Windows Analysis Report
dn-compiled-module.jar

Overview

General Information

Sample name:	dn-compiled-module.jar
Analysis ID:	1483412
MD5:	8fb7fc08191a2f03551c14710978d6cc
SHA1:	56688549826dd365486d4d22493a76edb9c9c8d6
SHA256:	9b0235346eab00432f9220809726ed295c464af1361889cdefc27bf59084e8f3
Tags:	116-203-8-165jar
Infos:

Detection

Score:	52
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Multi AV Scanner detection for submitted file

Exploit detected, runtime environment starts unknown processes

Contains functionality to query CPU information (cpuid)

Creates a process in suspended mode (likely to inject code)

Queries the volume information (name, serial number etc) of a device

Sample execution stops while process was sleeping (likely an evasion)

Uses cacls to modify the permissions of files

Uses code obfuscation techniques (call, push, ret)

Classification

Signatures

AV Detection

Multi AV Scanner detection for submitted file

Source: dn-compiled-module.jar	Virustotal: Detection: 25%			Perma Link
Source: dn-compiled-module.jar	ReversingLabs: Detection: 21%

Software Vulnerabilities

Exploit detected, runtime environment starts unknown processes

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

Process created: C:\Windows\System32\conhost.exe

Source: MainForm.phb.0.dr	String found in binary or memory: http://77.91.77.145/?v=3&event=
Source: java.exe, 00000003.00000002.2026317806.0000000004200000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://bugreport.sun.com/bugreport/
Source: java.exe, 00000003.00000002.2026317806.0000000004200000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://java.oracle.com/
Source: AbstractFactory.phb.0.dr, MainForm.fxml.0.dr	String found in binary or memory: http://javafx.com/fxml/1
Source: AbstractFactory.phb.0.dr, MainForm.fxml.0.dr	String found in binary or memory: http://javafx.com/javafx/8
Source: jURL.phb.0.dr	String found in binary or memory: http://site.com/
Source: java.exe, 00000003.00000002.2027027105.00000000149B7000.00000004.00000020.00020000.00000000.sdmp, java.exe, 00000003.00000002.2026317806.0000000004284000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.oracle.com/technetwork/java/javase/documentation/index.html
Source: jURL.phb.0.dr	String found in binary or memory: https://github.com/TsSaltan/DevelNext-jURL/releases/latest

Source: classification engine

Classification label: mal52.expl.winJAR@7/174@0/0

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Mutant created: NULL
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:5720:120:WilError_03
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2884:120:WilError_03
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2704:120:WilError_03

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

File created: C:\Users\user\AppData\Local\Temp\hsperfdata_user

Jump to behavior

Source: C:\Windows\System32\7za.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: dn-compiled-module.jar	Virustotal: Detection: 25%
Source: dn-compiled-module.jar	ReversingLabs: Detection: 21%

Source: unknown	Process created: C:\Windows\System32\7za.exe 7za.exe x -y -oC:\jar "C:\Users\user\Desktop\dn-compiled-module.jar"
Source: C:\Windows\System32\7za.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: unknown	Process created: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe java.exe -jar "C:\Users\user\Desktop\dn-compiled-module.jar"
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Process created: C:\Windows\SysWOW64\icacls.exe C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M
Source: C:\Windows\SysWOW64\icacls.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Process created: C:\Windows\SysWOW64\icacls.exe C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M	Jump to behavior

Source: C:\Windows\System32\7za.exe	Section loaded: 7z.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: wsock32.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Windows\SysWOW64\icacls.exe	Section loaded: ntmarta.dll	Jump to behavior

Source: dn-compiled-module.jar

Static file information: File size 1062441 > 1048576

Uses code obfuscation techniques (call, push, ret)

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CA21B push ecx; ret	3_2_021CA225
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CA20A push ecx; ret	3_2_021CA21A
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CBB67 push 00000000h; mov dword ptr [esp], esp	3_2_021CBB8D
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CB3B7 push 00000000h; mov dword ptr [esp], esp	3_2_021CB3DD
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CB947 push 00000000h; mov dword ptr [esp], esp	3_2_021CB96D
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Code function: 3_2_021CC477 push 00000000h; mov dword ptr [esp], esp	3_2_021CC49D

Uses cacls to modify the permissions of files

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

Process created: C:\Windows\SysWOW64\icacls.exe C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M

Sample execution stops while process was sleeping (likely an evasion)

Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed

Source: java.exe, 00000003.00000003.2022238553.000000001475E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: com/sun/corba/se/impl/util/SUNVMCID.classPK
Source: java.exe, 00000003.00000003.2022238553.000000001475E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: &com/sun/corba/se/impl/util/SUNVMCID.classPK
Source: java.exe, 00000003.00000002.2025759044.0000000000704000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: [Ljava/lang/VirtualMachineError;
Source: java.exe, 00000003.00000003.2022238553.000000001475E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: org/omg/CORBA/OMGVMCID.classPK
Source: java.exe, 00000003.00000002.2025759044.00000000006DB000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll"Mo1
Source: java.exe, 00000003.00000002.2025759044.0000000000704000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: cjava/lang/VirtualMachineError
Source: java.exe, 00000003.00000003.2022238553.000000001475E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: java/lang/VirtualMachineError.classPK

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

Memory protected: page read and write | page guard

Jump to behavior

Creates a process in suspended mode (likely to inject code)

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

Process created: C:\Windows\SysWOW64\icacls.exe C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M

Jump to behavior

Contains functionality to query CPU information (cpuid)

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe

Code function: 3_2_021C03C0 cpuid

3_2_021C03C0

Queries the volume information (name, serial number etc) of a device

Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\bin\client\jvm.dll VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\hsperfdata_user\984 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\resources.jar VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\rt.jar VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\jsse.jar VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\jce.jar VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\charsets.jar VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_749031\java.exe	Queries volume information: C:\Program Files (x86)\Java\jre-1.8\lib\meta-index VolumeInformation	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

