hxxps://shardeum[.]bridge-claims[.]live/

Resubmissions

18/05/2023, 18:29

230518-w5cvjsdd27 1

18/05/2023, 17:42

230518-waarpsdc22 6

Analysis

max time kernel
117s
max time network
112s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
18/05/2023, 18:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://shardeum.bridge-claims.live/

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133289154123528664"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe
Token: SeShutdownPrivilege	3616	chrome.exe
Token: SeCreatePagefilePrivilege	3616	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe
3616	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3616 wrote to memory of 1660	3616	chrome.exe	66
PID 3616 wrote to memory of 1660	3616	chrome.exe	66
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 4220	3616	chrome.exe	68
PID 3616 wrote to memory of 3488	3616	chrome.exe	69
PID 3616 wrote to memory of 3488	3616	chrome.exe	69
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70
PID 3616 wrote to memory of 1004	3616	chrome.exe	70

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "--simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT'" https://shardeum.bridge-claims.live/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3616
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffcac669758,0x7ffcac669768,0x7ffcac669778
  2⤵
  PID:1660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1612 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:2
  2⤵
  PID:4220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1968 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:3488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2076 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:1004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2960 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:1
  2⤵
  PID:2740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2952 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:1
  2⤵
  PID:2760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5228 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5092 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:1212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5060 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:224
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5264 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4516 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:1
  2⤵
  PID:3992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4548 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:1
  2⤵
  PID:4040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2936 --field-trial-handle=1748,i,14851078317392986346,13692165564488551584,131072 /prefetch:8
  2⤵
  PID:4444

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4348

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
258KB

MD5
746b887a7fa778dad8c119479e0dbd07

SHA1
b7aec6a2178d1c5499dba690ceff42309a7705e6

SHA256
aab82975e0c4f8dcf02119b96128d1d4801b9368cb03486c68db5393cd499eb2

SHA512
879b904ff3eefbc84bd7a22d4dd8ea54c4609fc93d8c89022299a62ee1d9b37544ff3526233d30c1870ccbd3523099720b77314cf8c3b0acf4f8634d3d19760c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
246KB

MD5
a08269af11c03e49c27743371c0aa052

SHA1
e2a92fffd0f747280d9a1d148401f245a04c0bd1

SHA256
5cc3c6bd2507380afe46dfe2d4688378a30bb0c0c31b4a3e008e77edbd8066e0

SHA512
866078e720398e7b97aa03422774a2aacc286316d3855dc8d17c766c3cc57280414c4c6b1843be5fc4cb07d1cdd972ac441414148f4a07f043cad89f532b22ec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
317KB

MD5
f31d56f80f060172c9cd17fecb7e009b

SHA1
5a53727be74254c792273a3c94ed31a7bc056410

SHA256
e44c041ea5e142d78bac27e7faa0b891cf886597e2a7c0b1ea759f62806d906f

SHA512
c388f40126d5de81ec0d77fa89983f2a3cadd765b65979c41ebc7e182b9583b50e80d98944ad2d0c0701738c0068ae47339bd0b25c2282d7ddf874a90dd3b981

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
379KB

MD5
20b79bbd6849cbe48c65e18330e9e03d

SHA1
b2befe7183f4c731ad3249d41038c1de54c84452

SHA256
ca73f489a0ce27b5304634563bbe55a9a0e5e2c43a5418b7b612f9542c4bbba4

SHA512
59bc4b5488ff5c4d0e72af952504b2791c3939e5aa66605033974885c084e5a46e8191fca8e3b16c65da335c9bc4b9d92094c8751641801dc73775ba7e3ed76d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
592KB

MD5
2e3919619d532b11fc061009ba28a63a

SHA1
0a7587b5fcdadf62a3bf3217e7570efe712cbbfb

SHA256
5b0654affd9dd6e4af5c0af51fd0bc85ccffa441fa6798661790880fa4008f3a

SHA512
8d61b96f0cbc585027dd725395d6a32717725d8274b731c17065c49c6d2f3c5e8b47789edee1190648d020ab7962b920e1421437be745fcd996881e1ac8f4dc6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
397KB

MD5
39c9b4897f99f9448b35b99cd0aad570

SHA1
d917a64676872da554096887fb220f38efa1711d

SHA256
eba62c087dc0c27a03a747efd9a1c26cb276db72835775671f7bf8edc62cceca

SHA512
b928fb47d0e56cc1b623bcaf2f6c54b0752ca410a319acc4d0e75eba288b150ff3cf72b9deb561e8882716c181aaca8fe62c758d6cf29e3e8cb8cab909e2940f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
238KB

MD5
3a0515d6fdbc3a5c32a1d4c8367f240e

SHA1
ad48137f1753c8da96bfc1986942bba866f32a1d

SHA256
4f2985f8517f5f19f51cf9ae71b4b11ffbf7af8637a7b8dfcff5ebad6731cc29

SHA512
50c5ca366449ee9ee960add7100cd8698ec7d774ab171f7db685acfd7a46923ee09b0357e136e7d73c0c509cf505ecaf5fcb457844e5a9f23352477d06abef47

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
27KB

MD5
d900ca08873ee57d40616d39a44cc0aa

SHA1
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a

SHA256
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b

SHA512
b3029de5aeb56c26b316ac4ce08dbfd533b9fe63c2a8f0c256693349259c4c8a3c3e462283dcb26c27d4008fff4835923800727a4df17bd6fffd097dae2128a4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
181KB

MD5
25013fe8be671101b62ed8b2a2570975

SHA1
07f09b6098c11a40e026d411724c765fecc14927

SHA256
bdd6ae11a21f50d8b9f09ba9a20e930b3adb4e007075311e27154aa075b3070f

SHA512
2e18770cc64e8a370aeace230c49b5b3401b13d078ff4a0d79551605c1a86c5de753cb38e900e7003cf82d7aa5d103c9f47c7637d607f1b5e6ab1a6b30795497

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
18KB

MD5
218785b315e8816f1dd1c677eec6f837

SHA1
c7c12db6cf461cdc866f2ee55a2a7bb11f9317f5

SHA256
6a6989e24869f11461aaa8d3941b074689d9e067a4c04720b8996b93f7a7e42d

SHA512
31523275871cd2dedf0bb6ef72a4c01463cb101e8ba4751751a28656b3db7a3c336c3726cca3f4b7f7abb80db7095e743f2a2a3771db2ab826bd2c43b02a02e9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

Filesize
94KB

MD5
8d0063e886e7f2b3764fcf03e15ce81f

SHA1
10469ad33155f67e5ec37b848a3ebc74ead3ff50

SHA256
9daf21fa836a23f6b2e15d2a2ff755f6549241ef3a42c8e0c6e51dc4c1289598

SHA512
162842cab3667a6b06ebc1ce12408411cb39b34609bc5d9418920b6d8c8ca6b3b890d10b92f0c249ac94b3881cce58456a7b748850c4bce3041b90bafe32ec6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

Filesize
197KB

MD5
0626b1fbf52af2402ec26e89fcf7c159

SHA1
51469b8ea189889b5793917a47fb13cef4b03529

SHA256
f5a58636fa82911b79ec333b8032dadfd600e7f45bda52cbe4a8f04864b5ca1b

SHA512
33e8dcf025c6f18578c83f3b4221dc0cc67e85ad61c328c0b48e82acfcf61ca6953783e467ad94dc58d1e4de54695737d6bbb9054e1dfe431899d20059355452

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032

Filesize
44KB

MD5
138d88f05568ea97101390665796ccac

SHA1
163240158c89f930596b755ecd9f63f40be06ed2

SHA256
76db5d44d8a549ac5348c64785b08c11d4f54c587f24b582fc4096a125e04010

SHA512
ae61d935df2943bc1589e145d3cfed85c913a436f82b393331a21db66a85d21835c723db0576a70142891dbedd892d94561dd493b9145415fc45e947429d7840

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

Filesize
729KB

MD5
29fb92b3430a91e0f677a5f852800627

SHA1
2c0d22ddc0bb82f5b7cd3085650e8457f9aa229e

SHA256
968d103baade1160c2e2d096bcdeb0ad70400b2b2e92df06bd6e6e0c7b5f4dba

SHA512
b5881dc1eb94e9fe65f0404bc08ec31c6777ab4f652beda88dbeb62bad37627c36f9626341ab165f3ef727f9232e94c06657ff06eb5c7837b3efe2dd2a20d4bc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

Filesize
940KB

MD5
f295408d9b5e6f14f2c003e7fcbc5092

SHA1
989a9d05cf0cb66af554795b62308677efbe6672

SHA256
4cd2d8a2f8163b585c6f91909afddacb698c1fe5fc22407d7739a761a560294c

SHA512
fed85f651ccd4761b3509abaffcd7330ae349455806c89a62e019b69b69da6f1a59e57fcdb008b5c7cc23d529a4ba4e8b53973bd534fe691bb99e323fc7cd87a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035

Filesize
287KB

MD5
2a5831dd7ae01002a1f22d2b578e8cb4

SHA1
810c9da49db8e695c1f905072e11ec18638db47b

SHA256
6ddaf9de78e68099592c7c853b8a04c94d671d074f1c7d967f12df76b05aa092

SHA512
7e20fbfacc8f2cd223257d65773bb50a041633ede7243344b81dd0e4ea515948aff3a714a2a2230dafcd366687281dcf622f9da67849dd218ed242f8b2ed7f30

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036

Filesize
24KB

MD5
6352070cc44593b2412d236af8383939

SHA1
7f67aa182504e7b7f17845708474e2503a700add

SHA256
e211c11946196ffdfa6183d52ac8b2910af864dddbbff5aebd77dc8f79be8f88

SHA512
d221ea7fff77fd251ebce9e60d0422fbf1855d78e6294764e7f09e6e0fb4ac6124d21b154e597e6cdf17d5ba98abd18eaaab10735b440e40c4559c29ce58a86b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
720B

MD5
e1ba85a52bb65ae84db82b5e46d92693

SHA1
80b8aebf3e9bc0314681a371deca5dbe44d8074d

SHA256
ef5e5b0a8aaf20de90a40c56fe361e3aa77d7fef7b8e4e3614fb483c4338e4f0

SHA512
62b2715116149ca2a8a53de8c56240b62ecd7ccd3f9501c342bf5b4e5adfae72bb3f9ec7b250af4e8860a08110c85cd4b2316a9b35d3fef1f5a1bfd5772a2de4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
a9bc94f9ec64d0bb755287fe4d1f7067

SHA1
d6eb075dde06c14e6b45ea9c523d819e9f39ea23

SHA256
178e93da2c05fc8ef0f03f3b067a0358709b0900869ae007a0e0e5e15d67a61a

SHA512
66b090f8f7d0440dc0f28033bdd922225c01b00263be631a1c39bf511d669634db29f1af01e32f2b8ff98ce145a401297d4e8735542a954715f3524abcd9927f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
3883440bef00cba41c430d0ccfbacbe6

SHA1
1edc9c240fec351ce58a1e212900627712ed9a1f

SHA256
1fb8e48116bc8fdb40cd7e4f93c191126ebd5dd8dcecc0dcfcf3fa33bd5ece47

SHA512
2c538af8a24f4bcd2337b7b14c704586ba7cda138964c39840daad9c88810a15dfdab1ea66c0e04c73d594074471ad771db768cfa1b7f9aa27d9043c308a4d0e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
69a9b845df7cd2bcb88c3161aeaa59d9

SHA1
56e6468b4d194191b1a85286c7c6564779b52b22

SHA256
3e90095234afbf908c9d12da71ee684bff12a3b500086af2fc3deab13f49fa2a

SHA512
7b06641534bdee1c40ee416836da4c915bb4e70acf7bdf27fad7122297e3649e3897cb36538b5be65ad46758a325bdc18564141268e1c35bb0d913ef2295e995

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
db9cc8c0d0d1f577dd2d6aa72be47fce

SHA1
d7f82923a937caa34949b4f8dd370862422efbf4

SHA256
ccbff82b42ca8e4b0b3b733e2e8bfa3bc88ef6a7dcd9e0db6eef531a917f3316

SHA512
ffac0128ce0b14a85731c4c90db796267943c0eabdfebe8c5f62b90331c96cc146eb85060ec65edb943478c390eade041339a3544e95a1741b9667202293abc7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
6c406d371eaebf58a054196fff3c55b3

SHA1
33e98eb67a995c0f9a696d396726563420d622ea

SHA256
502fe0ed071467b47d5ab0ca45f203d83253b6bb3161801d059c6a7a7738a370

SHA512
2bc997dce0b3c524999fed46d1fc90115da6dcc8451ec6e777cc5369711e7d7b2b8cd26933b9f262c968ed19de6c777f18c651eae17b6c71fda24beaa2e82c59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d1ceb49ffb37042699658686c15bc208

SHA1
7eede2138b74f983a1ced5b61860eb0605a968db

SHA256
50910cd343639352b94bb63bf9275b5e894044afcbfaa21fee9d793cc1c98bd7

SHA512
0af9aa04572f0fca890d7fa420d880f525277020ffbd8b8363a24e709e035dd1caaa18101aa514361a6fbad30829370663cb8bc507a882fbdfcaa268b09404a4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
6bd53e26eb36257c8d0f7702aedc84e6

SHA1
e1662d2465e9b6d561054b7b9ea3a1c1bff18357

SHA256
3883ffc542ca0e94bd60723c868728344b92b323673dc77eef65fbdb78acdf2b

SHA512
5e04ea2049558044a3fe8b7818f2512b578c5f69630fc8d4eb5bb1b2d4259f31be6757dd4ca346b0023a576dd8d5cf9ca8d12f27b9d271c252e28ba0a89309b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
eec3bc289b9d8306e9960c2fa4efcaa9

SHA1
a75f3ebf56e939a3e4a78b9d3088e936f6940e83

SHA256
c5b4ed451e84f83d163a4048a702d3062885c04d749fa5a2c105a6ca5fd30dd0

SHA512
8dd6b41d557226a7bc327169fcfc8f00c1771ebce15dcabe574ed3cf42076e6dd1e8ef9f21aab39882414d02b6eb7337f90b8eb6b1a51601c9fe8cfb1cc4ab41

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
198ca1ac5276dd71200a5897ccc48dc9

SHA1
7baa126275371827281d21e2700c83fb217fc86c

SHA256
71c127ba438d45875603646f7b3ce64b9847c5e01deeece744d119c8cbf9f234

SHA512
0711ce15d18a2c2a7528843c3229b6309855dd8e98647537d5ba36bdba52177756fb181971447f4c8eb38c0514999f8ff80e0a480a8639a63712e8a50a612d3f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
30878f925637c1ec1ee2ae6f0d161738

SHA1
41227d857ab6442c42a875ed98dcc6c7b9e44d58

SHA256
9887614ef1e9e11612d11a1ee529b44cdc6fa18acafa5f83cf35e341ac9fa583

SHA512
79fd0dc5e4ab5d7926b3878f1e872498f15f72224b50595cdb5546a56942b91c010248df2516a00e13535217ecc95cae80b2c1ab6a826330f5248fb1a41a5f57

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
719ef2ff7f86441e94c064f15c2a9fb8

SHA1
9f894fffdc3329524605ae626f296a414a40f97b

SHA256
238eb21ca29393f3a058a667287ec08b204d649a39e3af69dd7eba2c89878ed6

SHA512
38aabc55f39b18f14ea0e2015a5280920eccba3786a543d2bc0b2a2ba0cb79f402c8dc3e89f6fb039780e05d19ae40281862a43e8aef65cc6bc757718f6107c7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\db8946af-112b-4ac3-8e3d-8e0e359a8193.tmp

Filesize
5KB

MD5
5f61d9d196e520eb538a6d5363b69645

SHA1
40e783ecd148e0d8306be040c71cb6bb0313fe00

SHA256
83f0145a8673b8dc602e4635a1eaa3f2a6271c1524e0910fc0899143892d7b14

SHA512
d8707111aadf366e9ab7bc160f1dcba26eea29923cd6c08c3a29147b7f8214eead8c7bebe9a196c942fdbcd2c62f1b997aae240a8248bc1ee2b701e79fd11bc9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
2980a20965b157bce4c761ae60fa243a

SHA1
2fa5d3a28a01c4c5cb093f7228d381f7cdee9984

SHA256
e46517903644cf032469b2acbe664ba024f236a427e38d64047e51d00afc4cf0

SHA512
76dae73d60488fc7cd8a9f7c983ea5e5702cd19f4bd0de22141b255c8c6b80b80057864197bc0a46a2a5ad8070f526c871ea69ef38a5da1064cb5ee7a0bba057

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
5aade4738a1a324b4c2aa28d9770a21c

SHA1
4eda2e66950b82b6ff51c170081147af8eaf00e1

SHA256
db5fbce02b5e02ca9f68400db11515980fd2e20e35fdb577e42b880a400c4c51

SHA512
763b50168d9064fdd232b7ddbb1a28142586f0bd933571171b2a789bb86c57675c56f42d387036b71c065c8697638c22f0e6538f26854a3fa4beb3a40abd13fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
72KB

MD5
27c7c6f420f2071c90cbc9f5bfd608c5

SHA1
6a58668b37dc780a30ba9219912e3101ee6e9baa

SHA256
cbdae3f176c924b454f219a2865cb643baf2a12279ce26e1482d73a1db75ffa1

SHA512
1b3f6dbd0152c9cf68af63e37915f8c40a7354c02494292d5bc8d98373873b9bf715fe7f46b3858f64dd27d49900591e1d5437034a2154246381b55ebdebabb8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
16251c83d00b3ec7db73a9721fb7328a

SHA1
cc0ee3b0a9d9bd796147a7cc6dbcfb42c6da2b12

SHA256
ea85d72ce087a122e569849ac2ec6d6cb2fbe31127134cc6a1633b43415fa759

SHA512
bc0331607f611bb54130e7863617fbd1e96b2c1bdc3338c336f3ebbc07b89a1e7be453830ec1a6ce179d173f53be8d9dd7b40831008b34be7f46c7ac1d225ebb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
181a67a72fc799e884bb0368a4f54676

SHA1
e6ab59ee1d90a63df70c9199e87fe2d587758283

SHA256
a2111c1f57210c209256cd193e2aaefe628759fa4b94bda53f34589c5804f4ef

SHA512
f478b0ad9e96549b235d2fb1a75e510c55a944a36efa07f23b04efba74f785074ff4a94c4789bd572eb27835ff88f429295e7787d1795b80a401130c434698fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
100KB

MD5
f9ef625610c6b2fee780d761c8e0a51c

SHA1
be5506fb7fa496d30471add21cff0d721c18aa2b

SHA256
285fa0788aa291f0ddae089fc71edff5f6bc2ba934a953e0ce6abdc342bba670

SHA512
c3640dbfe8a9d5a42d81961cee1e212e2809fc5a4668d7d9eb91f9b5fa0586bede9285e27a8bdacfbe758686501e7d00e6b5020cac554175d25f0b517e75d158

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57ae60.TMP

Filesize
98KB

MD5
c9449319dac57f189dcb7c0236b555af

SHA1
eef28d8b2a62b63408276aba779c6b5f3a30804c

SHA256
5fc87a03e135c9c219a74d8e0cdeaffeda656e4c7cadd5f1f387f013a8d3acdb

SHA512
1480787f4844a70bd824d48c64c7a43364336a4acbf34ace9f2b6f59d91003d0200dac968c7a39424617fd34d581d8f4e63c8c5c152f0505fda2cf9be0cf45f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit