48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f

Analysis

max time kernel
39s
max time network
42s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
14/03/2023, 04:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe
Size

518KB
MD5

e7b4b5c94e4d65938e14996654ea34b7
SHA1

21b399ef01a718e35fdcec3835f0ed691acd2f01
SHA256

48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f
SHA512

eab675bef3aa7e18a43867489e17350eb060cc448f13f9d0560de54932c93cd931077cd903f75583f8b31ffc3a89147a9f9a8244cb2df27cd0bb92c92d0a092b
SSDEEP

12288:CeAkyncWuYm2s/6ejtMqtGmc1HmTEcHQrwdWhjsklGn:9+Zy2gtMtmc1HmNHOwgjsrn

Score

7^/10

spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials in Files
T1081
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Suspicious use of AdjustPrivilegeToken 41 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeDebugPrivilege	1992	48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe
Token: SeShutdownPrivilege	1928	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1992 wrote to memory of 1928	1992	48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe	28
PID 1992 wrote to memory of 1928	1992	48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe	28
PID 1992 wrote to memory of 1928	1992	48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe	28
PID 1992 wrote to memory of 1928	1992	48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe	28
PID 1928 wrote to memory of 1272	1928	chrome.exe	29
PID 1928 wrote to memory of 1272	1928	chrome.exe	29
PID 1928 wrote to memory of 1272	1928	chrome.exe	29
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1296	1928	chrome.exe	30
PID 1928 wrote to memory of 1840	1928	chrome.exe	31
PID 1928 wrote to memory of 1840	1928	chrome.exe	31
PID 1928 wrote to memory of 1840	1928	chrome.exe	31
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32
PID 1928 wrote to memory of 1332	1928	chrome.exe	32

C:\Users\Admin\AppData\Local\Temp\48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe
"C:\Users\Admin\AppData\Local\Temp\48d193940a6efb0b465215218061f0ce6ac436a9b143b20d1f9d5f736932300f.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
PID:1992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=51225 --headless --user-data-dir="C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1" --profile-directory="Default"
  2⤵
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of WriteProcessMemory
  PID:1928
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc8,0xcc,0xd0,0x9c,0xd4,0x7fef65a9758,0x7fef65a9768,0x7fef65a9778
    3⤵
    PID:1272
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --headless --use-angle=swiftshader-webgl --headless --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --mojo-platform-channel-handle=824 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:2
    3⤵
    PID:1296
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --use-angle=swiftshader-webgl --use-gl=angle --headless --mojo-platform-channel-handle=1240 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:8
    3⤵
    PID:1840
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --first-renderer-process --remote-debugging-port=51225 --allow-pre-commit-input --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=1572 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:1332
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --remote-debugging-port=51225 --allow-pre-commit-input --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=1932 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:916
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --remote-debugging-port=51225 --allow-pre-commit-input --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2040 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:972
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --remote-debugging-port=51225 --allow-pre-commit-input --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=2540 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:1232
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --remote-debugging-port=51225 --allow-pre-commit-input --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=1932 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:2156
- - C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --headless --lang=en-US --remote-debugging-port=51225 --allow-pre-commit-input --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=2704 --field-trial-handle=1020,i,9028596465412467403,16178503313980896886,131072 --disable-features=PaintHolding /prefetch:1
    3⤵
    PID:2224

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

T1081

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\CrashpadMetrics-active.pma

Filesize
1024KB

MD5
03c4f648043a88675a920425d824e1b3

SHA1
b98ce64ab5f7a187d19deb8f24ca4ab5d9720a6d

SHA256
f91dbb7c64b4582f529c968c480d2dce1c8727390482f31e4355a27bb3d9b450

SHA512
2473f21cf8747ec981db18fb42726c767bbcca8dd89fd05ffd2d844206a6e86da672967462ac714e6fb43cc84ac35fffcec7ddc43a9357c1f8ed9d14105e9192

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Crashpad\settings.dat

Filesize
40B

MD5
c5368dcdb21fdb98ebf7fafd193299f9

SHA1
061898d745921023987ef682c61c9c0c51787be6

SHA256
c884e07f2b0cff7b18f43328b5899d53ade9df89ed693835c53059b1c9b3d6d0

SHA512
da629fece22cc2e51249508278aea8a017515138c6123b2ea6d6f320d26bd2e403daca445ba4bf012804405582c08ea7d51397624bc769de6856e958ac0e40ca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
f70bd63a80d49262088a8f0fcd12c516