⊘No contacted IP infos

Name	Type	MD5	SHA1	SHA256
C:\ProgramData\Oracle\Java\.oracle_jre_usage\b5820291038aa69c.timestamp	ASCII text, with CRLF line terminators	879973F0AAA3ADF68D7D7CBF7ACB7417	C0AAD95FFF3E35AE72A36DC1CC6D388A8D2C6D10	593D5AFF218C2111AEBAB303C5E3463E19764DED196B108153DBC376570E71BD
C:\Users\user\AppData\Local\Temp\hsperfdata_user\984	data	906ACE17EB2EE52688B4D95043AAA987	9DCF89F3480F1BDB3BDA7C579E9DAC394301FB20	A79A20C44EFA47822AF99C41C1FF2B06FAF3375B5B145118115A6ECFE9883417
C:\jar\.data\img\5314-windows_102509.png	PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced	FCF0A3C2EFD5AAD406AB595DA537BC49	4063283EF9507C9B1C0EF07711E6688F527288D9	8CE2532FCD60CAD54CC44C8262BEB94D2FD2C0A61301501F9597A639D33B72A2
C:\jar\.data\img\Computer_PC_Monitor_1906.png	PNG image data, 256 x 256, 8-bit/color RGB, non-interlaced	0367C4443A1036C1DE70226E366EE2F3	CC93787047DCBC9E00CB0A59FFD9512EF2878121	628F3DCBB067E45B192A4FE39F363415E98BC3F5BF35DC8056285A177F134C15
C:\jar\.data\img\Icon.png	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced	5403E64B682EB778EB4354C415E5B4EC	48E462A36B4EE7C2B85C8717DD55D092D3822CFC	B97B0A5739AAC7C4BB28B949F5865F1E4AF391A954FCCCEB9A3AA19AF94C5528
C:\jar\.data\img\PuTTY_icon_128px.png	PNG image data, 128 x 128, 8-bit colormap, non-interlaced	B7A49C508EC1ED05A6EC3BA9DC8FBBAD	C69123D25128F85D572EE884100E9DE1D9194CD8	A13C77468119F1D07B6B2145E4339B8ED46D63662951FDE316AB14D45BE5E9F0
C:\jar\.data\img\T678V.png	PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced	E09F1CD46C82261915E1694F29DC3E4A	358109EF1A4FB18B5F860FAE49E57E8CC650EF73	DB4BEA64619D897C3C1B0F183D0C58A1BB191820B26A09F141EF5F126F9135F9
C:\jar\.data\img\exe.png	PNG image data, 128 x 128, 8-bit colormap, non-interlaced	122DD692647F3DB60D1EB46105740336	F10CC559FC7E65AC553E2A9DEAA135B976950EF7	1BFB565E014C406A992668260D404552D33A1AC1CE5A24AA5675F7FF46D92113
C:\jar\.data\img\favicon.jpg	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	AFB47AB69591AB1E78C07E1CE5163E66	0BC6651A6D8CBF9BF81E8B8C64EF1E2FB7F3AF17	3B7794524228EA56CB62C63E29C182DFC01DEC2F6F3AF1A17947248C00AB615B
C:\jar\.data\img\lightning_icon_155196.png	PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced	24DE0F7DEDADC3D9E21D3590BEB7399D	BA703C4F4D6314B2AB3A92A629AAB3AB1B9D6C46	72018E20413BA7AD9645F9D4F581B0EF4793BF27F3FAFBFCB7253261C7B5A64D
C:\jar\.data\img\photo_2024-02-29_19-36-11.jpg	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 883x883, components 1	64943CD0BD055379E48F85677CD5D89F	36169F7B4D4EB575853343E398487665E64EB338	7E3A37BEA32E13917DA0DD87ABB413A2369226ED4F5B655B00CBBA5D2074FDB2
C:\jar\.data\img\photo_2024-03-03_12-40-06.jpg	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 256x256, components 3	883AF471F631AE7AD92E0B7A65922312	4354F9BEEB116509DBE272087E021DCF5C09592A	B9D753A693F5D3DD3588AC374A73A925223B7FE77251E253A183E83B01490F64
C:\jar\.data\img\photo_2024-03-04_18-39-39.jpg	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1000x1000, components 3	A67FF506E7E30D74CB3D67C0315FAC95	8E413F458E5A0327B774DC700DF2584FD3D1DD21	00628A85D4F44A0B2B40A3D22FB6A5BBB3CFAFF0F7EED6321EBE76597D030073
C:\jar\.data\img\trophy_jewelry_winner_win_treasure_gift_blue_diamond_game_icon_262398.png	PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced	DAE4183C19FEDD173AB93B03FD1833FB	198AF1AF35AC5CA51708477A1E5E1F5A9DDD4C65	426C61EA5F19A1935C401F7352D616902458DBA44DCA5F30D0DE477CF8550F20
C:\jar\.inc\jurl.phb	data	B23664AE9473198FE4158381C3A411A4	4619F94548EEC33F71B2A87488BB3C589B9585CA	A66586D062FBC324AC70B81C44AB430A643168F87F830811AC4AB7BF2A578A70
C:\jar\.packages\app.pkg	ASCII text	FF51C1DE5FD505614D35C638851E7714	C3FDD132912E54960E348820202AAF58DFD551C0	FE06FF97DB144044D8F825AC9F2EAF3C92CA470691CDCAFD203CC726CC485B45
C:\jar\.packages\httpclient.pkg	ASCII text, with CRLF line terminators	382775992447817E2371490B7C83C518	E09691678F15414184CB4D2DECA9A4E8CD5F83EC	BBA2F9DABAA926EEFF51C9F4A84EB66BF1CB618782E4784C9424549E38AFDC30
C:\jar\.packages\jurl.pkg	ASCII text, with CRLF line terminators	19609145DFD3765AEC5E1540F3BFC95A	FB8CB04250418DC7E17014AE724215DFBDE5011D	85369D9B879F076921532D2E73FC63C1A712D6812B7C7EC2BDA2C02DDFA78407
C:\jar\.system\application.conf	ASCII text, with CRLF line terminators	3F703D789F803B33657D3E3CD9132C03	DCD1FBF463CACFE4497246EB0E91EA315018E0C3	43D7C6698D58CF6895D2D575C30F7D156CA17FE68C12C04C87A02C95258CBE4A
C:\jar\.theme\style.fx.css	ASCII text	0F8A8BD7A94BA296BF8CCF7BEC06B537	3052786977903E6CECF3F0A0B198B882BBD800F6	A0BC4CC14B7993BF7F55EFBDE33C0FC50AF02A1648078ECD53554A8749D394CD
C:\jar\App.phb	data	F5BFD418CDDA697497475C421BEA30BE	5A5DECB4972CAE9A2C459263968DD7E63CACBB18	1B37A4F9468110FF71309424838D5666EE1924965A7D6C2E32A37A5109C5453B
C:\jar\Async.phb	data	459D82E4F90F72D6B23AF0A0E0351E2A	37CA0174B9A16EB68A99DAF77F2F4208B06FDDCB	2ECC9CF738A0139E59743A94F18D2BFC8EBE0504475A21D198171E00EFAA52C3
C:\jar\Dialog.phb	data	4861A4EE1002AFF0D6A2D5AF439C2499	6C5455BB24AA65516A307B10D29AF7C24F2D4214	7E69597C697EEB6C2BF7E8F23C5491DDAD2C765348A1D859C1EF83ADBA36BC9B
C:\jar\Files.phb	data	8B6F95B3880239965D4DE12B45CF7A7E	66BC6EE0C7FAE074955E2C1ED0D454A317C4E78D	21FC85740839CD4346D9701DF5635E6A26369E9C87DDD8AD846943D0EAB203C4
C:\jar\JPHP-INFO\sdk\php\desktop\HotKeyManager.phb	data	5481BFCCA9FE2D696EBAAC6B77715483	6337AE916AE97D8144DBDE3C191187E62EBC9FCB	DB982650FB538AEFE51932C340419345461CEEFAA6AAD2661173357E59B57F04
C:\jar\JPHP-INF\.bootstrap	PHP script, ASCII text, with CRLF, LF line terminators	14DBAC85D577C5877DDA4D674C7C85B7	5D368F52CE37B289A0C0760D77037B43425600FE	D1886A6EB5BB3071066825AB0FF9FCCB3923207C93BB9070C4B7E6868DAA57A9
C:\jar\JPHP-INF\launcher.conf	ASCII text, with CRLF line terminators	EFEE9D810E3D8F7642B41C3B326580B7	150D05C0E659AD6E0B97425400C6CBE516236C43	151459B17C9EB02B9EF907E67AA469316E28F1A0645F19531DBDE57EB7548C51
C:\jar\META-INF\MANIFEST.MF	ASCII text, with CRLF line terminators	BACD5CABC168C0128332BD1185748EF8	C77D1E915087F38E50D78AB4615A38E4D2436FF5	9AEF17310B353E8DA0DF9551A57DB36098F8C33C0B3D1F72D3DD0E1E7A364082
C:\jar\action\ActionsSupport.phb	data	36BE61023644B7050D06F20D6DF80892	5FA9687FC41B6B5E85E4906A821C565FC7FEC115	36C0CBD819D59B0CDA4DC286D51312983C401C179EB1C492859CF24283D7ADCE
C:\jar\action\ActionsSupportTrait.phb	data	50DC1411B043451D88912553BEE5A952	8E92F7CACCCEE52DCDDF4E9146EF6758D43028DD	D5F80127CB2D051F84E7D6D2D3BFFE9A9EA5662640C845BD4675F146FBC04076
C:\jar\action\Animation.phb	data	E1349185231663ACD876FF08CEC45468	F6B6FAB4DBDFEF7693D93D19448BFF095D6338A1	AA344C0BF0E6B44DFDE3143162A655701809D9A469903F7EFF27EEE70F2CDEAB
C:\jar\action\Collision.phb	data	240456697D342B5454773B69F8328603	7899D916DD77AA40B7B0516EC39FABC1E418D813	8C5720E03EC580E8CB2CB081E1A275E38359A4B3F020365FCDF6307526E8AF83
C:\jar\action\Element.phb	data	38A9D4273BAF17FFAC300D817A6C41BE	2E51A09A691CB1BECB01DB3F4C5E0EA6B1E4D6A7	37B83E86387AE77202A3E3C29C256A98FE16170E93F8CC2A729AB61922FE4D28
C:\jar\action\Geometry.phb	data	EB42B3DA7043D52DE23A18F5E9F94884	4BFDE3F484870FB32DCE764D2D7CCEE51B73F55E	A200CBE7E373F79DA33AAD6E33E5459EA5762506F518D33BEB935268D997044A
C:\jar\action\Media.phb	data	732370C98A3835AC2FF3704C0BD08619	C38DB4247EB826B51396C49DCDCF8D208675E547	ADC71CA3274260826068A75CF1DE6E2AF407A9952835862D315AB023EF9D0A25
C:\jar\action\Score.phb	data	677575EEC4417F12FE770BA7C8A0928A	DF67016F2AA8FAB3C8CEC2914EE7F1A0420AFFF8	6F836ACC58604D1581369D0BE7A92CF54AB92169E73E9E41E8F21188D1A1A739
C:\jar\app\forms\MainForm.behaviour	XML 1.0 document, ASCII text, with CRLF line terminators	5836F64641DB79EBD850041D6E4E8DD2	DF1A7BAC5ED91139FFDE30AC8F73C078BAEE5AC8	945ABA411FDD0A018BF9B59BC3051E1F0D692CF95FBE4D4341EBDD3008E80004
C:\jar\app\forms\MainForm.conf	ASCII text, with CRLF line terminators	AA9BA6930C0C16367E0DA2F14A5FBD72	513CA7EE6E52D019E1E6E97681D24364CBDDFD20	00BF0899A0A5BFE19211A5FBCFFD3574081138DF48F36EA3FADE083EB03DAB35
C:\jar\app\forms\MainForm.fxml	XML 1.0 document, ASCII text, with very long lines (883), with CRLF line terminators	18DB7E55DBC22B77DBDF48C2C6E6ED9A	05B1F02372C39E8AE90D71A2CEF262AD3C839F8B	3F8519790F2CAADB19AD5AFA8D9A06B47130F6604EFAE3E128187F12F6FF4872
C:\jar\app\forms\MainForm.phb	data	0B838EF3E9DD056F57F54B191D3273D5	8D11E8537828C4D3B7DCDC05D402AC6EB3B0D23E	799D73EEF048C30301204BB842179AA563D4E741432F06DA13FCD20A13E8D381
C:\jar\app\modules\AppModule.behaviour	XML 1.0 document, ASCII text, with CRLF line terminators	065EB700D6ABBAE8DFB94ED8A04A7F6D	5E82C39FD2B3785BF8807EE44E866876930B434E	0AA6FFE914BE673CE0E83043AD1ECA2DAB692DD22233A20C40DBB639BC6B9753
C:\jar\app\modules\AppModule.module	JSON data	9E70AC7620528D210AFA6504AB803EBC	08D2238872ADB577BCA8DCC6B842717F89F205EA	DCD302E368DE2B59DDFCD771A86B408140475183F90BD1991C10C6249ED66BCC
C:\jar\app\modules\AppModule.phb	data	517B75A31BF015EF31B602095FE19175	FF7E137C135F12B419C0E5955059DB993E2EAE46	E3831A78213012D23655458D991470AD067D2ACD46AEF6457D30CFCD5C08A7F9
C:\jar\app\modules\MainModule.behaviour	XML 1.0 document, ASCII text, with CRLF line terminators	065EB700D6ABBAE8DFB94ED8A04A7F6D	5E82C39FD2B3785BF8807EE44E866876930B434E	0AA6FFE914BE673CE0E83043AD1ECA2DAB692DD22233A20C40DBB639BC6B9753
C:\jar\app\modules\MainModule.module	JSON data	6994CE449E8C55CA58E7D1C565D638DC	7920F2DDD259B644AE0A14D71D29AC9FF1C18198	68206D108E9796EC288482222914FCA453D1CF8BC4E6FF7E7438931574B07E48
C:\jar\app\modules\MainModule.phb	data	EB634A377EF2F9E2545A41CD15CAB233	562036583FCD7CBD5A744821779776419A884B02	3A7465C6AFF0EB1D5906EFD5F97417D19BF01796833362EF8A1B70CDADFAA01C
C:\jar\behaviour\SetTextBehaviour.phb	data	76F16A7F1E7DC2C47A50827465ED9D09	FF0C6AB2BD8FA488F95503BA6F8CDF2CC54F4EC8	E5A83E0E4A61ABEC9D9D91774E9C5EDD736C4E232203675DB2FCFE3614F706A9
C:\jar\behaviour\StreamLoadableBehaviour.phb	data	3B44FB95E11D32701149313991286899	D3780A82420E8C77D6043A24476F9E25C7D2499D	42B5DAE9E023A2E1EAD70F573E3BE944978F4C41AC098A9CCE712565FBA41353
C:\jar\behaviour\custom\AutoDestroyBehaviour.phb	data	A5E00A7F5BCD66E88495ECEA0FBCBF7A	21BC94FE7577884735ED49F9BABFB9B26009601F	5C96235A935A0566FCDD74560236B26E8A4253179602E1309955FB189ADA4A46
C:\jar\behaviour\custom\BlinkAnimationBehaviour.phb	data	22808997EFEBB614150C6AAEE6422BD1	195A9A3CC12BD72C551E1C20EC08029F0D446DF1	D5D51A913CCE6D38BD336E809EFC9C7F7DB379FFDA8BB859B4DE55981E188026
C:\jar\behaviour\custom\BloomEffectBehaviour.phb	data	4E5CD857CABC533CA2DBB3F43D6AE772	A5C5DA087F452DC242DF071F632BF192647BD3DB	0F328D94963535463C22415B7955C882B4428D95C55EAD24E0700D16B64D25FD
C:\jar\behaviour\custom\CameraSnapBehaviour.phb	data	4FEBD37DB2F54931C6EDFB9239521C16	342BED271DBE03B62A296E4FCB4EA7B94D0AB85B	6CEB33C1349816D10A71A9833EA5E53E6EBB4930EDBF5DF72ECA51D1BABEBBFC
C:\jar\behaviour\custom\CameraTargetBehaviour.phb	data	054DE2BDA068FB0FA6E4023DCCCCB4FF	F6704E43E95263CFCCA15FFE0CC62B7CF63990FB	1D81F434EA6BBF29C86F542E7B75E3F1DAFC7DAB1ACD46B2E0C876102200B88C
C:\jar\behaviour\custom\ChatterAnimationBehaviour.phb	data	668855C2E41065F13FBAF690640939B5	C4DB6FD8F770528B74798ED90511BE697CC71D68	8A34783033A166C0DCC583FC37F245D47893EB01A6E776C2D3B7FA319241E7C8
C:\jar\behaviour\custom\ColorAdjustEffectBehaviour.phb	data	2A635DD18012667D05069DBEF2FAFD63	058F7979E60B79DF0748D23DD86B558A2CA0616D	BD62FF0A61A1F79BFB99F38E3E873CB155165661565A555B8D6144CF63545BA2
C:\jar\behaviour\custom\CursorBindBehaviour.phb	data	88E0C902A01CEAEC20C6BBFC439A1E6F	839544D8DAC252224F1257527EA9D1AACE738B11	FE3A7BDB4D55FFE9F1A4F0CD253DA6B8EC55098002A99AD3A6B5C5C48315BEAA
C:\jar\behaviour\custom\DraggingBehaviour.phb	data	1D76A7D6B9323C5235148A32E09AF97D	D5C2A3F9615581B5F4631CD514D213B0C1B9F397	7DEFA72A0F04C1C5C81C278C05C7BDC41A4700BAA681762256B6B50CBF745A01
C:\jar\behaviour\custom\DraggingFormBehaviour.phb	data	20A6D0EA47E6E68DCB68D9EE131CBD21	384B1070B96742B7722CF29F3115103EC210F828	9F2342C48DBED372E34C7EA856E2086F848FC87638079A47B5684BA6A647DDE5
C:\jar\behaviour\custom\DropShadowEffectBehaviour.phb	data	AD826543585A45E756A6FCB2BDDD1EAC	2F1D56584961EA097D619290806F4E01879FA23F	84DF927888157660F7E3116AFB32F1ACB6D3FE37EB4C01BFF9F262B9DE976AFB
C:\jar\behaviour\custom\EscapeShutdownBehaviour.phb	data	81EAF63752568834BB8A302503E8DAC8	FE0E5191AB348B4EC9FEECB7F341B347C63B3908	D53DF99C63EC483C3FC00D65BD64D2C238B00A4961220510EFB452D96BF8CDEC
C:\jar\behaviour\custom\FadeAnimationBehaviour.phb	data	C94AA242958308EECD7DDD332D2802C0	94603E6A5C83775A2ADE9E4476340C9A2AAE62B7	33C30079FF8BFA98EB8044BEF655325C63C566DEE2A5B2C49BE27A603CDC4076
C:\jar\behaviour\custom\GameEntityBehaviour.phb	data	9C9AF477B6CD5D932D86054C8CE2222B	D2B3E04458B4012491234EB2DAFDAB4EE7088393	AF9B55B9246682116DC65AB8A8C04E4F726F5F8C70351EA4BCB29EA37303F1EC
C:\jar\behaviour\custom\GameSceneBehaviour.phb	data	9770E0C560E0AE5BB8BD3730AAE1F745	E403FE7CD843E8258E3CF2AB091ADF87F8219204	414E628B53AC56D6D05C01E4D47EB740A7B8CC7B4BC4B78FE7319682CFDE13E3
C:\jar\behaviour\custom\GaussianBlurEffectBehaviour.phb	data	AD6B43739A1ECE1088B8D13637DADD4F	8463E153E577D77DF4A562E2CB035D259C2E0A5B	D20E154D5CF0AA5C0DE94D82D1B6CA5DBD6F3FA7B83E6B8114AB3D4B305E1763
C:\jar\behaviour\custom\GlowEffectBehaviour.phb	data	9671E76E59FABE91CB2FFE8374D169F3	C450AD072831FF1DE8DFEF6B434610BEF5FA8058	FFCD7D2C38A6C719B32EE8E71AD2F2D5DBFE00093B363E6E768F4B442B56023E
C:\jar\behaviour\custom\GridMovementBehaviour.phb	data	96136D8F417F769C695919472131C25B	729596396D14C26B04DC2A1C827AEB17176A4BE9	4BCC83CAD84FA87E6051A1955237B61DADF57A33FF760B306E75758F03E3550D
C:\jar\behaviour\custom\InnerShadowEffectBehaviour.phb	data	14ADE19FED66B4E1CF0DE841AC4A0D17	787EBF0E079B24390F49B828844B569DB15B34E4	20D0A7C80811C2DB8A815D8A85DA6105F9B0D93BF02AFF93B36757B6416FB67E
C:\jar\behaviour\custom\KeyInputRuleBehaviour.phb	data	A55F9FBE8FBC174FFBD954CE800153E5	4BE726A5C87917A206A10D8B3B35B5DB949EE2B9	1BF6DCE8705B0ECCB2E1522BA32BBE8C57E1846F87A2B86F553BC4E25AB4BD99
C:\jar\behaviour\custom\LightingEffectBehaviour.phb	data	541C5645554D010F836592DA72860F11	AAED99FAF199CE2ED7DE19C5F85AD4EDC9D843CD	5E7127C66AE1785CACB67496ED8B8E3F9CF902E6CB5565738E184AD67DDAB937
C:\jar\behaviour\custom\LimitedMovementBehaviour.phb	data	434FAAB541228545602E3F9EB63A25D8	E23039B8FD0BC2116CCB000C6348699BBEB7DC20	6C3BC741F52CB9586AF449BB05E5080F136C1E64BC9BB625DA76F4256D0EBC67
C:\jar\behaviour\custom\PulseAnimationBehaviour.phb	data	4479A2CE6F39649B949CB85C8E55F30C	0743CBDA9803256CF3F423A4F9C47E885BE48D13	A376E03914FB6CCB9E2591B60BC0F8356A4C4D470F9C8C9F34F8CD62947A6E57
C:\jar\behaviour\custom\RandomMovementAnimationBehaviour.phb	data	2E7AD85C0C8DB7035F1C8E80CB60F274	80FA60A6AD576AD028624EAD87D7E20072556343	AB155C8C9C6F1ED7BE2F874D4E8D7F1889068E5DC227C9BFEBAC2CE5B41E5876
C:\jar\behaviour\custom\ReflectionEffectBehaviour.phb	data	6CF60770D1624E97B77F9AFC3BF30E31	EE810E7F6F726B4A5600A93755A6BFD5F0227385	5C42C0D7430604A0E33298584070F8436F03876A9BA61128FF91DD4874E38650
C:\jar\behaviour\custom\RotateAnimationBehaviour.phb	data	BCE757E617B4B3C74904AFAE7F142D47	07991DF0C51A1EAFD52D277A193A0D9110FB1A2C	89970C37942BC4A74847B41177D4C01556A7DBE2C056D10DCDDC69723952AC80
C:\jar\behaviour\custom\ScaleAnimationBehaviour.phb	data	415B53556D3F20AC722F17AA4FAD311B	9E8B6E92AA9A07AEE647835FEFD040094A3C64BC	F1EF996E758724F15D8ECCA3FDEB850B4C82F26F0A14C55E86C4BCAC8DEB7C71
C:\jar\behaviour\custom\SepiaToneEffectBehaviour.phb	data	1FA48368E81B8A2135B0D0A44B25D0F4	C76A038B7629FDF6833F92CA85FF755D73796A8A	1EC9B900FDA05F4239310826C67522586A3BF372E3B4B7B38BD2DF9C354336C6
C:\jar\behaviour\custom\VibrationAnimationBehaviour.phb	data	26016803414F2D198F08FE9E6C4F8B89	A7E034B9D2BB594E087200591E13CD9EA748F193	7D91A84340BC87B4DA5260C9399E7E98408206A8D2B0E17B6B5C2A478C8355F0
C:\jar\behaviour\custom\WatchMakerBehaviour.phb	data	FE25D1F08A0249C7C0FF8995811CB662	DA789EF618F6B15177B690799B8C326487AF9C18	29697C6DE7C1B8D2FAB12E62ACB6740A6B31C332FB0FF4CAC722D7718F5D4776
C:\jar\behaviour\custom\WidgetFormBehaviour.phb	data	1B42FB94DED173FD082F4956BB2DB0CF	C85631FEF9197A5AC591EB2FB64597979D5D8A94	4F020711D93DCDB341085F2C38750ADF4CB7B08C40ED12590F32D60ABBFEC3CD
C:\jar\behaviour\custom\WrapScreenBehaviour.phb	data	724AD0A9A9F3F49329D9CA22415793B3	F42AE239B1D2A422096A98CAC4FA5F8561547AD0	8613B16BF7B518D3C37AA5F3DB069F8D3B6DACECAB0ECBB3FBD3602559239D4F
C:\jar\bundle\http\HttpAsyncResponse.phb	data	158BC16F8BB5496F73B2FE79F7BC5E94	7A39891D46A73266DD8F9E006F3D726D0CB5C054	345D42CA43ACBD8E66E926110E89AED163BF101FF79EA2AC5D7420DD2398CE34
C:\jar\bundle\http\HttpChecker.phb	data	92DFD7A665925BFDA1AF0F6FB58361D4	859BA58A2BF2B179C11E80D01E171760FDB6A065	60AF987CC24F0185140059A1CB8183B7B12ECFDDD19BF621E152FF2B9DFE33ED
C:\jar\bundle\http\HttpClient.phb	data	2FF8AEFBE30D5FDE3DEAE05FAB500CDB	CE7B87E504402571A41F467B76AAE33E64E8B036	A27CBD79198B7229917AA34B327F093C173BA79B79E84BB0DC492265865248C1
C:\jar\bundle\http\HttpDownloader.phb	data	83DFDCCAF5311F13350F07A0FACCF13C	99169B5B8CDE7A45D88C552A71537ADC0E225105	3F338AA483DFA8489A23ABE429CEA1B0196BC91B8DF1A13053C8C518B783E360
C:\jar\bundle\http\HttpResponse.phb	data	3B261FBEC660C49A8A7514865D44D8DA	E8B6D3B5384C47E77DCEC736C44B55829DF447D7	42F632A03802E501AD95AAEA85F574CF0DB2004C786D3800DB369F67707565B7
C:\jar\bundle\jurl\jURL.phb	data	F7B71C8B4B3F448901AD402D5B0CD2D1	3D0D2C711FAFEB61F5B8A0421D34049A7B88ECF5	C5C05ADBE24A222CFCB5BC0F2CB42E51235349395416A05CDAAF32F43E183232
C:\jar\bundle\jurl\jURLAbortException.phb	data	E546AE91AADA0C9926CCF39BE762B68E	4A80264B58106A4B5CDB7FEB24B8145D7417A82F	960EB54612479A9CE2F363200E2AD8DD4CE1204153474BC6A1F3720D48F44DDB
C:\jar\bundle\jurl\jURLDownloader.phb	data	261F0E09EDEA81F159B51DE5D78E6208	3CC6689516567B0174C64D59A0E2C1F83BAF2AF4	D1FAE7DA465F120C2348B35121419E69F67A73CC6B9360D1D32BB1DF2AB3B0F3
C:\jar\bundle\jurl\jURLException.phb	data	E2133B933CEE36053D9538919B0095F5	0291DD6F015CDBBF347C99E77D7231017A7B23C0	240E4A150FC521EB62670DFDA4E528F84D6DD0EEFBAD8F7A6F97D15D09820987
C:\jar\bundle\jurl\jURLFile.phb	data	37108D7636EDBA239BC0FF7A6A0FF3F6	39BB2F7E34CC8DFEF77BFEE24C46570B603A5DF0	C08D8546B24A84F6A8E0CE522CCF13D75248642BC93549D757F06D6B893E244D
C:\jar\bundle\zip\ZipFileScript.phb	data	D5CB71B217B582DF107E8838DBBB47D8	9A3F4ED05849B13B9D3F5F85F34B5869F72D70DD	F0ED3585D68ABCE939DB1474C6305E27008DAE3AACDD0396A8DA440935726940
C:\jar\cURLFile.phb	data	FB427A391E451A5724A88536F1AFEE8F	732C69C994033848A5DECE1BC8A87C9DEE85CC43	9D8631A18D0FCD743A19D9E87691667F0703861195E98D6B6EE0C61972375918
C:\jar\facade\Async.phb	data	8D871F17144A743A82B015E496D9AA7C	E507F7E9BAEC578D81F05FE71E4A535B9E6AB14E	3BB2B5F9E093361BF1A283536C6BD2D9B0755FE79D76E80A67628496070BC30F
C:\jar\facade\Json.phb	data	4099F9E0FF004DFA0A497DC6ED2374E6	4DA4CE641D0BA3749FD2B3836BBD46BBF1ADF1AA	36EA0EFFF27C56A8789E9CA23084555AC11C88D2D9C286F70E6B86A31EDD67DF
C:\jar\jfoenix-custom.fx.css	ASCII text, with CRLF line terminators	1F9181887037CEAFE289B6158C5145F7	BD29320357FEC748EF118265B239272A12FA6BFD	6418D81B04692936670A8AABB8B891A367678E34945FD5BC99F5AF05BF306DBE
C:\jar\php\framework\FrameworkPackageLoader.phb	data	886555C77AD271624C359FD1E0F695B5	102D56F81EC48DD331FCFE9C16A18CA21CEA6A51	1B620EF996EF776E25C707077BFD9714738237ABE540C9BF0DA760D1B7608DF7
C:\jar\php\framework\Logger.phb	data	38434DF42EA189772895EEAD61F16631	D45A949D440026B651EA14EE65A115B246289D20	3AD7C3AC61C65FA11CADA5C5127840D8B312AFCECE3E15176E6C66B7DAF37553
C:\jar\php\gui\AbstractFormWrapper.phb	data	3C530F23DC0A162D0197206B26B17AA5	53AE246513DC43710138883D8AB307DD6630D070	F092976534BD1F2239FD8AFA8888EEBACAFD49B6B2223A6EE62119342A5787D9
C:\jar\php\gui\UXButtonWrapper.phb	data	E40DE30E3E5E08EE46D3D66AF1F6B0B1	F1C4BBD00E42E513381A68B47AE9634960334C87	FC8E7CABC9D64D4921256964A504F34148FE5B88B3EA487B5A8B02A6A94BA74A
C:\jar\php\gui\UXCheckboxWrapper.phb	data	3C720F86713BD02D368377098C5535E7	2F010AEC435B86518BD05157CF4C92F816F68E21	BE6E2B7B4E273BC01AD3C31BFF8856CE7F5947390C7A3991C7BEC1E7A9CC4B63
C:\jar\php\gui\UXDatePickerWrapper.phb	data	F78D81B66ADEA83D6D1296975118389E	797048259747C387247DB949863F3C362C6071FB	94006B2F3F3EE09B44CA79A7EF739224351B522992E45B41D3F1F9D976841169
C:\jar\php\gui\UXFlatButtonWrapper.phb	data	8373D3D5B03E1193F159C95127E8036A	F53D27AED5894F7347225AB3EC146C9013193F50	B6FEAC2824D6E743ACF72CF5A72A8A092BEE2844966FB7E0AA658FC952193DE0
C:\jar\php\gui\UXHyperlinkWrapper.phb	data	6A23D0F81B2F72D9B5702506F377986E	25D3821949E48B4869940888A3B60F4729E5DA63	8566A7D4C06E6883A140DD6F51C62D23A1FAC0AE278B3F00740FA3600F9DDDB8
C:\jar\php\gui\UXImageAreaWrapper.phb	data	CD6CCD12229C8145D92FA0915E18E678	66DA7E8ACA6191B5B5FEB684B87D7252B9FA57FC	E720048C73524F6A4D643F07C601C1BE898B4195C7F00CF290F81BE042FBD898
C:\jar\php\gui\UXImageViewWrapper.phb	data	1125A181B54208506606D9895C083615	4EA9AF6CA363A5084B10481FFC7DA26FF08113AF	895A77FBCA521955DA1903CB889649D763CF588100D97625FFC20241738AC6FA
C:\jar\php\gui\UXLabelExWrapper.phb	data	56467495F7EED5CC668AB50956F0929D	7A532FD6F2F9F6E8ED9C196FC5AC7D4F3A92DA4D	247E02FD269B734AF6EA6B81CDE295B6B3317077D67948E54D451D2EEBBE1DC5
C:\jar\php\gui\UXLabelWrapper.phb	data	D11F435E4F0FA26BC103868F1111F5A4	0245481B80A9C837F0C049D26A91EB5A0D9597C2	4C68D39FFF38EA5D92439601CDA2280AF4145611F2EAEEA0BBCE7925491F401C
C:\jar\php\gui\UXLabeledWrapper.phb	data	85D3A346510FBE747B19813559E34B3C	A21C902775B9A561C37D73936F30A2AC85B58B88	AB0154C1272E3A242436E32089F8258962AE74AAB1F1B29A38E97F9974B5D643
C:\jar\php\gui\UXListViewWrapper.phb	data	ABE939A9F9622BBDB125C5E3E845B157	38A3FAB9DD2A0AD265638C0FB37079AE3B96539A	20BD92134D80B56F9B1A905FEEAB581FC979F9E1F728C85CE922D97007C8263C
C:\jar\php\gui\UXMaterialDatePickerWrapper.phb	data	E749C6117CB551084FE38750E82EEA6C	ADD86250E65CEA0BB425DF0388431896C4B87883	94EE0EE178A0AE39D312719FBB0270A4874818866B7E99FDE610AEA7308C6B0D
C:\jar\php\gui\UXMaterialTimePickerWrapper.phb	data	D92CA05573B9AC5F528C53547FE5D963	3C32EA50F70ECA98E6C9DA3AC8F76C2E5EFAB53E	2CFDB949681455F55BAB92A5AB58A61929CF90382B28A5246E19E896927D1E98
C:\jar\php\gui\UXNodeWrapper.phb	data	41F537AADEB85139FE9CD05C89E18148	E499540D8BD7BDB2405CEC063A5427CE2335FFBC	BC1D880F594DFE8D66F4C2C1329BBD3F17BE18273D0736BDC298F01DAC6FB409
C:\jar\php\gui\UXPaginationWrapper.phb	data	719BCBCBCC3B34BD54DFDC729D06DFB8	E62CE0FBEB78D73A61AFCF0F9EF0E0E6C3D37C39	E2FF2F7FE7215A1AD97ADDCEF634466AD1F7379F5AB6784352902E3F2D91801E
C:\jar\php\gui\UXScrollPaneWrapper.phb	data	BAF851B42A68332329D2203B428E0169	721B5FD4F59FC36713E8F2D06F4F8706CC4BC225	93197AD182DC474E5697472FD3E7A4A2A70AD9D97832EC194601FD7273D96266
C:\jar\php\gui\UXTabPaneWrapper.phb	data	198F6FD7AE719CA6FEBA16D4348128B9	646E956604993332A3A55F7A6CFDB56521403091	9348C7544501F29AEA906FA7FAC38AD2B7823F410E46584B4C72910520A6A353
C:\jar\php\gui\UXTableViewWrapper.phb	data	F07E6F4C54E85C1639220F7C61526E46	03D4BC78E81465A161DFC9A6BFFE05DBBF03BDCB	DF95373D4538C62885C970829396ABDA4AB3E4A23DA6820E820411BBD515B0F4
C:\jar\php\gui\UXTitledPaneWrapper.phb	data	0A111CCEF529A678CD24F30E272B5F65	97BABA787B80F9B2CDCDB4408D1ADE1261C21F67	6F7F6F17F02F6F1EC8E6FEB4D89CD56146007377E9AF8F6939C19D37D6A0512F
C:\jar\php\gui\UXToggleButtonWrapper.phb	data	260107D22248F2887F13C6EB59D2E353	8F93680ECEB315E784B1260A3BBE6E52A0FFE03F	8E23B3A61290AB97503C0184C3A590EED95281A308450C5439F9A7E7C2ACF6A9
C:\jar\php\gui\UXWebViewWrapper.phb	data	CB2C626C8156CEDF317E35EC560CF6AB	C3129362DBD7994DCD482E60B76D5D088E71A027	C893015C3715DCB969719A867E976D4969069726C085A85AB5F699132626C1FE
C:\jar\php\gui\framework\AbstractFactory.phb	data	0535986DCB6FF0692D2B8B49493E5C9F	B40CDC505A97CD43325238BA8B14E8F824C8751A	DDC7A892B0E8CB17A7ECD97C5D85CF1CAC65356EC80B634C38BA2E99EF7ACC7E
C:\jar\php\gui\framework\AbstractForm.phb	data	67D0D4449E14975D01513828F65B33C9	F04FA675A2A5E140204D9ED61A1BD2F11B9C9899	945E60D2604FF646698F1D0F4BECBB468644F4AA8A2C4417859FD2A850BEE60C
C:\jar\php\gui\framework\AbstractFormArea.phb	data	2EF3ABB0E4C03C8DA35D5954E61372C5	CDD0803136B3C132D3236DC836CC2A192C11954B	5EFB5483CEB7F4012899A48296018C0C1805A58091FD40A118187103E14A47C0
C:\jar\php\gui\framework\AbstractModule.phb	data	5DE35E1C2B7EEC0B1DD0DF07993887E2	DF8A65B314872D3E098A0CA346533F10C8C46401	8C31A34EE14EEB573E1C9097D04D7F4ED4CF79A2B3ACD224F3CCC4AA9D0F4C41
C:\jar\php\gui\framework\AbstractPrototype.phb	data	9E390526DD857FB46D1FB938DE3C51B1	77548A2B7E376DD4484A419B5864A8E83A0238C0	AD3D325B27A027621D42915D0EABF3BCBCE7DEFC8B16279C5F5ABDA61E7E57D3
C:\jar\php\gui\framework\AbstractScript.phb	data	58C055B6332E2B5E60641992D805CB0D	9472F3301D9FA14981934101E1B84FF30F661C17	A606FF1F4046E5E03CBFB7D48B26490E1EBE58751135DA44A3C0368BAA55B60C
C:\jar\php\gui\framework\Application.phb	data	9055F6431873623AE87D93A27A78DC01	2F059DDC2DD54027CE060B93319668581B8C5528	E6E970F7BFAD13CBF4CE03DD645B7A9942AFEA6D5147979B4427BB08FB361439
C:\jar\php\gui\framework\ApplicationTrait.phb	data	D324577C9F8D06A801EFC986062485B2	78B19CE698B60C039B3CFA22BA9EF89D0344904F	17A113C6ED3B2EC7C2B004AE203BC717F2BA6F0D860D63311FD22530FD1DF10B
C:\jar\php\gui\framework\DataUtils.phb	data	209C6EE084D990B53D7CFB825A118FE7	48D8E4E280687E23F4A890337899D87F550D9B8E	C758247AAF812CFE576ECA776C862CBA47877308C90D6FA8333B8266A3DAF86F
C:\jar\php\gui\framework\EventBinder.phb	data	58012F1476F0152D60FB0F47928EF4CA	3B5D9F098AB2925E2BD6155944F29FDEA5654B0D	326D26A02E4558C53065279F97013C8D96CD1866181B26FE34D3AD2C052969E8
C:\jar\php\gui\framework\GUI.phb	data	BEBD811FCCDA4FC779049A4585503585	F601E9229E72D6B91FE7CA0168F61D8AC00E8C9B	425B77B0B70CB3B5EDCBA7C8A1136BA01A8CECA716CD57BB706231B7171BAB9D
C:\jar\php\gui\framework\Instances.phb	data	3E034E7C840AD0A6FA64CCEDAE6FBB45	B82B787FCD501F7D0120223A69DB941A8E4EBDB8	EEECB25D3F4931EE5D221E4F3A86B076DC132CFEFD94BAD163A62A547FA00EE2
C:\jar\php\gui\framework\Preloader.phb	data	A3D27FEFF799D1A0527A4F5501486F2E	0E6727955FEB9995564C478E9876F69D056D694E	BCF385F303694008CC9A24D20DEA38C22556E3451013A3DAD8AEE654CEFF69B8
C:\jar\php\gui\framework\ScriptEvent.phb	data	9BB910268361A6C84F31CDBE2683A047	898CAA35B0D0265AAF4E2DB66170D4786ED19857	CFCCE15070D6E7B38CB4790BF2E479E9A02C1D7E232C0EF08F2A1FB4D1E09007
C:\jar\php\gui\framework\StandaloneFactory.phb	data	D01C58208F97AE4026DB29ED4D79D838	58A474A5A3E4EF989550232E2A94C15AA5DDA635	4CE3CD506DDC1F0048E8DF39441F94CC71B2F052D28793C218562292D7BD0410
C:\jar\php\gui\framework\View.phb	data	401974BE2CE3F05AE2AEBE718241A758	061A9151E5E8AFE6146068B9CD3FFAA8D332E57C	B9FD7ED8BD6A5DE1E71F4F74CEEDC29F77A056387A49A2C49C3AB69D3D048557
C:\jar\php\gui\framework\behaviour\PositionableBehaviour.phb	data	8D1A55D52463A1DC86BB0A72E40FE8FC	64F947B17FC015767E1ACAFE32C5B7C4B04F2954	8E9BEA2B466CCD7B902D2AD29C1E474020CB2BA9BB0EB0957C3A4F06BFEDE17A
C:\jar\php\gui\framework\behaviour\TextableBehaviour.phb	data	5572BCEAEE667B41E0385DFFD10E24F6	EA58F518E797AC68FAA021ED6743B5E47B73D1F0	12A50D558F2828881DEF8393B90C17F3F5FD5FBA6A7A81CBE9AF55916AC4E45A
C:\jar\php\gui\framework\behaviour\ValuableBehaviour.phb	data	8A82E96283BDE11EF9333CE0C2E58199	D008FD947D1A9198A566554558B87E5278EB3E58	D6F0AD68495888BB0E623CD07BBCAA275F6B91AD75C77F8D59C227BD98CD3C27
C:\jar\php\gui\framework\behaviour\custom\AbstractBehaviour.phb	data	F1E3C865D668E768698019B2BDBC6FE6	7508752EC8EE409642B802AC95F991A456250A35	F78AF3D546B1196B38A008E216B17B712D751C5A14E9C2359010D891BBC7DDD7
C:\jar\php\gui\framework\behaviour\custom\AnimationBehaviour.phb	data	CE5F0807192F87BB5EE9D6117A58A3E1	7D4B679D8B253670895026D06153B151EDDD791C	3CE6B20733886576E54C7BC6F69B6F253818EC12BC1EBC246FD3AF724B5B63A9
C:\jar\php\gui\framework\behaviour\custom\BehaviourLoader.phb	data	B8F451712B00D1C03726D9D813F979E1	F17DAB18093DD468070C80F8502ED7F14A39D5FE	73585779CE71408E82A998C36B1BFD611EA6E1D42F4FF33B433A01C11500BCA8
C:\jar\php\gui\framework\behaviour\custom\BehaviourManager.phb	data	FAA306F2259FB19255CB2BC32488DF0C	99ED9926EAF2F9532074A67CAD0A42C9F1CCA9A5	D167FB6E1D620F1B1E96975906B17F081D42691CA704CDA32A19FBB03EB8F0CF
C:\jar\php\gui\framework\behaviour\custom\EffectBehaviour.phb	data	796E4EFB34DD9BB8D2A6DC56C859F626	DC4DDF9E2A045D201C1DC09CF29E2DAE2CC2E745	56907F6CFF2D38E3B1424AA2257DB89ED7EEDF08B6401952B12DEF410D70C2A5
C:\jar\php\gui\framework\behaviour\custom\FactoryBehaviourManager.phb	data	132437FE30EFDCC7E993A3C3558B0912	03E7583CC8751FEA253B24D8536068783254C589	32EC52A3AE28C3493DEC217270C8E2E3906FA36AB128A361AE9D29EC523C3DBA
C:\jar\php\gui\framework\behaviour\custom\FormBehaviourManager.phb	data	70B42638614F06ABE722CBAEC34CD826	196135AAF7FB0138AAB08E2B72A191FF8605EE77	167F60D12AA6B32E1D97CB8FE061D978E1B5B5C1A5271D2639408D4A25815D9B
C:\jar\php\gui\framework\behaviour\custom\ModuleBehaviourManager.phb	data	5184EBFA2B9EBD54EB7B473F24708C6B	94E3025DF478DAD26DE6DF2B000D6FA6F5BC1A3F	9788D436809CDEB3E9B8B5BAC99E088066967C899F27F3FD149E3F2DB5091399
C:\jar\php\gui\framework\event\AbstractEventAdapter.phb	data	826FF601CB2EE82E972A23B07A62BE87	DFBC054533145CE6B05AC9529B7F73BE972FEF44	424EF4C38DE38177C29765C3C774E4341418CEC42EBD8849A55666813002CAB0
C:\jar\php\gui\framework\event\AbstractEventType.phb	data	3A63CD9B05B8D0D7147759839C7CF71B	4B23C4BCC7794513605AA048F27831F2C9B54D28	37162BF7DD72A23B6DF07BAA3C2384C56A47FC4DAAABF4CDEC48DC6032E52F98
C:\jar\php\gui\framework\event\ClickEventAdapter.phb	data	7325A01A0E455532D5F973B75C6DEBC9	829BB274F60FBB9EF2C28C408B38098AD2653621	B3A2C9D2C04B9DEE86CBE9B9E9C854D3B4F1F7EA79330F903FA253C85FAC31A9
C:\jar\php\gui\framework\event\KeydownEventAdapter.phb	data	5A73375B4062B991D9B994F2EEB4F842	E4FAF5B484AE42D8E282AD00CF7B091FB8FC8BFE	02F0DA84782D75283815C0C12200A24842F2D863BA1833AB3A42B1029E46B838
C:\jar\php\gui\framework\event\KeyupEventAdapter.phb	data	8A8419822A8C8C6ABE0D0D3F3A96462E	2586858D0912A90B63CAB1CF8097FBBE974D27CC	BA6CF4EAF3B383C970D707BA42CECFC50D6DC3AE0378E4767134CD419EEF3FA2
C:\jar\php\gui\framework\event\MousedownEventAdapter.phb	data	E5AD41425BF9A1AC7B5C8739BDD0B773	E353649C5E4893F534A0FA4A9CE33E3B2BB8F47B	799F4F32C178C62A4B6964A0C2F7352E808FB99AE3CFC2B58A54AFDDB9903290
C:\jar\php\gui\framework\event\MouseupEventAdapter.phb	data	FFAA47075DCB71DF7868E1530584D26A	1A15C95233FE8E968450E3AE250CB04BA04322AB	6D7D38FB65352BFA8A48856E51BBEC6128346360EB279BAED1974FD7253CC587
C:\jar\php\gui\framework\event\ScrollEventAdapter.phb	data	052BB91F3DC1A89C70BED267D604A39E	12BAB3CDFAAF3A9421A7949E534701743B6314A4	F05555D625D41C7D03DFF32C0558FD16A1EA883D3FE21C7F6D0255928ADE986E
C:\jar\php\gui\framework\functions.phb	data	455C93CEEB209CC215C7F39221DD6B21	458A35FCDFEBD456727F3A2E28D6FE3E5EA4ED03	138D1160C64A2F0D4DF73E303E0722035613EDAC6A7A472A9D7D351F9C71C535
C:\jar\php\gui\layout\UXFragmentPaneWrapper.phb	data	EB6F1116CDB52DCDF3070F85374614C9	EBA760F64C1378044AF9AF239CA168E673237683	AB664EE69F24C196E047858BA0383FEB80F2DD2E2174A1A84A74B66D73392666
C:\jar\script\DirectoryChooserScript.phb	data	D8FA3B9FC6514B28A2021C77B00A2A90	DADA967C49B284EF58259977DA94E278C325F625	4AC81DF1C75ABE3BCD14A00846A887B5788CE303C58601243434D26BDDB28514
C:\jar\script\FileChooserScript.phb	data	0F842300F9C880BD479A17B74302CB05	87E8F7FECBF7D269FB44E3FCCB7755076CD66781	2F469D62D55478B8DBB606FFDC0E2018F14E52C301C200A9B3C3A55D2C2E818C
C:\jar\script\FileScript.phb	data	348637DF46C7F410C75E714D22D2BFFF	E59FBEDF043514C296B1A47EE49BA576A2512409	EC014244464B473C746AFE7D150C7B8A4DAB72C90701301D7B80AA4EC03EE2AF
C:\jar\script\HotKeyScript.phb	data	F6650FE0F4AEFDC0601CFFD81A66AEDD	37F7BFE42B782E9F75E16E8AE0E4123CD9B5864F	1ABB7046AAC6B1A7FBA2EA8D94C5F418D0E528EB2D4653CD36082FB853A42E19
C:\jar\script\JsoupScript.phb	data	B043EFDD68468814478ED8FC613F2FD5	35ACE22BBD2BF54BC8B66F089EF52E3412B67827	3794556BD1DF1F05B9B3777467EEC1982157E1D376E80ED3541C17075E17C533
C:\jar\script\MacroScript.phb	data	580041187AD7367238BBCBEF69A558DA	AFA409D9589F0C827B194C8865BA5D11CF5E3C6F	8007C7FC9A90C6F2B5E9336B156163270F9E958332C672D1805C2D4BDBC50877
C:\jar\script\MailScript.phb	data	953BB72CD594E586678952515EB04722	131561D55EB32CD587A745CF9FC8C3B1BED9D049	6BFAA81CFB9B67F0BA3975EB1F4EE12255E93604E89F5F513D547AAD51FB8970
C:\jar\script\MediaPlayerScript.phb	data	A09E3AF0FB1F3780B7AD0E9971D1A592	FC65D4FF2929CADF1B0B9B6BAF5010F978A58CD3	46185925FF844A682EEE6165326961A1D828A304A7B7F4367DEB1DE320725C75
C:\jar\script\PrinterScript.phb	data	53F1B38B0BBC49CFD371E0FF8EDF8B75	51A3AFD79278E51797E7FEA432A931CDD18600FD	0274CB2511C8F9074BF1A2E403CF6EF436C161F30D58D41BF6A185E7B0650677
C:\jar\script\RobotScript.phb	data	1D822597630B9A307C37DA449A866935	F4A6B4A057EDE1BF16989ED24341EEF48DE9B26D	B5BF9220BD5F35B286B096C188E267FA9349DBAD9D9CFBD97458E10D138AAB79
C:\jar\script\ScoreScript.phb	data	2976D44CD076B2535976EAC1776E530F	BFCF5A2EEB4A1AAFF1D99136710D72BA77E4FF8D	5CCD6C7CFCF4B10560F37E63E5DB136A1CFB23EA47999A01F63EEADAABD93C4E
C:\jar\script\SystemTrayScript.phb	data	8FB2023C8F96A96BF95EB73646923F65	6AB55132BBB7CEBE5E6D5486972B914EB7E3C18D	F04F915D9FBE86AA336737F217880C06B8A8858804DB5C09A55F4D1D161A8F33
C:\jar\script\TimerScript.phb	data	EAEFBEDFD3E3970BFA31C76FDE41C6C2	284FF239250DA0523B20F3146B3CE6702E5A705D	0A1CE6922E4A9B027201B4D8F35DBA7C756BFF036047BCD88A60DCDD5847F8AD
C:\jar\script\storage\AbstractStorage.phb	data	9AD6A7825C9DDA8653527DAD0CF6AD3E	0FB1591BD1230A9A478333302640D76C4001F050	AAEEAAF11FF2FD87DFFD2EF8F3DF2308F05DDF0C5C6A15E99B43D3EBEFFE4D1A
C:\jar\script\storage\IniStorage.phb	data	FA2FD1D2D263E0F674FE6C5D1C590D4F	37D8645C08A562E1BF6BAA5EFED703FDEF33FAD2	B7C2EA71B75872C4B9BBF3974C666F5EB6F40126E203B97D330601C2658C3C1F
C:\jar\script\support\NodeHelper.phb	data	AD0C5E33BE3B9A7090699AFDEF0A9076	9074DDAD78CEE40DE661B0B5F616B59455F77B0A	0BA44719D43929C6D87A2D580A35180BA8046D34CC3B989074E69AA960EFF501
C:\jar\script\support\ScriptHelpers.phb	data	AFA96F44244198058485E9C65974A966	9C7A15081C2FB1100D2DFD7EC479D25BF6AEC7FF	77FBE0EA716E709DE0041BE51D9FD62FFA2AA9F60FE2BA26AE20FB9F3CF7ABD5
C:\jar\timer\AccurateTimer.phb	data	2995BEE0D704DB45101D3A11513C5CB4	BF861FE145E83C3612C6887EA1DD91E4F21DF418	68EFAD768C6F7AEEB5BE4F8C07936EE8AB38008F21F2B00A21F1A4FE4A6AA477

ID:	1483412
Product:	CloudBasic
Start time:	11:31:32
Start date:	27.07.2024
Sample:	dn-compiled-module.jar
Cookbook:	defaultwindowsfilecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	8fb7fc08191a2f03551c14710978d6cc
SHA1:	56688549826dd365486d4d22493a76edb9c9c8d6
SHA256:	9b0235346eab00432f9220809726ed295c464af1361889cdefc27bf59084e8f3
Filetype:	Java Archive (13504/1) 62.80%

Windows Analysis Report
dn-compiled-module.jar

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Software Vulnerabilities

Networking

System Summary

Data Obfuscation

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Windows Analysis Report dn-compiled-module.jar

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Software Vulnerabilities

Networking

System Summary

Data Obfuscation

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Windows Analysis Report
dn-compiled-module.jar