3bd1601cb00322053c6caef9a7af6a6c6217f2f09b0b5377e42c1e48983cbecd

Resubmissions

14-06-2023 22:42

230614-2mwslaea51 6

14-06-2023 22:36

230614-2jl4zsea5x 6

Analysis

max time kernel
270s
max time network
272s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
14-06-2023 22:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sample.html
Size

9KB
MD5

8abab210f94cebe2e150fc2a4621f96e
SHA1

d42d95b41aef89935bca55c59ddffbcb43099e2e
SHA256

3bd1601cb00322053c6caef9a7af6a6c6217f2f09b0b5377e42c1e48983cbecd
SHA512

0c933f51a9637ec1e4295ceaf47110812aa6d4e884ba7a061ba21ac3f185487a6ce165c6d845d3310df72d890a1aea83d7d14958213956db9b433c3dbfc39ed3
SSDEEP

192:VsAsLfuN4RYBDYBk1xpHy7vB1faUGsx0ididiYna1ZisMIuIKsqWyThr/SCw:qfu5QkNHyto79ididiYaZishu/sqWOhW

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1060

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3853465373-1718857667-1861325682-1000\Software\Microsoft\Windows\CurrentVersion\Run	chrome.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133312558637897875"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
3692	chrome.exe
3692	chrome.exe
4272	chrome.exe
4272	chrome.exe
1524	chrome.exe
1524	chrome.exe

Suspicious behavior: LoadsDriver 4 IoCs

pid	Process
652	Process not Found
652	Process not Found
652	Process not Found
652	Process not Found

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 13 IoCs

pid	Process
3692	chrome.exe
3692	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	3692	chrome.exe
Token: SeCreatePagefilePrivilege	3692	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe
Token: SeShutdownPrivilege	4272	chrome.exe
Token: SeCreatePagefilePrivilege	4272	chrome.exe

Suspicious use of FindShellTrayWindow 53 IoCs

pid	Process
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
3692	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe
4272	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3692 wrote to memory of 3724	3692	chrome.exe	66
PID 3692 wrote to memory of 3724	3692	chrome.exe	66
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 2028	3692	chrome.exe	68
PID 3692 wrote to memory of 3340	3692	chrome.exe	69
PID 3692 wrote to memory of 3340	3692	chrome.exe	69
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70
PID 3692 wrote to memory of 2796	3692	chrome.exe	70

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "--simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT'" C:\Users\Admin\AppData\Local\Temp\sample.html
1⤵
- Adds Run key to start application
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ff974779758,0x7ff974779768,0x7ff974779778
  2⤵
  PID:3724
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1600 --field-trial-handle=1696,i,10896746448822224967,16342653472781261649,131072 /prefetch:2
  2⤵
  PID:2028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1980 --field-trial-handle=1696,i,10896746448822224967,16342653472781261649,131072 /prefetch:8
  2⤵
  PID:3340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2120 --field-trial-handle=1696,i,10896746448822224967,16342653472781261649,131072 /prefetch:8
  2⤵
  PID:2796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3056 --field-trial-handle=1696,i,10896746448822224967,16342653472781261649,131072 /prefetch:1
  2⤵
  PID:2776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3008 --field-trial-handle=1696,i,10896746448822224967,16342653472781261649,131072 /prefetch:1
  2⤵
  PID:1992

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3076

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:4272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ff974779758,0x7ff974779768,0x7ff974779778
  2⤵
  PID:3276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1816 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:1696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2092 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:1676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:2
  2⤵
  PID:1372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2888 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:4548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2880 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4400 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4588 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:4812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4704 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:4380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4852 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:4552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4956 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5116 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:5048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5076 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:4840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5044 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:3956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4416 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:1388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5552 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:4064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5532 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:8
  2⤵
  PID:4704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4764 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:4848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=1068 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:5052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5408 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:2348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2956 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=2372 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:4460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=4752 --field-trial-handle=1876,i,572039504068927130,7050649513069551657,131072 /prefetch:1
  2⤵
  PID:1600

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2968

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Web Service

T1102

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
7c48dd2f4e33b67ffa3236b9ea4aaff2

SHA1
f66927a44e7de0c0038ce744d1d1d7251742702a

SHA256
b496c6028f1d5fe18f50705c8108ae84820748a3a2286cc9b56d2bb5a38aab02

SHA512
6ccba975ea123b1f59ddda5ec486be685df0ca1def0d34ccd160047a3fc9b126ec58092ed3f98b0cd6cf9df53a95083ddd979ed311d06fcc70eda216501dfa50

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
7c48dd2f4e33b67ffa3236b9ea4aaff2

SHA1
f66927a44e7de0c0038ce744d1d1d7251742702a

SHA256
b496c6028f1d5fe18f50705c8108ae84820748a3a2286cc9b56d2bb5a38aab02

SHA512
6ccba975ea123b1f59ddda5ec486be685df0ca1def0d34ccd160047a3fc9b126ec58092ed3f98b0cd6cf9df53a95083ddd979ed311d06fcc70eda216501dfa50

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
9b32da72e9f810692d8fdf1ccb0dbd63

SHA1
46d27b34c8f4ea1b24ee18be27d7ddf760a92f09

SHA256
227cd8b01fc1235a80c1307cc74ee8cc3fbf76858902962a671ff44e8a3a10fa

SHA512
bf0d591a32b977d44809f0b417c36915fe33a6009be80bbfd1519fa8fed2a1152fcedaa47528a90a246d236cc150c48241276f5d1c0b6a457a44cf3afb96b9cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
af01d8a80b09e46b164f958061103856

SHA1
d9981f8815e9cc48c1d502a40f59b089cf16b330

SHA256
415375e63d64a3a8c6b1994522498e676e264f6abd677026e5639e068832cf5f

SHA512
9254ce7cef7e63713a0a7cc1d62eaf2d0b416ffd413873285eaad705be003eb88b5004a1479b8c23db24f9d9f08ea281efcf413e9dafd672e34b3be2b0c19887

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
f203abd48ddefe7e792b04d48144899d

SHA1
17ec04059d4f0b1b7aebcbd14fe3f5ababc76aa5

SHA256
81bf20dde27b92311b8f321f1cb8f293ca8740c4916b92640d38426b61bc64b2

SHA512
2a1da22da4131a9424d95e895faf2ec6382b2464c4990eb5cd4b2aa47d34cd3cfeda50dbb45f8900188c64befe3281f4f8da28ced577f6d176e8c63437b54221

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

Filesize
31KB

MD5
7e273d43bec6513af4eb7314abd828c2

SHA1
aefa6ab384f58032c8357e2dc602f3afc88c8a9c

SHA256
39873babc974e319b59b3a867187c8de7cc4fcf6ee9978764ab13d4a3b6f36e7

SHA512
a3581ed0c3b791c2de4d3f164a9815a43efa4cda39bd4d3aca917aee43c598e3d1669429c7bc6ed22dda68dc9b9298608bd0e3aea6cdf4be87f32db1baf37b8b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c

Filesize
86KB

MD5
cc4d159a6b356db170d1248bc0f9738c

SHA1
dcab826991a9c03f0b165008972e1f35416eea83

SHA256
59872a3ee8bf53233d2c247bcaae9df1629c941fe64453a693f2ef305f8a44ee

SHA512
1e1c0f940b7980071e8115f5c9aa5c3de9573b5bf67c96b8b3fd2e05fdafe1598f0f42d1685bfdb219a4ebfa63f46311bc2374e49cedc8d2f222ef3ffe0841c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

Filesize
178KB

MD5
be7447e8a25ff57584a9141fc7beffd0

SHA1
173b705a4546f1de4e02384c12bcd4b36d7da34a

SHA256
9823632c06e76729c5f0f66a5fe3d765b692d62e158d2e91194aeadb835ceef3

SHA512
03245242ef3d4f19dc21ae912d83f46931af9b9e6880732bdfb069f0eb6de4c0b4311bcfa9de3e608b1444a8b3d7398ea0d205209f175436e0099b14429ad42a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e

Filesize
132KB

MD5
3b17e049a3189da1fae7ce4932047910

SHA1
7f75194dd31185069768e4522d34f40afa99e8a5

SHA256
28d15f84a4e36666b335155aad3c8f9335260d2dd8537e39736d209cf5d6bc52

SHA512
3a2a537ce799682354c9440ca46279b7f55066ae497927cce3bb61f375edf5453d9c8bd044c8bd1169c7417cc19c24ea4170520609a6753fc655ed6f012cdb2a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f

Filesize
26KB

MD5
3076bf0df32a74b80c8e9c460948ecdb

SHA1
be67d88565d01fd060cf9c3efbf19d040d9f37ac

SHA256
9dcd98d1a1242d9a86c0314acea6d72cadb688c872bcd9045b9718bd00bed7a1

SHA512
a4b0ffb10d8d6b590ee0a55e6ba73d04b536e9614c10ef1241377ce0437d4f33cd4e64a6e7a17539497bf6306014881dbfb73a098a294e43235fd682fc0e2de6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9f35d17b5ed3f29b_0

Filesize
268B

MD5
48fadde0693e69bb74963b7f31a77dfc

SHA1
ed7d31fbe34d09839f1de87990207e0a17fd8d0a

SHA256
08a3c07c94f046f664ffe77e6c98f908de0d5e233e0b2c322c294a5ce5ea041b

SHA512
26cd739ed0ec64d9b968cd1ad146884c4cbacd4267879190adc46af872974428311fffac97c920a54a707a179f1c749fe66c43ef938498d7f018b989c19fc06d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d395ef19b57062ce_0

Filesize
265KB

MD5
f5892936393c2813a37a8facd519134d

SHA1
05e9b4e80211f9bdf73d0f53a2cd00ab45f348e0

SHA256
c7f87e17fe2b7ea619490748248223a2589181ef8eefc3d2b77b61e51ec3edb2

SHA512
938a65c88bf8cbf6feb5b5e2dd39148f362f42a9cf9f4317e5de6d159a968fae7ac835dfa53a953d890884791ff6912958c406aae9f426c353840eeb4037a984

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
864B

MD5
0ba6307fc183523cec40830fddadb0d9

SHA1
b3d1f5e7d7f7be83f04a9115f7158a88f98bf424

SHA256
af9701276390deb68e79b1b70de10606157fec7b72523ccd45e58d5123a863b4

SHA512
e6ee0c5db3e7e072cec981183a08a385e871bcebf8fb8a721824dbb6e716bececa5a1caf3d0ae127f1214ceecc70125c44b54cab988de49a8608b93b688bf2db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
864B

MD5
4eb15f9c0e48c73880e5c5040f5ad92c

SHA1
b16aefa3151c091129277efaa5cca21641af11ec

SHA256
6af80b1324fd316c0f0991f3e9687870f722f15ebd66370f860bc59221244859

SHA512
9596127f71c929f2be72b7336c3aabafc82d5083f77a709f0d8ae6a1727b07bf44535bd7ffc0b952f2fa8dab9702c37acb2501e2a24e8c2c4caec2025dd74668

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
768B

MD5
fb413cd2a021c0032c2ead8660d15e39

SHA1
bfde65783d2b67dae0c9173f111bf37116fc1cfc

SHA256
43b4ac5f840a0994839587928156817de8a2226f6cb085c8ec8c2d28ce13e03b

SHA512
75de3234d36f9e529e01693a102938a1d3fd0e90d3a876d5ee823a5d57d87985d8596b410484053bb5d7a2db0eaa7ead3b19c1f2b1c334e1bf11c13088c6b87c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\wasm\index-dir\the-real-index

Filesize
96B

MD5
bdca02de9ab5a22037c38ec07500dd8f

SHA1
87fd7a442d36d7adfdc5bab4015b3327565aafe6

SHA256
da1739bd328219b5e8822e41fdae8257bb1e79f56c16be3f6a1029337a3a131d

SHA512
05348122d9a62b497daa9d8f4cef6bfc9b53751bb175080ad4015c0948596d0f07072d01a571cb690f0dfd7450782631e9486663eeec44b90acdb79e6b58be57

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG

Filesize
320B

MD5
6ed7f33c377ca465a31560396714f444

SHA1
daacb3cb6fab14df8b5ce18480371998d646d7e7

SHA256
bb15c87de96340607ec15f82cf2f2b8a589554aef36175182567a7e22db2b8e2

SHA512
d8bb334513a13c9366e7c41afadf71056d84653af0f3bf8c941b9a5482edc1bdc81835a1567d0ff2076980316d2a97d6e0496b1daae48a2a5686faf02365db63

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
148KB

MD5
42bd8cd5de2777e9d15f9a5bf57d6ca1

SHA1
69a064d85511b2fb44beaf0c0ab2ad06d7f60654

SHA256
b4122fa05c78d0514538ec14ffb2686bcde8fa3dd0aee35de235b6f469309fb2

SHA512
bdcd64ef7be075ea61bc72d398fda06e808407dc2e34b3f26db1f1030b1ad9b097e8d8726bd024d87b312e41a3edcc339ac309d57c2da9deed526e7f4fe11ee7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History-journal

Filesize
60KB

MD5
cb5172740ad5d179b06839781a58ec4d

SHA1
74ff80243090b01b7317c5d1fdf28341b40c0294

SHA256
a2f3100562241ab7f804d16e3b6d761dca4bdee48a88880120bb78ab0c50aeb0

SHA512
b42c3d68081c5b28b97264ee727504a42c5d1051d314b11c2efb75f1cbb5b4fc8d1bf005260bb49ba8fe5e55e75568e5735113ab35d6674efae90bb57835e026

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG

Filesize
329B

MD5
c999c386d8e9d60cf258655f40bd2382

SHA1
8eff35429227e93399ab811f2c41c754958f273d

SHA256
03fe61887ae5c703ab6a780fb75186e9ea80d1a1f42285a7c9a0ae6898f85df6

SHA512
3a2da587019c682e3c0e4cf4336f32d1bd741f026453992f85e41be9f49ec555556b47b416a8c74d434c3d4a74b18a516f86812dceb60e10c85718728c5982a1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
5967095ed16d152c56e9f5d90f86978f

SHA1
34b04888dcc2a5555954806e1c8cab07afe4e7ee

SHA256
733fa99f9920f785569e33e367bf159be8b25d5724f1edf72ac5bc4a53a22370

SHA512
12e31290111a44ccd379dec57233a66f46fdc2f93e181e62cc3d650582ba0eaf21c621aa8e0239b258e559e8e337828be1092fed38573daef68432ddd7aa8298

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
959B

MD5
364d7c4b2c98de6aa02797a780865836

SHA1
fbb700f03e0fbc3be9b889b1a94090bb9662e38e

SHA256
771c7a392843bd719764b4d9d1f63e565149e58e27c2ad9aa66718c49ba9f1d8

SHA512
a50083302836438b38c348cc0ba69fbd5593cdfc3a96261ea1ea0e7686751050aceefa52529d4312e220793857e79b83b626ee256fb441c019ef350225a0856e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
959B

MD5
364d7c4b2c98de6aa02797a780865836

SHA1
fbb700f03e0fbc3be9b889b1a94090bb9662e38e

SHA256
771c7a392843bd719764b4d9d1f63e565149e58e27c2ad9aa66718c49ba9f1d8

SHA512
a50083302836438b38c348cc0ba69fbd5593cdfc3a96261ea1ea0e7686751050aceefa52529d4312e220793857e79b83b626ee256fb441c019ef350225a0856e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
7444f918e8fdfc9fd2d4be111a072901

SHA1
73442cd5223ee1b03c25530b91388d7d92000d26

SHA256
832d89301e9383effe14ac9523082f5c30338f49679621ab5ee1a9a5f68562ad

SHA512
efbc7660bf88e9126bfc6dfe6b1359f902f8c86a2f3e93d895750fd010fc39a1fd423be56c80ceec61db794850a2d0b93e69715f19f28ad3d8c953a9c51061f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
4d35d6ed60e25010693f9c14ac2256e2

SHA1
52287ae629e88f4d22c55cf85ef61ca9cefb78e8

SHA256
e2513df769fd7fc5604936afc941a3fb9c6b53eeed70c4f6f2ecf7c1ebda5852

SHA512
9e98f005a724a39b7f656e08369a027a8202c78fafda4bac1f3e9208c15c8e4d7bc32659d7aa4ecd4242a362fe7abef25dc7e38bcc5776ec3c6daaf17e543afe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

Filesize
36KB

MD5
7df6809bdaa5e6b7ec2150de7b426cd1

SHA1
11c68c0475e0f3f843f139b4e6ca82f39d6e38c7

SHA256
daa70d498802d20a1f9f41eb8ca1f747c465e47be2d210e1ed634a4eba0cf4c6

SHA512
a0ecc9b97ee0956937793ed48638e5874597f2a521e98ca74b3b59bbd82cdf3e4025cc2cb9852cdeba6df1e8a3c1bfd3a2dc20bb0d1d0b0bb289637fabb1bb9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL-journal

Filesize
28KB

MD5
1e3c98c30a5a3da7fa19fbda2799da08

SHA1
df515261655347e311c899d574a2e01c4a93961a

SHA256
ee684a4cb9b745e5bdfdb58daf649f8ae948c23cbacc5b582cb16b566288e1b7

SHA512
6bbc8bc4923132ac25791d652fd483ddeee17254c32761bb514e982e2eace2f1c171a15075800da6a8e094374363d685c40b380147295577a7d94f06d61345bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
5e9d455fa3a14ad560a6a5dc61f133c7

SHA1
035b60d6e9296b64313141a77e2842b29f749219

SHA256
d9209d304a17f00246587cb85c3a7fc9eba44d320df5f04a161b6ebdb5a30c3d

SHA512
5a062a81eaae63e7e323eb4afd76e03accc0ec72cf951ff60ac21542971b4d00e6b23b40b6ca3b4298ff06f0d631c43b984d7b824e95c15b535703a1f29e6702

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
03030e667d89df8983b051229d92617a

SHA1
93e3535ee5e31b7530255dc757fa46257d400fc3

SHA256
b5bd59f49aef02846fed83e29e6fa6f8ec154223c2f6558fc813fc723f2049c6

SHA512
f1f2747738a14babeba1721f53dce74fef3e2dada7a7c7e02885261326573d7ffe50f2d553c5305a66dc841417f0c9d00629f6c29cdf1854b87b1bc937ed2338

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
02daf42dc120b5437d12d397628aa4fd

SHA1
f2b75d206bd31320ecfc4928d74246278d8105b8

SHA256
85c45ea8d032148f4a8aa2138e9d9024a26b74c1ac34900b99e1f7a21e818953

SHA512
a22e6d9541e224512790cc89e63523ae4d94dad23a6c2b2465ab0b4ee61bab20720dd5643e4340f7acad661659bda5a80579125c49760c48388f560cc369f0f9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
02daf42dc120b5437d12d397628aa4fd

SHA1
f2b75d206bd31320ecfc4928d74246278d8105b8

SHA256
85c45ea8d032148f4a8aa2138e9d9024a26b74c1ac34900b99e1f7a21e818953

SHA512
a22e6d9541e224512790cc89e63523ae4d94dad23a6c2b2465ab0b4ee61bab20720dd5643e4340f7acad661659bda5a80579125c49760c48388f560cc369f0f9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
4036dd0a018387a75bb00f0be66027af

SHA1
78a41b221380454c7526d1c4c2202a07f00efd79

SHA256
2aa72b81ebe59e6b06acccc1c21adc54220c51fcd650c1851a7e9e756fdee0e6

SHA512
b3c290e01485d5375860c8618b976c720a408c6c698783488c86b402a6034a4873d8be48f7e8a6d6b7db697a2873f148d3e1daef9995fe34da3e754e20fd5454

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
249ae87dac25921a3681df1932526ef4

SHA1
6cc99d2e25022bb417d540fd0e1ac867835f8454

SHA256
8f13c7272887a05a4803175f972a78fe4d110e663b4b80a324f3c2d3cc3e4d1f

SHA512
de727d50d1c96968e920f239f46c8f248b345ff003aa1b1f695e40f13e96be893d9c40716077a605fc8a101039b517ab4f8147db5fc8df1a6058d9f7ba2515d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
d2614f3cf9600163a7867ae442d19fe0

SHA1
9c8d04c5f37b6451297962adf875190f1c266cf2

SHA256
fa3f4b3a7354df0d3818ce41719bf26c04b352b43bb802b527d805632d2a7a52

SHA512
73de282217596599a5160204b109380561736ab99ab6c37630cc456260f1c4922296ce1ccb83837618464177b7181f042bd171cb8342ad355179b91af9daeb39

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
e52931ce6e4661fd17f6e851546dd376

SHA1
a417c158e4224ba38ef90cd86b4a056a60639f27

SHA256
446d61f5d728a21870d80b6ccf9be0213099908c47201f0f3fc9f7d8bafc1804

SHA512
258987ced7f68762677c7c1c5d64c07a259cd249e85b3d63fa94c62d4db1f12df7fdc801f8a181217aadf2a1404040448e9c0b0351750a404c6afeefd10fb800

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
45d1421f614708e2c44c79776cf0099c

SHA1
8d2aacf74f01c9b2d639341f6e7d990f832c6d07

SHA256
e562d81521a07bc78a51dfd0b9d639cab02c1fd612629e7c287558cbca7d64d3

SHA512
450adeaf5a940a83d378daeb6f09d6d79a0e6f36506be8c8dd85ead7e2b7eb6ea82ea680af60b6bcfbf7c1729fc202ab921c47fa4451caae2c30ce439bcbd583

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
087e5d1be01c98574e4cf1f7ca107dbd

SHA1
1b0d4b97347de0ea9076a8b0e97c2be1c62cdc12

SHA256
ab90f9246c730bbc33a37f751110375c4c457017697980699a77f5324d689a43

SHA512
6bb125f4ffb279b321227a46833604d4eb621a2f249a3b5d82bf00e880b1e6e3b317c4c1091b78300edb7569e6f9405abeaa9443d627e3d76c46e4acccc8af80

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
3c55bb9454298540809715abab2e2f80

SHA1
7bb47816fb4627f1f48d113134fbbf564266b8c0

SHA256
b314c2489cce42a0a1c65eb59ec4cb8df29a36eb75aa4fc29e9e40e234852475

SHA512
776ad0e37cb18fb06c1df0b0b10910921edf25bee3bbb910c1d8277704b8772efbb053a23fb34b1d504aba25319a5717497e56785852ffe36befd5b4f1160580

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
707B

MD5
d573ecc00b430504af8ea8b679c82098

SHA1
c2727cf54e4edd538b03ba5aef1b7f8027094c7d

SHA256
1e0454f3efb2ced160c631e2cb3df12c65aa2048923a60949c2c95812cc3d989

SHA512
d47f594a0cb5e14e0e82ae87035e7c278c2b5152ffd0dd37efa71b495fa8be172567c4716388c7c3fd451d3488ddfa51ccf124d7619ede19c3774481f97b5958

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
0497497d3534466e3282c8099600aadc

SHA1
6f079043ae2c712a7904291724338106a312c166

SHA256
9263ac4dd946daf79e9d171e83b800ccb21373206a1327ba56a32c5ff51c6f05

SHA512
fa62440ad682ea49e2dac7d7b41af42c2e74fa30b3a41ecbddee742b1066cabecd69ee7e6620e54355a88f85ed2af4ce1f8c865f7badb896b27339cf1c9a7600

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
0e94a629b1f6d0978dd9ee5537c9e853

SHA1
1618a9392d626d53cefe1b16ce7f733acfddb78c

SHA256
a20a7b3268ee998a307fda98df704ba41e223076ece2e415f809f8eb40acc10d

SHA512
5e384c4de28605ec947da9e98f1e535b2c3006ebd3ada4c5f95778d92f0778406fa0ad0787d89bfb4b37a70e5e23b4f1a99ede2addb68106b2a31ea4ff61fd44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
05982978a07d778ef81edf84e41f9367

SHA1
65993850189405574d3bf1e80f0574e0ec31f071

SHA256
091ee2e3026ab57807bcdd5774eece82d1b17dcbe3f563fd3a25b9f836fe635e

SHA512
3a399a91c3efb82b6f4acab209d0dda51cae63f5dadd6fb19c9520ae3c30c87206bdd06485a1bf7e559551954c78ce0fb46e24c98ca995e8bbff982e9e628689

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
568642bdc726e04a7d2be36da33ae217

SHA1
26b90d677bbaab88aba290d2e7c4cbd7c507e7b0

SHA256
76933c9b7c312a46f32ba13d569b7e399c1425599115e99ee0c9e6ba6ed315e2

SHA512
533177e9aed68e150edeec93ea457927fc3577206a4ad5823404f15e0f43e2bb0fcd932465da98a0053c82fb2657be38fc0488f41279cbb8b925dfd3b185b7e7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
ee5d79355660dddb43937dab7341946d

SHA1
aca2b176df30bc58136ebd556e31962438ecd4b8

SHA256
5b4ecf292d1d2ec0593e99e6823776efcdd98d7fe0b6e8296bb0e110718b0ba7

SHA512
bc1a0a0a383bdb4065530d36a3c5ed68204aa2990f6a4aba4f702963880e3c67684c4de3e76befedd46329d56badf028778367978fe93456a0263fe2c7f949f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
ee5d79355660dddb43937dab7341946d

SHA1
aca2b176df30bc58136ebd556e31962438ecd4b8

SHA256
5b4ecf292d1d2ec0593e99e6823776efcdd98d7fe0b6e8296bb0e110718b0ba7

SHA512
bc1a0a0a383bdb4065530d36a3c5ed68204aa2990f6a4aba4f702963880e3c67684c4de3e76befedd46329d56badf028778367978fe93456a0263fe2c7f949f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
94339ec9e988e0519455af5edee020ac

SHA1
c3e9267e913d22b84923407f128079d39d831b9e

SHA256
f677e726a222b48e9d38f946d019e485ffdbda0a689790289e174b81b992bc67

SHA512
d1cc46697dd8c30852c56deca364d92283e8a80f8097200e1f013021ddbb6e8574d83639c12e8565dae5ea5aa6806f66d8aaa9ea4354fc48fcb2ddf460a1e5e9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
48bd3f014bf0a6b6ef80ef64df957271

SHA1
ce1f8f0d323ff87ba97a59e0b08337872d690cb7

SHA256
22509c3d6e24a51fa4e94f4ba2c966866a16dcd87b8d2efe6fe07bf5050216a6

SHA512
cd2577bce19a1d51848179c6fd9344a8a06026bc9e136ae034514638c0efba709926926bfca7e939fce3c63712695af2bb9e5d5e5e2d06e513287a0e30aa9f40

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
12KB

MD5
280de0ee6e81f8e7d9f1242c7ecd340a

SHA1
9c5f8a9344c0d95a0745f217afa7b56b38479fb6

SHA256
ab147c5926d0add1cbf780ed2ba2887e37c66baa04de24c191968ab48b38766d

SHA512
b45d82fc5c49b901f346260d283a67ac8123e0fed6814ba421bcf28e61436f9ab25d9313187937b7193c39d4527a8a21b8255a5f962d772fcd9177aecd899991

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log

Filesize
175B

MD5
6153ae3a389cfba4b2fe34025943ec59

SHA1
c5762dbae34261a19ec867ffea81551757373785

SHA256
93c2b2b9ce1d2a2f28fac5aadc19c713b567df08eaeef4167b6543a1cd094a61

SHA512
f2367664799162966368c4a480df6eb4205522eaae32d861217ba8ed7cfabacbfbb0f7c66433ff6d31ec9638da66e727e04c2239d7c6a0d5fd3356230e09ab6c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG

Filesize
317B

MD5
55d321cc3d80f9bd34b103e0909ef6bd

SHA1
ee9316897ae157382b6fd33a76c4dba85f332221

SHA256
8863ff01f768aec39b74a3148d949ac57e59c692be5f912b7cf2519288d5c0cd

SHA512
4e3224a97ccb99d1bca0e4d3a3a17b950d2496ca2192e986abaa931354a7eafea30dcd65f424731cf124aba338b5f56ddb2e4438204d4d84ce01ac1bf8e77e04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13331255821930011

Filesize
2KB

MD5
daf9a509a92af5facee88dbbdc08f052

SHA1
17209b565c9e20c0f946d642c54810d36aec03b1

SHA256
51a5c6dc473a77b8ed55f5fe06d72a62c80ebaf83d025c51a8b21aa64c3663cf

SHA512
7672736a9fdd90b83f4007197905ffc9ab071d9e6c425a0afb3a4fa5fe39840944c4b57c1a4d300c5a8bfd5fabc4079885c94351caff751daab4104e8aa98d62

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13331255840110011

Filesize
929B

MD5
413cb9447d155d9378fa74408641b538

SHA1
624b8c1bfb35ab98c9dc6da8ca4246cafb45deeb

SHA256
87ec89ff05e1719ca0515b4651055059783e0e776b9fa1797a5bb72b2cae8506

SHA512
73dbc355fd5e3063d5b94bd494b43f23357f18f4addf5a65f04aee8d8c289e0040b485ad3ac828f4f6dedf9d7a1da44809c4d4d29826e5a7746cc2bbfa42424e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

Filesize
345B

MD5
2a3369b3e1aa1cf8b23d9a6bfa97f92f

SHA1
bf904cd0b57db625504b6e70478af8ff69575ed9

SHA256
54d96fcec3d5e0f8e7e97ccab80eabaa06f0fe41b9ca70d84479c47833682da9

SHA512
7bb7118061fb42b9d35c94238d178e1c2aecb1b9ce453c2bb7c404857b81fd52f0b046ea9299f9943bf01583b088cbe7192686c3b424fb7c7e3f4a2a533424b9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
324B

MD5
4bb49172b2eda5ca32d9c6273eee46ae

SHA1
6e6e9247183021fec245e1aa633d7c0dc6431a53

SHA256
3bce091632475c8d5804f6e63ff42fd95ccab41a7b872857235927afdf078630

SHA512
abb2344064b31c0b22b8858099db20c5a3d3d3b5bb00b53e777cab1c232dad60ff0efa447d6d42e9d03fc89e051cdf6c426a7dcef76879bcab36f3c1e6364b2f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
60d811e4c95ebef3bc110abdb1874309

SHA1
9cc9262d2e41fe88e31bbcbe7473e8fc55b5e188

SHA256
7bdfad4c9a32cb5f2fd5dfaa84c855e82cd4f427b488b03f745e1923d823102a

SHA512
963114c30d3e0b4ad9369f248f36140f94a1164e9efb3c0ddad4829f694282265bbee4542ea2fb6a146a5221c9b125d38d1c9ab65fb715ba83f1da46ef222a44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log

Filesize
713B

MD5
10e8cd83c802259628ba8e0b3b12010e

SHA1
bf10eadc9779aed4247cd8e194193493dd31a399

SHA256
67341a4e2f5e13e21041cedba67abc1b15c3606219cd0cfb744b3169d8099367

SHA512
643c3422b81dad3d63493cf0da19b4e7926f5e8187ba523b60e8261d494bb8214af97cfc8569cd9b4334caca870b1a985b46b706bc4395578ec287c8a5d6cc35

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG

Filesize
317B

MD5
5ed89495bba56f7a3fb8d918d8be4795

SHA1
c58ca5975212d6b6dec10157e8f7cd8b24768115

SHA256
828ae00b67f1d281a5ccc9f2160880a7cc4f7e8ad3b3cd10f5ae6c7fda8e2251

SHA512
c27141677a402e1cf9202e294edf6a3b33690656c451e1805218df269b48fb7a1cb208cc4ba100572ed39605fcc982e40c09c74b34f7dcf93b46766c15c101d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
855B

MD5
4fa2884f5f95a3dc55e979bf0d62f151

SHA1
e8255511ef3b06bf9679d3fc51dcc10aaef7101c

SHA256
5c7aebf4c045d6994cf346df70020b5be9b3e0c8893e48ddb69cc33701d5f1ae

SHA512
3d6695ab0a13fa6f8a69db831724574ff9dcc5fc0a67d7eb2241be14d06bf7960f215631ed617dc64865b669308347dc6757dd951bddde409e74d7b73174d06f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG

Filesize
335B

MD5
c15df29d46ae02b9d5b6b05b738db8b3

SHA1
fe3667e68e1974f13e8afd0a2bbe7a5c142ff3f6

SHA256
c89f67bb4d60857735116954ca4f660e3ba9768223bbb26a860ac1e1ea24a863

SHA512
9f2967d1e034f7a406bcba6dbcc13d67fbd7d487786abc4b6a7392d7a1f5ad85c85e0482e488472aa035b435f5b4c31ce5958a01d91e23f24e9fcf8b21caab41

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
9eae63c7a967fc314dd311d9f46a45b7

SHA1
caba9c2c93acfe0b9ceb9ab19b992b0fc19c71cf

SHA256
4288925b0cf871c7458c22c46936efb0e903802feb991a0e1803be94ca6c251d

SHA512
bed924bff236bf5b6ce1df1db82e86c935e5830a20d9d24697efd82ca331e30604db8d04b0d692ec8541ec6deb2225bcc7d805b79f2db5726642198ecf6348b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
160KB

MD5
729d1675c3c0a9bf9138558b5182e253

SHA1
d4939e308615ffb135a3ed4cf26373d4f24c50dd

SHA256
1aac6c18752cb45d5f596107a9198a2e6edb2b716358d6152f3b489dba6f199d

SHA512
a8822dd6c3ebe3a4011b9fc6198e486a9c9631c8788cf9b3dd8ad5e82d6b61d672fd946c88df23f0d6b4f3caf6445c6b0d721427e5d4a089c822eed2301abc19

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
160KB

MD5
d8643b19e77cb2de43027bf3ca9a06f9

SHA1
b3bee364d92df2f30da74363144e862a8e407593

SHA256
b445c867d166702cb5da26abaa26a30afb79d9db6503ec4baa4b8ae8c5efebb7

SHA512
577e68c736f711610750ff95284dd21d4ce1c693d8e98298d6550c4aaafcacc43d9681b8f298550cc93e9412de5239c07080eddbb0c85ebc81d9953a75fc8ae1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
92KB

MD5
b2c0c76393ce5a69f4bf3009510b8bb7

SHA1
89ff28797f9d26e230b1985746808c2c8fa8a2f5

SHA256
d828ca4b6964bec2ae641e741cc07deda2b96d4ecf6e38ae07a3560bd9ab5db6

SHA512
07062ef48ea687ffc2c9d028e3081591ea6ed557ee9654c9dc90f49cf4b9960a8509cb0fc4c3ef11bc2d5c55a15dd5ecae247be20bfcc64bc35830edd938d5cd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
160KB

MD5
729d1675c3c0a9bf9138558b5182e253

SHA1
d4939e308615ffb135a3ed4cf26373d4f24c50dd

SHA256
1aac6c18752cb45d5f596107a9198a2e6edb2b716358d6152f3b489dba6f199d

SHA512
a8822dd6c3ebe3a4011b9fc6198e486a9c9631c8788cf9b3dd8ad5e82d6b61d672fd946c88df23f0d6b4f3caf6445c6b0d721427e5d4a089c822eed2301abc19

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
85B

MD5
bc6142469cd7dadf107be9ad87ea4753

SHA1
72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c

SHA256
b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557

SHA512
47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt

Filesize
5B

MD5
34c7973d94bcf21248c57cdc127dab1d

SHA1
504517daa574c2d423766cc5ba4b56b7dfd6307e

SHA256
4d58a1c05ec4b9198d598ca20c8d0709a2642c824d02fb723b936e72f6649880

SHA512
9a89c68c0459ceb9fb877b589a52c62e8bbe9a529ca3fd20f08f75033eb179c4278a81fd89dbae1b5aeae9048e791767aa0af2c91baabd2375984d97dc89ff67

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit