","serial_number":"0fb8a740b9158d035143bc59d9f04029","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2013-08-01T12:00:00Z","valid_to":"2038-01-15T12:00:00Z","serial_number":"055556bcf25ea43535c3a40fd5ab4572","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"signature_algorithm":"ecdsa-with-SHA384","signature":"3065023100adbcf26c3f124ad12d39c30a099773f488368c8827bbe6888d5085a763f99e32de66930ff1ccb1098fdd6cabfa6b7fa0023039665bc2648db89e50dca8d549a2edc7dcd1497f1701b8c8868f4e8c882ba89aa98ac5d100bdf854e29ae55b7cb32717","public_key":{"type":2,"value":"04dda7d9bb8ab80bfb0b7f21d2f0bebe73f3335d1abc34eadec69bbcd095f6f0ccd00bba615b51467e9e2d9fee8e630c17ec0770f5cf842e40839ce83f416d3badd3a4145936789d0343ee10136c72deae88a7a16bb543ce67dc23ff031ca3e23e","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000ffffffff","a":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000fffffffc","b":"b3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef","x":"aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab7","y":"3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","generator":"04aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab73617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","order":"ffffffffffffffffffffffffffffffffffffffffffffffffc7634d81f4372ddf581a0db248b0a77aecec196accc52973","cofactor":"1","seed":"a335926aa319a27a1d00896a6773a4827acdac73","field_type":"prime-field","curve_name":"nistP384"}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"B3:DB:48:A4:F9:A1:C5:D8:AE:36:41:CC:11:63:69:62:29:BC:4B:C6"}],"thumbprints":[{"name":"SHA256","value":"31ad6648f8104138c738f39ea4320133393e3a18cc02296ef97c2ac9ef6731d0"}]},"signature_algorithm":"ecdsa-with-SHA384","signature":"3065023078bd4995657101d0465768650e68a9dc3608c1eefdd48edb40653f0dff93afc2ae6386a37ecbb4915a78ec070367077c023100e79f1ff1075bac34c638bcb5a550cee6ea387e3e7990e4a45bab020de807fc56a65a8addb350b2ddf2fa66749ed01663","public_key":{"type":2,"value":"04bbb4ac27a5480da2535f8f2e813e2f5376b80894a29aaa8a8b98b5b1f0fc2a15bbb9b3a5222ffd6ac0bde25568606b9734c166537123fc1ad5ca200f0240a2a34a5a46a391532b95f203e9aba6d387762fe7649f9e3551fcc363357876e4f877","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000ffffffff","a":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000fffffffc","b":"b3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef","x":"aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab7","y":"3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","generator":"04aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab73617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","order":"ffffffffffffffffffffffffffffffffffffffffffffffffc7634d81f4372ddf581a0db248b0a77aecec196accc52973","cofactor":"1","seed":"a335926aa319a27a1d00896a6773a4827acdac73","field_type":"prime-field","curve_name":"nistP384"}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE, pathlen:0"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"9B:5F:B0:36:BA:9D:06:AE:19:27:BD:C0:A0:22:C0:8B:8B:38:77:ED"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"B3:DB:48:A4:F9:A1:C5:D8:AE:36:41:CC:11:63:69:62:29:BC:4B:C6"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Code Signing"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalRootG3.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertGlobalRootG3.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.3\nPolicy: 2.23.140.1.4.1"}],"thumbprints":[{"name":"SHA256","value":"35769d41ef436a4d63ddb00ab11c6ce968989fcdd829e7018f5db90ac4bd3cd0"}]},"signature_algorithm":"ecdsa-with-SHA384","signature":"3064023001136a9dd4cc1c1ac8e81b6ffc710f18a349b4f92e8dc078055794282d72f84b594b805ae3af7800fc348ef6604a9ab802305163cf5a255e3693a8cb6f3a020e801131bfeff3ce930b1010f84bde310a945c91d6ebab113965072356ef96442fe3b7","public_key":{"type":2,"value":"0422200afdba93e9179dc23c925f92fed87c6dfa8f8beac78d53c8b57e1135f80e2b658e34596033ebb0ef613ec92171dc959a1d7c89c40c321c35b71c738a5766","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"ffffffff00000001000000000000000000000000ffffffffffffffffffffffff","a":"ffffffff00000001000000000000000000000000fffffffffffffffffffffffc","b":"5ac635d8aa3a93e7b3ebbd55769886bc651d06b0cc53b0f63bce3c3e27d2604b","x":"6b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c296","y":"4fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5","generator":"046b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c2964fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5","order":"ffffffff00000000ffffffffffffffffbce6faada7179e84f3b9cac2fc632551","cofactor":"1","seed":"c49d360886e704936a6678e1139d26b7819f7e90","field_type":"prime-field","curve_name":"nistP256"}},"extensions":[{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"9B:5F:B0:36:BA:9D:06:AE:19:27:BD:C0:A0:22:C0:8B:8B:38:77:ED"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"02:86:8E:3B:FF:28:B0:7B:C5:2D:1A:C1:D7:EA:25:81:53:08:F3:DB"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Code Signing"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crl\nFull Name:\n  URI:http://crl4.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.1\n  CPS: http://www.digicert.com/CPS"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crt"},{"is_critical":false,"name":"X509v3 Basic Constraints","value":"CA:FALSE"}],"thumbprints":[{"name":"SHA256","value":"e09dfee5d6ecc4229e3006ebe94a58402dcd44e087777223c01d6fcce17a9e85"}]},"counter_signatures":[{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":1,"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"serial_number":"0544aff3949d0839a6bfdb3f5fe56116","digest_algorithm":"sha256","digest_encryption_algorithm":"rsaEncryption","encrypted_digest":"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","timestamp":"2023-11-23T21:46:11Z","authenticated_attributes":[{"name":"contentType","value":"pkcs7-data"},{"name":"signingTime","value":"2023-11-23T21:46:11Z"},{"name":"messageDigest","value":"#0420CA04B68EF20EFB66CB2A510F2CAA0C8673A96760500266F7E0D1360455C49F05"}],"certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2023-07-14T00:00:00Z","valid_to":"2034-10-13T23:59:59Z","serial_number":"0544aff3949d0839a6bfdb3f5fe56116","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Timestamp 2023"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2022-03-23T00:00:00Z","valid_to":"2037-03-22T23:59:59Z","serial_number":"073637b724547cd847acfd28662a5e5b","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Trusted Root G4"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2022-08-01T00:00:00Z","valid_to":"2031-11-09T23:59:59Z","serial_number":"0e9b188ef9d02de7efdb50e20840185a","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Trusted Root G4"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28","warnings":["Certificate uses weak hashing algorithm (SHA1)"]},"version":2,"valid_from":"2006-11-10T00:00:00Z","valid_to":"2031-11-10T00:00:00Z","serial_number":"0ce7e0e517d846fe8fe560fc1bf03039","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"signature_algorithm":"sha1WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"}],"thumbprints":[{"name":"SHA256","value":"3e9099b5015e8f486c00bcea9d111ee721faba355a89bcf1df69561e3dc6325c"}]},"signature_algorithm":"sha384WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"EC:D7:E3:82:D2:71:5D:64:4C:DF:2E:67:3F:E7:BA:98:AE:1C:0F:4F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: X509v3 Any Policy"}],"thumbprints":[{"name":"SHA256","value":"33846b545a49c9be4903c60e01713c1bd4e4ef31ea65cd95d69e62794f30b941"}]},"signature_algorithm":"sha256WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE, pathlen:0"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"BA:16:D9:6D:4D:85:2F:73:29:76:9A:2F:75:8C:6A:20:8F:9E:C8:6F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"EC:D7:E3:82:D2:71:5D:64:4C:DF:2E:67:3F:E7:BA:98:AE:1C:0F:4F"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Time Stamping"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertTrustedRootG4.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertTrustedRootG4.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.2\nPolicy: 2.16.840.1.114412.7.1"}],"thumbprints":[{"name":"SHA256","value":"281734d4592d1291d27190709cb510b07e22c405d5e0d6119b70e73589f98acf"}]},"signature_algorithm":"sha256WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature"},{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:FALSE"},{"is_critical":true,"name":"X509v3 Extended Key Usage","value":"Time Stamping"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.2\nPolicy: 2.16.840.1.114412.7.1"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"BA:16:D9:6D:4D:85:2F:73:29:76:9A:2F:75:8C:6A:20:8F:9E:C8:6F"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"A5:B6:EF:13:E7:EF:CD:D0:64:A1:D5:56:A9:65:31:A3:DE:D5:E3:49"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt"}],"thumbprints":[{"name":"SHA256","value":"d2f6e46ded7422ccd1d440576841366f828ada559aae3316af4d1a9ad40c7828"}]}}]}],"browser":{},"software_package":{},"attack":[{"matrix":"Enterprise","tactics":[{"id":"TA0005","name":"Defense Evasion","description":"The adversary is trying to avoid being detected.","techniques":[{"id":"T1070.004","name":"Indicator Removal: File Deletion","description":"Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate what was done within a network and how. Removal of these files can occur during an intrusion, or as part of a post-intrusion process to minimize the adversary's footprint.","indicators":[{"priority":7,"category":22,"id":101,"relevance":0,"description":"Deletes files in Windows system directories."},{"priority":4,"category":22,"id":5,"relevance":0,"description":"Deletes files."},{"priority":3,"category":22,"id":340,"relevance":0,"description":"Removes a directory."}]},{"id":"T1112","name":"Modify Registry","description":"Adversaries may interact with the Windows Registry to hide configuration information within Registry keys, remove information as part of cleaning up, or as part of other techniques to aid in persistence and execution.","indicators":[{"priority":4,"category":9,"id":7,"relevance":0,"description":"Accesses/modifies registry."}]},{"id":"T1497.003","name":"Virtualization/Sandbox Evasion: Time Based Evasion","description":"Adversaries may employ various time-based methods to detect and avoid virtualization and analysis environments. This may include enumerating time-based properties, such as uptime or the system clock, as well as the use of timers or other triggers to avoid a virtual machine environment (VME) or sandbox, specifically those that are automated or only operate for a limited amount of time.","indicators":[{"priority":2,"category":10,"id":17984,"relevance":0,"description":"Delays execution."}]}]},{"id":"TA0007","name":"Discovery","description":"The adversary is trying to figure out your environment.","techniques":[{"id":"T1012","name":"Query Registry","description":"Adversaries may interact with the Windows Registry to gather information about the system, configuration, and installed software.","indicators":[{"priority":5,"category":9,"id":18370,"relevance":0,"description":"Enumerates the values of a registry key."},{"priority":4,"category":9,"id":7,"relevance":0,"description":"Accesses/modifies registry."}]},{"id":"T1083","name":"File and Directory Discovery","description":"Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":4,"category":12,"id":967,"relevance":0,"description":"Reads paths to system directories on Windows."},{"priority":2,"category":12,"id":119,"relevance":0,"description":"Enumerates files."}]},{"id":"T1082","name":"System Information Discovery","description":"An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":5,"category":12,"id":930,"relevance":0,"description":"Checks operating system version."},{"priority":4,"category":13,"id":149,"relevance":0,"description":"Enumerates system information."},{"priority":2,"category":13,"id":151,"relevance":0,"description":"Enumerates system variables."},{"priority":2,"category":12,"id":18001,"relevance":0,"description":"Queries the free disk space."}]},{"id":"T1497.003","name":"Virtualization/Sandbox Evasion: Time Based Evasion","description":"Adversaries may employ various time-based methods to detect and avoid virtualization and analysis environments. This may include enumerating time-based properties, such as uptime or the system clock, as well as the use of timers or other triggers to avoid a virtual machine environment (VME) or sandbox, specifically those that are automated or only operate for a limited amount of time.","indicators":[{"priority":2,"category":10,"id":17984,"relevance":0,"description":"Delays execution."}]},{"id":"T1614.001","name":"System Location Discovery: System Language Discovery","description":"Adversaries may attempt to gather information about the system language of a victim in order to infer the geographical location of that host. This information may be used to shape follow-on behaviors, including whether the adversary infects the target and/or attempts specific actions. This decision may be employed by malware developers and operators to reduce their risk of attracting the attention of specific law enforcement agencies or prosecution/scrutiny from other entities.","indicators":[{"priority":3,"category":12,"id":18368,"relevance":0,"description":"Enumerates the installed system languages."}]}]},{"id":"TA0002","name":"Execution","description":"The adversary is trying to run malicious code.","techniques":[{"id":"T1106","name":"Native API","description":"Adversaries may interact with the native OS application programming interface (API) to execute behaviors. Native APIs provide a controlled means of calling low-level OS services within the kernel, such as those involving hardware/devices, memory, and processes. These native APIs are leveraged by the OS during system boot (when other system components are not yet initialized) as well as carrying out tasks and requests during routine operations.","indicators":[{"priority":6,"category":10,"id":21,"relevance":0,"description":"Executes a file."},{"priority":2,"category":10,"id":70,"relevance":0,"description":"Loads additional APIs."}]},{"id":"T1059","name":"Command and Scripting Interpreter","description":"Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries. These interfaces and languages provide ways of interacting with computer systems and are a common feature across many different platforms. Most systems come with some built-in command-line interface and scripting capabilities, for example, macOS and Linux distributions include some flavor of Unix Shell while Windows installations include the Windows Command Shell and PowerShell.","indicators":[{"priority":3,"category":14,"id":1160,"relevance":0,"description":"Contains one or more script files."}]}]},{"id":"TA0040","name":"Impact","description":"The adversary is trying to manipulate, interrupt, or destroy your systems and data.","techniques":[{"id":"T1529","name":"System Shutdown/Reboot","description":"Adversaries may shutdown/reboot systems to interrupt access to, or aid in the destruction of, those systems. Operating systems may contain commands to initiate a shutdown/reboot of a machine or network device. In some cases, these commands may also be used to initiate a shutdown/reboot of a remote computer or network device via Network Device CLI (e.g. reload).","indicators":[{"priority":4,"category":10,"id":117,"relevance":0,"description":"Tampers with system shutdown."}]}]}]}],"malware":{},"software_packages":[]},"networkthreatintelligence":{"sha1":"36ad8d56219e6d64cbfd4a6a8ddd1b6e07b9c053","classification":"goodware","third_party_reputations":{"sources":[{"detection":"undetected","source":"phishing_database","update_time":"2024-06-11T09:25:33"},{"detection":"undetected","source":"cyren","update_time":"2024-06-11T05:10:54"},{"detection":"undetected","source":"cyradar","update_time":"2024-06-11T04:51:21"},{"detection":"undetected","source":"netstar","update_time":"2024-06-11T09:51:02"},{"detection":"undetected","source":"mute","update_time":"2024-06-11T10:20:45"},{"detection":"undetected","source":"adminus_labs","update_time":"2024-06-11T10:26:03"},{"detection":"undetected","source":"apwg","update_time":"2024-06-11T01:19:42"},{"detection":"undetected","source":"0xSI_f33d","update_time":"2024-06-11T05:21:42"},{"detection":"undetected","source":"threatfox_abuse_ch","update_time":"2024-06-11T07:20:34"},{"detection":"undetected","source":"forcepoint","update_time":"2024-06-11T09:58:47","detect_time":"2024-06-11T09:58:47","categories":["information_technology"]},{"detection":"undetected","source":"phishtank","update_time":"2024-06-11T10:21:09"},{"detection":"undetected","source":"alphamountain","update_time":"2024-06-11T09:58:46","detect_time":"2024-06-11T09:58:46","categories":["information_technology"]},{"detection":"undetected","source":"phishstats","update_time":"2024-06-10T22:45:35"},{"detection":"undetected","source":"osint","update_time":"2024-06-11T00:30:14"},{"detection":"undetected","source":"alien_vault","update_time":"2024-06-11T00:48:29"},{"detection":"undetected","source":"openphish","update_time":"2024-06-10T16:59:26"},{"detection":"undetected","source":"mrg","update_time":"2024-06-11T09:47:27"},{"detection":"undetected","source":"crdf","update_time":"2024-06-11T06:44:48"},{"detection":"undetected","source":"urlhaus","update_time":"2024-06-11T09:26:18"}],"statistics":{"total":19,"malicious":0,"clean":0,"undetected":19}},"base64":"aHR0cHM6Ly9kb3dubG9hZC5zdWJsaW1ldGV4dC5jb20vc3VibGltZV90ZXh0X2J1aWxkXzQxNjlfeDY0X3NldHVwLmV4ZQ","analysis":{"analysis_history":[{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176059834136ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T16:46:07"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176059540836ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T16:48:16"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176276059936ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T22:46:43"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176275847836ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T22:48:39"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176636789336ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-06T08:47:36"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176636355436ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-06T08:49:18"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181067049136ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:51:39"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181066779036ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:53:41"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181071539736ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:59:06"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181071260636ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T12:00:50"}],"last_analysis":{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181071260636ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T12:00:50"},"first_analysis":"2024-06-05T16:46:07","analysis_count":18,"statistics":{"unknown":0,"suspicious":0,"total":1,"malicious":0,"goodware":1}},"reason":"file_reputation","requested_url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","categories":["information_technology"],"last_seen":"2024-06-11T12:17:53"},"domainthreatintelligence":{"requested_domain":"download.sublimetext.com","third_party_reputations":{"statistics":{"malicious":0,"clean":0,"undetected":12,"total":12},"sources":[{"source":"0xSI_f33d","update_time":"2024-06-11T05:21:42","detection":"undetected"},{"source":"apwg","update_time":"2024-06-11T04:57:22","detection":"undetected"},{"source":"adminus_labs","update_time":"2024-06-11T10:26:03","detection":"undetected"},{"source":"cyradar","update_time":"2024-06-11T04:51:21","detection":"undetected"},{"source":"osint","update_time":"2024-06-11T00:30:14","detection":"undetected"},{"source":"phishing_database","update_time":"2024-06-11T01:25:32","detection":"undetected"},{"source":"crdf","update_time":"2024-06-11T06:44:48","detection":"undetected"},{"source":"botvrij","update_time":"2024-06-11T01:25:42","detection":"undetected"},{"source":"threatfox_abuse_ch","update_time":"2024-06-11T07:20:34","detection":"undetected"},{"source":"netstar","update_time":"2024-06-11T09:51:02","detection":"undetected"},{"source":"alphamountain","update_time":"2024-06-05T10:55:02","detection":"undetected","detect_time":"2024-06-05T10:55:02","categories":["information_technology"]},{"source":"forcepoint","update_time":"2024-06-05T10:55:07","detection":"undetected","detect_time":"2024-06-05T10:55:07","categories":["information_technology"]}]},"downloaded_files_statistics":{"unknown":0,"suspicious":0,"malicious":0,"total":276,"goodware":276},"last_dns_records":[{"type":"A","value":"104.236.0.104","provider":"ReversingLabs"}],"top_threats":[],"last_dns_records_time":"2024-06-11T12:00:50","last_seen":"2024-06-11T12:01:35","modified_time":"2024-06-11T12:01:35","parent_domain":"sublimetext.com"}}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_delete_sample.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_delete_sample.json
new file mode 100644
index 000000000000..c094cfa8abe0
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_delete_sample.json
@@ -0,0 +1 @@
+{"results": {"code": 200, "detail": {"sha1": "e296c0ded887bcfc4c8a38e1328875d6e7caef83", "sha256": "cc027133e6f4190a5202327b20fe4f89490b8f6d8e32bc489a3a9947015486eb", "sha512": "3eb2c074dbad561e5972620b1b5af1732d49ccc5ec6f76a7bbacb3ca8333146e3c358bb6f7273f402546916f26ae17d24931b6e07783b2092a20c5e7c337c22e", "md5": "fb098286a31ec260a8e05da98e35a5cf"}, "message": "Sample deleted successfully."}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_dynamic_analysis.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_dynamic_analysis.json
new file mode 100644
index 000000000000..7edb614c71d5
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_dynamic_analysis.json
@@ -0,0 +1 @@
+{"status": 1, "message": "PDF does not exist and must be created."}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_list_containers.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_list_containers.json
new file mode 100644
index 000000000000..1401014b58a5
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_list_containers.json
@@ -0,0 +1 @@
+{"count":0,"next":null,"previous":null,"results":[]}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_pdf_report.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_pdf_report.json
new file mode 100644
index 000000000000..d861a76df1b0
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_pdf_report.json
@@ -0,0 +1 @@
+{"status": 2, "status_message": "PDF is ready for download."}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_reanalyze.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_reanalyze.json
new file mode 100644
index 000000000000..38fc6a503bec
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_reanalyze.json
@@ -0,0 +1 @@
+{"results": [{"detail": {"sha1": "d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5", "sha256": "121c3fc43774abf1054ca9b7c10ebb49677889a527f34c7268872e7d670a2233", "sha512": "bc32ea53671eb549fb994a6c9188e7beed03e87a647c73c73a23818ff3d848778b138f8f6e177ae6089a9b8372253f6176d6d54e9c57c2c2c8d4a01234c4b08f", "md5": "debaf7021f49695eadcaaab58d502eb9", "imphash": "feb9bebf646137f4ff73e503cbcb6361"}, "analysis": [{"name": "cloud", "code": 201, "message": "Sample is queued for analysis."}, {"name": "core", "code": 201, "message": "Sample is queued for core analysis."}, {"name": "rl_cloud_sandbox", "code": 200, "message": "Sample is already queued for analysis."}, {"name": "fireeye", "code": 405, "message": "Sandbox integration is not configured."}, {"name": "cape", "code": 405, "message": "Sandbox integration is not configured."}, {"name": "cuckoo", "code": 405, "message": "Sandbox integration is not configured."}, {"name": "joe", "code": 405, "message": "Sandbox integration is not configured."}]}]}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_report_from_url.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_report_from_url.json
new file mode 100644
index 000000000000..73d6bcb61a09
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_report_from_url.json
@@ -0,0 +1 @@
+{"processing_status":"complete","message":"","report":{"id":21416,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","sha256":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267","sha512":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089","md5":"591561a993ef58f8c547f1542c1ed2d8","imphash":"20dd26497880c05caed9305b3c8b9109","category":"application","file_type":"PE","file_subtype":"Exe","identification_name":"InnoSetup","identification_version":"Generic","file_size":16473312,"extracted_file_count":4685,"local_first_seen":"2024-06-05T12:47:28.049306Z","local_last_seen":"2024-06-11T11:54:43.595498Z","classification_origin":null,"classification_reason":"antivirus","classification":"goodware","riskscore":2,"classification_result":null,"av_scanners":[{"record_time":"2023-11-24T01:28:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":null},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":null},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":null},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":null},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":null},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":null},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":null}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":null},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":null},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":null},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":null},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":null},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":null},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":null},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":null},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":null},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":null},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":null},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":null},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":null},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":null},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":null},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":null},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":null},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":null},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":null},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":null},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":null},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":null},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":null},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":null},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":null},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":null},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":null},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":null},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":null}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":null},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":null},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":null},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":null},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":null},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":null},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":null},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":null},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":null},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":null},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":null},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":null},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":null},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":null},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":null},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":null},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":null},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":null},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":null},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":null},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":null},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":null},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":null},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":null},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":null},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":null},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":null},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":null},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":null},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":null},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":null},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":null},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":null},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":null},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":null},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":null}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2023-11-25T01:48:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2023-12-07T01:51:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"PUA.Win.Malware.Speedingupmypc-6718419-0","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"mcafeegwedition_online","result":"","name":"mcafeegwedition_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":1,"scanner_count":37,"scanner_percent":2.7027027027027026},{"record_time":"2024-01-18T14:31:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":"PUA.Win.Malware.Speedingupmypc-6718419-0"},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":null},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-04-03T03:46:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-04-21T15:40:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":23,"scanner_percent":0.0},{"record_time":"2024-06-02T02:40:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-06-02T21:11:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":24,"scanner_percent":0.0},{"record_time":"2024-06-05T13:04:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":37,"scanner_percent":0.0},{"record_time":"2024-06-05T13:17:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"symantec_online","result":"","name":"symantec_online","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":37,"scanner_percent":0.0},{"record_time":"2024-06-05T15:21:00","nextgen_scanners":[{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""}],"regular_scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanners":[{"scanner":"ahnlab","result":"","name":"ahnlab","nextgen":false,"previous_result":""},{"scanner":"ahnlab_online","result":"","name":"ahnlab_online","nextgen":false,"previous_result":""},{"scanner":"antivir","result":"","name":"antivir","nextgen":false,"previous_result":""},{"scanner":"avast","result":"","name":"avast","nextgen":false,"previous_result":""},{"scanner":"bitdefender","result":"","name":"bitdefender","nextgen":false,"previous_result":""},{"scanner":"carbonblack","result":"","name":"carbonblack","nextgen":true,"previous_result":""},{"scanner":"clamav","result":"","name":"clamav","nextgen":false,"previous_result":""},{"scanner":"crowdstrike","result":"","name":"crowdstrike","nextgen":true,"previous_result":""},{"scanner":"drweb","result":"","name":"drweb","nextgen":false,"previous_result":""},{"scanner":"endgame","result":"","name":"endgame","nextgen":true,"previous_result":""},{"scanner":"ffri","result":"","name":"ffri","nextgen":true,"previous_result":""},{"scanner":"fireeye_online","result":"","name":"fireeye_online","nextgen":false,"previous_result":""},{"scanner":"fortinet","result":"","name":"fortinet","nextgen":false,"previous_result":""},{"scanner":"gdata","result":"","name":"gdata","nextgen":false,"previous_result":""},{"scanner":"ikarus","result":"","name":"ikarus","nextgen":false,"previous_result":""},{"scanner":"k7computing","result":"","name":"k7computing","nextgen":false,"previous_result":""},{"scanner":"malwarebytes","result":"","name":"malwarebytes","nextgen":false,"previous_result":""},{"scanner":"mcafee","result":"","name":"mcafee","nextgen":false,"previous_result":""},{"scanner":"mcafee_beta","result":"","name":"mcafee_beta","nextgen":false,"previous_result":""},{"scanner":"mcafee_online","result":"","name":"mcafee_online","nextgen":false,"previous_result":""},{"scanner":"microsoft","result":"","name":"microsoft","nextgen":false,"previous_result":""},{"scanner":"microsoft_online","result":"","name":"microsoft_online","nextgen":false,"previous_result":""},{"scanner":"panda","result":"","name":"panda","nextgen":false,"previous_result":""},{"scanner":"panda_online","result":"","name":"panda_online","nextgen":false,"previous_result":""},{"scanner":"quickheal","result":"","name":"quickheal","nextgen":false,"previous_result":""},{"scanner":"rising","result":"","name":"rising","nextgen":false,"previous_result":""},{"scanner":"rising_online","result":"","name":"rising_online","nextgen":false,"previous_result":""},{"scanner":"sentinelone_online","result":"","name":"sentinelone_online","nextgen":true,"previous_result":""},{"scanner":"sonicwall","result":"","name":"sonicwall","nextgen":true,"previous_result":""},{"scanner":"sophos_susi","result":"","name":"sophos_susi","nextgen":true,"previous_result":""},{"scanner":"symantec","result":"","name":"symantec","nextgen":false,"previous_result":""},{"scanner":"symantec_beta","result":"","name":"symantec_beta","nextgen":false,"previous_result":""},{"scanner":"trendmicro","result":"","name":"trendmicro","nextgen":false,"previous_result":""},{"scanner":"trendmicro_consumer","result":"","name":"trendmicro_consumer","nextgen":false,"previous_result":""},{"scanner":"varist","result":"","name":"varist","nextgen":false,"previous_result":""},{"scanner":"vba32","result":"","name":"vba32","nextgen":false,"previous_result":""}],"scanner_match":0,"scanner_count":36,"scanner_percent":0.0}],"av_scanners_summary":{"scanner_count":27,"scanner_match":0,"scanner_percent":0.0,"vendor_count":19,"vendor_match":0,"vendor_percent":0.0,"antivirus":{"scanner_match":0,"scanner_count":27,"vendor_match":0,"vendor_count":19}},"cape":{"results":[],"status":null},"cuckoo":{"results":[],"status":null},"fireeye":{"results":[],"status":null},"joe":{"results":[],"status":null},"rl_cloud_sandbox":{"results":[{"value":"NO_THREATS_FOUND","key":"classification"}],"status":"Reported","classification_impact_message":"Not configured to be included in the final classification.","included_in_rca2":true},"sample_summary":{"id":21416,"classification_origin":null,"classification_reason":"antivirus","classification_source":"cloud","summary":{"id":21416,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","indicators":[{"priority":7,"category":22,"description":"Deletes files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":101},{"priority":7,"category":11,"description":"Requests permission required to shut down a system.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"},{"propagated":false,"category":"Strings","description":"Contains the following string: SeShutdownPrivilege"}],"id":990},{"priority":6,"category":10,"description":"Executes a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateProcessW"}],"id":21},{"priority":5,"category":22,"description":"Writes to files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":99},{"priority":5,"category":11,"description":"Tampers with user/account privileges.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"}],"id":329},{"priority":5,"category":12,"description":"Checks operating system version.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetVersion"}],"id":930},{"priority":5,"category":9,"description":"Enumerates the values of a registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":18370},{"priority":5,"category":9,"description":"Opens registry keys.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"}],"id":18373},{"priority":4,"category":22,"description":"Deletes files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"}],"id":5},{"priority":4,"category":9,"description":"Accesses/modifies registry.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":7},{"priority":4,"category":22,"description":"Creates/opens files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":95},{"priority":4,"category":22,"description":"Reads from files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":97},{"priority":4,"category":10,"description":"Tampers with system shutdown.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ExitWindowsEx"}],"id":117},{"priority":4,"category":13,"description":"Enumerates system information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":149},{"priority":4,"category":0,"description":"Contains URLs.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: For more detailed information, please visit http://www.jrsoftware.org/"}],"id":310},{"priority":4,"category":12,"description":"Reads paths to system directories on Windows.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":967},{"priority":4,"category":11,"description":"Enumerates user/account privilege information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LookupPrivilegeValueW"}],"id":1215},{"priority":3,"category":22,"description":"Writes to files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":3},{"priority":3,"category":1,"description":"Detects presence of debuggers.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetTickCount"}],"id":9},{"priority":3,"category":7,"description":"Detects/enumerates process modules.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetModuleFileNameW"}],"id":81},{"priority":3,"category":22,"description":"Removes a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RemoveDirectoryW"}],"id":340},{"priority":3,"category":14,"description":"Contains one or more script files.","relevance":0,"reasons":[{"propagated":false,"category":"Tag Match","description":"Matched contains-script tag"}],"id":1160},{"priority":3,"category":4,"description":"Allocates additional memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LocalAlloc"}],"id":17985},{"priority":3,"category":10,"description":"Forces a window to close.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DestroyWindow"}],"id":17990},{"priority":3,"category":22,"description":"Queries file attributes.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileAttributesW"}],"id":17997},{"priority":3,"category":22,"description":"Changes the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetEndOfFile"}],"id":18066},{"priority":3,"category":12,"description":"Enumerates the installed system languages.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetUserDefaultLangID"}],"id":18368},{"priority":2,"category":22,"description":"Reads from files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":1},{"priority":2,"category":10,"description":"Loads additional libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LoadLibraryW"}],"id":69},{"priority":2,"category":10,"description":"Loads additional APIs.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetProcAddress"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Loads additional libraries."}],"id":70},{"priority":2,"category":10,"description":"Tampers with module search locations.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: SetDllDirectoryW"}],"id":92},{"priority":2,"category":12,"description":"Enumerates files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: FindFirstFileW"}],"id":119},{"priority":2,"category":13,"description":"Enumerates system variables.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetEnvironmentVariableW"}],"id":151},{"priority":2,"category":22,"description":"Creates a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateDirectoryW"}],"id":338},{"priority":2,"category":10,"description":"Delays execution.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: Sleep"}],"id":17984},{"priority":2,"category":10,"description":"Displays a dialog box with a message.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxW"}],"id":17989},{"priority":2,"category":22,"description":"Queries the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileSize"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17991},{"priority":2,"category":12,"description":"Queries the free disk space.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetDiskFreeSpaceW"}],"id":18001},{"priority":2,"category":4,"description":"Frees previously allocated memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: VirtualFree"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Allocates additional memory in the calling process."}],"id":18585},{"priority":1,"category":22,"description":"Creates/Opens a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"}],"id":0},{"priority":1,"category":12,"description":"Enumerates user locale information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: EnumCalendarInfoW"}],"id":287},{"priority":1,"category":12,"description":"Contains references to executable file extensions.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: ernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: userenv.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":313},{"priority":1,"category":10,"description":"Contains reference to apphelp.dll which is Application Compatibility Client Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"}],"id":3502},{"priority":1,"category":10,"description":"Contains reference to clbcatq.dll which is COM+ Configuration Catalog.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"}],"id":4146},{"priority":1,"category":10,"description":"Contains reference to comres.dll which is COM+ Resources.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"}],"id":5025},{"priority":1,"category":10,"description":"Contains reference to cryptbase.dll which is Base cryptographic API DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"}],"id":5076},{"priority":1,"category":10,"description":"Contains reference to dwmapi.dll which is Microsoft Desktop Window Manager API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"}],"id":5616},{"priority":1,"category":10,"description":"Contains reference to kernel32.dll which is Windows NT BASE API Client DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"}],"id":7482},{"priority":1,"category":10,"description":"Contains reference to oleacc.dll which is Active Accessibility Core Component.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"}],"id":9174},{"priority":1,"category":10,"description":"Contains reference to profapi.dll which is User Profile Basic API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"}],"id":9519},{"priority":1,"category":10,"description":"Contains reference to propsys.dll which is Microsoft Property System.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"}],"id":9523},{"priority":1,"category":10,"description":"Contains reference to setupapi.dll which is Windows Setup API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"}],"id":10253},{"priority":1,"category":10,"description":"Contains reference to shell32.dll which is Windows Shell Common Dll.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"}],"id":10300},{"priority":1,"category":10,"description":"Contains reference to uxtheme.dll which is Microsoft UxTheme Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"}],"id":11278},{"priority":1,"category":10,"description":"Contains reference to version.dll which is Version Checking and File Installation Libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":11315},{"priority":1,"category":22,"description":"Sets or updates the file pointer position within an open file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetFilePointer"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17986},{"priority":1,"category":9,"description":"Closes a previously open registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegCloseKey"}],"id":17987},{"priority":1,"category":22,"description":"Closes a previously open file descriptor.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CloseHandle"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":18020},{"priority":1,"category":16,"description":"Uses string related methods.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: lstrcpynW"}],"id":18050}],"unpacking_status":{"failed":0,"success":1,"partial":0}},"aliases":["https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"],"tags":{"ticore":["antivirus","arch-x86","capability-execution","desktop","entropy-high","gui","overlay","contains-archive","contains-pe","antidebugging","capability-filesystem","capability-security","indicator-registry","indicator-search","indicator-settings","string-http","indicator-execution","indicator-file","indicator-network","protection-aslr","protection-dep","version-info","contains-script","indicator-permissions","capability-cryptography","string-https","cert-signed","crypto-pkcs","privilege-escalation","installer","cert-weak-crypto","sfx","cert-weak-crypto-digest","cert-timestamped"],"user":["URL Download"]},"classification":"goodware","riskscore":2,"classification_result":null,"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","sha256":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267","sha512":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089","md5":"591561a993ef58f8c547f1542c1ed2d8","category":1,"file_type":"PE","file_subtype":"Exe","identification_name":"InnoSetup","identification_version":"Generic","file_size":16473312,"extracted_file_count":4685,"local_first_seen":"2024-06-05T12:47:28.049306Z","local_last_seen":"2024-06-11T11:54:43.595498Z","goodware_override":false},"sources":{"ticloud_sources":{"entries":[{"record_time":"2024-06-06T08:47:36","tag":"reversing_labs","properties":[{"name":"url","value":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"ip_address","value":"104.236.0.104"}],"domain":{"name":"sublimetext.com"}},{"record_time":"2024-04-06T17:39:37","tag":"reversing_labs","properties":[{"name":"os_name","value":"Windows, macOS, Linux"},{"name":"url","value":"https://www.techspot.com/downloads/5546-sublime-text.html"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"application_description","value":"Sublime Text is a sophisticated text editor for code, markup and prose. You'll love the slick user interface, extraordinary features and amazing performance."},{"name":"application_name","value":"Sublime Text"},{"name":"ip_address","value":"104.26.15.232"},{"name":"release_date","value":"2024-04-03"}],"domain":{"name":"techspot.com"}},{"record_time":"2024-01-18T16:07:58","tag":"reversing_labs"},{"record_time":"2024-01-18T12:55:38","tag":"reversing_labs"},{"record_time":"2023-12-18T08:09:09","tag":"reversing_labs","properties":[{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"}]},{"record_time":"2023-12-02T18:59:20","tag":"reversing_labs","properties":[{"name":"file_name","value":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"}]},{"record_time":"2023-11-26T15:24:52","tag":"reversing_labs"},{"record_time":"2023-11-25T06:38:41","tag":"reversing_labs","properties":[{"name":"url","value":"https://www.filehorse.com/download-sublime-text/download/"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"application_description","value":"A super fast and modern-looking text and development editor"},{"name":"application_version","value":"Sublime Text 4169 "},{"name":"application_name","value":"Sublime Text"},{"name":"ip_address","value":"83.149.84.232"},{"name":"release_date","value":"2023-11-24"}],"domain":{"name":"filehorse.com"}},{"record_time":"2023-11-24T17:08:13","tag":"reversing_labs","properties":[{"name":"url","value":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"},{"name":"file_name","value":"sublime_text_build_4169_x64_setup.exe"},{"name":"ip_address","value":"104.236.0.104"}],"domain":{"name":"sublimetext.com"}},{"record_time":"2023-11-24T01:18:58","tag":"external_feed","properties":[{"name":"tags","value":"malware"}]}],"named_group":{"reversing_labs":[{"record_time":"2024-06-06T08:47:36","url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","file_name":"sublime_text_build_4169_x64_setup.exe","ip_address":"104.236.0.104"},{"record_time":"2024-04-06T17:39:37","os_name":"Windows, macOS, Linux","url":"https://www.techspot.com/downloads/5546-sublime-text.html","file_name":"sublime_text_build_4169_x64_setup.exe","application_description":"Sublime Text is a sophisticated text editor for code, markup and prose. You'll love the slick user interface, extraordinary features and amazing performance.","application_name":"Sublime Text","ip_address":"104.26.15.232","release_date":"2024-04-03"},{"record_time":"2023-12-18T08:09:09","file_name":"sublime_text_build_4169_x64_setup.exe"},{"record_time":"2023-12-02T18:59:20","file_name":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"},{"record_time":"2023-11-25T06:38:41","url":"https://www.filehorse.com/download-sublime-text/download/","file_name":"sublime_text_build_4169_x64_setup.exe","application_description":"A super fast and modern-looking text and development editor","application_version":"Sublime Text 4169 ","application_name":"Sublime Text","ip_address":"83.149.84.232","release_date":"2023-11-24"},{"record_time":"2023-11-24T17:08:13","url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","file_name":"sublime_text_build_4169_x64_setup.exe","ip_address":"104.236.0.104"}],"external_feed":[{"record_time":"2023-11-24T01:18:58","tags":"malware"}]},"count":7},"other_sources":[],"relationships":{"container_samples":[{"sha1":"1177c6451fdaa841f7a8cb0feed53b6621e3356d","classification":"goodware","threat_name":null,"sample_size":16473312,"factor":2,"format":"InnoSetup:Generic","location":"local"},{"sha1":"b0bf3eef43d2316d3225ca21cac3c8648b905ba8","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/GZIP","location":"cloud"},{"sha1":"c6c8d5240988228c52f23d3bfc5a66205a6d800a","classification":"suspicious","threat_name":"Win64.Malware.Generic","factor":7,"format":"PE+/Exe/ZIP","location":"cloud"},{"sha1":"25a6a84449d56aaaf2632cf7f075b19eb635b360","classification":"suspicious","threat_name":"Win64.Certificate.Invalid","factor":6,"format":"Binary/Archive/RAR","location":"cloud"},{"sha1":"2e80025605916aa0f39f6f85d04ece95f4fba709","classification":"goodware","threat_name":null,"factor":3,"format":"Binary/Archive/GZIP","location":"cloud"}],"parent_samples":[{"sha1":"828112f0fd84dbbc557b857e0654b0d0980d2e83","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/ZIP","location":"cloud"},{"sha1":"d6533ef1ec80a07c7aefe9d69f1849a9d4d7fb09","classification":"malicious","threat_name":"Win32.Trojan.Swisyn","factor":10,"format":"PE/Exe","location":"cloud"},{"sha1":"b0bf3eef43d2316d3225ca21cac3c8648b905ba8","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/GZIP","location":"cloud"},{"sha1":"06f21fe88a839a4cc2037b99a11681fab4a8eeb5","classification":"unclassified","threat_name":null,"factor":3,"format":"Binary/Archive/TAR","location":"cloud"},{"sha1":"2278ba8946215481d8269648193d31de42e3e8fa","classification":"goodware","threat_name":null,"factor":5,"format":"Binary/Archive/ZIP","location":"cloud"}]}},"tags":{"ticore":["antivirus","arch-x86","capability-execution","desktop","entropy-high","gui","overlay","contains-archive","contains-pe","antidebugging","capability-filesystem","capability-security","indicator-registry","indicator-search","indicator-settings","string-http","indicator-execution","indicator-file","indicator-network","protection-aslr","protection-dep","version-info","contains-script","indicator-permissions","capability-cryptography","string-https","cert-signed","crypto-pkcs","privilege-escalation","installer","cert-weak-crypto","sfx","cert-weak-crypto-digest","cert-timestamped"],"user":["URL Download"]},"ticloud":{"classification":"goodware","riskscore":2,"first_seen":"2023-11-24T01:18:58Z","last_seen":"2024-06-11T11:51:44Z","classification_result":null,"classification_reason":"antivirus"},"ticore":{"info":{"statistics":{"file_stats":[{"type":"Binary","subtype":"Archive","count":55,"identifications":[{"count":55,"name":"ZIP:Generic"}]},{"type":"Binary","subtype":"None","count":1309,"identifications":[{"count":17,"name":"ICC:Generic"},{"count":11,"name":"IconResource:Generic"},{"count":1144,"name":"PythonPYC:Generic"},{"count":137,"name":"Unknown"}]},{"type":"Document","subtype":"None","count":164,"identifications":[{"count":1,"name":"AffixAFF:Generic"},{"count":163,"name":"DocumentYAML:Generic"}]},{"type":"Image","subtype":"None","count":437,"identifications":[{"count":2,"name":"BMP:Generic"},{"count":11,"name":"ICO:Generic"},{"count":424,"name":"PNG:Generic"}]},{"type":"None","subtype":"None","count":20,"identifications":[{"count":20,"name":"Unknown"}]},{"type":"PE+","subtype":"Dll","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"PE+","subtype":"Exe","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"PE","subtype":"Exe","count":1,"identifications":[{"count":1,"name":"InnoSetup:Generic"}]},{"type":"Text","subtype":"ActionScript","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Assembly","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"AutoIt","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Batch","count":4,"identifications":[{"count":4,"name":"Unknown"}]},{"type":"Text","subtype":"CCPP","count":9,"identifications":[{"count":9,"name":"Unknown"}]},{"type":"Text","subtype":"CSS","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"CSharp","count":10,"identifications":[{"count":10,"name":"Unknown"}]},{"type":"Text","subtype":"Clojure","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"CoffeeScript","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Common Lisp","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"D","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Dart","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Erlang","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Go","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Groovy","count":28,"identifications":[{"count":28,"name":"Unknown"}]},{"type":"Text","subtype":"HTML","count":1,"identifications":[{"count":1,"name":"HTML:Generic"}]},{"type":"Text","subtype":"Haskell","count":4,"identifications":[{"count":4,"name":"Unknown"}]},{"type":"Text","subtype":"JSON","count":76,"identifications":[{"count":76,"name":"Unknown"}]},{"type":"Text","subtype":"Java","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"JavaScript","count":9,"identifications":[{"count":9,"name":"Unknown"}]},{"type":"Text","subtype":"Lua","count":8,"identifications":[{"count":8,"name":"Unknown"}]},{"type":"Text","subtype":"Makefile","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Matlab","count":7,"identifications":[{"count":7,"name":"Unknown"}]},{"type":"Text","subtype":"None","count":1004,"identifications":[{"count":1,"name":"Certutil:Generic"},{"count":1003,"name":"Unknown"}]},{"type":"Text","subtype":"Objective-C","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"PHP","count":3,"identifications":[{"count":3,"name":"Unknown"}]},{"type":"Text","subtype":"Pascal","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Perl","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Python","count":1188,"identifications":[{"count":1188,"name":"Unknown"}]},{"type":"Text","subtype":"R","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Ruby","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Rust","count":14,"identifications":[{"count":14,"name":"Unknown"}]},{"type":"Text","subtype":"Scala","count":7,"identifications":[{"count":7,"name":"Unknown"}]},{"type":"Text","subtype":"Shell","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"Smalltalk","count":2,"identifications":[{"count":2,"name":"Unknown"}]},{"type":"Text","subtype":"Tcl","count":6,"identifications":[{"count":6,"name":"Unknown"}]},{"type":"Text","subtype":"TypeScript","count":8,"identifications":[{"count":8,"name":"Unknown"}]},{"type":"Text","subtype":"VBS","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"XML","count":267,"identifications":[{"count":267,"name":"Unknown"}]}]},"file":{"file_type":"PE","file_subtype":"Exe","proposed_filename":"Sublime Text_v0.0.0.0.exe","size":16473312,"entropy":7.998901166799472,"hashes":[{"name":"imphash","value":"20dd26497880c05caed9305b3c8b9109"},{"name":"md5","value":"591561a993ef58f8c547f1542c1ed2d8"},{"name":"rha0","value":"62cee0c5c0060759566151bc2fa58387d76528d8"},{"name":"sha1","value":"1177c6451fdaa841f7a8cb0feed53b6621e3356d"},{"name":"sha256","value":"7f8a7557d92ed985e26d9f0bfefa7d2dec72ee38e28579aca86fcb1114e4c267"},{"name":"sha512","value":"4902149980eebfdd8720600002d181816d8b36292fd8b5af5a023928738aa30789b3ee3c1075f304b55f4809b2df5dc63fa453e8747672064475e07478829089"},{"name":"ssdeep","value":"393216:fXI2GZeymKWixJkWwmP7o/OVHLBL5Y7rFQD0t1/26tTK:f4NoymKPQOVHLBLG9+wN1t"}]},"identification":{"success":true,"name":"InnoSetup","version":"Generic","author":"ReversingLabs"},"validation":{"valid":true,"scan_results":[{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28","warnings":["Certificate uses weak hashing algorithm (SHA1)"]},{"valid":true,"type":5,"name":"TitaniumCore PE Checksum Validator","version":"5.0.1.28"},{"valid":true,"type":3,"name":"TitaniumCore PECOFF Validator","version":"5.0.6","warnings":["FileHeader.Characteristics is fixable","PE.TLSTable is fixable"]}]},"unpacking":{"status":2},"properties":[{"name":"AppId","value":"Sublime Text"},{"name":"AppName","value":"Sublime Text"},{"name":"AppPublisher","value":"Sublime HQ Pty Ltd"},{"name":"AppPublisherURL","value":"https://www.sublimetext.com"},{"name":"AppVersionedName","value":"sublime_text_build_4169"},{"name":"DefaultDirName","value":"%ProgramFiles%/Sublime Text"},{"name":"DefaultGroupName","value":"Sublime Text"},{"name":"DefaultUserInfoName","value":"{sysuserinfoname}"},{"name":"DefaultUserInfoOrganization","value":"{sysuserinfoorg}"},{"name":"UninstallDisplayIcon","value":"%InstallDir%/sublime_text.exe"},{"name":"UninstallFilesDir","value":"%InstallDir%"}],"overlays":[{"from":0,"offset":121344,"size":16344728,"entropy":0,"hashes":[{"name":"md5","value":"6681605ec86a2535ff667564142f69a5"},{"name":"sha1","value":"81d9f2e7b1fe83ec9611364db3ca484952e74a06"},{"name":"sha256","value":"7c6adce27f959ac8187f35a3f2ddd103487c718b8054706cf8edf0e6819a0b39"}]}]},"application":{"capabilities":[["clipboard",false],["ipc",true],["threads",true],["processes",true],["storage",true],["filesystem",true],["peripherals",true],["user_input",true],["hardware_interfaces",false],["networking",false],["cryptography",true],["security",true],["system",true],["modules",true],["memory_management",true],["user_interface",true],["command_line",true],["time_and_date",true],["identity",false],["monitoring",true],["configuration",true],["compression",false],["multimedia",true],["deprecated",false],["undocumented",false],["application_management",false],["service_management",false],["messaging",false],["protection",false],["drivers",true]],"pe":{"analysis":{"analysis_state":2,"security_grade":3,"issues":[{"code":18250,"name":"RC18250","description":"Invalid tls table content detected. One or more of its elements refer to data that is not physically available within the file.","relevance":0,"count":1},{"code":22005,"name":"WC22005","description":"Unused file_header_t::characteristics flag image_file_bytes_reversed_lo_k is set.","relevance":0,"count":1},{"code":22006,"name":"WC22006","description":"Unused file_header_t::characteristics flag image_file_bytes_reversed_hi_k is set.","relevance":0,"count":1},{"code":23008,"name":"WC23008","description":"Unexpected optional_header_t::address_of_entry_point value. It is expected that this value is within the bounds defined by optional_header_t::base_of_code and optional_header_t::size_of_code.","relevance":0,"count":1},{"code":24014,"name":"WC24014","description":"Section virtual size will be automatically rounded up by section alignment value.","relevance":0,"count":8},{"code":28105,"name":"WC28105","description":"Data duplication detected within import library list.","relevance":0,"count":23},{"code":28204,"name":"WC28204","description":"Unexpected raw TLS start section attributes detected. It is expected that image_scn_cnt_initialized_data_k attribute is set.","relevance":0,"count":1},{"code":28208,"name":"WC28208","description":"Empty TLS callback element list detected. No functions will be executed prior to entry point or during program termination.","relevance":0,"count":1},{"code":32004,"name":"SC32004","description":"Non-optimal file_header_t::characteristics value. File has relocations stripped, which eliminates the possibility of ASLR being used. Lowers grade to C.","relevance":0,"count":1},{"code":32006,"name":"SC32006","description":"Non-optimal file_header_t::characteristics value. File has relocations stripped while requesting ASLR support. For Intel x86 images relocations are required for ASLR mitigation to be enabled. Lowers grade to D.","relevance":0,"count":2},{"code":33013,"name":"SC33013","description":"Detected security mitigation policy issue in optional_header_t::dll_characteristics. Control flow guard feature flag is not set. Lowers grade to B.","relevance":0,"count":1},{"code":38103,"name":"SC38103","description":"Detected that import thunk are present in a segment with writable access. This exposes the imported functions to risks of pointer hijacking. Lowers grade to D.","relevance":0,"count":1},{"code":38610,"name":"SC38610","description":"Detected security mitigation policy issue in dll_extended_data_t::flags. The image is not compatible with Intel Control Flow Enforcement Technology. No impact to the final grade at this time.","relevance":0,"count":1},{"code":39195,"name":"SC39195","description":"Detected the use of SDLC banned function kernel32.lstrcpynW. Use of this function is considered unsafe because it's an unbound string operation. Lowers grade to C.","relevance":0,"count":1}]},"dos_header":{"e_cblp":80,"e_cp":2,"e_crlc":0,"e_cparhdr":4,"e_minalloc":15,"e_maxalloc":65535,"e_ss":0,"e_sp":184,"e_csum":0,"e_ip":0,"e_cs":0,"e_lfarlc":64,"e_ovno":26,"e_res":"0000000000000000","e_oemid":0,"e_oeminfo":0,"e_res2":"0000000000000000000000000000000000000000","e_lfanew":256},"file_header":{"machine":332,"number_of_sections":8,"time_date_stamp":1459953544,"time_date_stamp_decoded":"2016-04-06T14:39:04Z","pointer_to_symbol_table":0,"number_of_symbols":0,"size_of_optional_headers":224,"characteristics":33167},"optional_header":{"is_checksum_valid":true,"major_linker_version":2,"minor_linker_version":25,"size_of_code":66560,"size_of_initialized_data":53760,"size_of_uninitialized_data":0,"address_of_entry_point":71644,"base_of_code":4096,"base_of_data":73728,"image_base":4194304,"section_alignment":4096,"file_alignment":512,"major_os_version":5,"minor_os_version":0,"major_image_version":6,"minor_image_version":0,"major_subsystem_version":5,"minor_subsystem_version":0,"win32_version_value":0,"size_of_image":163840,"size_of_headers":4096,"checksum":16515937,"subsystem":2,"dll_characteristics":33088,"size_of_stack_reserve":1048576,"size_of_stack_commit":16384,"size_of_heap_reserve":1048576,"size_of_heap_commit":4096,"loader_flags":0,"number_of_rva_and_sizes":16,"data_directories":[{"address":0,"size":0},{"address":102400,"size":3588},{"address":114688,"size":45568},{"address":0,"size":0},{"address":16466072,"size":7240},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0},{"address":110592,"size":24},{"address":0,"size":0},{"address":0,"size":0},{"address":103172,"size":532},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0}]},"sections":[{"name":".text","flags":1610612768,"relative_base":4096,"physical_base":1024,"relative_size":65536,"physical_size":62464,"entropy":6.37521350405155,"hashes":[{"name":"md5","value":"a33e9ff7181115027d121cd377c28c8f"},{"name":"sha1","value":"3dafbb4f2d1eb2164e193102e863ce4d7cabb6fb"},{"name":"sha256","value":"11a963697f424d62b984f4a71b5b39a9212a2ccb07f320d98d9f84c2da74c6dd"}]},{"name":".itext","flags":1610612768,"relative_base":69632,"physical_base":63488,"relative_size":4096,"physical_size":4096,"entropy":5.732200666157374,"hashes":[{"name":"md5","value":"caec456c18277b579a94c9508daf36ec"},{"name":"sha1","value":"2f9d566890abd0f66230a92bedf71afe6d110b37"},{"name":"sha256","value":"7f26d734f1c91987ba9e8f9100bb4d742f5bfef70e88763bbdbc3ce181bf6651"}]},{"name":".data","flags":3221225536,"relative_base":73728,"physical_base":67584,"relative_size":4096,"physical_size":3584,"entropy":2.2967209087898315,"hashes":[{"name":"md5","value":"746954890499546d73dce0e994642192"},{"name":"sha1","value":"2e71d1453d5d7fed43fd87a4ad48ae14c4969c6f"},{"name":"sha256","value":"42f6faae65550b06e3ebbb5a5a19d6ac41911ca2690b14db237928bc63453d96"}]},{"name":".bss","flags":3221225472,"relative_base":77824,"physical_base":71168,"relative_size":24576,"physical_size":0,"entropy":0},{"name":".idata","flags":3221225536,"relative_base":102400,"physical_base":71168,"relative_size":4096,"physical_size":4096,"entropy":4.597812557707957,"hashes":[{"name":"md5","value":"e9b9c0328fd9628ad4d6ab8283dcb20e"},{"name":"sha1","value":"fd2927174e310130a51bdd648aefde6f89fe0007"},{"name":"sha256","value":"68a126ba6dddfa52cdc395cca81ae415921071acf02f75b7c00faf9d90353760"}]},{"name":".tls","flags":3221225472,"relative_base":106496,"physical_base":75264,"relative_size":4096,"physical_size":0,"entropy":0},{"name":".rdata","flags":1073741888,"relative_base":110592,"physical_base":75264,"relative_size":4096,"physical_size":512,"entropy":0.2044881574398449,"hashes":[{"name":"md5","value":"3dffc444ccc131c9dcee18db49ee6403"},{"name":"sha1","value":"45d8f890e32cc1adf7ded113fd19004c8869f419"},{"name":"sha256","value":"821b0bda5922cc6f5fb74fb3a160e39c97727c21beb1ecf4f96e3bcfad9edbe3"}]},{"name":".rsrc","flags":1073741888,"relative_base":114688,"physical_base":75776,"relative_size":49152,"physical_size":45568,"entropy":4.1414851695324275,"hashes":[{"name":"md5","value":"a3af9e006c275f9b16645977edbadec0"},{"name":"sha1","value":"b064ef49daf72887a53b4cecd236b4ee0ed2a01d"},{"name":"sha256","value":"f97c111b81a8b5794b9ee7e81f75e4de84677119c160c8fcda6ad62578b33e64"}]}],"imports":[{"name":"advapi32.dll","apis":["RegQueryValueExW","RegOpenKeyExW","RegCloseKey","RegQueryValueExW","RegOpenKeyExW","RegCloseKey","OpenProcessToken","LookupPrivilegeValueW","AdjustTokenPrivileges"]},{"name":"comctl32.dll","apis":["InitCommonControls"]},{"name":"kernel32.dll","apis":["GetACP","Sleep","VirtualFree","VirtualAlloc","GetSystemInfo","GetTickCount","QueryPerformanceCounter","GetVersion","GetCurrentThreadId","VirtualQuery","WideCharToMultiByte","MultiByteToWideChar","lstrlenW","lstrcpynW","LoadLibraryExW","GetThreadLocale","GetStartupInfoA","GetProcAddress","GetModuleHandleW","GetModuleFileNameW","GetLocaleInfoW","GetCommandLineW","FreeLibrary","FindFirstFileW","FindClose","ExitProcess","WriteFile","UnhandledExceptionFilter","RtlUnwind","RaiseException","GetStdHandle","CloseHandle","TlsSetValue","TlsGetValue","LocalAlloc","GetModuleHandleW","WriteFile","WideCharToMultiByte","WaitForSingleObject","VirtualQuery","VirtualProtect","VirtualFree","VirtualAlloc","SizeofResource","SignalObjectAndWait","SetLastError","SetFilePointer","SetEvent","SetErrorMode","SetEndOfFile","ResetEvent","RemoveDirectoryW","ReadFile","MultiByteToWideChar","LockResource","LoadResource","LoadLibraryW","GetWindowsDirectoryW","GetVersionExW","GetVersion","GetUserDefaultLangID","GetThreadLocale","GetSystemInfo","GetSystemDirectoryW","GetStdHandle","GetProcAddress","GetModuleHandleW","GetModuleFileNameW","GetLocaleInfoW","GetLastError","GetFullPathNameW","GetFileSize","GetFileAttributesW","GetExitCodeProcess","GetEnvironmentVariableW","GetDiskFreeSpaceW","GetCurrentProcess","GetCommandLineW","GetCPInfo","InterlockedExchange","InterlockedCompareExchange","FreeLibrary","FormatMessageW","FindResourceW","EnumCalendarInfoW","DeleteFileW","CreateProcessW","CreateFileW","CreateEventW","CreateDirectoryW","CloseHandle","Sleep"]},{"name":"oleaut32.dll","apis":["SysFreeString","SysReAllocStringLen","SysAllocStringLen"]},{"name":"user32.dll","apis":["GetKeyboardType","LoadStringW","MessageBoxA","CharNextW","CreateWindowExW","TranslateMessage","SetWindowLongW","PeekMessageW","MsgWaitForMultipleObjects","MessageBoxW","LoadStringW","GetSystemMetrics","ExitWindowsEx","DispatchMessageW","DestroyWindow","CharUpperBuffW","CallWindowProcW"]}],"resources":[{"type":"RT_ICON","name":"1","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":76828,"size":296,"entropy":0,"hashes":[{"name":"md5","value":"c5af786bfd9fd1c53c8fe9f0bd9ce38b"},{"name":"sha1","value":"4f6f7d9973b47063aa5353225a2bc5a76aa2a96a"},{"name":"sha256","value":"f59f62e7843b3ff992cf769a3c608acd4a85a38b3b302cda8507b75163659d7b"}]},{"type":"RT_ICON","name":"2","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":77124,"size":1384,"entropy":0,"hashes":[{"name":"md5","value":"0a451222f7037983439a58e3b44db529"},{"name":"sha1","value":"6881cba71174502883d53a8885fb90dad81fd0c0"},{"name":"sha256","value":"dc785b2a3e4ea82bd34121cc04e80758e221f11ee686fcfd87ce49f8e6730b22"}]},{"type":"RT_ICON","name":"3","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":78508,"size":744,"entropy":0,"hashes":[{"name":"md5","value":"90ed3aac2a942e3067e6471b32860e77"},{"name":"sha1","value":"b849a2b9901473810b5d74e6703be78c3a7e64e3"},{"name":"sha256","value":"ca8fc96218d0a7e691dd7b95da05a27246439822d09b829af240523b28fd5bb3"}]},{"type":"RT_ICON","name":"4","language_id_name":"Dutch - Netherlands","language_id":1043,"code_page":0,"offset":79252,"size":2216,"entropy":0,"hashes":[{"name":"md5","value":"af05dd5bd4c3b1fc94922c75ed4f9519"},{"name":"sha1","value":"f54685a8a314e6f911c75cf7554796212fb17c3e"},{"name":"sha256","value":"3bbacbad1458254c59ad7d0fd9bea998d46b70b8f8dcfc56aad561a293ffdae3"}]},{"type":"RT_STRING","name":"4091","language_id_name":"Default","language_id":0,"code_page":0,"offset":81468,"size":104,"entropy":0,"hashes":[{"name":"md5","value":"e518b8ae009986dd90363fcc61d7fff7"},{"name":"sha1","value":"24ed3f9f44fce167e79b53ea5f9b0505c4d567e1"},{"name":"sha256","value":"34ea1c2173226ecc593f8a2b0224c51ebbee1928715bda9339eec7717a822b89"}]},{"type":"RT_STRING","name":"4092","language_id_name":"Default","language_id":0,"code_page":0,"offset":81572,"size":212,"entropy":0,"hashes":[{"name":"md5","value":"ac85ded4e576ce909f5460536b63a4f1"},{"name":"sha1","value":"07e0380006e58eec02eaaa047a58aceeef1552d3"},{"name":"sha256","value":"e1d818d622875ce2cf81883816ef982aa05a724c46f82b3e67875e0bc24228b1"}]},{"type":"RT_STRING","name":"4093","language_id_name":"Default","language_id":0,"code_page":0,"offset":81784,"size":164,"entropy":0,"hashes":[{"name":"md5","value":"519a33f5d2b4442ef3caf6d4501995fb"},{"name":"sha1","value":"e54df9d112555eb11a132bfee15b69ac186b422e"},{"name":"sha256","value":"80bc91470ef70d527d0c4e0824945bc3b17ff84f464bca425661c3e7e1972ce7"}]},{"type":"RT_STRING","name":"4094","language_id_name":"Default","language_id":0,"code_page":0,"offset":81948,"size":684,"entropy":0,"hashes":[{"name":"md5","value":"234c2763997eec9c8a72ef190b928d68"},{"name":"sha1","value":"089fcaabba97f63455ce8a47e2d5d07fa56ba55b"},{"name":"sha256","value":"33ef72f38fc1fe2842c44e11bb351f94385bb186fee0fadbefc9364ed52aeb93"}]},{"type":"RT_STRING","name":"4095","language_id_name":"Default","language_id":0,"code_page":0,"offset":82632,"size":844,"entropy":0,"hashes":[{"name":"md5","value":"2596d19a6b88cbba9c9c9cb003affbc6"},{"name":"sha1","value":"37091a716fd1eed000e0c3bb195fbd589a750608"},{"name":"sha256","value":"7f63f3f944a0b62f8f3b35a60141081599f7f175605ced7e1b4dcb80fda58c8a"}]},{"type":"RT_STRING","name":"4096","language_id_name":"Default","language_id":0,"code_page":0,"offset":83476,"size":660,"entropy":0,"hashes":[{"name":"md5","value":"1f9009e4d5b61392e05aa8ac6eceb6aa"},{"name":"sha1","value":"4af6f3144fff0951da37370a3d200e8d74fc4862"},{"name":"sha256","value":"cb21f2b28bfc6b8046348c7a96bf97149dc5f91e1cc1a4f2904a1044a008425a"}]},{"type":"RT_RCDATA","name":"CHARTABLE","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":84136,"size":33512,"entropy":0,"hashes":[{"name":"md5","value":"6e9c1c8c0a0ec8d73165779560cd7ba4"},{"name":"sha1","value":"d044c45e2ffd24e1abef00079577df385e325ab4"},{"name":"sha256","value":"677245e2a6b2eb5495b4965b8c26025a4b26e8b8c21a825f658cb390b493b9a0"}]},{"type":"RT_RCDATA","name":"DVCLAL","language_id_name":"Default","language_id":0,"code_page":0,"offset":117648,"size":16,"entropy":0,"hashes":[{"name":"md5","value":"d8090aba7197fbf9c7e2631c750965a8"},{"name":"sha1","value":"04f73efb0801b18f6984b14cd057fb56519cd31b"},{"name":"sha256","value":"88d14cc6638af8a0836f6d868dfab60df92907a2d7becaefbbd7e007acb75610"}]},{"type":"RT_RCDATA","name":"PACKAGEINFO","language_id_name":"Default","language_id":0,"code_page":0,"offset":117664,"size":336,"entropy":0,"hashes":[{"name":"md5","value":"9247d9dfc002426bf15a38569e1117d6"},{"name":"sha1","value":"724fbe0b18bf415f1871fbc45570b1ba809b1acd"},{"name":"sha256","value":"05efbff33471fec1389d42d84ee0572448b1dabb86c18ee38dd6463ff7f927af"}]},{"type":"RT_RCDATA","name":"11111","language_id_name":"Default","language_id":0,"code_page":0,"offset":118000,"size":44,"entropy":0,"hashes":[{"name":"md5","value":"4a0dcc718256df4a19dda31db8afd102"},{"name":"sha1","value":"ce39dc2c93f138d1d305b289c52bde0b5974fa94"},{"name":"sha256","value":"f105ca84f731dcae5d9bfa87c4e06c5a393b3f96da53d5c0199087ba312407b1"}]},{"type":"RT_GROUP_ICON","name":"MAINICON","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":118044,"size":62,"entropy":0,"hashes":[{"name":"md5","value":"f6262f462f61a1af1cac10cf4b790e5a"},{"name":"sha1","value":"4aa3239c2c59fa5f246b0dd68da564e529b98ff4"},{"name":"sha256","value":"44b095a62d7e401671f57271e6cada367bb55cf7b300ef768b3487b841facd3c"}]},{"type":"RT_VERSION","name":"1","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":118108,"size":1268,"entropy":0,"hashes":[{"name":"md5","value":"fe4f3a3eb1e286571947e04d90df8564"},{"name":"sha1","value":"71745e9cd0c6269fc17b756f749158fe4a09cedc"},{"name":"sha256","value":"5e22d9b6c8fcbd138f717bcf37233282888efcd824c89c90fa87526267dcbd60"}]},{"type":"RT_MANIFEST","name":"1","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":119376,"size":1580,"entropy":0,"hashes":[{"name":"md5","value":"f78a870573f5bf2f15570e286257fae7"},{"name":"sha1","value":"eaccbf47cd42836b0e21ab2196b86d98a28733ca"},{"name":"sha256","value":"356ca8abf11d97bf9dcbff47c04bf1ddcb8685ef84d38e6850ec6c28a37655b9"}]}],"version_info":[{"name":"fileVersion","value":"0,0,0,0"},{"name":"productVersion","value":"0,0,0,0"},{"name":"fileOS","value":"VOS_WINDOWS32"},{"name":"fileType","value":"VFT_APP"},{"name":"fileSubtype","value":"00000000"},{"name":"Comments","value":"This installation was built with Inno Setup."},{"name":"CompanyName","value":"Sublime HQ Pty Ltd"},{"name":"FileDescription","value":"Sublime Text Setup"},{"name":"FileVersion","value":""},{"name":"LegalCopyright","value":""},{"name":"ProductName","value":"Sublime Text"},{"name":"ProductVersion","value":""},{"name":"translate","value":"Default, Unicode"}]},"libraries":[{"type":3,"linking":2,"community":0,"verified":0,"name":"advapi32","version":"Generic","publisher":"Microsoft Corporation","description":"Advanced Windows 32 Base API Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"comctl32","version":"Generic","publisher":"Microsoft Corporation","description":"Common Controls Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"kernel32","version":"Generic","publisher":"Microsoft Corporation","description":"Windows NT BASE API Client Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"user32","version":"Generic","publisher":"Microsoft Corporation","description":"Multi-User Windows USER API Client Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"oleaut32","version":"Generic","publisher":"Microsoft Corporation","description":"Object Linking and Embedding Automation Library","license":"Proprietary (Microsoft Windows Operating System License)"}],"identity":{"type":3,"linking":0,"community":0,"verified":4,"name":"Sublime Text","version":"0.0.0.0","publisher":"Sublime HQ Pty Ltd","description":"Sublime Text Setup"}},"protection":{"crypto":["pkcs_digestdecoration_sha256"]},"security":{"features":["ASLR","DEP"]},"behaviour":{"registry":[{"key":"HKLM\\Software\\Classes\\*\\Shell\\Open with Sublime Text","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\*\\Shell\\Open with Sublime Text\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\.sublime-build\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.build-system","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-color-scheme\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.color-scheme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-commands\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.commands","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-completions\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.completions","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-keymap\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.keymap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-macro\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.macro","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-menu\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.menu","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-mousemap\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.mousemap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-project\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.project","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-settings\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.settings","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-snippet\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.snippet","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-syntax\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.syntax","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-theme\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.theme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\.sublime-workspace\\OpenWithProgids","value_name":"com.sublimehq.sublimetext.workspace","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-build","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-color-scheme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-commands","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-completions","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-keymap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-macro","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-menu","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-mousemap","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-project","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-settings","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-snippet","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-syntax","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-theme","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\SupportedTypes","value_name":".sublime-workspace","properties":[{"name":"action","value":"create"},{"name":"type","value":"REG_SZ"}],"value":""},{"key":"HKLM\\Software\\Classes\\Applications\\sublime_text.exe\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.build-system\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.color-scheme\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.commands\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.completions\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.keymap\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.macro\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.menu\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.mousemap\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.project\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.settings\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.snippet\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.syntax\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.theme\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace\\DefaultIcon","properties":[{"name":"action","value":"create"}],"value_name":"","value":""},{"key":"HKLM\\Software\\Classes\\com.sublimehq.sublimetext.workspace\\shell\\open\\command","properties":[{"name":"action","value":"create"}],"value_name":"","value":""}],"process_start":[{"create_no_window":true,"filename":"%InstallDir%\\sublime_text.exe","username":"","domain":"","working_directory":"","arguments":"","environment_variables":"","password":""}],"shortcut":[{"source_path":"%StartMenuProgramsCommon%\\Sublime Text","destination_path":"%InstallDir%\\sublime_text.exe","icon_index":0,"description":"","command_options":"","working_directory":"","hotkey":"","icon_path":""}],"remove":[{"path":"%InstallDir%\\*.pyc"}]},"certificate":{},"document":{},"email":{},"mobile":{},"media":{},"web":{},"strings":[{"f":5,"c":1,"v":"Friday","o":81470},{"f":5,"c":1,"v":"Saturday","o":81484},{"f":5,"c":1,"v":"Invalid file name - %s","o":81502},{"f":5,"c":1,"v":"September","o":81574},{"f":5,"c":1,"v":"October","o":81594},{"f":5,"c":1,"v":"November","o":81610},{"f":5,"c":1,"v":"December","o":81628},{"f":5,"c":1,"v":"Sunday","o":81702},{"f":5,"c":1,"v":"Monday","o":81716},{"f":5,"c":1,"v":"Tuesday","o":81730},{"f":5,"c":1,"v":"Wednesday","o":81746},{"f":5,"c":1,"v":"Thursday","o":81766},{"f":5,"c":1,"v":"January","o":81850},{"f":5,"c":1,"v":"February","o":81866},{"f":5,"c":1,"v":"March","o":81884},{"f":5,"c":1,"v":"April","o":81896},{"f":5,"c":1,"v":"June","o":81916},{"f":4,"c":1,"v":"July","o":81926},{"f":5,"c":1,"v":"August","o":81936},{"f":5,"c":1,"v":"Invalid variant type conversion","o":81950},{"f":5,"c":1,"v":"Invalid variant operation","o":82014},{"f":5,"c":1,"v":"Invalid argument","o":82066},{"f":5,"c":1,"v":"External exception %x","o":82100},{"f":5,"c":1,"v":"Assertion failed","o":82144},{"f":5,"c":1,"v":"Interface not supported","o":82178},{"f":5,"c":1,"v":"Exception in safecall method","o":82226},{"f":5,"c":1,"v":"Object lock not owned","o":82284},{"f":5,"c":1,"v":"Monitor support function not initialized","o":82328},{"f":5,"c":1,"v":"%s (%s, line %d)","o":82410},{"f":5,"c":1,"v":"Abstract Error","o":82444},{"f":5,"c":1,"v":"Access violation at address %p in module '%s'. %s of address %p","o":82474},{"f":5,"c":1,"v":"Invalid class typecast","o":82634},{"f":5,"c":1,"v":"Access violation at address %p. %s of address %p","o":82680},{"f":5,"c":1,"v":"Access violation","o":82778},{"f":5,"c":1,"v":"Stack overflow","o":82812},{"f":5,"c":1,"v":"Control-C hit","o":82842},{"f":5,"c":1,"v":"Privileged instruction","o":82870},{"f":5,"c":1,"v":"Operation aborted","o":82916},{"f":5,"c":1,"v":"Exception %s in module %s at %p.\r\n%s%s\r\n","o":82952},{"f":5,"c":1,"v":"Application Error","o":83034},{"f":5,"c":1,"v":"Format '%s' invalid or incompatible with argument","o":83070},{"f":5,"c":1,"v":"No argument for format '%s'","o":83170},{"f":5,"c":1,"v":"Variant method calls not supported","o":83226},{"f":5,"c":1,"v":"Read","o":83296},{"f":5,"c":1,"v":"Write","o":83306},{"f":5,"c":1,"v":"Error creating variant or safe array","o":83318},{"f":5,"c":1,"v":"Variant or safe array index out of bounds","o":83392},{"f":5,"c":1,"v":"Out of memory","o":83478},{"f":5,"c":1,"v":"I/O error %d","o":83506},{"f":5,"c":1,"v":"File not found","o":83532},{"f":5,"c":1,"v":"Too many open files","o":83562},{"f":5,"c":1,"v":"File access denied","o":83602},{"f":5,"c":1,"v":"Read beyond end of file","o":83640},{"f":5,"c":1,"v":"Disk full","o":83688},{"f":5,"c":1,"v":"Invalid numeric input","o":83708},{"f":5,"c":1,"v":"Division by zero","o":83752},{"f":5,"c":1,"v":"Range check error","o":83786},{"f":5,"c":1,"v":"Integer overflow","o":83822},{"f":5,"c":1,"v":"Invalid floating point operation","o":83856},{"f":5,"c":1,"v":"Floating point division by zero","o":83922},{"f":5,"c":1,"v":"Floating point overflow","o":83986},{"f":5,"c":1,"v":"Floating point underflow","o":84034},{"f":5,"c":1,"v":"Invalid pointer operation","o":84084},{"f":3,"c":1,"v":"AnsiChar","o":1030},{"f":2,"c":1,"v":"string(","o":1054},{"f":3,"c":1,"v":"\n\nAnsiString","o":1064},{"f":3,"c":1,"v":"TObject","o":1169},{"f":3,"c":1,"v":"FastMM Borland Edition (c) 2004 - 2008 Pierre le Riche / Professional Software Development","o":1552},{"f":3,"c":1,"v":"An unexpected memory leak has occurred. ","o":1644},{"f":3,"c":1,"v":"The unexpected small block leaks are:\r\n","o":1688},{"f":3,"c":1,"v":"The sizes of unexpected leaked medium and large blocks are: ","o":1728},{"f":3,"c":1,"v":" bytes: ","o":1792},{"f":3,"c":3,"v":"Unknown","o":1804},{"f":3,"c":1,"v":"AnsiString","o":1812},{"f":3,"c":1,"v":"UnicodeString","o":1824},{"f":3,"c":1,"v":"Unexpected Memory Leak","o":1844},{"f":2,"c":5,"v":"=<:A","o":2425},{"f":2,"c":4,"v":"\r<:A","o":2519},{"f":2,"c":5,"v":"=M0A","o":2653},{"f":2,"c":18,"v":"SVWU","o":2724},{"f":2,"c":20,"v":"]_^[","o":2817},{"f":2,"c":1,"v":"D$\fPS","o":2901},{"f":2,"c":1,"v":"$]_^[","o":2981},{"f":2,"c":6,"v":"D$\fP","o":3133},{"f":2,"c":1,"v":" ]_^[","o":3314},{"f":2,"c":1,"v":"\rM0A","o":3333},{"f":2,"c":1,"v":";C\fwv","o":3409},{"f":2,"c":10,"v":"%4:A","o":3551},{"f":2,"c":1,"v":"t\tj\n","o":3589},{"f":2,"c":1,"v":"#5@:A","o":3604},{"f":2,"c":2,"v":"58:A","o":3739},{"f":2,"c":1,"v":")=<:A","o":3762},{"f":2,"c":1,"v":"t*j\n","o":3914},{"f":2,"c":2,"v":"QRj\n","o":4392},{"f":2,"c":1,"v":"t!j\n","o":4454},{"f":2,"c":1,"v":"L\t W","o":4809},{"f":2,"c":1,"v":"t\fQj\n","o":5030},{"f":2,"c":1,"v":"wt=0\u000b","o":5303},{"f":2,"c":1,"v":";Z\fv","o":5687},{"f":2,"c":5,"v":"_^[]","o":6333},{"f":2,"c":1,"v":"|&B3","o":6593},{"f":2,"c":1,"v":"=(:A","o":7179},{"f":2,"c":1,"v":"t!Ht:","o":7717},{"f":2,"c":1,"v":"rAF3","o":7966},{"f":2,"c":1,"v":"=\":A","o":8104},{"f":2,"c":1,"v":"0=0\u000b","o":8231},{"f":2,"c":1,"v":"= 0A","o":8929},{"f":2,"c":1,"v":"YZXu","o":9083},{"f":3,"c":1,"v":"OFTWARE\\Borland\\Delphi\\RTL","o":11181},{"f":3,"c":2,"v":"FPUMaskValue","o":11235},{"f":3,"c":1,"v":"SOFTWARE\\Borland\\Delphi\\RTL","o":11180},{"f":2,"c":1,"v":"=00A","o":9497},{"f":2,"c":1,"v":"=$3A","o":9555},{"f":2,"c":1,"v":"r/f=","o":9622},{"f":2,"c":1,"v":"w)f%","o":9628},{"f":3,"c":1,"v":"uENt","o":9712},{"f":2,"c":1,"v":":\nu0Nt","o":9752},{"f":2,"c":1,"v":"u%Nt","o":9765},{"f":2,"c":1,"v":"-tvf","o":10004},{"f":2,"c":1,"v":"+trf","o":10010},{"f":2,"c":1,"v":"$ttf","o":10016},{"f":2,"c":1,"v":"xtnf","o":10022},{"f":2,"c":1,"v":"Xthf","o":10028},{"f":2,"c":1,"v":"xtVf","o":10046},{"f":2,"c":1,"v":"XtPf","o":10052},{"f":2,"c":1,"v":"\tw+9","o":10074},{"f":2,"c":1,"v":"~]x[[)","o":10116},{"f":2,"c":1,"v":"2_^[","o":10217},{"f":2,"c":2,"v":"Cw6@","o":10307},{"f":2,"c":2,"v":"@v:k\u000b","o":10593},{"f":2,"c":1,"v":"@aQY","o":10664},{"f":2,"c":1,"v":"E@|o","o":10724},{"f":2,"c":1,"v":"BkU'9","o":10780},{"f":2,"c":78,"v":"ZYYd","o":11120},{"f":2,"c":1,"v":"\n[YZ","o":11784},{"f":2,"c":8,"v":"QSVW","o":11839},{"f":2,"c":1,"v":"Uhk:@","o":11848},{"f":2,"c":12,"v":"_^[Y]","o":11908},{"f":2,"c":12,"v":"=  A","o":12017},{"f":2,"c":1,"v":"PPRTj","o":12053},{"f":2,"c":1,"v":"YYZX","o":12210},{"f":2,"c":4,"v":"=$ A","o":12359},{"f":2,"c":1,"v":"YZXtp","o":12451},{"f":2,"c":1,"v":"VWUd","o":12463},{"f":2,"c":3,"v":"SPRQ","o":12469},{"f":2,"c":1,"v":"T$(j","o":12474},{"f":2,"c":1,"v":":\nu\t@B","o":12692},{"f":2,"c":1,"v":"YZXtm1","o":12846},{"f":2,"c":1,"v":"PhT>@","o":12871},{"f":2,"c":1,"v":"VWUUh(?@","o":12988},{"f":2,"c":1,"v":"ZTUWVSPR","o":13206},{"f":2,"c":1,"v":"I\fQj","o":13277},{"f":2,"c":1,"v":"d$,1","o":13417},{"f":2,"c":1,"v":",t\\=","o":13450},{"f":2,"c":1,"v":"t=HtN","o":13474},{"f":2,"c":1,"v":"r6t0","o":13489},{"f":2,"c":1,"v":"t.Ht","o":13509},{"f":2,"c":1,"v":"PhbA@","o":13653},{"f":2,"c":1,"v":"UhMB@","o":13854},{"f":2,"c":1,"v":"Uh`C@","o":14117},{"f":2,"c":1,"v":"hgC@","o":14162},{"f":2,"c":7,"v":"^[Y]","o":14183},{"f":2,"c":1,"v":"It\u000bIt","o":14317},{"f":3,"c":1,"v":"0123456789ABCDEF","o":14404},{"f":2,"c":1,"v":"=L0A","o":14578},{"f":2,"c":1,"v":"=(3A","o":14588},{"f":2,"c":1,"v":"=03A","o":14598},{"f":2,"c":2,"v":"hx'A","o":14626},{"f":2,"c":1,"v":"h|E@","o":14653},{"f":2,"c":1,"v":"=( A","o":14674},{"f":2,"c":1,"v":"hp'A","o":14684},{"f":2,"c":1,"v":"=,0A","o":14970},{"f":2,"c":2,"v":"E\fPQj","o":15320},{"f":2,"c":7,"v":"_^[YY]","o":15561},{"f":2,"c":2,"v":"\f$Q1","o":15573},{"f":3,"c":2,"v":"t-Rf;\nt f;J","o":15580},{"f":2,"c":1,"v":"t!P1","o":15638},{"f":2,"c":1,"v":"t\u000b:H","o":15655},{"f":2,"c":1,"v":"@@@Y)","o":15667},{"f":2,"c":1,"v":"It6S","o":15741},{"f":2,"c":1,"v":"\rp$P","o":15872},{"f":2,"c":1,"v":";]_^[","o":15957},{"f":2,"c":1,"v":"t!R:\nt","o":16324},{"f":2,"c":1,"v":"t\u000b:J","o":16339},{"f":2,"c":6,"v":"SVWQ","o":16428},{"f":2,"c":5,"v":"Z_^[","o":16504},{"f":2,"c":2,"v":";_^[","o":16895},{"f":3,"c":9,"v":"kernel32.dll","o":20919},{"f":3,"c":1,"v":"oftware\\CodeGear\\Locales","o":21609},{"f":3,"c":2,"v":"Software\\Borland\\Locales","o":21659},{"f":3,"c":2,"v":"Software\\Borland\\Delphi\\Locales","o":21711},{"f":3,"c":1,"v":"Software\\CodeGear\\Locales","o":21608},{"f":2,"c":1,"v":"X_^[","o":17436},{"f":2,"c":1,"v":"$\u000bD$","o":17663},{"f":2,"c":1,"v":"SVWRP","o":17729},{"f":2,"c":1,"v":"XZ_^[X]X","o":17990},{"f":2,"c":1,"v":"h$S@","o":18191},{"f":2,"c":1,"v":"UhJT@","o":18247},{"f":2,"c":1,"v":"hQT@","o":18492},{"f":2,"c":1,"v":"It4S","o":18545},{"f":2,"c":1,"v":"PSVW","o":18769},{"f":2,"c":1,"v":"<\nt-<","o":18786},{"f":2,"c":1,"v":"tc<\u000btB<\ftr<\rt}<","o":18792},{"f":2,"c":1,"v":"\u000b_^[X","o":19014},{"f":2,"c":1,"v":"_^[X","o":19026},{"f":2,"c":1,"v":"u+h\n","o":20310},{"f":2,"c":1,"v":"t ;s","o":20381},{"f":2,"c":1,"v":"t\n;s","o":20386},{"f":2,"c":1,"v":";s\fu\u000b","o":20393},{"f":2,"c":1,"v":"8\\u;","o":20575},{"f":3,"c":1,"v":"GetLongPathNameW","o":20948},{"f":2,"c":2,"v":"hh`@","o":21018},{"f":2,"c":1,"v":"h#_@","o":21261},{"f":2,"c":1,"v":";.t\n","o":21388},{"f":2,"c":1,"v":"=0 A","o":21819},{"f":2,"c":1,"v":"Uhhb@","o":22029},{"f":2,"c":1,"v":"hob@","o":22060},{"f":2,"c":1,"v":"vKVS","o":22224},{"f":2,"c":1,"v":"h\re@","o":22784},{"f":2,"c":1,"v":"\rD[A","o":22921},{"f":2,"c":1,"v":"u\u000bSV","o":23368},{"f":2,"c":1,"v":"=T[A","o":23902},{"f":2,"c":1,"v":"Uh>j@","o":24032},{"f":2,"c":1,"v":"Uh j@","o":24049},{"f":2,"c":1,"v":"h'j@","o":24085},{"f":2,"c":1,"v":"hEj@","o":24111},{"f":3,"c":1,"v":"\tException0n@","o":25038},{"f":3,"c":1,"v":"EAbort","o":25145},{"f":3,"c":1,"v":"EHeapException","o":25249},{"f":3,"c":1,"v":"\fEOutOfMemory","o":25360},{"f":3,"c":1,"v":"\u000bEInOutError","o":25472},{"f":3,"c":1,"v":"\tEExternal","o":25580},{"f":3,"c":1,"v":"INFNAN","o":32368},{"f":2,"c":1,"v":"@INFNAN","o":32367},{"f":3,"c":1,"v":"EExternalException","o":25689},{"f":3,"c":1,"v":"\tEIntError","o":25804},{"f":3,"c":1,"v":"\nEDivByZero","o":25912},{"f":3,"c":1,"v":"\u000bERangeError","o":26020},{"f":3,"c":1,"v":"\fEIntOverflow","o":26128},{"f":3,"c":1,"v":"\nEMathError","o":26240},{"f":3,"c":1,"v":"\nEInvalidOp","o":26348},{"f":3,"c":1,"v":"\u000bEZeroDivide","o":26456},{"f":3,"c":1,"v":"\tEOverflow","o":26564},{"f":3,"c":1,"v":"\nEUnderflow","o":26672},{"f":3,"c":1,"v":"EInvalidPointer","o":26781},{"f":3,"c":1,"v":"\fEInvalidCast","o":26892},{"f":3,"c":1,"v":"\rEConvertError","o":27004},{"f":3,"c":1,"v":"EAccessViolation","o":27117},{"f":3,"c":1,"v":"\nEPrivilege","o":27232},{"f":3,"c":1,"v":"EStackOverflow","o":27341},{"f":3,"c":1,"v":"\tEControlC","o":27452},{"f":3,"c":1,"v":"\rEVariantError","o":27560},{"f":3,"c":1,"v":"EAssertionFailed","o":27673},{"f":3,"c":1,"v":"EAbstractError","o":27789},{"f":3,"c":1,"v":"EIntfCastError","o":27901},{"f":3,"c":1,"v":"ESafecallException","o":28013},{"f":3,"c":1,"v":"EMonitor","o":28129},{"f":3,"c":1,"v":"EMonitorLockException","o":28237},{"f":3,"c":1,"v":"ENoMonitorSupportException","o":28357},{"f":3,"c":4,"v":"SysUtils","o":28410},{"f":3,"c":1,"v":"\tTEncoding","o":28588},{"f":2,"c":1,"v":"SUVj","o":28658},{"f":2,"c":1,"v":"tgf9","o":28743},{"f":2,"c":1,"v":"0<:r","o":29357},{"f":2,"c":7,"v":"SVWUQ","o":29992},{"f":2,"c":2,"v":"$Z]_^[","o":30042},{"f":2,"c":1,"v":";\f$sH","o":30067},{"f":2,"c":1,"v":"A;\f$r","o":30138},{"f":2,"c":2,"v":"YZ_^[","o":30154},{"f":2,"c":1,"v":"D$D\n","o":30293},{"f":2,"c":1,"v":"-u\u000b)","o":31225},{"f":2,"c":1,"v":"t&f=0","o":31284},{"f":2,"c":1,"v":"r@f=9","o":31290},{"f":2,"c":1,"v":"\nf-0","o":31300},{"f":2,"c":1,"v":"_^[[","o":32025},{"f":2,"c":1,"v":";E\f~","o":32316},{"f":2,"c":1,"v":"Jt\rAu","o":32681},{"f":2,"c":1,"v":"<@t!QS<$t\n<*t\r2","o":32744},{"f":2,"c":1,"v":"$*@@@*$@@@$ *@@* $@@($*)@-$*@@$-*@@$*-@@(*$)@-*$@@*-$@@*$-@@-* $@-$ *@* $-@$ *-@$ -*@*- $@($ *)(* $)","o":32798},{"f":2,"c":1,"v":";}\fr","o":33129},{"f":2,"c":1,"v":"QQQQQQSVW3","o":33645},{"f":2,"c":2,"v":"yyyy","o":34915},{"f":2,"c":2,"v":"eeee","o":34939},{"f":2,"c":1,"v":"jjjV","o":35578},{"f":2,"c":2,"v":"m/d/yy","o":40111},{"f":2,"c":2,"v":"mmmm d, yyyy","o":40139},{"f":3,"c":2,"v":" AMPM","o":40255},{"f":3,"c":2,"v":"AMPM ","o":40279},{"f":2,"c":2,"v":":mm:ss","o":40323},{"f":3,"c":2,"v":"GetDiskFreeSpaceExW","o":41035},{"f":2,"c":4,"v":"jjjj","o":35577},{"f":2,"c":1,"v":"QQQQQQSVW","o":34297},{"f":2,"c":10,"v":"SVW3","o":35017},{"f":2,"c":1,"v":"=h[A","o":36292},{"f":2,"c":1,"v":"=d[A","o":36366},{"f":3,"c":1,"v":"\tTErrorRec","o":36553},{"f":2,"c":1,"v":"\rD+A","o":36649},{"f":2,"c":2,"v":"YZ^[","o":36669},{"f":3,"c":1,"v":"\nTExceptRec","o":36681},{"f":2,"c":1,"v":"\r\\+A","o":37005},{"f":2,"c":1,"v":",tY=","o":37036},{"f":2,"c":1,"v":"t<HtH","o":37060},{"f":2,"c":1,"v":"r3t7","o":37075},{"f":2,"c":1,"v":"t(Ht","o":37095},{"f":2,"c":1,"v":"\rL+A","o":37901},{"f":2,"c":1,"v":"u\u000bQR","o":38553},{"f":2,"c":1,"v":"D$\f%","o":38804},{"f":2,"c":1,"v":"Y_^[","o":39295},{"f":2,"c":1,"v":"=<\\A","o":39377},{"f":3,"c":1,"v":"TUnitHashArray","o":40346},{"f":3,"c":1,"v":"\u000bTModuleInfo","o":40393},{"f":2,"c":1,"v":"WVUSj","o":40488},{"f":2,"c":1,"v":"t\u000b;B","o":40645},{"f":2,"c":1,"v":"\f]_^[","o":40902},{"f":3,"c":2,"v":"TEMP","o":44767},{"f":3,"c":2,"v":"USERPROFILE","o":44791},{"f":3,"c":1,"v":"etUserDefaultUILanguage","o":45501},{"f":3,"c":2,"v":".DEFAULT\\Control Panel\\International","o":45579},{"f":3,"c":2,"v":"Locale","o":45655},{"f":3,"c":2,"v":"Control Panel\\Desktop\\ResourceLocale","o":45671},{"f":3,"c":2,"v":"[ExceptObject=nil]","o":45915},{"f":3,"c":2,"v":"File I/O error %d","o":46527},{"f":3,"c":6,"v":"Compressed block is corrupted","o":48499},{"f":3,"c":2,"v":"lzmadecompsmall: Compressed data is corrupted (%d)","o":49267},{"f":3,"c":2,"v":"lzmadecompsmall: %s","o":49427},{"f":3,"c":2,"v":"LzmaDecode failed (%d)","o":50039},{"f":3,"c":1,"v":"GetUserDefaultUILanguage","o":45500},{"f":2,"c":1,"v":"\\t\tf","o":42807},{"f":2,"c":1,"v":"}$C;","o":43038},{"f":2,"c":5,"v":"Z]_^[","o":43180},{"f":2,"c":2,"v":"YZ]_^[","o":43290},{"f":2,"c":1,"v":"SVWP","o":43300},{"f":2,"c":1,"v":"^[YY]","o":44102},{"f":2,"c":1,"v":"[YY]","o":44730},{"f":2,"c":1,"v":";E\ft\f","o":44928},{"f":2,"c":1,"v":";E\ft","o":45047},{"f":2,"c":1,"v":"8.v\f","o":45797},{"f":3,"c":1,"v":"\u000bTCustomFile","o":46144},{"f":3,"c":1,"v":"TFile","o":46269},{"f":3,"c":1,"v":"\nEFileError","o":46372},{"f":2,"c":1,"v":"Q\fYZ","o":46641},{"f":2,"c":1,"v":"$Z_^[","o":47049},{"f":2,"c":1,"v":";4$t\f","o":47187},{"f":3,"c":1,"v":"ECompressError","o":47309},{"f":3,"c":1,"v":"ECompressDataError","o":47421},{"f":3,"c":1,"v":"ECompressInternalError","o":47537},{"f":3,"c":1,"v":"TCustomDecompressor","o":47661},{"f":3,"c":1,"v":"TCompressedBlockReader","o":47769},{"f":2,"c":1,"v":")s\f3","o":48729},{"f":3,"c":1,"v":"TLZMA1SmallDecompressorS","o":49189},{"f":2,"c":1,"v":"t$\f;sht'","o":49819},{"f":2,"c":1,"v":"T$\f3","o":49985},{"f":3,"c":2,"v":"Itanium","o":53143},{"f":3,"c":5,"v":"The setup files are corrupted. Please obtain a new copy of the program.","o":54147},{"f":2,"c":1,"v":"jjjjjjS","o":55036},{"f":2,"c":4,"v":".tmp","o":55587},{"f":3,"c":2,"v":"SeShutdownPrivilege","o":55731},{"f":2,"c":2,"v":"/SP-","o":56755},{"f":2,"c":2,"v":"/SPAWNWND=","o":56779},{"f":2,"c":2,"v":"/Lang=","o":56815},{"f":2,"c":2,"v":"/HELP","o":56843},{"f":2,"c":1,"v":"jjjjj","o":57258},{"f":2,"c":2,"v":"jjjjjjj","o":55035},{"f":2,"c":2,"v":"jjjjjj","o":57257},{"f":2,"c":1,"v":"p\ft0","o":50252},{"f":2,"c":1,"v":";S\fv;","o":50339},{"f":2,"c":1,"v":"$;4$","o":50547},{"f":2,"c":1,"v":"F;4$|","o":50581},{"f":2,"c":1,"v":";E\fr","o":51500},{"f":2,"c":2,"v":"\f:G;}","o":51796},{"f":2,"c":1,"v":"8G;}","o":52500},{"f":2,"c":1,"v":";M\fr","o":52535},{"f":2,"c":1,"v":"\n[Y]","o":52767},{"f":3,"c":1,"v":"\fTSetupHeader","o":53165},{"f":3,"c":1,"v":"TSetupLanguageEntry=","o":53450},{"f":2,"c":1,"v":";C\fu\n","o":54403},{"f":2,"c":1,"v":";,$r","o":54430},{"f":2,"c":1,"v":"u[Tj(","o":55619},{"f":2,"c":1,"v":"|GF3","o":55789},{"f":2,"c":1,"v":";^\fr","o":57801},{"f":2,"c":1,"v":"L]_^[","o":57869},{"f":2,"c":1,"v":"Sj\nhg+","o":57876},{"f":3,"c":2,"v":"The Setup program accepts optional command line parameters.\r\n\r\n/HELP, /?\r\nShows this information.\r\n/SP-\r\nDisables the This will install... Do you wish to continue? prompt at the beginning of Setup.\r\n/SILENT, /VERYSILENT\r\nInstructs Setup to be silent or very silent.\r\n/SUPPRESSMSGBOXES\r\nInstructs Setup to suppress message boxes.\r\n/LOG\r\nCauses Setup to create a log file in the user's TEMP directory.\r\n/LOG=\"filename\"\r\nSame as /LOG, except it allows you to specify a fixed path/filename to use for the log file.\r\n/NOCANCEL\r\nPrevents the user from cancelling during the installation process.\r\n/NORESTART\r\nPrevents Setup from restarting the system following a successful installation, or after a Preparing to Install failure that requests a restart.\r\n/RESTARTEXITCODE=exit code\r\nSpecifies a custom exit code that Setup is to return when the system needs to be restarted.\r\n/CLOSEAPPLICATIONS\r\nInstructs Setup to close applications using files that need to be updated.\r\n/NOCLOSEAPPLICATIONS\r\nPrevents Setup from closing applications using files that need to be updated.\r\n/RESTARTAPPLICATIONS\r\nInstructs Setup to restart applications.\r\n/NORESTARTAPPLICATIONS\r\nPrevents Setup from restarting applications.\r\n/LOADINF=\"filename\"\r\nInstructs Setup to load the settings from the specified file after having checked the command line.\r\n/SAVEINF=\"filename\"\r\nInstructs Setup to save installation settings to the specified file.\r\n/LANG=language\r\nSpecifies the internal name of the language to use.\r\n/DIR=\"x:\\dirname\"\r\nOverrides the default directory name.\r\n/GROUP=\"folder name\"\r\nOverrides the default folder name.\r\n/NOICONS\r\nInstructs Setup to initially check the Don't create a Start Menu folder check box.\r\n/TYPE=type name\r\nOverrides the default setup type.\r\n/COMPONENTS=\"comma separated list of component names\"\r\nOverrides the default component settings.\r\n/TASKS=\"comma separated list of task names\"\r\nSpecifies a list of tasks that should be initially selected.\r\n/MERGETASKS=\"comma separated list of task names\"\r\nLike the /TASKS parameter, except the specified tasks will be merged with the set of tasks that would have otherwise been selected by default.\r\n/PASSWORD=password\r\nSpecifies the password to use.\r\n\r\nFor more detailed information, please visit http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline","o":58059},{"f":3,"c":3,"v":"Setup","o":62667},{"f":3,"c":1,"v":"ernel32.dll","o":64301},{"f":3,"c":2,"v":"uxtheme.dll","o":64407},{"f":3,"c":2,"v":"userenv.dll","o":64443},{"f":3,"c":2,"v":"setupapi.dll","o":64479},{"f":3,"c":2,"v":"apphelp.dll","o":64519},{"f":3,"c":2,"v":"propsys.dll","o":64555},{"f":3,"c":2,"v":"dwmapi.dll","o":64591},{"f":3,"c":2,"v":"cryptbase.dll","o":64627},{"f":3,"c":2,"v":"oleacc.dll","o":64667},{"f":3,"c":2,"v":"version.dll","o":64703},{"f":3,"c":2,"v":"profapi.dll","o":64739},{"f":3,"c":2,"v":"comres.dll","o":64775},{"f":3,"c":2,"v":"clbcatq.dll","o":64811},{"f":3,"c":2,"v":"Wow64DisableWow64FsRedirection","o":65311},{"f":3,"c":2,"v":"Wow64RevertWow64FsRedirection","o":65403},{"f":3,"c":2,"v":"shell32.dll","o":65475},{"f":3,"c":2,"v":"InnoSetupLdrWindow","o":67303},{"f":3,"c":2,"v":"STATIC","o":67343},{"f":2,"c":2,"v":"/SL5=\"$%x,%d,%d,","o":67371},{"f":2,"c":1,"v":"-P[A","o":63665},{"f":2,"c":1,"v":"QSVW3","o":63699},{"f":2,"c":1,"v":"-X[A","o":63718},{"f":2,"c":1,"v":"=\\[A","o":63839},{"f":3,"c":1,"v":"SetDefaultDllDirectories","o":64328},{"f":3,"c":1,"v":"SetDllDirectoryW","o":64356},{"f":3,"c":1,"v":"SetSearchPathMode","o":64836},{"f":3,"c":1,"v":"SetProcessDEPPolicy","o":64856},{"f":2,"c":1,"v":"-`[A","o":64877},{"f":2,"c":1,"v":"=E[A","o":64939},{"f":2,"c":1,"v":";B(u.","o":65720},{"f":2,"c":1,"v":"|%C3","o":65959},{"f":2,"c":1,"v":"uGj$","o":66087},{"f":2,"c":1,"v":"u.h0","o":67136},{"f":2,"c":1,"v":"0123456789ABCDEFGHIJKLMNOPQRSTUV","o":70299},{"f":2,"c":1,"v":"@0123456789ABCDEFGHIJKLMNOPQRSTUV","o":70298},{"f":3,"c":2,"v":"Error","o":69488},{"f":3,"c":1,"v":"Runtime error     at 00000000","o":69496},{"f":3,"c":1,"v":"Inno Setup Setup Data (5.5.7) (u)","o":70156},{"f":3,"c":1,"v":"Inno Setup Messages (5.5.3) (u)","o":70220},{"f":13,"c":1,"v":"&About Setup...","o":-1},{"f":13,"c":1,"v":"%1 version %2\r\n%3\r\n\r\n%1 home page:\r\n%4","o":-1},{"f":13,"c":1,"v":"About Setup","o":-1},{"f":13,"c":1,"v":"You must be logged in as an administrator when installing this program.","o":-1},{"f":13,"c":1,"v":"The following applications are using files that need to be updated by Setup. It is recommended that you allow Setup to automatically close these applications.","o":-1},{"f":13,"c":1,"v":"The following applications are using files that need to be updated by Setup. It is recommended that you allow Setup to automatically close these applications. After the installation has completed, Setup will attempt to restart the applications.","o":-1},{"f":13,"c":1,"v":"Folder names cannot include any of the following characters:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"The folder name cannot include any of the following characters:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"Select a folder in the list below, then click OK.","o":-1},{"f":13,"c":1,"v":"Browse For Folder","o":-1},{"f":12,"c":1,"v":"< &Back","o":-1},{"f":13,"c":1,"v":"&Browse...","o":-1},{"f":13,"c":1,"v":"Cancel","o":-1},{"f":13,"c":1,"v":"&Finish","o":-1},{"f":13,"c":1,"v":"&Install","o":-1},{"f":13,"c":1,"v":"&Make New Folder","o":-1},{"f":12,"c":1,"v":"&Next >","o":-1},{"f":13,"c":1,"v":"N&o to All","o":-1},{"f":13,"c":1,"v":"B&rowse...","o":-1},{"f":12,"c":1,"v":"&Yes","o":-1},{"f":13,"c":1,"v":"Yes to &All","o":-1},{"f":13,"c":1,"v":"Setup cannot continue. Please click Cancel to exit.","o":-1},{"f":13,"c":1,"v":"Setup cannot install to a network drive.","o":-1},{"f":13,"c":1,"v":"Setup cannot install to a UNC path.","o":-1},{"f":13,"c":1,"v":"Setup Needs the Next Disk","o":-1},{"f":13,"c":1,"v":"Click Finish to exit Setup.","o":-1},{"f":13,"c":1,"v":"Click Next to continue, or Cancel to exit Setup.","o":-1},{"f":13,"c":1,"v":"&Automatically close the applications","o":-1},{"f":13,"c":1,"v":"Compact installation","o":-1},{"f":12,"c":1,"v":"%1 KB","o":-1},{"f":12,"c":1,"v":"%1 MB","o":-1},{"f":13,"c":1,"v":"Current selection requires at least [mb] MB of disk space.","o":-1},{"f":13,"c":1,"v":"The system indicates that the following shared file is no longer in use by any programs. Would you like for Uninstall to remove this shared file?\r\n\r\nIf any programs are still using this file and it is removed, those programs may not function properly. If you are unsure, choose No. Leaving the file on your system will not cause any harm.","o":-1},{"f":13,"c":1,"v":"Remove Shared File?","o":-1},{"f":13,"c":1,"v":"Confirm","o":-1},{"f":13,"c":1,"v":"Are you sure you want to completely remove %1 and all of its components?","o":-1},{"f":13,"c":1,"v":"Custom installation","o":-1},{"f":13,"c":1,"v":"The folder:\r\n\r\n%1\r\n\r\ndoes not exist. Would you like the folder to be created?","o":-1},{"f":13,"c":1,"v":"Folder Does Not Exist","o":-1},{"f":13,"c":1,"v":"The folder:\r\n\r\n%1\r\n\r\nalready exists. Would you like to install to that folder anyway?","o":-1},{"f":13,"c":1,"v":"Folder Exists","o":-1},{"f":13,"c":2,"v":"The folder name or path is too long.","o":-1},{"f":13,"c":1,"v":"At least [mb] MB of free disk space is required.","o":-1},{"f":13,"c":1,"v":"Setup requires at least %1 KB of free space to install, but the selected drive only has %2 KB available.\r\n\r\nDo you want to continue anyway?","o":-1},{"f":13,"c":1,"v":"Not Enough Disk Space","o":-1},{"f":13,"c":1,"v":"&Do not close the applications","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to proceed anyway, or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to change the attributes of the existing file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to automatically close all applications. It is recommended that you close all applications using files that need to be updated by Setup before continuing.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to copy a file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to create the directory \"%1\"","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to create a file in the destination directory:","o":-1},{"f":13,"c":1,"v":"Unable to execute file:\r\n%1","o":-1},{"f":13,"c":1,"v":"%1 failed; code %2","o":-1},{"f":13,"c":1,"v":"%1 failed","o":-1},{"f":13,"c":1,"v":"%1 failed; code %2.\r\n%3","o":-1},{"f":13,"c":1,"v":"Error creating INI entry in file \"%1\".","o":-1},{"f":13,"c":1,"v":"Internal error: %1","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to open the README file.","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to read the existing file:","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to read the source file:","o":-1},{"f":13,"c":1,"v":"Error creating registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"Unable to register the DLL/OCX: %1","o":-1},{"f":13,"c":1,"v":"Unable to register the type library: %1","o":-1},{"f":13,"c":1,"v":"Error opening registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"RegSvr32 failed with exit code %1","o":-1},{"f":13,"c":1,"v":"Error writing to registry key:\r\n%1\\%2","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to rename a file in the destination directory:","o":-1},{"f":13,"c":1,"v":"An error occurred while trying to replace the existing file:","o":-1},{"f":13,"c":1,"v":"Setup was unable to restart the computer. Please do this manually.","o":-1},{"f":13,"c":1,"v":"RestartReplace failed:","o":-1},{"f":13,"c":1,"v":"Unable to create a file in the directory \"%1\" because it contains too many files","o":-1},{"f":13,"c":1,"v":"The existing file is newer than the one Setup is trying to install. It is recommended that you keep the existing file.\r\n\r\nDo you want to keep the existing file?","o":-1},{"f":13,"c":1,"v":"The existing file is marked as read-only.\r\n\r\nClick Retry to remove the read-only attribute and try again, Ignore to skip this file, or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"Setup is not complete. If you exit now, the program will not be installed.\r\n\r\nYou may run Setup again at another time to complete the installation.\r\n\r\nExit Setup?","o":-1},{"f":13,"c":1,"v":"Exit Setup","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to skip this file (not recommended), or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"Click Retry to try again, Ignore to proceed anyway (not recommended), or Abort to cancel installation.","o":-1},{"f":13,"c":1,"v":"The file already exists.\r\n\r\nWould you like Setup to overwrite it?","o":-1},{"f":13,"c":1,"v":"The file \"%1\" could not be located in \"%2\". Please insert the correct disk or select another folder.","o":-1},{"f":13,"c":1,"v":"Completing the [name] Setup Wizard","o":-1},{"f":13,"c":1,"v":"Setup has finished installing [name] on your computer. The application may be launched by selecting the installed shortcuts.","o":-1},{"f":13,"c":1,"v":"Setup has finished installing [name] on your computer.","o":-1},{"f":13,"c":1,"v":"To complete the installation of [name], Setup must restart your computer. Would you like to restart now?","o":-1},{"f":13,"c":1,"v":"To complete the installation of [name], Setup must restart your computer.\r\n\r\nWould you like to restart now?","o":-1},{"f":13,"c":1,"v":"Full installation","o":-1},{"f":13,"c":1,"v":"The password you entered is not correct. Please try again.","o":-1},{"f":13,"c":2,"v":"When you are ready to continue with Setup, click Next.","o":-1},{"f":13,"c":3,"v":"Please read the following important information before continuing.","o":-1},{"f":13,"c":3,"v":"Information","o":-1},{"f":13,"c":1,"v":"Please wait while Setup installs [name] on your computer.","o":-1},{"f":13,"c":2,"v":"The folder name is not valid.","o":-1},{"f":13,"c":1,"v":"The drive or UNC share you selected does not exist or is not accessible. Please select another.","o":-1},{"f":13,"c":1,"v":"An invalid parameter was passed on the command line:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"You must enter a full path with drive letter; for example:\r\n\r\nC:\\APP\r\n\r\nor a UNC path in the form:\r\n\r\n\\\\server\\share","o":-1},{"f":13,"c":1,"v":"%1.\r\n\r\nError %2: %3","o":-1},{"f":13,"c":1,"v":"Unable to create a temporary file. Setup aborted","o":-1},{"f":13,"c":1,"v":"Unable to execute file in the temporary directory. Setup aborted","o":-1},{"f":13,"c":1,"v":"I &accept the agreement","o":-1},{"f":13,"c":1,"v":"Please read the following License Agreement. You must accept the terms of this agreement before continuing with the installation.","o":-1},{"f":13,"c":1,"v":"I &do not accept the agreement","o":-1},{"f":13,"c":1,"v":"The version of Windows you are running does not include functionality required by Setup to perform a 64-bit installation. To correct this problem, please install Service Pack %1.","o":-1},{"f":13,"c":1,"v":"You must enter a folder name.","o":-1},{"f":13,"c":1,"v":"New Folder","o":-1},{"f":13,"c":1,"v":"&Don't create a Start Menu folder","o":-1},{"f":13,"c":1,"v":"&No, I will restart the computer later","o":-1},{"f":13,"c":1,"v":"This program will not run on %1.","o":-1},{"f":13,"c":1,"v":"Setup has detected that the following components are already installed on your computer:\r\n\r\n%1\r\n\r\nDeselecting these components will not uninstall them.\r\n\r\nWould you like to continue anyway?","o":-1},{"f":13,"c":1,"v":"Components Exist","o":-1},{"f":13,"c":1,"v":"This installation can only be uninstalled by a user with administrative privileges.","o":-1},{"f":13,"c":1,"v":"This program can only be installed on versions of Windows designed for the following processor architectures:\r\n\r\n%1","o":-1},{"f":13,"c":1,"v":"This program must be run on %1.","o":-1},{"f":13,"c":1,"v":"&Password:","o":-1},{"f":13,"c":1,"v":"This installation is password protected.","o":-1},{"f":13,"c":1,"v":"Please provide the password, then click Next to continue. Passwords are case-sensitive.","o":-1},{"f":12,"c":1,"v":"&Path:","o":-1},{"f":13,"c":1,"v":"You must be logged in as an administrator or as a member of the Power Users group when installing this program.","o":-1},{"f":13,"c":1,"v":"Setup is preparing to install [name] on your computer.","o":-1},{"f":13,"c":1,"v":"The installation/removal of a previous program was not completed. You will need to restart your computer to complete that installation.\r\n\r\nAfter restarting your computer, run Setup again to complete the installation of [name].","o":-1},{"f":13,"c":1,"v":"Setup is now ready to begin installing [name] on your computer.","o":-1},{"f":13,"c":1,"v":"Click Install to continue with the installation, or click Back if you want to review or change any settings.","o":-1},{"f":13,"c":1,"v":"Click Install to continue with the installation.","o":-1},{"f":13,"c":1,"v":"Selected components:","o":-1},{"f":13,"c":1,"v":"Destination location:","o":-1},{"f":13,"c":1,"v":"Start Menu folder:","o":-1},{"f":13,"c":1,"v":"Additional tasks:","o":-1},{"f":13,"c":1,"v":"Setup type:","o":-1},{"f":13,"c":1,"v":"User information:","o":-1},{"f":12,"c":1,"v":"Run %1","o":-1},{"f":12,"c":1,"v":"View %1","o":-1},{"f":13,"c":1,"v":"Which components should be installed?","o":-1},{"f":13,"c":1,"v":"Select the components you want to install; clear the components you do not want to install. Click Next when you are ready to continue.","o":-1},{"f":13,"c":2,"v":"To continue, click Next. If you would like to select a different folder, click Browse.","o":-1},{"f":13,"c":1,"v":"Where should [name] be installed?","o":-1},{"f":13,"c":1,"v":"Please specify the location of the next disk.","o":-1},{"f":13,"c":1,"v":"Setup will install [name] into the following folder.","o":-1},{"f":13,"c":1,"v":"Please insert Disk %1 and click OK.\r\n\r\nIf the files on this disk can be found in a folder other than the one displayed below, enter the correct path or click Browse.","o":-1},{"f":13,"c":1,"v":"Select the language to use during the installation:","o":-1},{"f":13,"c":1,"v":"Select Setup Language","o":-1},{"f":13,"c":1,"v":"Where should Setup place the program's shortcuts?","o":-1},{"f":13,"c":1,"v":"Setup will create the program's shortcuts in the following Start Menu folder.","o":-1},{"f":13,"c":1,"v":"Which additional tasks should be performed?","o":-1},{"f":13,"c":1,"v":"Select the additional tasks you would like Setup to perform while installing [name], then click Next.","o":-1},{"f":13,"c":1,"v":"Setup was not completed.\r\n\r\nPlease correct the problem and run Setup again.","o":-1},{"f":13,"c":1,"v":"Setup is already running.","o":-1},{"f":13,"c":1,"v":"Setup has detected that %1 is currently running.\r\n\r\nPlease close all instances of it now, then click OK to continue, or Cancel to exit.","o":-1},{"f":13,"c":1,"v":"The setup files are corrupted, or are incompatible with this version of Setup. Please correct the problem or obtain a new copy of the program.","o":-1},{"f":13,"c":1,"v":"The file %1 is missing from the installation directory. Please correct the problem or obtain a new copy of the program.","o":-1},{"f":13,"c":1,"v":"This will install %1. Do you wish to continue?","o":-1},{"f":13,"c":1,"v":"Setup - %1","o":-1},{"f":13,"c":1,"v":"File name:","o":-1},{"f":13,"c":1,"v":"Location:","o":-1},{"f":13,"c":1,"v":"Yes, I would like to view the README file","o":-1},{"f":13,"c":1,"v":"Installing %1.","o":-1},{"f":13,"c":1,"v":"Uninstalling %1.","o":-1},{"f":13,"c":1,"v":"The source file \"%1\" does not exist","o":-1},{"f":13,"c":1,"v":"The source file is corrupted","o":-1},{"f":13,"c":1,"v":"Closing applications...","o":-1},{"f":13,"c":1,"v":"Creating directories...","o":-1},{"f":13,"c":1,"v":"Creating shortcuts...","o":-1},{"f":13,"c":1,"v":"Creating INI entries...","o":-1},{"f":13,"c":1,"v":"Creating registry entries...","o":-1},{"f":13,"c":1,"v":"Extracting files...","o":-1},{"f":13,"c":1,"v":"Registering files...","o":-1},{"f":13,"c":1,"v":"Restarting applications...","o":-1},{"f":13,"c":1,"v":"Rolling back changes...","o":-1},{"f":13,"c":1,"v":"Saving uninstall information...","o":-1},{"f":13,"c":1,"v":"Finishing installation...","o":-1},{"f":13,"c":1,"v":"Uninstalling %1...","o":-1},{"f":13,"c":1,"v":"%1 Uninstall","o":-1},{"f":13,"c":1,"v":"Uninstall","o":-1},{"f":13,"c":1,"v":"\"%1\" file is corrupted. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"%1 was successfully removed from your computer.","o":-1},{"f":13,"c":1,"v":"To complete the uninstallation of %1, your computer must be restarted.\r\n\r\nWould you like to restart now?","o":-1},{"f":13,"c":1,"v":"%1 uninstall complete.\r\n\r\nSome elements could not be removed. These can be removed manually.","o":-1},{"f":13,"c":1,"v":"Uninstall has detected that %1 is currently running.\r\n\r\nPlease close all instances of it now, then click OK to continue, or Cancel to exit.","o":-1},{"f":13,"c":1,"v":"File \"%1\" does not exist. Cannot uninstall.","o":-1},{"f":13,"c":1,"v":"This installation can only be uninstalled on 64-bit Windows.","o":-1},{"f":13,"c":1,"v":"File \"%1\" could not be opened. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"Please wait while %1 is removed from your computer.","o":-1},{"f":13,"c":1,"v":"An unknown entry (%1) was encountered in the uninstall log","o":-1},{"f":13,"c":1,"v":"The uninstall log file \"%1\" is in a format not recognized by this version of the uninstaller. Cannot uninstall","o":-1},{"f":13,"c":1,"v":"Please enter your information.","o":-1},{"f":13,"c":1,"v":"&User Name:","o":-1},{"f":13,"c":1,"v":"You must enter a name.","o":-1},{"f":13,"c":1,"v":"&Organization:","o":-1},{"f":13,"c":1,"v":"&Serial Number:","o":-1},{"f":13,"c":1,"v":"Welcome to the [name] Setup Wizard","o":-1},{"f":13,"c":1,"v":"This will install [name/ver] on your computer.\r\n\r\nIt is recommended that you close all other applications before continuing.","o":-1},{"f":13,"c":1,"v":"This program requires %1 Service Pack %2 or later.","o":-1},{"f":13,"c":1,"v":"This program does not support the version of Windows your computer is running.","o":-1},{"f":13,"c":1,"v":"This program cannot be installed on %1 version %2 or later.","o":-1},{"f":13,"c":1,"v":"This program requires %1 version %2 or later.","o":-1},{"f":13,"c":1,"v":"Installing","o":-1},{"f":13,"c":1,"v":"License Agreement","o":-1},{"f":13,"c":1,"v":"Password","o":-1},{"f":13,"c":1,"v":"Preparing to Install","o":-1},{"f":13,"c":1,"v":"Ready to Install","o":-1},{"f":13,"c":1,"v":"Select Destination Location","o":-1},{"f":13,"c":1,"v":"Select Components","o":-1},{"f":13,"c":1,"v":"Select Start Menu Folder","o":-1},{"f":13,"c":1,"v":"Select Additional Tasks","o":-1},{"f":13,"c":1,"v":"Uninstall Status","o":-1},{"f":13,"c":1,"v":"User Information","o":-1},{"f":13,"c":1,"v":"&Yes, restart the computer now","o":-1},{"f":13,"c":1,"v":"%1 version %2","o":-1},{"f":13,"c":1,"v":"Additional shortcuts:","o":-1},{"f":13,"c":1,"v":"Create a &desktop shortcut","o":-1},{"f":13,"c":1,"v":"Create a &Quick Launch shortcut","o":-1},{"f":13,"c":1,"v":"%1 on the Web","o":-1},{"f":13,"c":1,"v":"Uninstall %1","o":-1},{"f":12,"c":1,"v":"Launch %1","o":-1},{"f":13,"c":1,"v":"&Associate %1 with the %2 file extension","o":-1},{"f":13,"c":1,"v":"Associating %1 with the %2 file extension...","o":-1},{"f":13,"c":1,"v":"Startup:","o":-1},{"f":13,"c":1,"v":"Automatically start %1","o":-1},{"f":13,"c":1,"v":"%1 could not be located in the folder you selected.\r\n\r\nDo you want to continue anyway?","o":-1},{"f":13,"c":1,"v":"contextentry","o":-1},{"f":13,"c":1,"v":"Add to explorer context menu","o":-1}],"interesting_strings":[{"category":"http","values":[{"offset":60300,"occurrences":1,"value":"http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline"},{"offset":13509,"occurrences":1,"value":"t.ht"}]},{"category":"https","values":[{"offset":18446744073709551615,"occurrences":1,"value":"https://www.sublimetext.com"}]}],"classification":{"propagated":false,"classification":1,"factor":2,"scan_results":[{"ignored":false,"type":1,"classification":1,"factor":2,"name":"Antivirus (based on the RCA Classify)","version":"2.91","rca_factor":2,"result":""}],"rca_factor":2},"indicators":[{"priority":7,"category":22,"description":"Deletes files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":101},{"priority":7,"category":11,"description":"Requests permission required to shut down a system.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"},{"propagated":false,"category":"Strings","description":"Contains the following string: SeShutdownPrivilege"}],"id":990},{"priority":6,"category":10,"description":"Executes a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateProcessW"}],"id":21},{"priority":5,"category":22,"description":"Writes to files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":99},{"priority":5,"category":11,"description":"Tampers with user/account privileges.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"}],"id":329},{"priority":5,"category":12,"description":"Checks operating system version.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetVersion"}],"id":930},{"priority":5,"category":9,"description":"Enumerates the values of a registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":18370},{"priority":5,"category":9,"description":"Opens registry keys.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"}],"id":18373},{"priority":4,"category":22,"description":"Deletes files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeleteFileW"}],"id":5},{"priority":4,"category":9,"description":"Accesses/modifies registry.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegOpenKeyExW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegQueryValueExW"}],"id":7},{"priority":4,"category":22,"description":"Creates/opens files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":95},{"priority":4,"category":22,"description":"Reads from files in Windows system directories.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":97},{"priority":4,"category":10,"description":"Tampers with system shutdown.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ExitWindowsEx"}],"id":117},{"priority":4,"category":13,"description":"Enumerates system information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":149},{"priority":4,"category":0,"description":"Contains URLs.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: For more detailed information, please visit http://www.jrsoftware.org/"}],"id":310},{"priority":4,"category":12,"description":"Reads paths to system directories on Windows.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryW"}],"id":967},{"priority":4,"category":11,"description":"Enumerates user/account privilege information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LookupPrivilegeValueW"}],"id":1215},{"priority":3,"category":22,"description":"Writes to files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":3},{"priority":3,"category":1,"description":"Detects presence of debuggers.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetTickCount"}],"id":9},{"priority":3,"category":7,"description":"Detects/enumerates process modules.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetModuleFileNameW"}],"id":81},{"priority":3,"category":22,"description":"Removes a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RemoveDirectoryW"}],"id":340},{"priority":3,"category":14,"description":"Contains one or more script files.","relevance":0,"reasons":[{"propagated":false,"category":"Tag Match","description":"Matched contains-script tag"}],"id":1160},{"priority":3,"category":4,"description":"Allocates additional memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LocalAlloc"}],"id":17985},{"priority":3,"category":10,"description":"Forces a window to close.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DestroyWindow"}],"id":17990},{"priority":3,"category":22,"description":"Queries file attributes.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileAttributesW"}],"id":17997},{"priority":3,"category":22,"description":"Changes the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetEndOfFile"}],"id":18066},{"priority":3,"category":12,"description":"Enumerates the installed system languages.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetUserDefaultLangID"}],"id":18368},{"priority":2,"category":22,"description":"Reads from files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":1},{"priority":2,"category":10,"description":"Loads additional libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LoadLibraryW"}],"id":69},{"priority":2,"category":10,"description":"Loads additional APIs.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetProcAddress"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Loads additional libraries."}],"id":70},{"priority":2,"category":10,"description":"Tampers with module search locations.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: SetDllDirectoryW"}],"id":92},{"priority":2,"category":12,"description":"Enumerates files.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: FindFirstFileW"}],"id":119},{"priority":2,"category":13,"description":"Enumerates system variables.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetEnvironmentVariableW"}],"id":151},{"priority":2,"category":22,"description":"Creates a directory.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateDirectoryW"}],"id":338},{"priority":2,"category":10,"description":"Delays execution.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: Sleep"}],"id":17984},{"priority":2,"category":10,"description":"Displays a dialog box with a message.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: MessageBoxW"}],"id":17989},{"priority":2,"category":22,"description":"Queries the size of a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetFileSize"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17991},{"priority":2,"category":12,"description":"Queries the free disk space.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetDiskFreeSpaceW"}],"id":18001},{"priority":2,"category":4,"description":"Frees previously allocated memory in the calling process.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: VirtualFree"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Allocates additional memory in the calling process."}],"id":18585},{"priority":1,"category":22,"description":"Creates/Opens a file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileW"}],"id":0},{"priority":1,"category":12,"description":"Enumerates user locale information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: EnumCalendarInfoW"}],"id":287},{"priority":1,"category":12,"description":"Contains references to executable file extensions.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: ernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: userenv.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"},{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":313},{"priority":1,"category":10,"description":"Contains reference to apphelp.dll which is Application Compatibility Client Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: apphelp.dll"}],"id":3502},{"priority":1,"category":10,"description":"Contains reference to clbcatq.dll which is COM+ Configuration Catalog.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: clbcatq.dll"}],"id":4146},{"priority":1,"category":10,"description":"Contains reference to comres.dll which is COM+ Resources.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: comres.dll"}],"id":5025},{"priority":1,"category":10,"description":"Contains reference to cryptbase.dll which is Base cryptographic API DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: cryptbase.dll"}],"id":5076},{"priority":1,"category":10,"description":"Contains reference to dwmapi.dll which is Microsoft Desktop Window Manager API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: dwmapi.dll"}],"id":5616},{"priority":1,"category":10,"description":"Contains reference to kernel32.dll which is Windows NT BASE API Client DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: kernel32.dll"}],"id":7482},{"priority":1,"category":10,"description":"Contains reference to oleacc.dll which is Active Accessibility Core Component.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: oleacc.dll"}],"id":9174},{"priority":1,"category":10,"description":"Contains reference to profapi.dll which is User Profile Basic API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: profapi.dll"}],"id":9519},{"priority":1,"category":10,"description":"Contains reference to propsys.dll which is Microsoft Property System.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: propsys.dll"}],"id":9523},{"priority":1,"category":10,"description":"Contains reference to setupapi.dll which is Windows Setup API.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: setupapi.dll"}],"id":10253},{"priority":1,"category":10,"description":"Contains reference to shell32.dll which is Windows Shell Common Dll.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: shell32.dll"}],"id":10300},{"priority":1,"category":10,"description":"Contains reference to uxtheme.dll which is Microsoft UxTheme Library.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: uxtheme.dll"}],"id":11278},{"priority":1,"category":10,"description":"Contains reference to version.dll which is Version Checking and File Installation Libraries.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: version.dll"}],"id":11315},{"priority":1,"category":22,"description":"Sets or updates the file pointer position within an open file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetFilePointer"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17986},{"priority":1,"category":9,"description":"Closes a previously open registry key.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: RegCloseKey"}],"id":17987},{"priority":1,"category":22,"description":"Closes a previously open file descriptor.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CloseHandle"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":18020},{"priority":1,"category":16,"description":"Uses string related methods.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: lstrcpynW"}],"id":18050}],"story":"This file (SHA1: 1177c6451fdaa841f7a8cb0feed53b6621e3356d) is a 32-bit portable executable application. Additionally, it was identified as InnoSetup installer, and unpacking was successful. The application uses the Windows graphical user interface (GUI) subsystem, while the languages used are Dutch from Netherlands and English from United States. According to version information, this is Sublime Text from Sublime HQ Pty Ltd. Appended data was detected at the file&#x27;s end. Its length is greater than the size of the image. Cryptography related data was found in the file. This application has access to device configuration, monitoring and running processes and has cryptography and security related capabilities. Libraries advapi32 Generic, comctl32 Generic, kernel32 Generic, oleaut32 Generic and user32 Generic were detected in the file. The application is digitally signed, and the signature is valid. Additionally, the certificate uses a weak hashing algorithm. There are 4685 extracted files.","signatures":[{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":1,"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"serial_number":"0efea0081659e4a8586f284c8d817206","digest_algorithm":"sha256","digest_encryption_algorithm":"ecdsa-with-SHA256","encrypted_digest":"304502207d94a0db6827748ae98c2edc8e4e375980d0c0cd3c76e70bf87a57c9f68417dc0221008673af9c2bfd9045dde234fdeb1ee6adb36ce00d08c7775247afcfac52d104ce","authenticated_attributes":[{"name":"contentType","value":"SPC_INDIRECT_DATA_OBJID"},{"name":"signingTime","value":"2023-11-23T21:46:11Z"},{"name":"1.3.6.1.4.1.311.2.1.11","value":"#300C060A2B060104018237020115"},{"name":"messageDigest","value":"#0420269D029208F10B371A35A430C933F714A41CE5869BE40A90C67E796C32FD88B6"}],"certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2023-08-01T00:00:00Z","valid_to":"2024-08-04T23:59:59Z","serial_number":"0efea0081659e4a8586f284c8d817206","subject":[{"name":"countryName","value":"AU"},{"name":"stateOrProvinceName","value":"New South Wales"},{"name":"localityName","value":"Woollahra"},{"name":"organizationName","value":"Sublime HQ Pty Ltd"},{"name":"commonName","value":"Sublime HQ Pty Ltd"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2021-04-29T00:00:00Z","valid_to":"2036-04-28T23:59:59Z","serial_number":"0fb8a740b9158d035143bc59d9f04029","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Global G3 Code Signing ECC SHA384 2021 CA1"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2013-08-01T12:00:00Z","valid_to":"2038-01-15T12:00:00Z","serial_number":"055556bcf25ea43535c3a40fd5ab4572","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Global Root G3"}],"signature_algorithm":"ecdsa-with-SHA384","signature":"3065023100adbcf26c3f124ad12d39c30a099773f488368c8827bbe6888d5085a763f99e32de66930ff1ccb1098fdd6cabfa6b7fa0023039665bc2648db89e50dca8d549a2edc7dcd1497f1701b8c8868f4e8c882ba89aa98ac5d100bdf854e29ae55b7cb32717","public_key":{"type":2,"value":"04dda7d9bb8ab80bfb0b7f21d2f0bebe73f3335d1abc34eadec69bbcd095f6f0ccd00bba615b51467e9e2d9fee8e630c17ec0770f5cf842e40839ce83f416d3badd3a4145936789d0343ee10136c72deae88a7a16bb543ce67dc23ff031ca3e23e","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000ffffffff","a":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000fffffffc","b":"b3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef","x":"aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab7","y":"3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","generator":"04aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab73617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","order":"ffffffffffffffffffffffffffffffffffffffffffffffffc7634d81f4372ddf581a0db248b0a77aecec196accc52973","cofactor":"1","seed":"a335926aa319a27a1d00896a6773a4827acdac73","field_type":"prime-field","curve_name":"nistP384"}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"B3:DB:48:A4:F9:A1:C5:D8:AE:36:41:CC:11:63:69:62:29:BC:4B:C6"}],"thumbprints":[{"name":"SHA256","value":"31ad6648f8104138c738f39ea4320133393e3a18cc02296ef97c2ac9ef6731d0"}]},"signature_algorithm":"ecdsa-with-SHA384","signature":"3065023078bd4995657101d0465768650e68a9dc3608c1eefdd48edb40653f0dff93afc2ae6386a37ecbb4915a78ec070367077c023100e79f1ff1075bac34c638bcb5a550cee6ea387e3e7990e4a45bab020de807fc56a65a8addb350b2ddf2fa66749ed01663","public_key":{"type":2,"value":"04bbb4ac27a5480da2535f8f2e813e2f5376b80894a29aaa8a8b98b5b1f0fc2a15bbb9b3a5222ffd6ac0bde25568606b9734c166537123fc1ad5ca200f0240a2a34a5a46a391532b95f203e9aba6d387762fe7649f9e3551fcc363357876e4f877","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000ffffffff","a":"fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffeffffffff0000000000000000fffffffc","b":"b3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef","x":"aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab7","y":"3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","generator":"04aa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab73617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f","order":"ffffffffffffffffffffffffffffffffffffffffffffffffc7634d81f4372ddf581a0db248b0a77aecec196accc52973","cofactor":"1","seed":"a335926aa319a27a1d00896a6773a4827acdac73","field_type":"prime-field","curve_name":"nistP384"}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE, pathlen:0"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"9B:5F:B0:36:BA:9D:06:AE:19:27:BD:C0:A0:22:C0:8B:8B:38:77:ED"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"B3:DB:48:A4:F9:A1:C5:D8:AE:36:41:CC:11:63:69:62:29:BC:4B:C6"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Code Signing"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalRootG3.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertGlobalRootG3.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.3\nPolicy: 2.23.140.1.4.1"}],"thumbprints":[{"name":"SHA256","value":"35769d41ef436a4d63ddb00ab11c6ce968989fcdd829e7018f5db90ac4bd3cd0"}]},"signature_algorithm":"ecdsa-with-SHA384","signature":"3064023001136a9dd4cc1c1ac8e81b6ffc710f18a349b4f92e8dc078055794282d72f84b594b805ae3af7800fc348ef6604a9ab802305163cf5a255e3693a8cb6f3a020e801131bfeff3ce930b1010f84bde310a945c91d6ebab113965072356ef96442fe3b7","public_key":{"type":2,"value":"0422200afdba93e9179dc23c925f92fed87c6dfa8f8beac78d53c8b57e1135f80e2b658e34596033ebb0ef613ec92171dc959a1d7c89c40c321c35b71c738a5766","rsa":{"enabled":false},"dsa":{"enabled":false},"ec":{"enabled":true,"p":"ffffffff00000001000000000000000000000000ffffffffffffffffffffffff","a":"ffffffff00000001000000000000000000000000fffffffffffffffffffffffc","b":"5ac635d8aa3a93e7b3ebbd55769886bc651d06b0cc53b0f63bce3c3e27d2604b","x":"6b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c296","y":"4fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5","generator":"046b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c2964fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5","order":"ffffffff00000000ffffffffffffffffbce6faada7179e84f3b9cac2fc632551","cofactor":"1","seed":"c49d360886e704936a6678e1139d26b7819f7e90","field_type":"prime-field","curve_name":"nistP256"}},"extensions":[{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"9B:5F:B0:36:BA:9D:06:AE:19:27:BD:C0:A0:22:C0:8B:8B:38:77:ED"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"02:86:8E:3B:FF:28:B0:7B:C5:2D:1A:C1:D7:EA:25:81:53:08:F3:DB"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Code Signing"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crl\nFull Name:\n  URI:http://crl4.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.1\n  CPS: http://www.digicert.com/CPS"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG3CodeSigningECCSHA3842021CA1.crt"},{"is_critical":false,"name":"X509v3 Basic Constraints","value":"CA:FALSE"}],"thumbprints":[{"name":"SHA256","value":"e09dfee5d6ecc4229e3006ebe94a58402dcd44e087777223c01d6fcce17a9e85"}]},"counter_signatures":[{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":1,"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"serial_number":"0544aff3949d0839a6bfdb3f5fe56116","digest_algorithm":"sha256","digest_encryption_algorithm":"rsaEncryption","encrypted_digest":"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","timestamp":"2023-11-23T21:46:11Z","authenticated_attributes":[{"name":"contentType","value":"pkcs7-data"},{"name":"signingTime","value":"2023-11-23T21:46:11Z"},{"name":"messageDigest","value":"#0420CA04B68EF20EFB66CB2A510F2CAA0C8673A96760500266F7E0D1360455C49F05"}],"certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2023-07-14T00:00:00Z","valid_to":"2034-10-13T23:59:59Z","serial_number":"0544aff3949d0839a6bfdb3f5fe56116","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Timestamp 2023"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2022-03-23T00:00:00Z","valid_to":"2037-03-22T23:59:59Z","serial_number":"073637b724547cd847acfd28662a5e5b","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert, Inc."},{"name":"commonName","value":"DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Trusted Root G4"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28"},"version":2,"valid_from":"2022-08-01T00:00:00Z","valid_to":"2031-11-09T23:59:59Z","serial_number":"0e9b188ef9d02de7efdb50e20840185a","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Trusted Root G4"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"issuer_certificate":{"validation":{"valid":true,"type":5,"name":"TitaniumCore Certificate Validator","version":"5.0.1.28","warnings":["Certificate uses weak hashing algorithm (SHA1)"]},"version":2,"valid_from":"2006-11-10T00:00:00Z","valid_to":"2031-11-10T00:00:00Z","serial_number":"0ce7e0e517d846fe8fe560fc1bf03039","subject":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"issuer":[{"name":"countryName","value":"US"},{"name":"organizationName","value":"DigiCert Inc"},{"name":"organizationalUnitName","value":"www.digicert.com"},{"name":"commonName","value":"DigiCert Assured ID Root CA"}],"signature_algorithm":"sha1WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"}],"thumbprints":[{"name":"SHA256","value":"3e9099b5015e8f486c00bcea9d111ee721faba355a89bcf1df69561e3dc6325c"}]},"signature_algorithm":"sha384WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"EC:D7:E3:82:D2:71:5D:64:4C:DF:2E:67:3F:E7:BA:98:AE:1C:0F:4F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: X509v3 Any Policy"}],"thumbprints":[{"name":"SHA256","value":"33846b545a49c9be4903c60e01713c1bd4e4ef31ea65cd95d69e62794f30b941"}]},"signature_algorithm":"sha256WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"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"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:TRUE, pathlen:0"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"BA:16:D9:6D:4D:85:2F:73:29:76:9A:2F:75:8C:6A:20:8F:9E:C8:6F"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"EC:D7:E3:82:D2:71:5D:64:4C:DF:2E:67:3F:E7:BA:98:AE:1C:0F:4F"},{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature, Certificate Sign, CRL Sign"},{"is_critical":false,"name":"X509v3 Extended Key Usage","value":"Time Stamping"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertTrustedRootG4.crt"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertTrustedRootG4.crl"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.2\nPolicy: 2.16.840.1.114412.7.1"}],"thumbprints":[{"name":"SHA256","value":"281734d4592d1291d27190709cb510b07e22c405d5e0d6119b70e73589f98acf"}]},"signature_algorithm":"sha256WithRSAEncryption","signature":"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","public_key":{"type":0,"value":"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","rsa":{"enabled":true,"exponent":"10001","modulus":"a35345871d838e5bac3e54b323e0cf9fd7e5d2e75da10e09dc2f48a3977a3b2a9c67dc621558c1a99311a7cdaab26add10298a1e626369d3589c3571bf3a97eb94508f1c20eac79a3b2f9666e369e769fe5bc3d62b201cc19794b4a55081f2cfcb07a63068ca8342dafc7f092494a4821ada6abad83bca5dde191885fb45ea0d616c9dfe715ec4069a3cf0c52e790f1b6652e3c8d63e5fda43d384f5d0c7f6482d5e45759675fedd10a11b83c1b8e65295b547d77829396be0785997e3442b4ad595ceef0817ea82644dff23e3ca86eeb4a4216470ebd5e5a0da63b32ee905eeaaf624f51dbc9b1cb2b75fdff0ee767d31996547559d4a242fac2b97be9fe4fd7b733e32ee5234fbd4bbebd4a02c349be3de6e6419073701910f1cb551cdaa4c6683886862bbbc411b78196de4d90fe05841fbd8b12ce151afb4ad150614ea620813d3691e7c644d9d0fdfced15e8caaab5015c9b3cabcd7c43b6844a3a53b42fd737deedd0aff7934107ea65c0a584c003e856975c78364d675cd8f127656a524fad7c46b21bae81f34982f3aea6b01b0f7fb2a86ec7b5238a99809a171b26c71af3eb86f96d5e11013fe61470a8cfef0b6c7d5c7de6c24f0bf4282caa0713d9c929304b46970270d4fb7b536d1c95f08a470a3ec0af1112e64e0cb222bcaf128132149517e0666d33bbefaeb9138d85107ca94b7e250a1f33ad38a83cb407b"},"dsa":{"enabled":false},"ec":{"enabled":false}},"extensions":[{"is_critical":true,"name":"X509v3 Key Usage","value":"Digital Signature"},{"is_critical":true,"name":"X509v3 Basic Constraints","value":"CA:FALSE"},{"is_critical":true,"name":"X509v3 Extended Key Usage","value":"Time Stamping"},{"is_critical":false,"name":"X509v3 Certificate Policies","value":"Policy: 2.23.140.1.4.2\nPolicy: 2.16.840.1.114412.7.1"},{"is_critical":false,"name":"X509v3 Authority Key Identifier","value":"BA:16:D9:6D:4D:85:2F:73:29:76:9A:2F:75:8C:6A:20:8F:9E:C8:6F"},{"is_critical":false,"name":"X509v3 Subject Key Identifier","value":"A5:B6:EF:13:E7:EF:CD:D0:64:A1:D5:56:A9:65:31:A3:DE:D5:E3:49"},{"is_critical":false,"name":"X509v3 CRL Distribution Points","value":"Full Name:\n  URI:http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl"},{"is_critical":false,"name":"Authority Information Access","value":"OCSP - URI:http://ocsp.digicert.com\nCA Issuers - URI:http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt"}],"thumbprints":[{"name":"SHA256","value":"d2f6e46ded7422ccd1d440576841366f828ada559aae3316af4d1a9ad40c7828"}]}}]}],"browser":{},"software_package":{},"attack":[{"matrix":"Enterprise","tactics":[{"id":"TA0005","name":"Defense Evasion","description":"The adversary is trying to avoid being detected.","techniques":[{"id":"T1070.004","name":"Indicator Removal: File Deletion","description":"Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate what was done within a network and how. Removal of these files can occur during an intrusion, or as part of a post-intrusion process to minimize the adversary's footprint.","indicators":[{"priority":7,"category":22,"id":101,"relevance":0,"description":"Deletes files in Windows system directories."},{"priority":4,"category":22,"id":5,"relevance":0,"description":"Deletes files."},{"priority":3,"category":22,"id":340,"relevance":0,"description":"Removes a directory."}]},{"id":"T1112","name":"Modify Registry","description":"Adversaries may interact with the Windows Registry to hide configuration information within Registry keys, remove information as part of cleaning up, or as part of other techniques to aid in persistence and execution.","indicators":[{"priority":4,"category":9,"id":7,"relevance":0,"description":"Accesses/modifies registry."}]},{"id":"T1497.003","name":"Virtualization/Sandbox Evasion: Time Based Evasion","description":"Adversaries may employ various time-based methods to detect and avoid virtualization and analysis environments. This may include enumerating time-based properties, such as uptime or the system clock, as well as the use of timers or other triggers to avoid a virtual machine environment (VME) or sandbox, specifically those that are automated or only operate for a limited amount of time.","indicators":[{"priority":2,"category":10,"id":17984,"relevance":0,"description":"Delays execution."}]}]},{"id":"TA0007","name":"Discovery","description":"The adversary is trying to figure out your environment.","techniques":[{"id":"T1012","name":"Query Registry","description":"Adversaries may interact with the Windows Registry to gather information about the system, configuration, and installed software.","indicators":[{"priority":5,"category":9,"id":18370,"relevance":0,"description":"Enumerates the values of a registry key."},{"priority":4,"category":9,"id":7,"relevance":0,"description":"Accesses/modifies registry."}]},{"id":"T1083","name":"File and Directory Discovery","description":"Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":4,"category":12,"id":967,"relevance":0,"description":"Reads paths to system directories on Windows."},{"priority":2,"category":12,"id":119,"relevance":0,"description":"Enumerates files."}]},{"id":"T1082","name":"System Information Discovery","description":"An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":5,"category":12,"id":930,"relevance":0,"description":"Checks operating system version."},{"priority":4,"category":13,"id":149,"relevance":0,"description":"Enumerates system information."},{"priority":2,"category":13,"id":151,"relevance":0,"description":"Enumerates system variables."},{"priority":2,"category":12,"id":18001,"relevance":0,"description":"Queries the free disk space."}]},{"id":"T1497.003","name":"Virtualization/Sandbox Evasion: Time Based Evasion","description":"Adversaries may employ various time-based methods to detect and avoid virtualization and analysis environments. This may include enumerating time-based properties, such as uptime or the system clock, as well as the use of timers or other triggers to avoid a virtual machine environment (VME) or sandbox, specifically those that are automated or only operate for a limited amount of time.","indicators":[{"priority":2,"category":10,"id":17984,"relevance":0,"description":"Delays execution."}]},{"id":"T1614.001","name":"System Location Discovery: System Language Discovery","description":"Adversaries may attempt to gather information about the system language of a victim in order to infer the geographical location of that host. This information may be used to shape follow-on behaviors, including whether the adversary infects the target and/or attempts specific actions. This decision may be employed by malware developers and operators to reduce their risk of attracting the attention of specific law enforcement agencies or prosecution/scrutiny from other entities.","indicators":[{"priority":3,"category":12,"id":18368,"relevance":0,"description":"Enumerates the installed system languages."}]}]},{"id":"TA0002","name":"Execution","description":"The adversary is trying to run malicious code.","techniques":[{"id":"T1106","name":"Native API","description":"Adversaries may interact with the native OS application programming interface (API) to execute behaviors. Native APIs provide a controlled means of calling low-level OS services within the kernel, such as those involving hardware/devices, memory, and processes. These native APIs are leveraged by the OS during system boot (when other system components are not yet initialized) as well as carrying out tasks and requests during routine operations.","indicators":[{"priority":6,"category":10,"id":21,"relevance":0,"description":"Executes a file."},{"priority":2,"category":10,"id":70,"relevance":0,"description":"Loads additional APIs."}]},{"id":"T1059","name":"Command and Scripting Interpreter","description":"Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries. These interfaces and languages provide ways of interacting with computer systems and are a common feature across many different platforms. Most systems come with some built-in command-line interface and scripting capabilities, for example, macOS and Linux distributions include some flavor of Unix Shell while Windows installations include the Windows Command Shell and PowerShell.","indicators":[{"priority":3,"category":14,"id":1160,"relevance":0,"description":"Contains one or more script files."}]}]},{"id":"TA0040","name":"Impact","description":"The adversary is trying to manipulate, interrupt, or destroy your systems and data.","techniques":[{"id":"T1529","name":"System Shutdown/Reboot","description":"Adversaries may shutdown/reboot systems to interrupt access to, or aid in the destruction of, those systems. Operating systems may contain commands to initiate a shutdown/reboot of a machine or network device. In some cases, these commands may also be used to initiate a shutdown/reboot of a remote computer or network device via Network Device CLI (e.g. reload).","indicators":[{"priority":4,"category":10,"id":117,"relevance":0,"description":"Tampers with system shutdown."}]}]}]}],"malware":{},"software_packages":[]},"networkthreatintelligence":{"sha1":"36ad8d56219e6d64cbfd4a6a8ddd1b6e07b9c053","classification":"goodware","third_party_reputations":{"sources":[{"detection":"undetected","source":"phishing_database","update_time":"2024-06-11T09:25:33"},{"detection":"undetected","source":"cyren","update_time":"2024-06-11T05:10:54"},{"detection":"undetected","source":"cyradar","update_time":"2024-06-11T04:51:21"},{"detection":"undetected","source":"netstar","update_time":"2024-06-11T09:51:02"},{"detection":"undetected","source":"mute","update_time":"2024-06-11T09:50:24"},{"detection":"undetected","source":"adminus_labs","update_time":"2024-06-11T09:54:15"},{"detection":"undetected","source":"apwg","update_time":"2024-06-11T01:19:42"},{"detection":"undetected","source":"0xSI_f33d","update_time":"2024-06-11T05:21:42"},{"detection":"undetected","source":"threatfox_abuse_ch","update_time":"2024-06-11T07:20:34"},{"detection":"undetected","source":"forcepoint","update_time":"2024-06-11T09:51:18","detect_time":"2024-06-11T09:51:18","categories":["information_technology"]},{"detection":"undetected","source":"phishtank","update_time":"2024-06-11T02:22:11"},{"detection":"undetected","source":"alphamountain","update_time":"2024-06-11T09:51:18","detect_time":"2024-06-11T09:51:18","categories":["information_technology"]},{"detection":"undetected","source":"phishstats","update_time":"2024-06-10T22:45:35"},{"detection":"undetected","source":"osint","update_time":"2024-06-11T00:30:14"},{"detection":"undetected","source":"alien_vault","update_time":"2024-06-11T00:48:29"},{"detection":"undetected","source":"openphish","update_time":"2024-06-10T16:59:26"},{"detection":"undetected","source":"mrg","update_time":"2024-06-11T09:47:27"},{"detection":"undetected","source":"crdf","update_time":"2024-06-11T06:44:48"},{"detection":"undetected","source":"urlhaus","update_time":"2024-06-11T09:26:18"}],"statistics":{"total":19,"malicious":0,"clean":0,"undetected":19}},"base64":"aHR0cHM6Ly9kb3dubG9hZC5zdWJsaW1ldGV4dC5jb20vc3VibGltZV90ZXh0X2J1aWxkXzQxNjlfeDY0X3NldHVwLmV4ZQ","analysis":{"analysis_history":[{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17175987503936ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T14:45:33"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17175987142836ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T14:47:50"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176059834136ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T16:46:07"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176059540836ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T16:48:16"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176276059936ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T22:46:43"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176275847836ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-05T22:48:39"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176636789336ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-06T08:47:36"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17176636355436ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-06T08:49:18"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181067049136ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:51:39"},{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181066779036ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:53:41"}],"last_analysis":{"domain":"download.sublimetext.com","http_response_code":200,"analysis_id":"17181066779036ad","availability_status":"online","serving_ip_address":"104.236.0.104","analysis_time":"2024-06-11T11:53:41"},"first_analysis":"2024-06-05T14:45:33","analysis_count":16,"statistics":{"unknown":0,"suspicious":0,"total":1,"malicious":0,"goodware":1}},"reason":"file_reputation","requested_url":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe","categories":["information_technology"],"last_seen":"2024-06-11T11:53:41"},"domainthreatintelligence":{"requested_domain":"download.sublimetext.com","third_party_reputations":{"statistics":{"malicious":0,"clean":0,"undetected":12,"total":12},"sources":[{"source":"osint","update_time":"2024-06-11T00:30:14","detection":"undetected"},{"source":"threatfox_abuse_ch","update_time":"2024-06-11T07:20:34","detection":"undetected"},{"source":"adminus_labs","update_time":"2024-06-11T09:54:15","detection":"undetected"},{"source":"netstar","update_time":"2024-06-11T09:51:02","detection":"undetected"},{"source":"apwg","update_time":"2024-06-11T04:57:22","detection":"undetected"},{"source":"botvrij","update_time":"2024-06-11T01:25:42","detection":"undetected"},{"source":"cyradar","update_time":"2024-06-11T04:51:21","detection":"undetected"},{"source":"phishing_database","update_time":"2024-06-11T01:25:32","detection":"undetected"},{"source":"crdf","update_time":"2024-06-11T06:44:48","detection":"undetected"},{"source":"0xSI_f33d","update_time":"2024-06-11T05:21:42","detection":"undetected"},{"source":"alphamountain","update_time":"2024-06-05T10:55:02","detection":"undetected","detect_time":"2024-06-05T10:55:02","categories":["information_technology"]},{"source":"forcepoint","update_time":"2024-06-05T10:55:07","detection":"undetected","detect_time":"2024-06-05T10:55:07","categories":["information_technology"]}]},"downloaded_files_statistics":{"unknown":0,"suspicious":0,"malicious":0,"total":276,"goodware":276},"last_dns_records":[{"type":"A","value":"104.236.0.104","provider":"ReversingLabs"}],"top_threats":[],"last_dns_records_time":"2024-06-11T11:53:41","last_seen":"2024-06-11T11:54:22","modified_time":"2024-06-11T11:54:22","parent_domain":"sublimetext.com"}}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_sample_classification.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_sample_classification.json
new file mode 100644
index 000000000000..f4600b59bea7
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_sample_classification.json
@@ -0,0 +1 @@
+{"classification":"malicious","riskscore":10,"first_seen":"2024-01-08T16:36:03Z","last_seen":"2024-06-10T10:31:18Z","classification_result":"Win32.Ransomware.Petya","classification_reason":"Antivirus","classification_origin":null,"cloud_last_lookup":"2024-06-11T00:38:52Z","data_source":"LOCAL","sha1":"d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5","sha256":"121c3fc43774abf1054ca9b7c10ebb49677889a527f34c7268872e7d670a2233","md5":"debaf7021f49695eadcaaab58d502eb9"}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_static_analysis.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_static_analysis.json
new file mode 100644
index 000000000000..88c01f98254c
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_static_analysis.json
@@ -0,0 +1 @@
+{"application":{"capabilities":[["clipboard",false],["ipc",false],["threads",false],["processes",true],["storage",true],["filesystem",true],["peripherals",false],["user_input",false],["hardware_interfaces",true],["networking",false],["cryptography",true],["security",true],["system",true],["modules",true],["memory_management",false],["user_interface",false],["command_line",false],["time_and_date",false],["identity",false],["monitoring",true],["configuration",false],["compression",false],["multimedia",false],["deprecated",false],["undocumented",false],["application_management",false],["service_management",false],["messaging",false],["protection",false],["drivers",true]],"pe":{"analysis":{"analysis_state":2,"security_grade":1,"issues":[{"code":24014,"name":"WC24014","description":"Section virtual size will be automatically rounded up by section alignment value.","relevance":0,"count":5},{"code":28600,"name":"WC28600","description":"Declared load config table length does not match the estimated one.","relevance":1,"count":1},{"code":28607,"name":"WC28607","description":"Detected image_debug_directory_t::type entry image_debug_type_iltcg_k. This entry is informative and indicates that the image was built using incremental linking. It can be removed to save space.","relevance":0,"count":1},{"code":28648,"name":"WC28648","description":"Detected presence of debug data within section region. This is not memory-efficient, as debug data is loaded in memory each time the application starts. This data should either be stripped or moved to file overlay.","relevance":0,"count":1},{"code":33013,"name":"SC33013","description":"Detected security mitigation policy issue in optional_header_t::dll_characteristics. Control flow guard feature flag is not set. Lowers grade to B.","relevance":1,"count":1},{"code":38469,"name":"SC38469","description":"Detected security mitigation policy issue in image_load_config_directory*_t::cfg_guard_flags. Extreme control flow guard is not enabled. No impact to the final grade at this time.","relevance":0,"count":1},{"code":38470,"name":"SC38470","description":"Detected security mitigation policy issue in image_load_config_directory*_t::cfg_guard_flags. Export suppression is not enabled. No impact to the final grade at this time.","relevance":0,"count":1},{"code":38474,"name":"SC38474","description":"Detected security mitigation policy issue in image_load_config_directory*_t::cfg_guard_flags. Long jump target protection is not enabled. Lowers grade to B.","relevance":0,"count":1},{"code":38475,"name":"SC38475","description":"Detected security mitigation policy issue in image_load_config_directory*_t::cfg_guard_flags. Cast guard protection is not enabled. No impact to the final grade at this time.","relevance":0,"count":1},{"code":38476,"name":"SC38476","description":"Detected security mitigation policy issue in image_load_config_directory*_t::cfg_guard_flags. Memory copy protection is not enabled. No impact to the final grade at this time.","relevance":0,"count":1},{"code":38610,"name":"SC38610","description":"Detected security mitigation policy issue in dll_extended_data_t::flags. The image is not compatible with Intel Control Flow Enforcement Technology. No impact to the final grade at this time.","relevance":1,"count":1}]},"dos_header":{"e_cblp":144,"e_cp":3,"e_crlc":0,"e_cparhdr":4,"e_minalloc":0,"e_maxalloc":65535,"e_ss":0,"e_sp":184,"e_csum":0,"e_ip":0,"e_cs":0,"e_lfarlc":64,"e_ovno":0,"e_res":"0000000000000000","e_oemid":0,"e_oeminfo":0,"e_res2":"0000000000000000000000000000000000000000","e_lfanew":224},"rich_header":{"checksum":3312547739,"offset":128,"size":96,"entries":[{"tooling":1,"version":30034,"product":260,"counter":5},{"tooling":5,"version":30034,"product":259,"counter":2},{"tooling":7,"version":30729,"product":147,"counter":5},{"tooling":7,"version":0,"product":1,"counter":22},{"tooling":2,"version":30147,"product":265,"counter":1},{"tooling":10,"version":30147,"product":255,"counter":1},{"tooling":6,"version":30147,"product":258,"counter":1}]},"file_header":{"machine":332,"number_of_sections":5,"time_date_stamp":1696138033,"time_date_stamp_decoded":"2023-10-01T05:27:13Z","pointer_to_symbol_table":0,"number_of_symbols":0,"size_of_optional_headers":224,"characteristics":258},"optional_header":{"is_checksum_valid":true,"major_linker_version":14,"minor_linker_version":29,"size_of_code":4608,"size_of_initialized_data":12800,"size_of_uninitialized_data":0,"address_of_entry_point":4096,"base_of_code":4096,"base_of_data":12288,"image_base":4194304,"section_alignment":4096,"file_alignment":512,"major_os_version":5,"minor_os_version":1,"major_image_version":1,"minor_image_version":0,"major_subsystem_version":5,"minor_subsystem_version":1,"win32_version_value":0,"size_of_image":36864,"size_of_headers":4096,"checksum":0,"subsystem":2,"dll_characteristics":34112,"size_of_stack_reserve":1048576,"size_of_stack_commit":4096,"size_of_heap_reserve":1048576,"size_of_heap_commit":4096,"loader_flags":0,"number_of_rva_and_sizes":16,"data_directories":[{"address":0,"size":0},{"address":13228,"size":60},{"address":28672,"size":488},{"address":0,"size":0},{"address":0,"size":0},{"address":32768,"size":296},{"address":12640,"size":56},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0},{"address":12696,"size":64},{"address":0,"size":0},{"address":12288,"size":96},{"address":0,"size":0},{"address":0,"size":0},{"address":0,"size":0}]},"sections":[{"name":".text","flags":1610612768,"relative_base":4096,"physical_base":1024,"relative_size":8192,"physical_size":4608,"entropy":5.237933752660939,"hashes":[{"name":"md5","value":"11161a1ed8804d23e19d8bcb9d7cd81f"},{"name":"sha1","value":"a02be8e52223fd949c34986c5fadbbd12fa74c8f"},{"name":"sha256","value":"40e973e3b5eb6908f8f46f14fe8798aefff8a9d2d089e1f72da792a71ce0f8b1"}]},{"name":".rdata","flags":1073741888,"relative_base":12288,"physical_base":5632,"relative_size":4096,"physical_size":2048,"entropy":3.6903253337128845,"hashes":[{"name":"md5","value":"7cfdf5974766f739fd08a7d46f82b5b1"},{"name":"sha1","value":"8ad32e54d4559caa6559c1a693d43a2d71c7d1fa"},{"name":"sha256","value":"da02fbe7ad27ff6c2e51749d6f4af0b43f6dbc3a18a63a4711460beb8c3db57f"}]},{"name":".data","flags":3221225536,"relative_base":16384,"physical_base":7680,"relative_size":12288,"physical_size":9216,"entropy":6.324282377326296,"hashes":[{"name":"md5","value":"e330aebbf1a1fca2ce4b44d8c3c47dd0"},{"name":"sha1","value":"ac5cc39dab0bc4a8bb77f828b798a2ea73d62082"},{"name":"sha256","value":"8a8cf5718a822655b0bd3a6c20a3c3083979ff4d637387ff66a3cfb480cab264"}]},{"name":".rsrc","flags":1073741888,"relative_base":28672,"physical_base":16896,"relative_size":4096,"physical_size":512,"entropy":4.756146432197579,"hashes":[{"name":"md5","value":"1c8d57ffb5a3b40300557b8a7a3d791a"},{"name":"sha1","value":"56e3b854f437dfc9bb21b72893413eddd0a73d05"},{"name":"sha256","value":"865b5f360d2f2a1647c00ec71d6da528c9c03c1e564011a49364ac445ee22103"}]},{"name":".reloc","flags":1107296320,"relative_base":32768,"physical_base":17408,"relative_size":4096,"physical_size":512,"entropy":4.38987206657481,"hashes":[{"name":"md5","value":"7e8f2677d5a24e147413220b7c013d58"},{"name":"sha1","value":"23bf379eb977667d1ceabbe63152a6cf228e7bde"},{"name":"sha256","value":"f56080180ebcada23a84f345c879df8b2a9504f445eadfaaef9046d7eff2f49e"}]}],"imports":[{"name":"ADVAPI32.dll","apis":["CryptAcquireContextA","CryptGenRandom","LookupPrivilegeValueA","OpenProcessToken","CryptReleaseContext","AdjustTokenPrivileges"]},{"name":"KERNEL32.dll","apis":["GetSystemDirectoryA","CloseHandle","CreateFileA","SetFilePointerEx","ExitProcess","IsProcessorFeaturePresent","GetModuleHandleA","SetFilePointer","DeviceIoControl","WriteFile","GetCurrentProcess","GetProcAddress","ReadFile","UnhandledExceptionFilter","SetUnhandledExceptionFilter","TerminateProcess"]}],"resources":[{"type":"RT_MANIFEST","name":"1","language_id_name":"English - United States","language_id":1033,"code_page":0,"offset":16992,"size":392,"entropy":0,"hashes":[{"name":"md5","value":"b8e76ddb52d0eb41e972599ff3ca431b"},{"name":"sha1","value":"fc12d7ad112ddabfcd8f82f290d84e637a4d62f8"},{"name":"sha256","value":"165c5c883fd4fd36758bcba6baf2faffb77d2f4872ffd5ee918a16f91de5a8a8"}]}]},"libraries":[{"type":3,"linking":2,"community":0,"verified":0,"name":"advapi32","version":"Generic","publisher":"Microsoft Corporation","description":"Advanced Windows 32 Base API Library","license":"Proprietary (Microsoft Windows Operating System License)"},{"type":3,"linking":2,"community":0,"verified":0,"name":"kernel32","version":"Generic","publisher":"Microsoft Corporation","description":"Windows NT BASE API Client Library","license":"Proprietary (Microsoft Windows Operating System License)"}]},"attack":[{"matrix":"Enterprise","tactics":[{"id":"TA0007","name":"Discovery","description":"The adversary is trying to figure out your environment.","techniques":[{"id":"T1082","name":"System Information Discovery","description":"An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":4,"category":13,"id":149,"relevance":0,"description":"Enumerates system information."},{"priority":2,"category":18,"id":880,"relevance":0,"description":"Accesses physical drive information."}]},{"id":"T1083","name":"File and Directory Discovery","description":"Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.","indicators":[{"priority":4,"category":12,"id":967,"relevance":2,"description":"Reads paths to system directories on Windows."}]}]},{"id":"TA0040","name":"Impact","description":"The adversary is trying to manipulate, interrupt, or destroy your systems and data.","techniques":[{"id":"T1489","name":"Service Stop","description":"Adversaries may stop or disable services on a system to render those services unavailable to legitimate users. Stopping critical services or processes can inhibit or stop response to an incident or aid in the adversary's overall objectives to cause damage to the environment.","indicators":[{"priority":3,"category":10,"id":387,"relevance":1,"description":"Terminates a process/thread."}]}]}]}],"behaviour":{},"certificate":{},"classification":{"propagated":false,"classification":3,"factor":10,"result":"Win32.Ransomware.Petya","scan_results":[{"ignored":false,"type":1,"classification":3,"factor":10,"name":"Antivirus (based on the RCA Classify)","version":"2.91","result":"Win32.Ransomware.Petya"},{"ignored":false,"type":5,"classification":3,"factor":10,"name":"TitaniumCore RICC","version":"5.0.1.28","result":"Win32.Ransomware.Petya"},{"ignored":false,"type":5,"classification":3,"factor":7,"name":"TitaniumCore Machine Learning","version":"5.0.1.28","result":"Win32.Downloader.Heuristic"}]},"document":{},"email":{},"imphash":"feb9bebf646137f4ff73e503cbcb6361","indicators":[{"priority":7,"category":11,"description":"Requests permission required to shut down a system.","relevance":1,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"},{"propagated":false,"category":"Strings","description":"Contains the following string: SeShutdownPrivilege"}],"id":990},{"priority":5,"category":22,"description":"Writes to files in Windows system directories.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":99},{"priority":5,"category":11,"description":"Tampers with user/account privileges.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: AdjustTokenPrivileges"}],"id":329},{"priority":4,"category":22,"description":"Creates/opens files in Windows system directories.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryA"}],"id":95},{"priority":4,"category":22,"description":"Reads from files in Windows system directories.","relevance":1,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":97},{"priority":4,"category":13,"description":"Enumerates system information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryA"}],"id":149},{"priority":4,"category":0,"description":"Contains URLs.","relevance":2,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string:  1. Download the Tor Browser at \"https://www.torproject.org/"},{"propagated":false,"category":"Strings","description":"Contains the following string: http://petyaKv29Z.onion/"},{"propagated":false,"category":"Strings","description":"Contains the following string: http://petyahsiDF.onion/"}],"id":310},{"priority":4,"category":12,"description":"Reads paths to system directories on Windows.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: GetSystemDirectoryA"}],"id":967},{"priority":4,"category":11,"description":"Enumerates user/account privilege information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: LookupPrivilegeValueA"}],"id":1215},{"priority":4,"category":0,"description":"Contains references to TOR/hidden services URLs.","relevance":1,"reasons":[{"propagated":false,"category":"Pattern Match","description":"Contains the following interesting string: http://petyahsidf.onion/"},{"propagated":false,"category":"Pattern Match","description":"Contains the following interesting string: http://petyakv29z.onion/"}],"id":14213},{"priority":3,"category":22,"description":"Writes to files.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: WriteFile"}],"id":3},{"priority":3,"category":1,"description":"Detects presence of debuggers.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetUnhandledExceptionFilter"}],"id":9},{"priority":3,"category":10,"description":"Terminates a process/thread.","relevance":1,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: TerminateProcess"}],"id":387},{"priority":2,"category":22,"description":"Reads from files.","relevance":1,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"},{"propagated":false,"category":"Imported API Name","description":"Imports the following function: ReadFile"}],"id":1},{"priority":2,"category":18,"description":"Accesses physical drive information.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: DeviceIoControl"},{"propagated":false,"category":"Strings","description":"Contains the following string: \\\\.\\PhysicalDrive"}],"id":880},{"priority":1,"category":22,"description":"Creates/Opens a file.","relevance":2,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CreateFileA"}],"id":0},{"priority":1,"category":12,"description":"Contains references to executable file extensions.","relevance":2,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: NTDLL.DLL"}],"id":313},{"priority":1,"category":6,"description":"Generates cryptographically secure random numbers.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CryptGenRandom"}],"id":962},{"priority":1,"category":10,"description":"Contains reference to ntdll.dll which is NT Layer DLL.","relevance":0,"reasons":[{"propagated":false,"category":"Strings","description":"Contains the following string: NTDLL.DLL"}],"id":9055},{"priority":1,"category":22,"description":"Sets or updates the file pointer position within an open file.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: SetFilePointer"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":17986},{"priority":1,"category":22,"description":"Closes a previously open file descriptor.","relevance":0,"reasons":[{"propagated":false,"category":"Imported API Name","description":"Imports the following function: CloseHandle"},{"propagated":false,"category":"Indicator Match","description":"Matched another indicator that describes the following: Creates/Opens a file."}],"id":18020}],"info":{"statistics":{"file_stats":[{"type":"PE","subtype":"Exe","count":1,"identifications":[{"count":1,"name":"Unknown"}]},{"type":"Text","subtype":"XML","count":1,"identifications":[{"count":1,"name":"Unknown"}]}]},"file":{"file_type":"PE","file_subtype":"Exe","size":17920,"entropy":5.899506347361156,"hashes":[{"name":"imphash","value":"feb9bebf646137f4ff73e503cbcb6361"},{"name":"md5","value":"debaf7021f49695eadcaaab58d502eb9"},{"name":"rha0","value":"1322d2caba0c9de53bb5ab88787b96c961e9f859"},{"name":"sha1","value":"d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5"},{"name":"sha256","value":"121c3fc43774abf1054ca9b7c10ebb49677889a527f34c7268872e7d670a2233"},{"name":"sha512","value":"bc32ea53671eb549fb994a6c9188e7beed03e87a647c73c73a23818ff3d848778b138f8f6e177ae6089a9b8372253f6176d6d54e9c57c2c2c8d4a01234c4b08f"},{"name":"ssdeep","value":"384:8ndPwvAJJ0A5iLGT0aHYzyJE+q3QQ4B/Weygx:sBwIJJv5QjaHYlZQQ4Beey"}],"proposed_filename":null},"validation":{"valid":true,"scan_results":[{"valid":true,"type":5,"name":"TitaniumCore PE Rich Header Validator","version":"5.0.1.28"},{"valid":true,"type":5,"name":"TitaniumCore PE Checksum Validator","version":"5.0.1.28"},{"valid":true,"type":3,"name":"TitaniumCore PECOFF Validator","version":"5.0.6","warnings":["PE.LoadConfigTable is fixable"]}]}},"interesting_strings":[{"category":"http","values":[{"offset":13856,"occurrences":1,"value":"complete.it"},{"offset":5856,"occurrences":1,"value":"http://petyahsidf.onion/hpFk2n","tags":["uri-onion-website"]},{"offset":5824,"occurrences":1,"value":"http://petyakv29z.onion/hpFk2n","tags":["uri-onion-website"]}]},{"category":"https","values":[{"offset":14558,"occurrences":1,"value":"https://www.torproject.org"}]}],"md5":"debaf7021f49695eadcaaab58d502eb9","media":{},"mobile":{},"protection":{},"security":{"features":["/GS","/GUARD:CF","ASLR","DEP"]},"sha1":"d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5","sha256":"121c3fc43774abf1054ca9b7c10ebb49677889a527f34c7268872e7d670a2233","sha512":"bc32ea53671eb549fb994a6c9188e7beed03e87a647c73c73a23818ff3d848778b138f8f6e177ae6089a9b8372253f6176d6d54e9c57c2c2c8d4a01234c4b08f","story":"This file (SHA1: d1aff4d205b59b1ae3edf152603fa2ae5a7c6cc5) is a 32-bit portable executable application. The application uses the Windows graphical user interface (GUI) subsystem, while the language used is English from United States. This application has access to monitoring and running processes and has cryptography and security related capabilities. Libraries advapi32 Generic and kernel32 Generic were detected in the file. There is one extracted file.","strings":[{"f":2,"c":1,"v":"@jjj","o":3343},{"f":2,"c":5,"v":"=$0@","o":1083},{"f":2,"c":1,"v":"\\\\.\\f","o":1122},{"f":2,"c":1,"v":"D$@Pj ","o":1152},{"f":2,"c":1,"v":"<rhf","o":1223},{"f":2,"c":1,"v":"D$0f","o":1351},{"f":2,"c":1,"v":")D$P","o":1373},{"f":2,"c":1,"v":"D$ f","o":1411},{"f":2,"c":1,"v":")D$`","o":1433},{"f":2,"c":2,"v":"D$,P","o":1497},{"f":2,"c":1,"v":"(D$P","o":2012},{"f":2,"c":1,"v":"~D$@f","o":2037},{"f":2,"c":1,"v":"(D$`","o":2056},{"f":2,"c":1,"v":"\r\n  f","o":2109},{"f":2,"c":1,"v":"D$<j","o":2162},{"f":2,"c":1,"v":"D$|Pj","o":2174},{"f":2,"c":3,"v":"D$$Ph","o":2662},{"f":2,"c":1,"v":"Qj(P","o":3314},{"f":2,"c":1,"v":"Phx0@","o":3331},{"f":2,"c":1,"v":"L$ Qj","o":3417},{"f":2,"c":1,"v":"D$@Pj","o":3497},{"f":2,"c":2,"v":"t$$V","o":3700},{"f":2,"c":1,"v":"D$,+","o":4076},{"f":2,"c":1,"v":"7777","o":4181},{"f":2,"c":1,"v":"\r\fc@","o":4808},{"f":2,"c":1,"v":"hp0@","o":5014},{"f":2,"c":1,"v":"WVS3","o":5040},{"f":3,"c":1,"v":"SeShutdownPrivilege","o":5752},{"f":3,"c":1,"v":"NTDLL.DLL","o":5772},{"f":3,"c":1,"v":"NtRaiseHardError","o":5784},{"f":3,"c":1,"v":"\\\\.\\PhysicalDrive","o":5804},{"f":3,"c":1,"v":"http://petyaKv29Z.onion/hpFk2n","o":5824},{"f":3,"c":1,"v":"http://petyahsiDF.onion/hpFk2n","o":5856},{"f":3,"c":1,"v":"passwordpassword","o":5888},{"f":2,"c":1,"v":"123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz","o":5908},{"f":2,"c":1,"v":"7777777777777777","o":5968},{"f":2,"c":1,"v":"GCTL","o":6296},{"f":2,"c":1,"v":".text$mn","o":6308},{"f":3,"c":1,"v":".idata$5","o":6328},{"f":2,"c":1,"v":".00cfg","o":6348},{"f":3,"c":1,"v":".rdata","o":6364},{"f":3,"c":1,"v":".rdata$voltmd","o":6380},{"f":3,"c":1,"v":".rdata$zzzdbg","o":6404},{"f":3,"c":1,"v":".idata$2","o":6428},{"f":3,"c":1,"v":".idata$3","o":6448},{"f":3,"c":1,"v":".idata$4","o":6468},{"f":3,"c":1,"v":".idata$6","o":6488},{"f":3,"c":1,"v":".data","o":6508},{"f":2,"c":1,"v":".bss","o":6524},{"f":2,"c":1,"v":".rsrc$01","o":6540},{"f":3,"c":1,"v":".rsrc$02","o":6560},{"f":2,"c":2,"v":"r\f;V","o":7813},{"f":2,"c":1,"v":"r\u000b;F","o":7913},{"f":2,"c":1,"v":"V\n+F","o":7924},{"f":2,"c":1,"v":"\"sTj","o":8410},{"f":2,"c":1,"v":" slj","o":8642},{"f":2,"c":1,"v":"F\n8F","o":8867},{"f":2,"c":1,"v":"[jPj","o":9148},{"f":2,"c":1,"v":"\nr/f","o":9576},{"f":2,"c":1,"v":"v\nfP","o":9774},{"f":2,"c":2,"v":"[j j ","o":9872},{"f":2,"c":1,"v":"u 8l","o":10320},{"f":2,"c":1,"v":"9F\nu","o":11996},{"f":2,"c":1,"v":"F9v\fw","o":12133},{"f":2,"c":1,"v":"F\fPWf","o":12386},{"f":2,"c":3,"v":"PfXfYf","o":12411},{"f":2,"c":1,"v":"f;F\fu","o":12855},{"f":2,"c":1,"v":"V\ff9F","o":12990},{"f":2,"c":1,"v":"123456789abcdefghijkmnopqrstuvwxABCDEFGHJKLMNPQRSTUVWX","o":13620},{"f":3,"c":1,"v":"\r\n  Repairing file system on C: \r\n\r\n  The type of the file system is NTFS.\r\n  One of your disks contains errors and needs to be repaired. This process\r\n  may take several hours to complete.It is strongly recommended to let it\r\n  complete.\r\n\r\n  WARNING: DO NOT TURN OFF YOUR PC! IF YOU ABORT THIS PROCESS, YOU COULD\r\n  DESTROY ALL OF YOUR DATA! PLEASE ENSURE THAT YOUR POWER CABLE IS PLUGGED\r\n  IN!\r\n\r\n","o":13676},{"f":3,"c":1,"v":"  CHKDSK is repairing sector","o":14078},{"f":3,"c":1,"v":"Please reboot your computer!","o":14108},{"f":3,"c":1,"v":" Decrypting sector","o":14138},{"f":3,"c":1,"v":" You became victim of the PETYA RANSOMWARE!\r\n","o":14162},{"f":3,"c":1,"v":"\r\n The harddisks of your computer have been encrypted with an military grade\r\n encryption algorithm. There is no way to restore your data without a special\r\n key. You can purchase this key on the darknet page shown in step 2.\r\n\r\n To purchase your key and restore your data, please follow these three easy\r\n steps:\r\n\r\n 1. Download the Tor Browser at \"https://www.torproject.org/\". If you need\r\n    help, please google for \"access onion page\".\r\n 2. Visit one of the following pages with the Tor Browser:\r\n\r\n    ","o":14208},{"f":3,"c":1,"v":"\r\n\r\n 3. Enter your personal decryption code there:\r\n\r\n","o":14718},{"f":3,"c":1,"v":"\r\n\r\n","o":14774},{"f":3,"c":1,"v":" If you already purchased your key, please enter it below.\r\n\r\n","o":14780},{"f":2,"c":1,"v":" Key: ","o":14844},{"f":3,"c":1,"v":"\r\n Incorrect key! Please try again.\r\n\r\n","o":14852},{"f":2,"c":1,"v":" of ","o":14896},{"f":3,"c":1,"v":"%)            ","o":14906},{"f":2,"c":1,"v":"uu$$$$$$$$$$$uu\r\n","o":14922},{"f":2,"c":1,"v":"uu$$$$$$$$$$$$$$$$$uu\r\n","o":14940},{"f":2,"c":1,"v":"u$$$$$$$$$$$$$$$$$$$$$u\r\n","o":14964},{"f":2,"c":1,"v":"u$$$$$$$$$$$$$$$$$$$$$$$u\r\n","o":14990},{"f":2,"c":1,"v":"u$$$$$$$$$$$$$$$$$$$$$$$$$u\r\n","o":15018},{"f":3,"c":1,"v":"u$$$$$$*   *$$$*   *$$$$$$u\r\n","o":15048},{"f":3,"c":1,"v":"*$$$$*      u$u       $$$$*\r\n","o":15078},{"f":3,"c":1,"v":"$$$u       u$u       u$$$\r\n","o":15108},{"f":3,"c":1,"v":"$$$u      u$$$u      u$$$\r\n","o":15136},{"f":2,"c":1,"v":"*$$$$uu$$$   $$$uu$$$$*\r\n","o":15164},{"f":3,"c":1,"v":"*$$$$$$$*   *$$$$$$$*\r\n","o":15190},{"f":2,"c":1,"v":"u$$$$$$$u$$$$$$$u\r\n","o":15214},{"f":2,"c":1,"v":"u$*$*$*$*$*$*$u\r\n","o":15234},{"f":3,"c":1,"v":"uuu        $$u$ $ $ $ $u$$       uuu\r\n","o":15252},{"f":3,"c":1,"v":"u$$$$        $$$$$u$u$u$$$       u$$$$\r\n","o":15292},{"f":3,"c":1,"v":"$$$$$uu      *$$$$$$$$$*     uu$$$$$$\r\n","o":15334},{"f":2,"c":1,"v":"u$$$$$$$$$$$uu    *****    uuuu$$$$$$$$$\r\n","o":15374},{"f":2,"c":1,"v":"$$$$***$$$$$$$$$$uuu   uu$$$$$$$$$***$$$*\r\n","o":15418},{"f":2,"c":1,"v":"***      **$$$$$$$$$$$uu **$***\r\n","o":15462},{"f":2,"c":1,"v":"uuuu **$$$$$$$$$$uuu\r\n","o":15496},{"f":2,"c":1,"v":"u$$$uuu$$$$$$$$$uu **$$$$$$$$$$$uuu$$$\r\n","o":15520},{"f":3,"c":1,"v":"$$$$$$$$$$****           **$$$$$$$$$$$*\r\n","o":15562},{"f":3,"c":1,"v":"*$$$$$*                      **$$$$**\r\n","o":15604},{"f":3,"c":1,"v":"$$$*     PRESS ANY KEY!      $$$$*","o":15644},{"f":3,"c":1,"v":"    ","o":15680},{"f":3,"c":1,"v":"\r\n    ","o":15688},{"f":2,"c":1,"v":"ERROR!\r\n","o":15696},{"f":2,"c":1,"v":"fPf1","o":15936},{"f":2,"c":1,"v":"RVWfPfS","o":15941},{"f":2,"c":1,"v":"fPfS","o":15950},{"f":2,"c":1,"v":"f[fXs","o":15972},{"f":2,"c":1,"v":"_^ZfX","o":16007},{"f":2,"c":1,"v":"0/0<0","o":17417},{"f":2,"c":1,"v":"061;1B1L1X1e1q1~1","o":17429},{"f":2,"c":1,"v":"2O2i2","o":17459},{"f":2,"c":1,"v":"5_6z6","o":17497},{"f":2,"c":1,"v":"7\"8=8D8r8","o":17527},{"f":2,"c":1,"v":"9\r9=9B9H9M9T9","o":17551},{"f":2,"c":1,"v":":C;^;e;","o":17583},{"f":2,"c":1,"v":"=/>J>Q>t>","o":17609},{"f":2,"c":1,"v":"?\"?*?6???D?J?T?^?n?~?","o":17655},{"f":2,"c":1,"v":"`0p0t0","o":17688},{"f":2,"c":1,"v":"182P2","o":17697}],"tags":{"ticore":["antivirus","arch-x86","capability-execution","desktop","gui","machine-learning","rich-header","antidebugging","capability-filesystem","capability-security","indicator-search","indicator-settings","string-http","indicator-file","indicator-network","protection-aslr","protection-dep","indicator-permissions","capability-cryptography","string-https","protection-cfg","protection-stack","uri-onion-website","privilege-escalation","ricc"],"user":[]},"web":{}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_upload_from_url.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_upload_from_url.json
new file mode 100644
index 000000000000..9cf506bcdeaf
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_upload_from_url.json
@@ -0,0 +1 @@
+{"code":201,"message":"Done.","detail":{"id":421,"user":1,"created":"2024-06-11T11:51:17.795939Z","filename":"https://download.sublimetext.com/sublime_text_build_4169_x64_setup.exe"}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_contents.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_contents.json
new file mode 100644
index 000000000000..8152420275a6
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_contents.json
@@ -0,0 +1 @@
+{"code":200,"detail":{"name":"test_yara_rule","content":"rule example_rule{condition:false}"}}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_rulesets.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_rulesets.json
new file mode 100644
index 000000000000..2c6eda81b37a
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_get_rulesets.json
@@ -0,0 +1 @@
+{"count":4,"next":null,"previous":null,"results":[{"status":"pending","suspicious_match_count":0,"malicious_match_count":1,"goodware_match_count":27,"unknown_match_count":1,"name":"get_money3","owner":"admin","last_matched":"2024-06-05T15:52:25.785993Z","system_ruleset":false,"cloud_synced":false},{"status":"pending","suspicious_match_count":0,"malicious_match_count":0,"goodware_match_count":2,"unknown_match_count":0,"name":"Rule_Find_PDF_with_URLs","owner":"admin","last_matched":"2024-05-24T16:00:19.220946Z","system_ruleset":false,"cloud_synced":false},{"status":"pending","suspicious_match_count":0,"malicious_match_count":0,"goodware_match_count":0,"unknown_match_count":0,"name":"MislavTesting","owner":"admin","last_matched":null,"system_ruleset":false,"cloud_synced":false},{"status":"active","suspicious_match_count":0,"malicious_match_count":0,"goodware_match_count":0,"unknown_match_count":0,"name":"test_yara_rule","owner":"admin","last_matched":null,"system_ruleset":false,"cloud_synced":true}],"type":"my","status":"all","source":"all"}
\ No newline at end of file
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_cloud.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_cloud.json
new file mode 100644
index 000000000000..d00e713909fe
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_cloud.json
@@ -0,0 +1 @@
+{"success": true, "message": "Ruleset is saved on the cloud.", "ruleset_name": "test_yara_rule", "status": {"cloud_status": "ACTIVE", "scale_status": "ACTIVE", "retrohunt_status": "CANCELLED", "retrohunt_start_time": null, "retrohunt_finish_time": null, "retrohunt_estimated_finish_time": null, "retrohunt_progress": null, "reason": null}}
diff --git a/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_local.json b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_local.json
new file mode 100644
index 000000000000..bbf780e1b1a6
--- /dev/null
+++ b/Packs/ReversingLabs_A1000/Integrations/ReversingLabsA1000v2/test_data/a1000_yara_retro_local.json
@@ -0,0 +1 @@
+{"success": true, "message": null, "status": {"state": "COMPLETED", "started": "2024-05-24T15:58:55.075337+00:00", "stopped": "2024-05-24T16:28:13.110974+00:00", "samples": 281, "processed": 373, "history": [{"state": "COMPLETED", "started": "2024-05-24T15:58:55.075337+00:00", "stopped": "2024-05-24T16:28:13.110974+00:00", "samples": 281, "started_username": "admin", "stopped_username": null}, {"state": "COMPLETED", "started": "2022-11-15T10:14:16.515681+00:00", "stopped": "2022-11-15T10:14:20.687855+00:00", "samples": 11, "started_username": "admin", "stopped_username": null}, {"state": "COMPLETED", "started": "2022-11-11T15:02:00.683418+00:00", "stopped": "2022-11-11T15:02:07.011490+00:00", "samples": 11, "started_username": "admin", "stopped_username": null}]}}
\ No newline at end of file