SHA1
a42af862d5e578646cf55e04a4b371960c20338e

SHA256
84e55112e73e40e19e984a25ccb0ef4a9de14d8109e2e73419178f2b53bb7db1

SHA512
47c1b1fbc900a594decb07f2e7c76fee8c57345597f94f141daa32688c7232151b9009ecefe0a18fac9213752cdf3bd169affec6762f8bd433f34e11215ca48b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
71d4769d7c1fca411375d96d7eeb99e6

SHA1
46ac23c1a03bc43e9003fed970519a935478f1eb

SHA256
c92a8218f18f10f15b6c007089d9407b52a3f770766792801c28fde7cb137ce8

SHA512
055b32f7b386d747af945ecebe9f05dc143f16e08ac771be5f34e2d5c1b1e546416584510d2d592db6493efb60a46360e289703e500b34d6befe273c913f57cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
b00ee25d3aef21db1f220f12c39d5069

SHA1
91d95a5b7cc49f827ed28e5f30824ae638325c33

SHA256
cd2db2192bfed9bcaaebb6b017643932ff767185a9752730152196bab04fe736

SHA512
41a0b4def02a8c37431d3c91c0ac94206713fb81e929a6b3e392b4c305e80c79d855bd1d84e7a766f8d246318a0bf36b6096e571e47d1453c4714196ef2be56d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
b9cda75016d18bdfab4029eac262fd27

SHA1
cdd6694cd573486ae21ac08fa4221a436c4a9615

SHA256
2699a86ffbfd52226bf8baefd4a3160548b1bd3bccd4f93dacecb45411434da9

SHA512
09240b31988828d3aacbdba6c697be468a220fad701b4228a015c8834f01ece7593e0b5c43a0b27321ebc05b80639f60d78a3fac726f6317309c45c3f2d6dd89

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\f_000001

Filesize
47KB

MD5
3d23c85b6392946bda15a0a8f287a59f

SHA1
da5b7c30ef83e65905c96ece18fb0ca35e9e17d2

SHA256
ed36310ec7684eab5cff8d7a3f0d27893fe6bec274a7c26d7fb8163a17b7a9ce

SHA512
7a60e12468aa368fcc514c301c8577500bda6980747b9891580f0db728ddaf706c8dcaa9872435dee70f534ead45b307d5c0e5557a690f949d30002f18852feb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\f_000002

Filesize
308KB

MD5
259df8a81eeeafe8ac1bf630bb2feacf

SHA1
27f7db2177652e7138615ad654646499e7631fa4

SHA256
faf4d07da5dcb8d2e2ee8ab8bb36d4b6b46fd3a3260bad5ee79072b35175b3a9

SHA512
afedb24f444119924da4ad3e04da681ecdddb6f9966df827044fcbd776689cf242742ad6ac081dfe7a8200fd831b5866442f9e120b5de05487c22814ab708c28

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\f_000003

Filesize
68KB

MD5
37a1804db5bec7ddeec01a079359b8f3

SHA1
ce9709bd34fb528131aa4eccd495ce6ea1ed3a22

SHA256
172d86a0b849578d2d9af93e21b706e145f065745aa0adb76c913c1a577b17d9

SHA512
eaf2e6d4950d3d2e73aafbe8709c75e7de28f19423ba9268f7e735e7c7543c4e29891be20f69fb3c52a37444d8b16d5cd0153f34f711b6335f73ddd0db49d23e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\f_000004

Filesize
308KB

MD5
259df8a81eeeafe8ac1bf630bb2feacf

SHA1
27f7db2177652e7138615ad654646499e7631fa4

SHA256
faf4d07da5dcb8d2e2ee8ab8bb36d4b6b46fd3a3260bad5ee79072b35175b3a9

SHA512
afedb24f444119924da4ad3e04da681ecdddb6f9966df827044fcbd776689cf242742ad6ac081dfe7a8200fd831b5866442f9e120b5de05487c22814ab708c28

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Cache\Cache_Data\index

Filesize
256KB

MD5
756ec95213f74434e847ffb5b7ae515e

SHA1
97a56f8356e375e85da781d861c2339efcfcb9a6

SHA256
b6dbfff40133f96531d34fd5c4606c8bee1f6f606211d7b3e1c8b450f1f3930d

SHA512
dd035fc00636ee58551553bb3b37c09690c3e90cc4720b90bcdf7148f78b3db5ee1691eb8905f6a6c5027ff20b4fab2523e2f802e12ac6b22965c78d5be1f4cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\0d014c58f83aef43_0

Filesize
419B

MD5
826c029f7a12f180b5602cc075bcd1c4

SHA1
e8dc26acf9ada7d161f956aac10d140d5b7dc06a

SHA256
6c3535367ea3dd34ed63c29531d021d436f0c5923d00be5d737b026c5cb7368b

SHA512
36c42a51a3c54b603c0820e1e18ed67cc887df41766b38714b678cc31219389ce0eca45f6f3e6dae96f1d564f304af5e40368164ca90ac28c81876d05f7e0eac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\e50921047061ca1a_0

Filesize
419B

MD5
911828b21a61dc956c1214e3604f4f17

SHA1
7e2207c1866f561e2f360523a4d77cd22a6cdaff

SHA256
7163d2152a287ba9b3cf589d244c4e3272c9f1f0731a7ed60a44ea39d5628cab

SHA512
679f8b4c0fe69cb145d23ab7e1974529a07386301439322906d39c3b8f9370ba9720f7cee1f36cc2359d2c346d62c1f3151a9f3b367df4eaf710be2f90f650e0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\f0c9036df7850d26_0

Filesize
347B

MD5
13e77a0ffda45cbef2d69174fe0a44e4

SHA1
64369623311e10740f84422d5b9881afa0d1e064

SHA256
1462832a002a43affb9177116fa23128691f6a011be3d7350e161071f002851f

SHA512
2b15463589e30cfa24dfac6c3b9979aeb45407f4e9a7aa33616c08503835e736ad1d8b35ca1077e6f5a4c1546531a7fa915d8ae1cf2d5be35f67d64d51df8a93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\index-dir\the-real-index

Filesize
48B

MD5
899ee92db3c6676fd3e8ee690fd923b4

SHA1
9da62d5ce01faccb8f096ca20c1036d56664a910

SHA256
2008685130862a7c326ef410cf2aba093fa0fb58f62cc4836b32da4f794d3175

SHA512
d0ce5deb59befb57bc7579266f19d30af7f3997fbb257495b5b7c2e5738c98506c4e09842baa8dc6eeb95b127a01150610aa2fe84dc52a336a811a94f4e46add

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\js\index-dir\the-real-index

Filesize
120B

MD5
67ec140fb9fb8db19d8eb3f81949dbb7

SHA1
6efc6eed60f36dd17076f119b6d18921706f7173

SHA256
d1aab2f99777cef25754c0e67d25d8869d3433956eeaf0af683e1b9ca061d559

SHA512
2eff27d448369e87516f9a0ae1028c40ffbabd950136106d9015c2216526ba56ddc96624a9fe96ad694b6b92a2ed8fff3ae88e5674051a992d605b5b8efd7da3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\wasm\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Code Cache\wasm\index-dir\the-real-index

Filesize
48B

MD5
899ee92db3c6676fd3e8ee690fd923b4

SHA1
9da62d5ce01faccb8f096ca20c1036d56664a910

SHA256
2008685130862a7c326ef410cf2aba093fa0fb58f62cc4836b32da4f794d3175

SHA512
d0ce5deb59befb57bc7579266f19d30af7f3997fbb257495b5b7c2e5738c98506c4e09842baa8dc6eeb95b127a01150610aa2fe84dc52a336a811a94f4e46add

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_1

Filesize
264KB

MD5
22603ac273dd894d66cc762f3442ffd3

SHA1
df9b3b81aaa5facc7c5c5149d54339c1cc2fae1d

SHA256
74b2330222944b2a92f64397c03e9693b252292b29adc756af879128b48237fe

SHA512
9ea7d9a4d9e1ed79ffd2a103d54a0660ab45fcc55863aad81331498ea5426546b6d73fe3b51a0fdcd29cbf95427cb82eb4dcbc94d221873c59fb9c2b417eb195

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\DawnCache\index

Filesize
256KB

MD5
d486eef759c3c87a323f4b0079b2bb0d

SHA1
9ac80eb5fd9bed77620f63b8b36986e1c1e73556

SHA256
deef20380b332b6b6356474f091969e3d61c849acd895f40a9a90e0bad5fb87c

SHA512
6d7e1541a774a018c6679a687dd52f163a70570cf7d03c857480dabc5ed719877703fac1b8ae86e55aeceb64e625597eee002e788b5babdbfae7f64fb98f94ef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\data_1

Filesize
264KB

MD5
22603ac273dd894d66cc762f3442ffd3

SHA1
df9b3b81aaa5facc7c5c5149d54339c1cc2fae1d

SHA256
74b2330222944b2a92f64397c03e9693b252292b29adc756af879128b48237fe

SHA512
9ea7d9a4d9e1ed79ffd2a103d54a0660ab45fcc55863aad81331498ea5426546b6d73fe3b51a0fdcd29cbf95427cb82eb4dcbc94d221873c59fb9c2b417eb195

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\data_1

Filesize
264KB

MD5
22603ac273dd894d66cc762f3442ffd3

SHA1
df9b3b81aaa5facc7c5c5149d54339c1cc2fae1d

SHA256
74b2330222944b2a92f64397c03e9693b252292b29adc756af879128b48237fe

SHA512
9ea7d9a4d9e1ed79ffd2a103d54a0660ab45fcc55863aad81331498ea5426546b6d73fe3b51a0fdcd29cbf95427cb82eb4dcbc94d221873c59fb9c2b417eb195

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\GPUCache\index

Filesize
256KB

MD5
d486eef759c3c87a323f4b0079b2bb0d

SHA1
9ac80eb5fd9bed77620f63b8b36986e1c1e73556

SHA256
deef20380b332b6b6356474f091969e3d61c849acd895f40a9a90e0bad5fb87c

SHA512
6d7e1541a774a018c6679a687dd52f163a70570cf7d03c857480dabc5ed719877703fac1b8ae86e55aeceb64e625597eee002e788b5babdbfae7f64fb98f94ef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\000005.log

Filesize
171B

MD5
38a53c7d9b1e556f724a78a83f40f06b

SHA1
af5f5b599ac23523c9de70cc3f6e725336f2b4da

SHA256
a3228ce0ce92bf94b91a5de0f360f24a75acce4d0f20d2612e4d6e01bfdb25ca

SHA512
b1f76b8dbf532e6af0f33762fb464ee3801c8a839ccacdab86f9dd3694f7f697804242d30d9e519db4a56961a2d953d4efde8bb00a39b07d85bd8c76d5e99785

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\LOG

Filesize
190B

MD5
acaa31f8bf6eaa489708bd861225fc6c

SHA1
b385892ec0b64914dd1a339321c9b7d52e65216a

SHA256
4c785c225f6cc52900738b3273526bb9a0a9313bdd775b81eafc72e828275de4

SHA512
f5b4ea4e4a85cef2c996e2dd7ae4b2e7e29fb056f45b18d11e03da8da6b96e0004da2c52160f4e7333785db22be9b5c76c1984151ccc4c15eaf4c3e885d3b056

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\LOG

Filesize
136B

MD5
33f7ffd60eb7cb023e7289fbd6b5c359

SHA1
f8fd7bac71ed66333c85b84e4b6d0be3b87dd27e

SHA256
6856838e6ebc398b229b2d2674fe665a70da8c285e211dee18e706539fde1d93

SHA512
332add373bfb91d5a537f11da9feef2dce0c37c21e14496807c439c61dd8060f377e955a91623dcf85a23c2af730f423dd1d9b4e7b5a01221773bf8fce2bb407

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\MANIFEST-000002

Filesize
50B

MD5
22bf0e81636b1b45051b138f48b3d148

SHA1
56755d203579ab356e5620ce7e85519ad69d614a

SHA256
e292f241daafc3df90f3e2d339c61c6e2787a0d0739aac764e1ea9bb8544ee97

SHA512
a4cf1f5c74e0df85dda8750be9070e24e19b8be15c6f22f0c234ef8423ef9ca3db22ba9ef777d64c33e8fd49fada6fcca26c1a14ba18e8472370533a1c65d8d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Local Storage\leveldb\MANIFEST-000004

Filesize
50B

MD5
031d6d1e28fe41a9bdcbd8a21da92df1

SHA1
38cee81cb035a60a23d6e045e5d72116f2a58683

SHA256
b51bc53f3c43a5b800a723623c4e56a836367d6e2787c57d71184df5d24151da

SHA512
e994cd3a8ee3e3cf6304c33df5b7d6cc8207e0c08d568925afa9d46d42f6f1a5bdd7261f0fd1fcdf4df1a173ef4e159ee1de8125e54efee488a1220ce85af904

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Network\Cookies

Filesize
20KB

MD5
c9ff7748d8fcef4cf84a5501e996a641

SHA1
02867e5010f62f97ebb0cfb32cb3ede9449fe0c9

SHA256
4d3f3194cb1133437aa69bb880c8cbb55ddf06ff61a88ca6c3f1bbfbfd35d988

SHA512
d36054499869a8f56ac8547ccd5455f1252c24e17d2b185955390b32da7e2a732ace4e0f30f9493fcc61425a2e31ed623465f998f41af69423ee0e3ed1483a73

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Network\Cookies

Filesize
20KB

MD5
5d81d63363f4fb3758e790bbac0b6f8c

SHA1
5c2ca9f018143a55589af86860ff6047ebc6b3a2

SHA256
ef5741c8112e878e201a9ab2e12ee034c1ba1987fd64d89f05e1620848fec861

SHA512
d6941f6366afa614232e480a000b6c5cde7c81e7f36ca9e3fc1eeb0682ee676f2c88e5773c53b709a1ba9bd53340c47a2cd954d7fcae9356ec7f2719b0c75b54

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\000003.log

Filesize
1KB

MD5
c7b7d160ca6578c23a4dd6a417fd96f2

SHA1
f7c9e42514ee4a7d2e04becda38762dfd6e624da

SHA256
2ab4557f9f21a074101874e682c7785f7fb192b85b46341ea70f21825c636b64

SHA512
bc2655c3692065dc7b1df3ae2cc453b6007f679b91d130b8b7f5970d7746c7c2cb27db9d82c0e55899c15bc1b1f09951d23e45e2db3cb5a291fbda9af25632af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\CURRENT~RF6c6cb8.TMP

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\LOG

Filesize
189B

MD5
6b9a6abbb2e1be9cc9b89b4f560c4f0c

SHA1
729ad2b917b187352939f31894a4b1fb2039390f

SHA256
5bfa2ca803af52c5309d415d51619fc5dce8915b6ed4e418860a2d5362947b12

SHA512
c5d52cb9bd238c6edc5ea92b9f0ad5b66c299f04b4b4aa7bbd53aba318c1fa40ac5cff6510a547c709f6b92ede8e552b297e0a7a49add96af25864b6e4f6c050

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\Session Storage\MANIFEST-000002

Filesize
50B

MD5
22bf0e81636b1b45051b138f48b3d148

SHA1
56755d203579ab356e5620ce7e85519ad69d614a

SHA256
e292f241daafc3df90f3e2d339c61c6e2787a0d0739aac764e1ea9bb8544ee97

SHA512
a4cf1f5c74e0df85dda8750be9070e24e19b8be15c6f22f0c234ef8423ef9ca3db22ba9ef777d64c33e8fd49fada6fcca26c1a14ba18e8472370533a1c65d8d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Default\chrome_debug.log

Filesize
240B

MD5
70083224c969caf860c78d14e5c79a6e

SHA1
efc5ef00d7bf5aa5eec4c7a39be86bdc130ba181

SHA256
369b22f4af48c2070b73f3c1d997ff21644e59cc94d238184ad170b9d35a02a2

SHA512
dc3c9729772381a157a0318ee0d25e06b4409b2cf8ece75ffd892ef75f6ca4b361011e55a00e1d8c7ecc920f4ac6a792173a13bf38b1fdbb456c4b31e9ddc9df

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\DevToolsActivePort

Filesize
60B

MD5
a39864e0607dceb5aa998c6c0f6b2eab

SHA1
1311d86def12ff393955021f25d1ab187aaf5cbb

SHA256
ce6d10b450ff887cff712ac647a8e9671e56d4f4da805b208eaa99146bcbfc2a

SHA512
d8659f15bcc188a418e08a777a68a8ee335069695fa0731253134c944726cbe68f43cd290c85b1a2229376442d3cea773247155cb531e0541d69660756711e25

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User DataEDIW1\Local State

Filesize
71KB

MD5
2beb695add0546f6a18496aae58b2558

SHA1
1fd818202a94825c56ad7a7793bea87c6f02960e

SHA256
132cb7037ada7d8563c5b8cf64796ed22b0fbc1ccefbbbf5faa3c18545b289ed

SHA512
e80fa42ab27afa16e0f6f72639077be7da3e73f7c7b4cecbe0d24637ee76334de77a2b61e7c3afab4e3750e53a93baa68d3cdb9c1eb55fb9a5d580cff94f21f2

Download Submit
memory/1992-115-0x0000000000E80000-0x0000000000F07000-memory.dmp

Filesize
540KB

Download
memory/1992-117-0x0000000000C00000-0x0000000000C42000-memory.dmp

Filesize
264KB

Download
memory/1992-57-0x00000000028D0000-0x0000000002910000-memory.dmp

Filesize
256KB

Download
memory/1992-56-0x00000000024F0000-0x00000000025A2000-memory.dmp

Filesize
712KB

Download
memory/1992-55-0x0000000000B10000-0x0000000000B7C000-memory.dmp

Filesize
432KB

Download
memory/1992-54-0x0000000000140000-0x00000000001B0000-memory.dmp

Filesize
448KB

Download