hxxps://www[.]digiromania[.]ro[.]cach3[.]com/my-account/account-details[.]html

Resubmissions

09/06/2023, 10:42

230609-mrzygscf8v 10

09/06/2023, 10:39

230609-mp763scf7s 10

Analysis

max time kernel
264s
max time network
264s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
09/06/2023, 10:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.digiromania.ro.cach3.com/my-account/account-details.html

Score

10^/10

phishing

Malware Config

Signatures

Detected phishing page
phishing

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133307809799008725"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2284	chrome.exe
2284	chrome.exe
4360	chrome.exe
4360	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs

pid	Process
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe
Token: SeShutdownPrivilege	2284	chrome.exe
Token: SeCreatePagefilePrivilege	2284	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe
2284	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2284 wrote to memory of 2392	2284	chrome.exe	66
PID 2284 wrote to memory of 2392	2284	chrome.exe	66
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 1408	2284	chrome.exe	69
PID 2284 wrote to memory of 2620	2284	chrome.exe	68
PID 2284 wrote to memory of 2620	2284	chrome.exe	68
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70
PID 2284 wrote to memory of 2740	2284	chrome.exe	70

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "--simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT'" https://www.digiromania.ro.cach3.com/my-account/account-details.html
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xd0,0xd4,0xd8,0xac,0xdc,0x7ffaab929758,0x7ffaab929768,0x7ffaab929778
  2⤵
  PID:2392
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1928 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:8
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:2
  2⤵
  PID:1408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2112 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:8
  2⤵
  PID:2740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:4552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3104 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:4600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4552 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:4696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4876 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:3200
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=5004 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5708 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:8
  2⤵
  PID:212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5344 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:8
  2⤵
  PID:4120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5716 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:1784
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5176 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:4476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5296 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:1228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2548 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:1800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2328 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:8
  2⤵
  PID:4292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5664 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4664 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:4280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=764 --field-trial-handle=1748,i,16388962841855935352,14401272625003576952,131072 /prefetch:1
  2⤵
  PID:328

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3644

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\5feab572-9a13-49c3-ae57-46bb5f8ba794.tmp

Filesize
158KB

MD5
6db4385cfc0f8100b148ccb29f2e8006

SHA1
c7f4ae9ab8ed449597f2cad258d4a43b4b7ef776

SHA256
db724f50bb9210eaae6799cb480fa0b0ebdbc46aaf1ea6cbf853a390aa22d5e9

SHA512
aa692a72d3c9cb0d5aecda326ef7b4c617e0e00f84cb96c7d7e6cd7605707f508f20c121df154433f05fd890f64d8ea53a37446265b9530641d6ffadf457e2fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
122KB

MD5
87a0363ad37b39bad3a617cdc2c94608

SHA1
bd3843dc9bd3f2610ebac0d974c20fb2575c1f4c

SHA256
84acb0f105dfb2440015b5ae8cb5bd6abea4b36f4876b13b7fe782916b57f083

SHA512
408fd382e1a565409ed53e4101f32d979a0cf68372c5510ce14f49e60fa31a1877902e8fc248a0d357a8f89814abaf14f9f5379d0e6076332dbb23dd57a0d865

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
57KB

MD5
95cb24e5fe603e3943e03a3c5ab71ae5

SHA1
33750cd056bf2737cbf62ea2dccf1d127d9fe03e

SHA256
2e381a38f5525870b4b9ce9a1c569337717f837865f022273b67bd1437235420

SHA512
65f8e585145e5896a389ee16c8ca47b3a711c1b25e52984ca4e2cc6d76d24398a80a52ad85bbbafd382b8866a5289fbf34c2e8eaa61609e684444ef483c9bf92

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
115KB

MD5
7c3b9abc7b344b1822b51fc336736311

SHA1
e7865d1d121e7dd2af42b1d15342eeb3dd42edc0

SHA256
d6baf5b7550c6de977c0ed8e4ec4d50eb85128e126eaa10695098f2f2c0c27b0

SHA512
8f58b2523396e3d21e730465cc6e34e6274dd2357b47c7a8f2332e7b8531281e4c092fa7c463cf206c9a71dcd673d215e847ef7c4f0a3990a13e05be9cd9cfe5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
98KB

MD5
a1fd207bd07621e834d3adeec086965a

SHA1
edb677cdcc60f1a1ff9c6560dc3436a00bc3f75f

SHA256
f5e7f213ac4faac67fbeeffd88ec0c562dd333ad8068ba9ae053afa1b7b6d1ac

SHA512
5010fa6fba80ba7f3c600333fb802f4b04a0879b441f980cb47def45d39cb387de4dcd876eecfca91f23ff3bfa6a6cd4478666ac3dfacaf137f1e7d4b31ed79f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
18KB

MD5
08bd69ad7a3f5bc4e02b437e4112c87a

SHA1
a2a71660294cbc66c37874c5d7fddcf58fc4bf2e

SHA256
b0e49abae40d077ec07e7c7b2cfb5afc495a86fcf2ffcf8e03c03e2e6de50171

SHA512
b98cb62f79590c029748dbbdabd76c7ac1effb11de8dcbe9fb1fb0d4c0eb98804ae79561b8782462531cd0b8dcaee140d26e62fbbbfa84e70407eed192e1a4d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
32KB

MD5
4e18595f167ded288356db62ca03dc56

SHA1
07155b0e7245b1d6e85785ceea50db7248517f69

SHA256
b8487937b6d1c169fba3a3e98a456b61a4b3f14e368cd0bd58e3a546a5afabfb

SHA512
b50db4fe7bf06f18f17af43bee2af47fa67a207c3724b7f52fb1a4401709fb34493bf692954b83f9d7e1465d26b28b62c8201a860744fb09a9dae189227da703

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
83KB

MD5
1242c2fd74b3ab0584d0852978e308a3

SHA1
aca9a484315b934b829cb1df9a8484a9d6201d91

SHA256
ff4ee56946791d16b715cd68f2246994ca2c63a9ef4ff4adb2cff7d79eccdc8d

SHA512
346e35f0123ccc566f3d474693061256bbccdc69cbcd8dcee23f6fa19119f556c3fa26ad03d3ad47f9b1390a316fecc38aaf69de724c3e17f66608326c2cb545

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
73KB

MD5
5688a80f808e2c81a76eb1bcc45c83f2

SHA1
afa458af5e225a55e5f6ed5f6f801793e8e1fe89

SHA256
34472e21bc400a45efc2a5229eb3d56ab43df2bffde91ab999290fbdadf9d176

SHA512
f4128994360e95514d18c3d4951dd045fa8b69991263d5eb35ca556605d77322c77acaa0ca21520876ebeb21005b65433b5735448a57d634a4d995c1314a7e68

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
28KB

MD5
30124e3635c46aca70aeb7f6d89c94d8

SHA1
f40711242d209f532e1d83027e2286b5d65f2253

SHA256
22e37071a88e09af41429b79f4bd7b565d33ab62b41aa806537062009d95af62

SHA512
61b77922310c4048a02718e60918e9733521a2d77c721dabb03b1f005a1233cfadd540dfe4fb47434eb5c4745bbd6116845dd411e3b97b78b10e7b0742e1779a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
53KB

MD5
2e281c759c14aeffff916802eb899de0

SHA1
a06bfe8c217126dab5070bdb19503e144cec8431

SHA256
2ec70a63675117361c30058f5716856795d58760074b0cf4b62b472931f06510

SHA512
72f263b876adc8d6710d06e5323b8f1f059e980b667e22079eb2e9a517b08c4b96f3074d0d18b32a2bd89b9e83b2890b7426938d5b6d33f3380d01892e082d06

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053

Filesize
163KB

MD5
b2b82dc8484497c73105f8733c9f9c19

SHA1
180e7c1beee1f7bb7c27589bed6617b2c1216719

SHA256
23a03ce53fd1e28b40135c4a5ae68f323dfb19283c84cfc0802e3de4c4532799

SHA512
b6ccde1ae25f2802020b59112f470ffd431fa2ca737c11639234a2acc652d9f9f1c727f5edc21d823db23bce3dcf86e45e187a44dbb1a81d711755ab973a4c38

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
209db242cecfa3f684f7d5a7c0c89904

SHA1
6cfdbc022cb9b61a110dd0c6c5f81ddcbc2891b2

SHA256
ddaf24f1c594ba736348e92e93a9c1997bed16250ccedc0624f602e520399e44

SHA512
6428e65a8ed430ba58419d74d5b94521721d03c7786e057213bc77f533b1209cfbc8a6d36ce53c0c854f90824412eb87e35861ecbfbdda8c40fcda732b613029

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
5ba2bf04406341fe7f73b6f1d2d55109

SHA1
5bf5efd521fd234accf44d79720d7486d9f9b9f1

SHA256
8feb37f6e1f6db100328123503eb23293a10e3b1cb64e6cb4faec6ae20f342af

SHA512
e3b26aea32296f6acbcfc9d0548d50e0cfd7bf5c405ef5c3ba937e7d04ef78cef901e07ab2ee3f380470bd5e332f0f22cefd8324235b6b8bf9f60a86ad542933

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\6eb4647f-9669-4a2f-8f3d-283619a5293d.tmp

Filesize
6KB

MD5
15465e4c90026e21d345d3c99350d36e

SHA1
76b2ba6fa014e55e927a6c1e83aea64ca38f9d1b

SHA256
ceda6dbd8495e8a06038019f70792999a97843f237422e7c72abe4f8a68206bc

SHA512
6d841b96b4179c72014e234f69f5ebaa91cfcbd1044887f1d3c18699ef96d62288704c7adcb28507f03481f098747aa728444f10c418eecce3e2bf0dd49a35b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
e645235038ee65b129bff458035f8466

SHA1
7be88789cb9480e8be50e5ec7054ce81e2885fed

SHA256
00643968cf0b33b2e24ac00eb69e49f461f97205dae3017c60c55b9f81bc9169

SHA512
feadb4cc60ce1803f40ed48e653197172ef363c470040a6edc7ee096fa4a0f5be9710a24e2b46c2e4c0df5bc28e6c7c8eb8266fbb40369944d0ce9f158b633a8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
ccbbada109f723b52a1cef7b660e8a2a

SHA1
319c8adac44307ca11c6d5e5c91133954e0244f6

SHA256
a2dbe9f4deed754951955f2ec637b34b03e03c7c70cb9f9fbb8c22e2ad239349

SHA512
e9094b38c836b57a31cebbef951863b862264f793e1c185485944e77754aa7c1fc9c4f2c79b7d4812edb21d15c0bd7591cadd34afc269e711553b47d64b49a1f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
56128787aab720e8694126c397c24276

SHA1
7143bd2df9a27610b0dd860b7d102996b5c8c8a4

SHA256
9b9024ad237ee1ab1cd562449c425f013d9cec7a0a70b06261fc8e021dc76bbd

SHA512
1fe4ccbd829c47e5bca4b9590d93cb91235f9f516dad914b818f7fb99955bfe55256ec635eb02abf1e864fd1707ce92ddd8b27aa79c0de98debcb846eb01face

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
ab6f1c22263a8c7af858584e2618d3b1

SHA1
cc01a20d30e082b2e1764405c5aef43ad30e06b0

SHA256
b58fd6bc1598af0aa685dcf0fee6c364ca59979ce9d93040e23037dc634f2523

SHA512
db38dcb431dfb7dbcb736152b72fbde43840515503a9cce1982b8635964cd70d9d9141ea782df0ecd54a6b014438ab210eb19a6a05f3784e122c140109983c0e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
0d9080f26626afdb56270ffbcf6c8221

SHA1
fd28035a15059d5f97cd6c47b6e730a6e492beb0

SHA256
bcf61e2200074fe99256245f1aefbe2db9069307c68dcd0d3dc8bb9264e12e70

SHA512
70cc20c2b1c2f5a49a9109a82b9100e019f0760bf19494cde10d32ae14c7f7ab6610bcfa6b32e00d6bc826a9937e749d7a0f33b41a6b513885b473a44ca93fd5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
b0a5558453f9809a122a6509bb02c450

SHA1
5c177d87dd240ecd06a40f94c3debd1b763e4bef

SHA256
4936e9e5314c9f910b8f14abf709d8bd85e99d5a2437f5f84e219ebeeb058d15

SHA512
296db28aea97e11c117b44bdc9121cd6f36cc0084bbbfc1738ba32d18781c19a5bd3d5f4c78f356357cc41635606f9bdd6fbeec463ba8fca9d58d8ffe2fbb0fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
a4a2490bff1f0828b68cfeff9626fdd4

SHA1
ae902e5bfcc04f3c3022fe5437a0134705da0cd0

SHA256
81267313f49a447ff162e6e83fd6ed137a0077a1e10abe9fa99a6b6ae0a2df04

SHA512
ef6bbbcedba1c79aaa8618ef60d79e02b941efb548a448f76b772084c97ada486aff2aa2c843426ef8bde3fdba8eb11f15a2aa497fd08f9d7b79dfd7dac0145f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
c0d2ef21897bdd78810fda74180efc38

SHA1
3aff8631584f5d093e9d2b8406d8b9c1716f16d3

SHA256
5dd1a5c45bbca5019ccb45ffe0cc4ee8c9c067649d5981ba6b93a93df44a11ce

SHA512
567f01635dce78f4c05f45e7c375d50eb7081e7a9b43658177bdd61cad4aff0142b1ac32f70458b16fd283b9723fecd46dbe564fac77c9f9ab4a37eb16162dca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
e93d23ca028313cb822149f602b9dec1

SHA1
3a679f9dc0333f83d09f41c869d3a49439487ca7

SHA256
163563351b6bcdb303fe65d1d1fa0158bb473bf572f5b5997c93f5f7477f8dd2

SHA512
4658da50ccd58ce74395b51c5884d3323c811db0ebc9589f754fd40e0a147f2e798d7d89505bfa8a06431a675fc34309ae82e1dd555c18b107707abe9f499438

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
dfb06ea219a6fc5d9c385c4539612fd0

SHA1
e8945fd88e77d250f813e20f67985b3ec466e467

SHA256
44844dc08f9b8fce5d00cf25c60398b18596736f05db5bc8218682c705777ac6

SHA512
64697fe89cc4f4db2696c2dae2839bbcd4c4ad921201aac5ed867e7c2939e6cc5fb3013968c55ca34d848f24887c8376f1c501452505f3be513a1fc6ca322dcb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
2528bb6bec89f5c4b9326c9368bd0cd0

SHA1
a4b28608414374622e562df9dd61ec11f1f97f7a

SHA256
ffaab3863188edd6cc0e5c97da7d0eefd76fb57b90213486ddab3ec8bc48086f

SHA512
6843593129aa4c535c7f42dcb58fa1430155b4405b7e06511bb81ee2b44b7377a7ddf6c3a26dd25f1df60f2f47d71d2477fedb8a470b5464fe7da9cca58f051d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
6fabcfa1a5bede6e8e96abe54ee991c3

SHA1
5e3ab156b7cacdb085339aaaf05ad844ea1bffd7

SHA256
97d7437b87d4d5783ea233ecd0d51de7dde03f1d266a3ea0b945a9b3d37556ec

SHA512
cc38e3e72f39475369e1322d3df96003d5408a87b3e11c392f748522630ae94d54c737eb06d9b06aa32abb8f5598e4b157430090c796dacd0baf3c15053936ef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e3b23650c99e0fc2ad83ed4057ed6166

SHA1
9e5e8b91c8bb44d918cabb7f883ccb0269ee60a0

SHA256
099b49a34a6be0c2406f4a5a94f763de3768cc5cb7a6d4d8e136265202c98732

SHA512
5d4947cd9cd940ee1688a70813606bee7ec85d66fed4f6b3e2f161e4cc613ccfc6603a93840f2894a91c68d7d7097e0aca50d910fbcf36720944ce2ea2af2fc5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d7e33e81b001d6d802ecd129f3c98384

SHA1
026b6f382cdee99c7188c3204e5df0b4acba400b

SHA256
0d5a1bcffe2286c58103c876e290a8e8d426ba6ae79a012f7d45d2a3c207785d

SHA512
eec51e5d97354fbe3759cada533884658339ee67815f9b3094eebc3c4d52242b4055df866ffce4247f7eeef18004b2a1196a62887f92971cebf165215c50e0a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
11a7c5eb31dd56cae3c35c7d44770427

SHA1
f984c566f0897b747fc90d6b916d5dafed00c27a

SHA256
0704288361049a527bfda2111a90a6f8046eceda6668177cbecc4b2e5c20261d

SHA512
5f0c6e587d3716eea6bc96dcffe1fb1b28c6172261c45b1af89c468722c1745a82afb5fb449afabde413e870758a860a0192c72c5dfe6a665130181384f7ff24

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3df8a420495ae1519f4dc73a961b981f

SHA1
578641965a6de03ace9262093932c6fd7e55baa6

SHA256
b87c7fc209da5abc7052421c0f17c3ed12207660f2855dd8ff28d54cc6d5f27f

SHA512
ff82ee6afad62a6bde742b45918e619151e562e04f35947fde9662c4865f1f3e86deb48e56915b2580f653f07c363dd463a43b8749b2264e74f2e154f774d9a1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
89b6b3853ba6a3aee120fed63297a396

SHA1
f5d5b9d83a684d0a62d998b2d13c28e2de75f1da

SHA256
56eddbd1ded05c8c387942d29c87835fab62f4dde38e41f4a296452e3d74489d

SHA512
d05688deb67675bfd6e9b1848315521960ee32204e7e8891ede87b620fac6620ec1e7aae0d85827df4aaafb2c6916db5d62765ba1d92ba9417ca1f554f038503

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
1440d1751a8a86a66cefa876a0c31456

SHA1
20dd6db3e8896758024243bc2a2f2d07e571d4d1

SHA256
a3e98ffef7462973372ad6d3e5aa998134491454338f256158b45d4db4dc60b5

SHA512
7879e3d95b9d3bd45b33a8eacc4508888e2c9e4352f86f516a520bbec2ed755bb87622bdeff5a2ff92f37e2aa9f7e76e732b320e331397fa1b7a4d20d3ce445f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
2625856aa9f6bba1625393ae12168078

SHA1
50f5e69a729352d0bbd3cdbb0f2611c5d18ff2d4

SHA256
c02e6f930faa9d3f583ae9c8198d90db71426332e429ff44f120a96bc674e0c6

SHA512
423300d642481fe8a2ee1e52d84bdc13b77ee2d5cdf6bd218e8aef06105310db69370c5dc879f4118aedffd06a582d39c153049a8e844329cbecd67126114359

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
dc74342bb4bd6de37e0fddc4b79076bd

SHA1
bbf2881217c202462d3b35082168b460ce34e4df

SHA256
98da7b8f85d6d68da1438397acde817c47a119d17f0c403bdd1c372bd4f157ae

SHA512
c02ccabd1ceed53f66e9ba81db76b43118d99c9bc3376fe35d5709b06ff2f11cb8ed517e2c00dee0384dbeb57ecfd7a132b4a92f861b34b2d8e0ccb2fa88b453

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
101KB

MD5
a96a62d739f7064d9b9fb20764707b39

SHA1
e0d0eeaaeb31a68a25dc283d781a1e1ba7af179f

SHA256
520f0461b418629eb08cda71f47a566070b3d76b4feb478134bf2c3535ba719b

SHA512
d9050905fc3937bc3a532562578fb301cea3d31d8af53b402272c64c2bd5a11c410c7a32fdc701606fdf3b11fb332ded733f6fe543d6a0d5af1e4e3488d0649e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe582390.TMP

Filesize
100KB

MD5
8267dddb22823dc01be3fec2100c7a29

SHA1
decf256cdd8b49e123f89060bbcb97d5c5f95de2

SHA256
8a52246d351a5cd4b785aaabdd625d03c6f2e9666500dbb0487d87a231eec942

SHA512
e7ce48895c130f4da02a6d4b0ddbc03655b3f634df907c1794a3d591fc549b4cbad199e3ab576f783d7d55cebb55b607f0b4818adb992e3944a959bcef03554b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit