hxxps://google[.]com

Analysis

max time kernel
71s
max time network
74s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
14/04/2023, 09:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://google.com

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1060

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-144354903-2550862337-1367551827-1000\Software\Microsoft\Windows\CurrentVersion\Run	chrome.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133259368211396337"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
448	chrome.exe
448	chrome.exe
1276	chrome.exe
1276	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
448	chrome.exe
448	chrome.exe
448	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe
Token: SeShutdownPrivilege	448	chrome.exe
Token: SeCreatePagefilePrivilege	448	chrome.exe

Suspicious use of FindShellTrayWindow 53 IoCs

pid	Process
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
448	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe
1276	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 448 wrote to memory of 2744	448	chrome.exe	85
PID 448 wrote to memory of 2744	448	chrome.exe	85
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 2228	448	chrome.exe	86
PID 448 wrote to memory of 1812	448	chrome.exe	87
PID 448 wrote to memory of 1812	448	chrome.exe	87
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88
PID 448 wrote to memory of 212	448	chrome.exe	88

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "--simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT'" https://google.com
1⤵
- Adds Run key to start application
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff87f649758,0x7ff87f649768,0x7ff87f649778
  2⤵
  PID:2744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1804 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:2
  2⤵
  PID:2228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:8
  2⤵
  PID:1812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1780 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:8
  2⤵
  PID:212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3192 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:1
  2⤵
  PID:4700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3200 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:1
  2⤵
  PID:3456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4496 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:1
  2⤵
  PID:3520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4008 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:8
  2⤵
  PID:1684
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4956 --field-trial-handle=1820,i,15819690928025503347,12864405604098018876,131072 /prefetch:8
  2⤵
  PID:2600

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1900

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:1276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff87f649758,0x7ff87f649768,0x7ff87f649778
  2⤵
  PID:552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1960 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:3304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3020 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:1
  2⤵
  PID:3756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3012 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:1
  2⤵
  PID:644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2260 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:4300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1736 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:2
  2⤵
  PID:5028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4564 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:1
  2⤵
  PID:1516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3760 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4888 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:3796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5104 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:3836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5212 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:8
  2⤵
  PID:776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5216 --field-trial-handle=1912,i,352268419490324500,1109336317422367817,131072 /prefetch:1
  2⤵
  PID:4444

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3276

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
6d84e5126bc31247d5a3cb27eb467729

SHA1
e80db2073c0f2878d8ef734d5cee0454cd5ae2fe

SHA256
433e23a2c448fa9828a8cd1e25174fdeab8bbd53dda36bc7847e2959aa948bfd

SHA512
4a053fe5432f476aef9229a1fe084bd7caff8110d988759458010b67f54f4ba885fe2498a5316eb4aeedff81667e3c4e19250a6a5e842d0032a91614789f6858

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
6d84e5126bc31247d5a3cb27eb467729

SHA1
e80db2073c0f2878d8ef734d5cee0454cd5ae2fe

SHA256
433e23a2c448fa9828a8cd1e25174fdeab8bbd53dda36bc7847e2959aa948bfd

SHA512
4a053fe5432f476aef9229a1fe084bd7caff8110d988759458010b67f54f4ba885fe2498a5316eb4aeedff81667e3c4e19250a6a5e842d0032a91614789f6858

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
f234a41adfdcbb57c76bd8833594d026

SHA1
1f655829c6472893711ac42ea38dec075a7bc0bc

SHA256
395ba1291a3caa83c1125518b4f5c48ec252b2c32d3c276be8aa6ace7e345f81

SHA512
ab931a7924341754c44b602de241e61c98967ad23870a4e09e2792aef0c4124aa6ca352576783c8b2885e8e8372744912dbc20dd0daa692a5bbf01c6a04c066d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
e59aae5e92d71077ea44a64a2d3ede82

SHA1
01bec21b01be0b19a40eec25d8a1c7a65a3fb230

SHA256
5896e101279670d5ff5e5e37f707a18b90aac76f6b442f1d8667c52c00429733

SHA512
77e12e878a8178aaa962c2c2e99ca8e90b5714406d1b5fedf940906e8fc06cd8eb0e7adf07a475e38ae1300a16043fc50f81c2d2a650318edce52a2034814f8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
c0fb1fdce90e99e3c5b6fa0a30f4c8ea

SHA1
3e6b811c3061321ca846160f368a6e7cfcb14851

SHA256
97f3479150300bdef20f0aaa07d27b3c29fd2770ac20ca17c597c6db4cbd0bf4

SHA512
43edcc7ae1263d18a077d96d8b2b2011ecba340ab39844fca5eec761e1152383c556039c6ff9114c276fcf22799a41684faaa084426905a41850b2c140440564

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
07af957ae984d60e616f8b89577ac4b8

SHA1
3c76ef489dac006be5bb65591688e461c35ed966

SHA256
0b77360f3ff00c196b88ce8032557db78762e516675ec2f7ee3c7deb71daed39

SHA512
880f17e7f20431d659dfb1b8acdc87707deb000c4e95724a48b13958849fadab6ca0992faeead7aa03490181a1c2d9c4569989b17a618bc41af790cb963c92b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
43KB

MD5
e98362975affdd3c9b547abad8e782a2

SHA1
c49eed75f5ea6fe951a4f3f4108e55c7bcc52f1c

SHA256
afe3bb8dc1167b66a75fb91904021c2cdad0815c8cd98031fa47b78a1376c947

SHA512
6392f94009c9e3c06aa2021a6dd82b7c428004366da424eb70756ce735cb9c7524159053ab8626e9fb7dfa805b294d1edf6a046698b945c9c77366d65a6657d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
286KB

MD5
1bc70419cfe692f5fa6c55d60f3b8c20

SHA1
2379d5904c455361bcba46099e7850ef9275cdbc

SHA256
99c3b0899be90180bbbc83207c3e8598e91797f61214219f561b47c42d4a6dc4

SHA512
be0c919ab0acfa67550bfffa9341f6016b02c6b1f7b1fcd1cd70846b3141a71601d022e1bbefa8e8dcdf5031ab7f42b8b1f6b0db2e85a6235df09ec6bf5b078b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
66KB

MD5
800f42162c452d2910e695350fce2ff9

SHA1
3cfb3f666a6037292b1585f04869f1f186265e38

SHA256
2b90a09cb1ef49ee915a529d024c182f6024a833e3d805e57dcb48539dbdd535

SHA512
7968986281080a819fddb984420576a032d4aa13e7294d30f3353571adda5d4b773cb171288487cd3acf47f0329af2047421f8a8b5fd33e2df165a02d183c690

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
37KB

MD5
47ae9b25af86702d77c7895ac6f6b57c

SHA1
f56f78729b99247a975620a1103cac3ee9f313a5

SHA256
9bde79a1b0866f68d6baa43f920e971b5feb35a8e0af7ffadc114366f8538224

SHA512
72b5296e3dd1c5b4c42d8c3e4a56693819779167b9f02bc2d5f5a626b519a9cf10bee59846d614c929c42094b65d13039f6024f6cb1c023e740969aaefd060c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
21KB

MD5
099d8b46fbb6ba808f6f4b027bab82c8

SHA1
82669b356edb3fc444c7ebc3175beb232f45bec0

SHA256
dacd0e50d9482b01b3193748836d9c21909455a72520189d1b5db2824b8b2426

SHA512
5d7e845977c8e71c633fdbed22ff5f77fa5670b6aff6585abc1d287730d2c540c921fc44e0669e6b10e72bbdc99c7a331666ed2b68b9c44afc5b331389d6ef3f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
64KB

MD5
326151a6c1524d6290a499c84f44c218

SHA1
e02c80a5bfbfebc7152c9e65e99070f3145bbed5

SHA256
0ae66263f3a6c2b891abf4b06a04459990d8016b10884d158c92b69e9d5cd24c

SHA512
25d57e96ccb6af46cb33ee7a1b2fbb7d9112a066519faa509e96cb463d3d9f7effff200f2b3ebc67246d1ca5b58ca304526cd2e7f56b4b33ca5865947f58c7ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
76KB

MD5
0778655fcfe1ccadcd394af54b21dff0

SHA1
60aa899f229c25260f829ec4ba7a92f34fc93db7

SHA256
8d6edc5b77b2ef0c89845f6912808b555ae6a448985f6618b7aee6e8dd38702f

SHA512
3c8ff8c9ee46181ce970049fbc4f4f3f173131e987478bec488a02e942060a06131d6c515229eafe8dc23615afcd67ec9514d32a410aa2abc69fca5149d7b36c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
21KB

MD5
7d75a9eb3b38b5dd04b8a7ce4f1b87cc

SHA1
68f598c84936c9720c5ffd6685294f5c94000dff

SHA256
6c24799e77b963b00401713a1dbd9cba3a00249b9363e2c194d01b13b8cdb3d7

SHA512
cf0488c34a1af36b1bb854dea2decfc8394f47831b1670cab3eed8291b61188484cc8ab0a726a524ecdd20b71d291bcccbc2ce999fd91662aca63d2d22ed0d9f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
93KB

MD5
8ccb8264dc92484e50787c21f89cc9ab

SHA1
f8bf7eb56a54b4d272d2c5fa8ff037a963e01053

SHA256
79a26029755c2b44d64e7f7d959a1bb7ccdafc11b85a57e59711688757f7595e

SHA512
711770cc2dc51f6da869a97beefa1f4a8c47cc73985e15b1f4db66f37f748946562c5295c4ba272779b00bd9c68adf3f63adf9d14a3c11e412eb942b5e0b21ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
71KB

MD5
939157e021b06601ecc3a93137b09cfb

SHA1
32a7bd5ce2c5138798bfde2f904db04bf064228e

SHA256
5a0df4837c03f1b86fc3e16de7a5334c6b122c3c5554e4f7151b4ee16c335f5c

SHA512
45cc62fb2fe85792b804466f3da251de1469d8811a31a1492c7676e780ea254469e50aee50f44891871c6daa40b1fc9a7c05d0d67c5241efd987b26bc2512607

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
20KB

MD5
923a543cc619ea568f91b723d9fb1ef0

SHA1
6f4ade25559645c741d7327c6e16521e43d7e1f9

SHA256
bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd

SHA512
a4153751761cd67465374828b0514d7773b8c4ed37779d1ecfd4f19be4faa171585c8ee0b4db59b556399d5d2b9809ba87e04d4715e9d090e1f488d02219d555

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
80KB

MD5
b78d3af136226580b31e046ddbc53d9f

SHA1
4ebf3537d391b33a7f0de8546d1f34b3584b2531

SHA256
f8b31fe20034a36d9392cefc6c0636461008aa5e9b988c45163e8afde456d755

SHA512
ad9f20f2b449c9a7b785595eea8e197a2269e57577ea31a3c91828f5ec1111aeddbf33c09c2be8ff3b513178e3b659b92daf68bc168b81dbf812e9bf4afa5fb2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
301KB

MD5
26bd819cc57d656c377b5b738ef9f394

SHA1
db0bdedf1bf8315d5a04d62326009c2bac9a8f87

SHA256
9ba77d93fcec5e59af0f7f8fd8d51156c135b399d071871364d18ab3ad7956c2

SHA512
9c18e63a42ed91187666483a5337543fe72624a94d48bdc0d79310da03cc0383dae7ae32e03c9ed8e55a0f200231c31c4d7cde7628828dba01c37c21c1224c2a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
40KB

MD5
d2104e12ca2a9a13cb31b76d0a081a5a

SHA1
2a32e3f5d7b53c228733da79f3cdba78ca06b3ed

SHA256
d2b8850fc6eba442fdb5347a75b7ce1bdb6fc2a168156e27072b50b3e6343588

SHA512
bf227478485cc15a614b63e9aafcb2043d1b38244bb59475f69fed4b23cf07253073dad9e2477254316f09af2be5458b634b653dbd18cf3daa3a08173dcef0f3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
64KB

MD5
1067041b8fa46bae06ebeac837cb67ed

SHA1
9a1e51cfe25d04692592f1dc13ce75058db813d3

SHA256
e6f3a928b555e72664e65ac8d3455b7ace51ce76f205975f98daff89b3a5d533

SHA512
d16c71f87ebcdc4553cb5aa4283f84ba02178e80d237a99d56ec416377031af4354582d459abac88df5b06239e3fb4625466b478bbf67ac5f6f001e82fa58882

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
35KB

MD5
fbdd6a00ee48d6d1b709e20dacbcd5ca

SHA1
746e0f445869505fa536bf56be0e017b67549500

SHA256
dbb647eab2e0f06aca6b9cf62549af5ea885777e21d142592b2b9c4ea1e6bc68

SHA512
31494533bb6870cb5186a5dd670ae8ee1b0f6c651ac0272fcea97f6e6614e80230c93786ee64366d34288884bfef8145a5d4f29c74495e5a78d9eec8bc33551c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
137KB

MD5
1fb8cb87d26d2fa57de98d4362f7e65f

SHA1
f0eef41c1ce22686746b842811fb8c766fcb9b6b

SHA256
11cd5b6463b89218827f00387001ac2aaa87fe798b0afe7b2eff22f19cc1b593

SHA512
ac7b05ccad079ca5e4a47454e0b9551f9fcfd170362c930aa2383f32969ff7dacc61b4b28bbe2fc5643afa47491dc6b54528ac08ce05e17d18bd27f474be573c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
275KB

MD5
e20f18ea14b7f6c9751535a99c675f16

SHA1
c947587829716f7ffe39bd8c4b2e088db7f34e26

SHA256
a5403a8b9dee8513d4cc96ac3cbcaa01d05d7fbef17c803c24f745924ff61035

SHA512
d2c4925d7d36d2add6488544da792072ff3aa85f7e95ca78a713463527306b58b743353bc98aea4a69cf0ab6cc7b1c4e75feb410c9e50cdc3f6a01044afa12d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
71KB

MD5
3dc021cc65fe593d950e918f3e15a492

SHA1
17a5428030c441e5054d6a316ff1a46e0566ac12

SHA256
e2bb57da6551726171aaff6a80186d1188fe17d30d1303540113875bef479b31

SHA512
f4e4bea3cd489652acd533b8deca6abc9e01eef680cb5b9717562871c6f4200d7623cd31090b50547dbe22a1c76010f80b4a8f18d21bdda63afb5e8de4cb1150

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

Filesize
37KB

MD5
47ae9b25af86702d77c7895ac6f6b57c

SHA1
f56f78729b99247a975620a1103cac3ee9f313a5

SHA256
9bde79a1b0866f68d6baa43f920e971b5feb35a8e0af7ffadc114366f8538224

SHA512
72b5296e3dd1c5b4c42d8c3e4a56693819779167b9f02bc2d5f5a626b519a9cf10bee59846d614c929c42094b65d13039f6024f6cb1c023e740969aaefd060c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
288B

MD5
bc58b85af78edaf36be57c1f5c9f2f43

SHA1
6dba5fb66e4ae1dd767a4d64cd81d48540affc43

SHA256
8fe2fec3cdc5a78e242d76657d43304a97fa5039cc54e229d4d5517858977e2a

SHA512
1172cca0710a04b7b317f240fa00007bcb3ea9048ba8dc8f51bf491d08e10b6507270dead4f83d50745ff0afbae0dc3d42058ab5861ccdb6d944e54abb066e92

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
432B

MD5
3b22e34b239cf5f01fe1fbe31517d738

SHA1
64895ad9e4e4e08e8d71247b4be35f8cd1c93f6e

SHA256
e1dea1deb4d7db3bbbc667ae08633dd629fa0c6623d26cd461e0af8dfb467507

SHA512
6ab48c2c2dd061a79c9514df485b0a8d3c939e2cd6da6a176b7f9dee0f8def3235707913b719d68207205ee5e2184f125abcf5e7eeb75869df6d264fec3d6d57

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
432B

MD5
3b22e34b239cf5f01fe1fbe31517d738

SHA1
64895ad9e4e4e08e8d71247b4be35f8cd1c93f6e

SHA256
e1dea1deb4d7db3bbbc667ae08633dd629fa0c6623d26cd461e0af8dfb467507

SHA512
6ab48c2c2dd061a79c9514df485b0a8d3c939e2cd6da6a176b7f9dee0f8def3235707913b719d68207205ee5e2184f125abcf5e7eeb75869df6d264fec3d6d57

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
46d02f63506bed310740544dd373966e

SHA1
bf954e8f803ab29f5d912ebf77f71525d711b838

SHA256
3f8ad91614f1de41552b56fd72b6065c1995ea4fb8963ae500f6545eecbe8104

SHA512
30b6699510090ad0dd0ac8e24d33304c2bed2e9fd074824a9059052b8bbdce5d53061a61d07092adb74dc654f1ad30b3018df69fa091ed0e7f2ce3092d88badb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
46d02f63506bed310740544dd373966e

SHA1
bf954e8f803ab29f5d912ebf77f71525d711b838

SHA256
3f8ad91614f1de41552b56fd72b6065c1995ea4fb8963ae500f6545eecbe8104

SHA512
30b6699510090ad0dd0ac8e24d33304c2bed2e9fd074824a9059052b8bbdce5d53061a61d07092adb74dc654f1ad30b3018df69fa091ed0e7f2ce3092d88badb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
20KB

MD5
4f8d05cf49d46d0062573bcf11647937

SHA1
8cef338eab1dd806514eb22aa2a8cec0e1868995

SHA256
7ab06622e6266b113d912464b592d3bbb372b5d64ddd4e2ad5696df8bad4486f

SHA512
9104fa1e2d9c271b292824bc332d6b26ff2836393b6978aa0717ce3273b176887896a55b91da264b4dd635f1bed66f0c1da12dd6ffdffd95129dddbbe9fc3b9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
190f1eaaa5fae5d782ffbdba74384db0

SHA1
f7f601b5bd2cbf8b7ffa87c38b76a5d156605136

SHA256
66e81dc998c645e7819db42f9c65d8ca92d9ce59cde684fceac9a8bcc990b6d0

SHA512
6188b0567187bafd66025f07b5e44697c9192ae0a975105db1016f3e7e34278cb4fc5ec55d45af0b473cd67259528303eb1eeb8ccce96c6b2872721a7dc20021

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
148KB

MD5
1bcb395cb6d0ef4f1fb0fde79acd8e53

SHA1
b9b69a8364e26c890a4ed74a4010c8c2a5c031c9

SHA256
48560c83c29b576326924c411b9f6945f9572234280bcc70ea9389acd2602218

SHA512
71c53fc16b141e47285f77d76aa2d0d03f7228751ca3dc8f21879787d98a4ea7ea3fe75a04811ab1388e45f1ac20a7148242a4e51aa25a4f49c24ef730a7ddf2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

Filesize
20KB

MD5
a51f9bb523124f88149129d2866d559f

SHA1
ebc7fc29a66dca56a69c6c6d5d1ad272d1d18bc3

SHA256
5756835264c0e98728860a1b98a85caea3a244f29600b11a445eac71c3dc291a

SHA512
f400dd94677a425f7f2e1693491ac5a2165709cfac57a52babccfbd05b0017f4e5d6800f84f859b3d9142e6503af5274487a586eb358ad8402110a89691a4121

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
e496cf3297f07be2f325f77b545b852d

SHA1
53825f01c2162abbec62ebf991effd1441367696

SHA256
b50493ef8b42a55c8bfdf34c2103c29c5e01a2860e3ec743c280df2fd462c4b6

SHA512
a6927ed7d789b9bb12ac042878ab57c385f6b5fc31c154337c2514b76b453c630abe41f022e88f5643cc29d36a9c902ac38249f67000bb08dd74549cfbf39f95

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
e496cf3297f07be2f325f77b545b852d

SHA1
53825f01c2162abbec62ebf991effd1441367696

SHA256
b50493ef8b42a55c8bfdf34c2103c29c5e01a2860e3ec743c280df2fd462c4b6

SHA512
a6927ed7d789b9bb12ac042878ab57c385f6b5fc31c154337c2514b76b453c630abe41f022e88f5643cc29d36a9c902ac38249f67000bb08dd74549cfbf39f95

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

Filesize
36KB

MD5
ff285097239ea6d09d5f7519198b6a0b

SHA1
603f496f4169f5047e8c9312018c63487a76b2f9

SHA256
a3ac2d468cacfdfba5879c2ecaa1e141e9fd5aaeb482cd07881b4e54e47fcce3

SHA512
8e601402ed57e59c061e851569dde51e71a2997658344ea0ec9d8e1fd44b19d19dd5c7139a7c9a8dd4596eede2977913fd6db72be139366740abf2af5c5f6296

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
17db2d9d884e2d5a45111e0594506bfb

SHA1
6ed2e50420f9ef9fb717c364bd3ad68834c65a9b

SHA256
13c97dabb42c7b627b4311df96254b16ad220d5bb8adcd0279ff99719632e1af

SHA512
f5f298471ad9adebe4fa828e58879f92b86b737c76903af70234cfe0969bb759e0331f756a95b1aed48eb29f4651a8c457577d0d2f9e0a38ebc077812d8a8138

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
aafcb7f375d4f9818ea451e98cb43047

SHA1
b4a05531953fca823618b75746fe5de27f62f386

SHA256
3dc5c04af6b2c284f0ff82f9e0713e0f99319772620d6e4853af3ed357f7ac67

SHA512
e5752d425bc5885852dbfc9f04a63b8c32380001f24f2f34571666e7c90b6c0418f36826e4576e2be402ca7f484e90e3cc86fdd50114117654a62091662c75bf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
aafcb7f375d4f9818ea451e98cb43047

SHA1
b4a05531953fca823618b75746fe5de27f62f386

SHA256
3dc5c04af6b2c284f0ff82f9e0713e0f99319772620d6e4853af3ed357f7ac67

SHA512
e5752d425bc5885852dbfc9f04a63b8c32380001f24f2f34571666e7c90b6c0418f36826e4576e2be402ca7f484e90e3cc86fdd50114117654a62091662c75bf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
8f52c1c1efc5e7defd8a56c1c2d9ef5c

SHA1
5e1f3629f8568586a9f30bd4fdb9aa15b76a1a3d

SHA256
32c34a3179aa9466939932175e549f21455c6002d4f261b3f3a63d74ae1c9156

SHA512
211b12ba5f46db5248b19946396d65bffac243a8eed8294458c662da21ac298f0a0ce7b74f7a32f6d976cc42c2d1ff7eb2aa1c6a6e56cf645bb7c4803f7b571f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
b7cbc82e570f4d0ea21e0d39065ed26c

SHA1
c852a3a0a19086619e71f9586bcf2640601f9c61

SHA256
24326d9dac58ce9945472e1692e77bb0e92ed285ebf4cee69bd3a33267681df0

SHA512
6fbf12effa4e26438be6c8878a604dd6e1de3e83eeeff49f1258a81489e259ae410c0543385b7bfb6eb8e6a63730d42c73dcde2c097ea7f2b538143c33422fe1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e37d0890ddc11f285c16148b79466654

SHA1
07fc484342c8919b773a6fd0574256356495a704

SHA256
b4a6ac99c882fb52999246a2559a57e52931b8eff88cc1a734fec9a300699045

SHA512
000b09daacbd57b4a99de18fb78ea4fecee49d9e25df66c3fd14c3009e2754da86a3f122c6dcfe7cd927ca638a102cbea0e12aa5d26954366574e342e9f161e4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e37d0890ddc11f285c16148b79466654

SHA1
07fc484342c8919b773a6fd0574256356495a704

SHA256
b4a6ac99c882fb52999246a2559a57e52931b8eff88cc1a734fec9a300699045

SHA512
000b09daacbd57b4a99de18fb78ea4fecee49d9e25df66c3fd14c3009e2754da86a3f122c6dcfe7cd927ca638a102cbea0e12aa5d26954366574e342e9f161e4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
1eb4bfcc1b92c4d95822712d56d3aabe

SHA1
8e61725dac3722e4dc0852cfc6f95138865efe60

SHA256
b77a02abf8374b2b40dfe9b9e88e7b54ff2d1661928eaca2cd86f9bc544e0566

SHA512
b4b013b11e87555d2ee0d0a700e4584e3d1947dab8f6093aa28e06cd1c941d0aafd5094a21696e9f0a0ab0bd2454fd1092db87321644b67b716e07008b0276c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
bff2fa406245b615e731f204f192a161

SHA1
e042a851cccd5927ee4b07d4f5cb0c3f6779e59c

SHA256
39d31fc37cfbaec0324f691a394058a62a97a46aa1c195168e758dad594e3f43

SHA512
a7cf9c788d1188c171323f5dff5e30a643329f32c502c5e832570a613f46c3c501e6655069a9b9ffdc2b1d65ff421f85a5df410e5299e6b2209be8a905b28948

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13325936856459861

Filesize
2KB

MD5
e6dc2822ea44931768d44c973725b01f

SHA1
12f4dbb42bfeff754ce52cc05e4f79d964c71dd6

SHA256
83082f045de7e8ea3bdff0cd5ba9860d8dfaae02bcbff5dc02d7d4f4d1489b32

SHA512
5e249a459f7106ce8ae6cacd39a96e6a3b93eee3c980671c38dd053a98c516e1c0e82cf524834f44a2c6e70718c9639504e91a22ad0d66d53759497acdfd4956

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log

Filesize
100B

MD5
bfee3f912768e857be33be864c7f3e16

SHA1
13ab544a5e6150f1334d3173c202944bbae169fc

SHA256
250c55fb596100f818c37cf468800a6400347050a21b9a13e882bab9deb803b7

SHA512
cd34ec435a1cb27dd597ec7bd7da8b80077e87b8eff4f71b50c9b7bbe1e849a33f4b18f2898f5772d2a9b99b4c74fe111544bf4fc6194c0c3b0a47862d9a34ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

Filesize
345B

MD5
076b063511fc6edfc80226c84cfd0fff

SHA1
d1ab0ee89fa4c51e4a12a07f81bd09e7e5c10c18

SHA256
16746bd683f1b91b2b72094c7c2fc1ef87387f802fe4b9444e52344bf2a5063f

SHA512
ccb917ef8653bbe695e3fc9d8860e42a2a6b071d6541df26caa319e9a1425f4b17b21f54196f4982fc5d6630e76cfd45a0690151a921d766a7b3c8fe26d26010

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

Filesize
6KB

MD5
ddda18675c6357e0471ef46a8456f583

SHA1
2980063ea3e9224138423b8043fc9ef630e8fbee

SHA256
85e5cdb363d861f8578287197506b48e964dbd02ffab66481d99372932af1e50

SHA512
e7ebf94c73033d3bf3898b56823fb71d1217b367d1bf4d74967206f92f87ffffcc880aacec460f04c73294d6d574b617a7b51851a3442a733626fdca57acc89e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
47cfb15b11d0c128fbca33a2ef06f956

SHA1
9bdafcac29be42f810fe7731f58708ac935cba06

SHA256
335c7ebe7ea5b83211625a94a93ad0b09a8e43505ae0c2d0037cf3dac56d0945

SHA512
d813b948b534c6a6c7b6f8da4ebc22d804869794dcacb5e50ef1cbcadc597d962bcbed17fe2dbe6174707317b336e7925ea363ea6e7995e697558bdd4b831aec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
df1a797c3d94af4257ebe0526f259363

SHA1
0a4fa348c4bde815dbd9883716511d8dfc50a23c

SHA256
1be9ce1ed04a3a587fd5c687bc847092009189bd865a85dc35b95de933fe0298

SHA512
ef456098f6ffc34ecfe25edca277d9269656e13d0b124812df730028a31fe5e2694868ffe10038861ab3850f466d83765f48f42f27389eccb2f3eba80af900d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data

Filesize
92KB

MD5
f213d1f2767231ab16605d98143bed2e

SHA1
e6a6f3dbbbed5036cd20160d84cfe35df7b2a4b5

SHA256
fb95a56288a60b89108f011c90a13c88d64e0ba9b1582bd241e7e11118a48dae

SHA512
15b3f45fc2f558facad0f2d97ddeb73a7d40b32cf5921fc902ad1a95023a21b89b4e8990db5d7d8132dd67a2b9e63c9fb6b78c6788f4ef525848840d847185bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log

Filesize
827B

MD5
fd79eaf3d9ba3e0d9a806446efe16e88

SHA1
1f16b6d91411f606485f134ba9339ebe74c4a1c2

SHA256
db8885ffa25ac9b3022bb635f77e573ff49d5476ac830f63c8a259d3f79e2e00

SHA512
974b8a92a686d74145435b42797151ec6816f79a1a1aef7b74f05041431fb4952ac506a23178a705272c3278731b9770f000aeb4e646b90c11f21041414350c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG

Filesize
317B

MD5
e5600413b65caeea2d762180946ca2e6

SHA1
8ffa4f4f8489451ae3bebc3eb94b88ed23a3bdba

SHA256
1fbb46214c5e4df74a183a4ad4c8d1f9e55cf64e3985378d8d0288a624632a7a

SHA512
b509cc7540adac75069f94257bc6174f351ae51a3e5d095f6a31948906c77dcc3528b4c6c701e6acaccef6baf9eea6d4aab96d38f833059d3359889f28d25ec2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
884B

MD5
cd72096321e07a136625a3c4e50e8621

SHA1
b9b435415e180131fd34205d92afdb7729b1f939

SHA256
e7bf1ea157257c43ffc89f41e3491bf9a295dfc22d9e8d8c482399cd887bb93c

SHA512
0b3d298e47649bd4e6ad999d397fd9b4828d07760a7987815d002101e37393370fe53a1393a6405660ff1df1c7d68e1060d9f633e7a01733912f2ff6bd05d28e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG

Filesize
335B

MD5
a9e2698443a7fad61c45532d5dda907c

SHA1
c417f99acf15b2e6936ee5d8f0d3e9b1cd5cb5ac

SHA256
d9b6129b4bce76bdbcc63d0550868d1966783fd78a7a66b2a519800c1860799b

SHA512
e2fca23c3a3b1ed812d5cf157663b06acb62549ac77dbd6ec355149d39f1a08fc9fb9b275d8a6a104d0c966f099ea23c9461b9b5d92b74f72ceeeb625e167a55

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

Filesize
264KB

MD5
97866b602c71aee5a4eac2d6ba2a0331

SHA1
409c24b33bb110376c121680c68815fcd97c7f28

SHA256
3f7938fd8950f2f43a954fca5aa42f10bbc334822fa54eed31dc2fdb99dcdab7

SHA512
26b1067804473f0b4255915fff602007451d63f4bf0defbf9ca58743e9046bad26393bebb0a2004c9b7e9d103073b50caf1709941c8b89457485fe89447e185d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
9eae63c7a967fc314dd311d9f46a45b7

SHA1
caba9c2c93acfe0b9ceb9ab19b992b0fc19c71cf

SHA256
4288925b0cf871c7458c22c46936efb0e903802feb991a0e1803be94ca6c251d

SHA512
bed924bff236bf5b6ce1df1db82e86c935e5830a20d9d24697efd82ca331e30604db8d04b0d692ec8541ec6deb2225bcc7d805b79f2db5726642198ecf6348b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
199KB

MD5
b1d242219ec12c06cfe56065c4094062

SHA1
5c673e162a911095bbd2c1672551855b740fd1da

SHA256
faf0337f4f9c090fb121a3cf3888e94de66324e8642bf7fdb7d941618df17702

SHA512
e5526c5d9f4f04656c69e96f148bd715e82c5c3d7260d6324717fcc99c671e5bd56039b840d219fd51803e26b9b5027ab16c41cb5489117ea069858495508591

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
199KB

MD5
14a5a068184ac88e8654a362f70e40db

SHA1
e502f539a6701df16ff1facfab1b1fc6ee1cca24

SHA256
6d79fad21f0c614e925fd28b6118a2b4a05e772c5a5ce5308b1af9da5d0b472b

SHA512
5f242ab8a64d75251cda71d569d6dda26aaf9bc04286bd7970490db3cd08e38524ccc12a1246b0265cceb17ed5a096374e44b0ad05ff1b773c42958b5c503a0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
131KB

MD5
1904340dc2e2ef6cbef0dc262315f544

SHA1
23b6e21e60307eff55f40f7e05f5842d66e56a95

SHA256
05189f7ab4ad7d775a528421133147001b74fb46765196f42ed2e432b0d57aa6

SHA512
e40c9f42e9e06649990fb78bf8ed187903a35acfac7cf5c6cf5c2ef6d69aee72c5b378c2734af8774a9c3b4dcc31f1e8e1b95e05d60c3cf1b66402904453e0c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
199KB

MD5
14a5a068184ac88e8654a362f70e40db

SHA1
e502f539a6701df16ff1facfab1b1fc6ee1cca24

SHA256
6d79fad21f0c614e925fd28b6118a2b4a05e772c5a5ce5308b1af9da5d0b472b

SHA512
5f242ab8a64d75251cda71d569d6dda26aaf9bc04286bd7970490db3cd08e38524ccc12a1246b0265cceb17ed5a096374e44b0ad05ff1b773c42958b5c503a0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
99KB

MD5
556c949abe64c76662d3fd8b6370b7f1

SHA1
d09cb47f5dd62eb8151856a2048e74cdc1992ac4

SHA256
8c0542fb9cc2e5b3f0c6470293aa63631d68f1c899b07f90212bb0cb32dfb0be

SHA512
e6629885128fd643f15a9836fda790d0000cc449351355ee01343e5153b8ae410766c14655005c81af9924b60b19d0133935614da48f200833a3fed6d20cfbdd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
34bae06670a152b0fc8891a001a88c1a

SHA1
2a8e4e41e504395d71a1d5d924a1e886df401adb

SHA256
7e8174a2aad8835f56cbc24f894ae93978b4058c107c19f5cb48e32dfcca1e30

SHA512
6fed78d4335e030a53860f38823646312265f71a8c14033deeb885bf907e01f587b3e8ce61f9992c9061b75400869de729092c0695ddc65e2f53d17bdcf6fe5f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
86B

MD5
31390225a4b62c039eb8371070b30416

SHA1
f2ab8dd8eeb493ada6b798ac556f64f9e8d2acc4

SHA256
59bdae85374b19ef28c78cee822ad961c78c83e3616500017a076115c17d0096

SHA512
03edaccc9a3e76fffe157ab5ebc48bedda57cf51202c72a8d1f4417d2466d0d91c16c443a8dd82eb1852bf8c82519221b59fa3bb47b1c65e47908edcfdea01fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit