hxxps://cracked[.]to/Thread-Supreme-%E2%9C%851X-NETFLIX-USA%E2%9C%85?pid=29958999#pid29958999

Analysis

max time kernel
660s
max time network
632s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
19-05-2023 21:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://cracked.to/Thread-Supreme-%E2%9C%851X-NETFLIX-USA%E2%9C%85?pid=29958999#pid29958999

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133290112874035140"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
4948	chrome.exe
4948	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe
Token: SeShutdownPrivilege	2752	chrome.exe
Token: SeCreatePagefilePrivilege	2752	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe
2752	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2752 wrote to memory of 2816	2752	chrome.exe	82
PID 2752 wrote to memory of 2816	2752	chrome.exe	82
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 4508	2752	chrome.exe	83
PID 2752 wrote to memory of 2116	2752	chrome.exe	84
PID 2752 wrote to memory of 2116	2752	chrome.exe	84
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85
PID 2752 wrote to memory of 2144	2752	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "--simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT'" https://cracked.to/Thread-Supreme-%E2%9C%851X-NETFLIX-USA%E2%9C%85?pid=29958999#pid29958999
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffca3a59758,0x7ffca3a59768,0x7ffca3a59778
  2⤵
  PID:2816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1824 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:2
  2⤵
  PID:4508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:2116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1792 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:2144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3184 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:1
  2⤵
  PID:1992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3228 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:1
  2⤵
  PID:3728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4524 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:1
  2⤵
  PID:5068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5200 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:4712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5312 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:4688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5392 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:5040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5464 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:1
  2⤵
  PID:1720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5372 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:3592
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5392 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:8
  2⤵
  PID:4464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5576 --field-trial-handle=1832,i,1589595142945752219,609215565827640764,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4948

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1624

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
26KB

MD5
baf261ac5e041b3d93550c0d8c8921b6

SHA1
5c90bfee06fe4fdb84703a0983888c99114c1d7e

SHA256
028f2e04766796c3ed09a7fd4a5299e020e32288dd6ede82b1337cc8d36986ea

SHA512
e688c4776c45897b9beda5290c994baa46d77a41ff85be589801a89bbc6808dd8e937bc8d16b8da0958ac6886a0917a4356972cfd74a1d0ce1a003bf67306097

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
70KB

MD5
d7e6a620c2b27cd8a78c837ee90e4c3e

SHA1
99b3d9f26acbb4743dfea7543011b3109e1bb802

SHA256
b91c0963672bd450e644d57eadf380630df949d8448f023ad87f9b6e5392e313

SHA512
8d81ebe34fbdc6e72d765726a7732de0e5aa5b3009d7768cda1c045d30cbf1e2a7357483de68abeed7b3bfed9ab724ee5feb8372709fee1f696daab75a1997b5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
162KB

MD5
08f3851748975142ef7c08a8ea1ce61d

SHA1
31ffb52b4d2e4263a2b5a19195ee1784bc884a15

SHA256
e374d418c7975a482356a79e25f0722ab71616be443cb19d96ef88706937bf30

SHA512
d4b86e69582cf1bc33991cd44eb1db26eff3013dcc7ed34d8b7d890be510ef3949a50332e732c22182a8fcbba418c6ba18aa031a6f0b5b621ea2211e665af3f7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

Filesize
17KB

MD5
4be56831a58a021fc11e3a5a393788f0

SHA1
b2cdf6a1460167fec94b92e5dc23b5ea904f2969

SHA256
aeba00514f0af11a82d838f5db3cd00998be86dddf7d540b0973e83252bc918e

SHA512
d70f1a347c6f6f43df563773819a2cbb4731ccd4b5330f60682b054c5a05fe3f047a26798c27bb3f132bfe00b28e714b8e555c13cf4782be67892e0d9541efc8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ef371de0d55283a_0

Filesize
287B

MD5
c2ba75c26cd1f55914777d79d4cf1017

SHA1
c94e7d74a67185ff58908a31699704b11da98887

SHA256
e0d04ed43fa9878e31c38d78f92cda4d06d681c85094b7d4acea1fa3c8d246e5

SHA512
4a5bc764d59fb2eec665841127afd4cc47167a8f2e7673d9ac489d9c53291060bd6cee5d3a462f638a019e2a57fb209d40b954b0b88ad5f5baa5a6a23a3d3d5b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\baf2e466c4bfc9cb_0

Filesize
23KB

MD5
ffec51526812ea1d1bdab5e7b17b6ea7

SHA1
a02891f0e48747e31c3f5c7bd079860f6fa55e67

SHA256
4940061ec395bbcde909e6a94109e993cbdf3df85e2042123c80a164e10aac61

SHA512
421f1b3272f70962cfd124742ffa77f956704a17720065d3ec7b75aab7c53f39f520e25ae23b6997b839b9f49761606df6a447b460b177e613e4f67095206df3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
552B

MD5
db18d4f1b16237379ee564f26602b54e

SHA1
80decf3894cbbcf48c6b2307bddfc05cee4734ea

SHA256
47097d4c4db0c39a3ccf6377f54fe7b1427c7ae5905f26c1b99491322f6725a6

SHA512
896603afcd5dc9ae54a65a4210518e46dd912bee3a783ff0fe82e97ffaceb55559c500f7e691c4e94082d4c8d123ef91005cdf6ccf19dc36b5a412f98741fc70

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
744B

MD5
fd09b7a298c135dd7a2a6e44ea1807fe

SHA1
9757b4a1dec340e08529195f2bb63b9543a16201

SHA256
118e6d3e99182c0047e20cb106eb54376c89afc1f79f5c0ddaa0ddc6d16cbb9d

SHA512
a974319a673c92252d75150505901c9502160d3ce1062562d76492428f5991183ff7abd3088241f056a9a1f0591566d197c89fae053e2f8c573c44f139c10da3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
768B

MD5
85762d13b8a683357aede00ae4fa1d1a

SHA1
7675bb69a5fb100e75e7567393706baf8dfe714f

SHA256
e92601693ef1b10d0ad7ae35953ebf9b55e54b5e75ec1eaa5e7623feb1d8c59d

SHA512
bdb7d8e137d59b09ff2890756957c9e23d59a2d05fefea8c84dbb7018fb7c80ec1bb300e23901bf14b13dad1a2e42c835f6c4a09c4470be80b3703c9d1b66122

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
a6443a7b73ebbc554398efe810e9e8d9

SHA1
1d266060f1edd066024b8013fcf3672ca28443b8

SHA256
a69a4da07d05daa9acd78f4b90c125694f218c6106e65316ba7ac35a8b98ed09

SHA512
db831abcf709dc8f5c6cb4a4a107d51aca5010f96df71de0d7e0aa50e3d0a8da2053f5a27ade759c87b1aed2705d5a5ae2025f75730ef3361a93cddecb336ec6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
6dbe5919a7abdf4a6c7a5ce2a6023891

SHA1
b8da32ce013a5e1173e462fa37e21c3e6b50b60e

SHA256
f249f3832f1a56ee4f2464645c017f07a02de2f4e584853832183d1ff7be298a

SHA512
b46d6d2cb3e53bf0349eced11e0f9859dea4ec3f371e74a70812174fde3813193c8f0818ffdb697dd9aa73714f169a2ee677005483df2d9706125acf3fceebdc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
5928054bf756c6e3991c4d626b2119f3

SHA1
9e6ed02afa52da0ec7ca5f00f060f4aa92253312

SHA256
780e69c3689a4bf478784038f8a6ba53ad41a7d0929e3ffb6266b78c853dcd43

SHA512
7c0e6907ac2e344c7fc1e09e4b25e1ae90f7e8faa455136a02d41c8ddfca74f904985e5af00b8da6a8cb7bc484ad71c3e3109a346b707c8f4b29c3a5fa0ba0ba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
b084d567bc84ffd8eb81eabf9808fa13

SHA1
460878447f91a08086884eef71e437918395009e

SHA256
c2825b9039d4cd92eab6fe383d27acf8cdfa51521794f0d933f522d04d9ea38e

SHA512
6902a0a2da4b56d6d0c9461cbbb2bf80ebf76b601e46dd17fa43d0a75f90998b2b161c0b58cb6212f50c8990d214552544ad7e4dcd2cf7d11c5e2f6341df1590

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
a602ff2923fff8e4997b7a809e884124

SHA1
79f66ab15d3a0e314362e8f00c0d409d0fd89720

SHA256
848a539714c5691040b587cb902f6e7804c42be3aae32dc30b17336013a7b79b

SHA512
011117b89c3b07d209d62316d5bcca2a2202906ff35421f81531ddca42473081427705ccf3340a062fc2b0f8e919ea146f915a6808e30076765c7ca16015e56e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
c85a8df9a28c690954ccc8ca15c57c63

SHA1
cd25baed4b6fe47232b136e0b1a76e9447f6d307

SHA256
2ffc85f2c9a937fd67512adbc689ab29f08edf7910adb3e6addeb1cbbfd0601a

SHA512
05a451581072472c71ebfbf88ed5328cb48874dad505aeb5448f490a678a35aa79c9f0418908c9eee8fa4e2f588d2a738f588b7aea1486ee7df13011e7a9afdd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
0072726f06409911a6f66013ff06041b

SHA1
1773ebafe3d72f7269b5e34558f8c900dd239deb

SHA256
0b6be07a5ce3b08c396d9118de1562cf45c14e1373e9a2466e886e738b0ff21c

SHA512
981bca218c891ade70e81cd939c1d7bd4a1b3c269936ed84c4142cfa8e6d45b3e012d71a5424038e9a40e2e68b5d4b8fa624bcffaad5f37e62538f62b0dc6d71

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3bd23699a74f5a433bf4edf55f6b3ab7

SHA1
d367f644ea852cf4fdc7b578015a1539149efc01

SHA256
9d1030b593c58d053bf5f2716ddd57c1af8052b9d7f2b3663f97111889008876

SHA512
4272d13b763f9100a1baa6b3ee6b5b8b7f806597ab9bd0121154f8f28757c49e9862dbeea624b3ad2abaf7b115c401f74f489664a0ffc5f39e3e5216814339ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
07b7b2b32d559be95c131b2ca30b0664

SHA1
c332844b730c175fd1cce8cadb7a7df9ed012bdd

SHA256
0e75c470b076d38dacbad6e1e808f621d1c9d23e575b3c7b9873b124d6f22eab

SHA512
33d32e301319f2c6392489921595495293602da8bb76e6895b9615cc2f0894a9e36d222bc42bdce3a073ea7c808c310f9e32a74d600f4c079aeb16c85fd2ed24

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
25af5c312f0004788e2acdeba0357229

SHA1
364def15a8172d06b4b2c4c8cdee0bc6793acd09

SHA256
8d88ee93f969ca6fd4de0951868551b61004ef03f8b22ed69659e4a79afacdc3

SHA512
47a2439874c9b2787d1552eadecd3c204e528144d2f0c8c74a8c429a78570ba3832f2a6115f1a7b50fc6c8022289937fbc7fcb8270a110e1f2cc7d6055988bb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
6ade2eafdda2fae1c5f4d8af7c21b393

SHA1
2d984c820ea762601df5bad22f82c0fd6179385f

SHA256
4d788e01c49d0a9e37a1a133d3bc9397160300a8782f937fa6a93cfc34361d49

SHA512
b77c700b463eef1794bdfc6700cf5ab79978c98e01f655c5ed61062c7cdb174bfa7b23e9d0d27e8bc240ee698babf03e681ec3c4dbbf57e2ea12e3bb1162faa4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e388c7a211407c1a35c76e15e4dddd9a

SHA1
35892e4f97cba802addbd926af6620de965a4523

SHA256
1d7922c340888b73aea58e732f23a1e01275fd39fa8b183412e48295600a338b

SHA512
722ededfc9c07c615c96c392e91408cfa563240beada5460fddb9373c6b66e2f6a05c4a54c90693eaa1d93854b9efe355377ef83db60db02b0174219e4e6a03e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
ea4b038fd078e0c8c3719e4a354af827

SHA1
3aa966db68906eaac90e0dbf411dea07306ef19c

SHA256
29f0a62592cd5ee244825cd23be4aed0c73f3411bdde0701c4f463aab1f3c3ba

SHA512
24be7bafb4ba738c47db21d64d34221bf3b3a83414ba3816df99ec988201fee5bd30971c43f8ae2777f3f9c7b335595958c2c20c369c08b5d88af55809e81f64

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
72KB

MD5
5d66ae740774a809ccbdd3920cff09c5

SHA1
90a88e03a3d8c8aee5f7dfd5efc29bfb4d53df84

SHA256
c7fcdbaef6e3a9830c5ed46ef427627abc2b3dfda7b9ea4ba694c488e321dbf1

SHA512
7250703caacc09984896a626cd11949bdb8a0cdea527dcae7487f3ca2488e5172c4d97c95a7a2cc341924f32928373dc21d87ac6a2a9e86de9436f191c160594

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
38d811e7e3d1473ba6eea57f887fbb12

SHA1
3196a9c36fc176fd4f75baefab358237b0868f69

SHA256
4497cb286cd47f57f2904b0fedb146dcaa95bf4537dfcaf8e9fb112c6e662b7e

SHA512
cb2eb8c415c76394f09acff0d789f42af88fd37c281c09dfc960878caa56ea74b9b054335b2ad1c7f3480c5d094f47f14612cfab928228ec1d5be5750825255d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
152KB

MD5
7cc606f7fff76596cf1d6b8f2c788559

SHA1
664f91863765020393fd7574fcc4c8f1ff5d6a97

SHA256
e1b97368f209c9508b7f568f0fbeb4fd2e2d4e29085c24b8a75d7b74ac0b8f5b

SHA512
e082a59d0e91cfae291100fc7dfe879bb3c385ef9a66da126b5189941c20335812c77f53247c8391f22ec93e5bf193925367cf7f0f47c8765e9d150f42cb65ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
153KB

MD5
120ea789aa1db66351cf7a8bf38c1c2d

SHA1
9fe954f94de6b7180dd69ad9c2e41f7e72b3a355

SHA256
d201dec924485761ac6bdbfb98cfd606d9ca5d73e9cf106726790e8eabe126dc

SHA512
624b10cfe5a5ee803068cae519c2b8b4ab3d532be6955a16abfa54eafeb06cb6871dbd8cb4d9c48b7cdf6538a94b36e8039061f05ec5e1219ad469492c55fc52

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
104KB

MD5
9a97320d858be2b9b5c0d22f000d20d9

SHA1
7b9e606a9a9332c6f33a41e5977280d0a9dc41a0

SHA256
13c4e5fe8a7a3f20b8e9d98efc0fb578584b64f273aadcf1227252dbe76920d9

SHA512
444de35d307e4b4519649c0010ef75a4414708fe722db6457e22cb2f5dfd40cd244fe57961f9d50ce1b2f4474b3a2bed514d4dbb0a69d77e1ed18314aa3cd8df

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe56f2f0.TMP

Filesize
103KB

MD5
e19786f5bd99159079c2b67b61b0a98c

SHA1
d70805f8dc099880dc3052acea5f870c6edcea91

SHA256
fae22e7873c6d047793ca328a9bef8c8030bde2c36a3db011bb0138b5b6e7245

SHA512
533b9e36f5bdf4bca7c124fa642ae3147205cd433ede39241505c263d5d9c0ae9fecdea7e4e55ec828ff8fcfe30371dfae86fbacfbf5bb5ad288876cd660fcef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit