52c33068b9931fdc17faba5a22551145953a49cc9937b22ff5996d64418c2615

Resubmissions

08/07/2023, 00:18

230708-al4chadd4s 8

08/07/2023, 00:14

230708-ajm8hadd3x 3

Analysis

max time kernel
600s
max time network
601s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
08/07/2023, 00:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Fluxus/Fluxus V7.exe
Size

3.9MB
MD5

b4f9cbca656fd34c4dbb1d706a7f1ad3
SHA1

2b95d88a80ccb619b581c420f7435c660cfbb28e
SHA256

1e022d3886700317e5c41977de8fd595db5fbb3529164048ed09ee7efdb5711d
SHA512

5ed86eaf8ae42d9a8f0dca9776e25b3c2232434b32088df7feaa8149886594f1d4b1e37c597597eacebdb4082e0263441a6b78def5eef2ad610a6875c28fe969
SSDEEP

49152:UgLIR9JyCns59qfuce05XlWycazyClY1YH8PnGpv80tbvvqVUcH:UgLIRfyC7egWJa3lY1U82kmvvoUc

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Executes dropped EXE 1 IoCs

pid	Process
3256	Fluxus V7.exe

Loads dropped DLL 1 IoCs

pid	Process
3256	Fluxus V7.exe

Enumerates connected drives 3 TTPs 23 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\K:	Fluxus V7.exe
File opened (read-only)	\??\S:	Fluxus V7.exe
File opened (read-only)	\??\U:	Fluxus V7.exe
File opened (read-only)	\??\G:	Fluxus V7.exe
File opened (read-only)	\??\H:	Fluxus V7.exe
File opened (read-only)	\??\J:	Fluxus V7.exe
File opened (read-only)	\??\L:	Fluxus V7.exe
File opened (read-only)	\??\N:	Fluxus V7.exe
File opened (read-only)	\??\P:	Fluxus V7.exe
File opened (read-only)	\??\R:	Fluxus V7.exe
File opened (read-only)	\??\W:	Fluxus V7.exe
File opened (read-only)	\??\B:	Fluxus V7.exe
File opened (read-only)	\??\T:	Fluxus V7.exe
File opened (read-only)	\??\V:	Fluxus V7.exe
File opened (read-only)	\??\X:	Fluxus V7.exe
File opened (read-only)	\??\Z:	Fluxus V7.exe
File opened (read-only)	\??\A:	Fluxus V7.exe
File opened (read-only)	\??\E:	Fluxus V7.exe
File opened (read-only)	\??\I:	Fluxus V7.exe
File opened (read-only)	\??\M:	Fluxus V7.exe
File opened (read-only)	\??\O:	Fluxus V7.exe
File opened (read-only)	\??\Q:	Fluxus V7.exe
File opened (read-only)	\??\Y:	Fluxus V7.exe

Enumerates system info in registry 2 TTPs 5 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key created	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	Fluxus V7.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	Fluxus V7.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133332491898026339"	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1043950675-1972537973-2972532878-1000_Classes\Local Settings	chrome.exe

Suspicious behavior: EnumeratesProcesses 9 IoCs

pid	Process
2236	chrome.exe
2236	chrome.exe
5080	Fluxus V7.exe
3256	Fluxus V7.exe
3256	Fluxus V7.exe
2156	chrome.exe
2156	chrome.exe
3256	Fluxus V7.exe
3256	Fluxus V7.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs

pid	Process
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe
Token: SeShutdownPrivilege	2236	chrome.exe
Token: SeCreatePagefilePrivilege	2236	chrome.exe

Suspicious use of FindShellTrayWindow 35 IoCs

pid	Process
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe
2236	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2236 wrote to memory of 1768	2236	chrome.exe	86
PID 2236 wrote to memory of 1768	2236	chrome.exe	86
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 3280	2236	chrome.exe	88
PID 2236 wrote to memory of 4628	2236	chrome.exe	89
PID 2236 wrote to memory of 4628	2236	chrome.exe	89
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90
PID 2236 wrote to memory of 4144	2236	chrome.exe	90

C:\Users\Admin\AppData\Local\Temp\Fluxus\Fluxus V7.exe
"C:\Users\Admin\AppData\Local\Temp\Fluxus\Fluxus V7.exe"
1⤵
PID:4764

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x108,0x10c,0x110,0xe4,0x114,0x7ff889d69758,0x7ff889d69768,0x7ff889d69778
  2⤵
  PID:1768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1744 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:2
  2⤵
  PID:3280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:4628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2244 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:4144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2984 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:4768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3008 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:368
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4584 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:1560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4720 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:4364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4580 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:1420
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5092 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5160 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:1724
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5328 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:1716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3112 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:1292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5364 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4708 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:3324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5192 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:8
  2⤵
  PID:776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2232 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2156
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=2044 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:4948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=2812 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:5000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5636 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:1084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5580 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:3020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3060 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:4164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=4376 --field-trial-handle=1916,i,1014765317809884607,7806849977533656416,131072 /prefetch:1
  2⤵
  PID:1936

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1296

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:1924

C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus V7.exe
"C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus V7.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:5080
- C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\Fluxus V7.exe
  "C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\Fluxus V7.exe" /C Inject.bat
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates connected drives
  - Enumerates system info in registry
  - Suspicious behavior: EnumeratesProcesses
  PID:3256

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
69KB

MD5
a94cb171a7e8c137e309f19efc38de95

SHA1
71f459b2f38e7a7bac21f7cad263a1281383dd45

SHA256
af19fe3bdf13487f7d4720936b34e5a001bb506d540021281baea7a4431c59b4

SHA512
7259a6be2a002d84d14f548440981732352616750c393e0d0c7cee336543fcdd5e3e9e9c31b62caa0bce12d2c4608ce21814bc130d33cf4131910899bf391efd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
39KB

MD5
8877fbc3201048f22d98ad32e400ca4a

SHA1
993343bbecb3479a01a76d4bd3594d5b73a129bd

SHA256
22f8221159c3f919338da3a842d9a50171ddc5ac805be6239bd63e0db78046af

SHA512
3dfb36cd2d15347eaa3c7ae29bfa6aa61638e9739174f0559a3a0c676108ccc1a6028f58dad093d6b90cac72b4468eb1d88b6414339555c9f872a5638271d9c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
96c483db431f40186265a74324402687

SHA1
81abfa9d11b2c03e82daab816cea8103a2cf8f00

SHA256
2e5f48a87505c670cb91a2b588b3442fe01f8c4d2cbf37459b05990343954c43

SHA512
2c47089d2eecc478bca33fbc18cf83d5ea8206398820798030c2c470e5957cce1f0ef392440381daca67336618eeecc822c1718979399fee6bdbcceeacc09ec2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
264946d367488af3442019e6863ad70a

SHA1
ed185c1b05b966baf6851c850dcd619501f3d9b0

SHA256
0bb8ac2ee60f49b85dfa176ff7af33bce6a85e098f5ac1f044e8e309c5f475ad

SHA512
997ce271b1c13e790f3943c17f8404302ce1ee3bcdfc765d1af0c592ca77ddec6314d7a3c1efa9148273add0135934acf56966dbc19114199232035e84b011cb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
8f630bb3fd23b3ce9ce0d43a1d39e906

SHA1
9fa7edb85b2918c8f5eb17aa20f6457ca094798b

SHA256
6ccba79b20fdec46fb87d0b8eba4cfb589ea080ae45a147a461e44a1a6954914

SHA512
349617a268675494275fe64c7d6d6af6a61bbfae52169162c934e5e3c01c93e1dbb7d764bdc8bfcbb5832dde01f16cae383d83ff08f621595bdafb14baf930b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
02e6b8f440b278b40c1cbdf067d69b5d

SHA1
19ae17e9d19c2319854956aa713e318ae309aa67

SHA256
272bbdb2b77785493ec606d9f5916db53ed99716311b20da4a61d7b2229019e5

SHA512
052f3a3cc0ebee15bfd5a764ddc573c8add0c1d3ebef043a565254d8ab4a4bca16acb9ab73ae58c307f5e08dbc5928991e83d1dae48f0473941962110188fe5a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
fbff32b610eef9fcc0a940a444f62f2a

SHA1
b5e83636e879477a2de341f23ba4d84d516016de

SHA256
51a86e992a00815c9940f752473e4e6863222c7ddc0f4d5f571ed21af9118e17

SHA512
b2f901c735adb1ad8a5a5fc9d0bd1feadc835bfd6326f8b263a673f6107dbca3ed186872816e807e41e07b7a02b48d267acabbe1a47770f8718258ff37270ab7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
93ed8a085d6ff002e802aeecac813c01

SHA1
72057ed6be65406e2e253befa9496aee92736c02

SHA256
0e6e847581299a048e2b7665d950d9b33d87ef9dcff0a1959b76ef6324aadf57

SHA512
2f2a315bc7957298576bb02680c4c69ba67460da6063f953904257efc59582ba41d8038d6f90995628f5241108bc0c063f12aee05cd127b1a89a81b87b9c3f21

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f03e15c479705a661a3787d5b74d632b

SHA1
606edaf6b2ef6258f4a3960902f6990354103b2f

SHA256
bebd7318740b4f1b2b48cc0cbe37cd1350708583c14926ec8bf70b873fa71050

SHA512
632ffb195ce327f6c262bd07fb13620f246221319ebc6cef91bce674cf95931ab94f50f21beb1357f4848ccb171426a3be32588a46905967c482b6ae3c0b4dfa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
8544b42dad45c3b2060e69534f7118ec

SHA1
c5019413b872c7b57243968cd13b8292d8e2e9d0

SHA256
3ca596be44ef5b2f99d517be671cd63bd15e520a4549eee261be6e0a93fdd5e7

SHA512
04096fa33e38d6d0e5bd899cb0a9d4ff4aadd1b74d9493326b2ee8c3148354aba0ae3927067bae2488206071bd851c0eee2d1691d7f882c9b7772c8a4dec2276

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
09559df6520085f9df4a90c3ead32f36

SHA1
8a9688df8a2e8bbf1ed3ba2db554640ffa667e6b

SHA256
f07ff6da7c5d1fe693689575fcf764a00bff42fcce20c50ca17264cc55cfc6fc

SHA512
d2dc9da9ce617cf76bcaf9b88840fb5c850cf4cb1f7726d7b550f1cb17b2035b58bee6d47e31260e1e27f23fe593dd746e4cb99212d919ab4435f2d2bd8c4a21

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
1dcefb8c680c2d2e22b3b6f4b1a6a335

SHA1
7165667b3f13d59dd3c77fc31318c493d5fc8eb3

SHA256
f444031d42cfb0e990c72a6117dda82a39975b9829c5b3bc3274d6c210c286d9

SHA512
98b40ab6fd423a2494f68335d4a4d5dfa7fe9bdec0ec30d70858552605c07116a2d96325166ef577b32f30962bf8e4e0db9fd748908e6ac36b2118b3e17e55fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
539B

MD5
d3e270a12124429203ac1f60746a31ed

SHA1
d71e477a83ec43b27bd339981f1ad3e02707f39d

SHA256
c1eafeca8d6a53595a9570537039fac362fa45f1ef70bced62e645bf79a56e06

SHA512
14e9fe2fec51508d4f04a3d9849e25bc833ad4dec84f505a2a77585113b93c6aa2dc81f4592c2d47f15676231124e375cf592cf23e5aeba0d1e6617508608968

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
bffbefe40f8e995e06cb04af674d891a

SHA1
bab82f6222899d397dd4354cf7a251adb6360ed3

SHA256
7563cd682c9bb738fdaadc722b37108cebb341bda7838bef290d658bb0f46a43

SHA512
9c7b8191bf26f6e05b4ec36b56ee996189f76ffff74c960e4253e274459625d228a93cd52eca74d34c2c9f36ab60f791e03f1863e8b5d98d30fd88ab2e90c0b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
dcfca9e4329513598379af0cfe14401c

SHA1
35636bf3350a02304155b0bef4709455da8b7d68

SHA256
6619ad756926fe87a279e914fd9e2c678f3ee1d24b5147ddc6069806fde57d5e

SHA512
7f67ed05ea4b83e6333487ce42700fbb0356b762c7cc458bdc3a7234edc91f7a2ef6befc6ade4b8ba64dffa7f7b6637406efc7d0082d7d739e5efb4e5eacf216

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
2b19816f890ef6fcbb24227594b4c4b3

SHA1
194e51f6750f06483f031d33184d0108d8325109

SHA256
4a3df8289b2c35fd7d2c4262a5d7a28e7a28131084b913702869bb19b0010666

SHA512
5d4fa36cbcc6bc41f0f79b61055a1811b126b76f3549ac4117d097d9c65fe411a09feb1192f9c6e0a9b11ec246f20e83adee7dd1c9138f477a587273bd9b4a1c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
c6cb67622eb924189df88a9d60c8ae87

SHA1
328cace61019499c6e71eaa0e65790f99c21bc35

SHA256
f34ed2d056e4b4efbe92ca93dc89e65718a4a45e906e7506add1f385d70ce48a

SHA512
24cb5e010b79dea765ea43ee3c69f6b82f789e2004fdacdf420c1facf9be561dcda61f0706ebc16dca0144dfc5d8c600e442df459c9fb7041817db5d9bc3fb1e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
a300bdc0e87f7064c150675d31cf049f

SHA1
90092cd8f601230749d8157f255c6b4645e3195e

SHA256
7621338c1044dfc5d0a4167dd99933ecd6b7536cb1038a449ad4ad50a5ed23f0

SHA512
8da7602f8025ee8c5acb32085ec60095465aa6b32374dd09e1fc306d02672652f9cfd6a7391086f30829426060f79d17be4e59935ddb2653474c1b0ba1ef6ccc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
80d516ec264fdd26252b41732bab1d3c

SHA1
7bec552acd36178a95c691c65d848118da04f3d0

SHA256
348e8da9405e316bf94e990a794fd1d7d1df63ce8ec78e60b6487ebab625b0fc

SHA512
bcc406f4eea50837c5c057d0452f27e8c08b65411e48e35605010bd911d817a58126a100923265e923f098cbdc6cb4b6544e5c8adc5df620d14940a5c413ba4b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
2bcf3d30a95b84c4cb0451aadaf43786

SHA1
4c351474852d6c8831dfa322c020e0f7f5e14122

SHA256
1a5f93ebbb18554b14325dd619ae5b76ea508a3e461d5d242ae04e0634dac392

SHA512
121619165fee593d5b0f37abe5648582ab1047526d9910eafbd423233d1d6a40bda004c3abe2f7d037b0933b043dd871f5a279f2b3ba07803d599aa7db0824e7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3c4f1f0980a17a6b0ea65d5b473e1acb

SHA1
9daf5d5cf7280e82c7d0f055627dd3bde1596663

SHA256
c09df873bcf87d2f5bd0967384af838edea490d9ef97053b795b21a4af4515e8

SHA512
8d30c696413636574707c62bb5b5d03e6f4068441741a645aaa8944250c63cd764b60112ad70863aa75e124df05e286589232f78b23899af6aaebde24b0f6fe9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
ff2ef797cd46716a9b9963c4942a5a13

SHA1
c461ca6f17d4438b5abe03457d6810c84d24f29b

SHA256
10158a922571e37cd2bc2e0677e4d005c8ead00bebbe9a479064bb3672c74c6d

SHA512
8b41244a7df335106ca36e7d36f87cb3cdb1aeaf4bbefcd0f8a3bda5a23f212e433bb75227e79e0ba3677b7f05877b20a1938e1bafe9084245db7a44bff910f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
ae1bccd6831ebfe5ad03b482ee266e4f

SHA1
01f4179f48f1af383b275d7ee338dd160b6f558a

SHA256
1b11047e738f76c94c9d15ee981ec46b286a54def1a7852ca1ade7f908988649

SHA512
baf7ff6747f30e542c254f46a9678b9dbf42312933962c391b79eca6fcb615e4ba9283c00f554d6021e594f18c087899bc9b5362c41c0d6f862bba7fb9f83038

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5abb23.TMP

Filesize
120B

MD5
5b0f1c27ab155f5ecb76c410820b590f

SHA1
3a52d7465df236fc87e79fd73e19660ff388e22a

SHA256
2ba95dc26c6ef8f7f89a9ca05197ea23e8979c1f633c103672e1555b67ba5107

SHA512
6e0f2b7e721a711bd14e66764d935ef5e8081319dd9d9319c17c454e8538b98a01029de299a774a1a8fc605f0355ebe33b58a499ac57311f84d3d8cc9e35154b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\0568c17a-7624-4c29-920a-db81aec6ac5b\index-dir\the-real-index

Filesize
456B

MD5
68dcc9064ab7dcfdd5356e7155c5d6ec

SHA1
87d29006c6bc9066b17c91e08da7a8992fe467fe

SHA256
3ec516d4f6a97a26f208171eaa35852948186d1d9cc2394f6c50838fa950093d

SHA512
064dfa7014f90ee5057127a6364c68adc2a7344fd56c274c4142afe0cb64d506c7bd44b3ed7f51c903b9804a57723b7daf88d403e4a963fb0630b7ccfcd15ad8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\0568c17a-7624-4c29-920a-db81aec6ac5b\index-dir\the-real-index~RFe5b339f.TMP

Filesize
48B

MD5
dacc8072061f027af8475c60fac941d0

SHA1
5ea957485bf178f959bd07fde297faa49ba2f9bf

SHA256
9252c760ad62d5112cd17a0552cf9a318a96d0b31ecca699a7f57535f2fcf7da

SHA512
1da7c5647ee134346355ce0f6fa3597d8fa97012010411ac6869fdf64b416872fface8aea0be1fee3b3bb6ffb0bfc2a17340eca6122134aac37d3089cda841dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\6d7ac8b3-1cab-40ac-a43b-a09cf909bd8a\index-dir\the-real-index

Filesize
72B

MD5
ca41d55e0d0f865d6a1ef281be79c145

SHA1
9b8c5799dec1c514e74a25f75eb1cfbd4521e9c5

SHA256
9fde9e30d1468ed35e7f33a7a89c2603b53883728311ab4be3abe095065e8a54

SHA512
d5ae7ca0d2dce2f20e2fe6d2b6ccf557375736f2ea15d0a09253187118251b1475568d2d7933ad83853b0d6c67f044479c4b1a8c6fae91140f4a8f4f72643961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\6d7ac8b3-1cab-40ac-a43b-a09cf909bd8a\index-dir\the-real-index~RFe5b2f59.TMP

Filesize
48B

MD5
1d83652603cbc5f869d6825d0decdba5

SHA1
466439faec98232cb56a9fe207be119d63ead807

SHA256
aff65411d34e607355843afbf179391933f9165fc4d0d23f1b2a0838b2f5574a

SHA512
0ca1d19a6a7176df76816c8d2fef70ef8da52b750c7118d8cd1b4a9210afbf1df42bf256873182488721e75711f6fd52140069ec246fcc3772031fd6991692b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\index.txt

Filesize
237B

MD5
e1984d897163af0639f4c9813af4e3b1

SHA1
d6cf47e85555d3535eb65492891678e47f22b67d

SHA256
9f9745a9d8d0f313d0eaaa8dcfc5357bece14f4ee75328c92b0cd7eef9417dfb

SHA512
00f9c732c980410dc24e2225ba8b7cca53df39b6d43b6b223325b4fb836cfca1ae9d48a42cb17b2e0483c0a9b70952f3dbd7aae4842435ec8caca662b0aca10f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\index.txt

Filesize
234B

MD5
9c952ec9b70ab52e589b13dfb5a2760f

SHA1
ff592e1b9296243595919202b81e96f621f8da00

SHA256
a21fcb71c583dd51327adc769e7f6b24c34327be8144218903a363140f0497b7

SHA512
69f8d04573556d306e7898e9082c14fe35293db26880f7f8e06194cabe48c6768d73caaf22061d5658bd8c2edfde25235b76097848c054a0546643bee459ebf1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a0a74304db73132d4bc12ef9404aa74f9fdeda56\index.txt~RFe5ae12a.TMP

Filesize
142B

MD5
8f03d945fee0521febeef2512045e349

SHA1
092e82217799cfffb76cfc7dc4e432a3ae661d9d

SHA256
ab52c61ca8e112f1282f7344fa00b8e6f30230683414cac2ed5167488090d380

SHA512
4f6ad05d645ba367042d31ae154dd733bb436975961fe41b426b3214a5cd69a31b0a2b533b03e4b12bdc71b4768b850222b889ed7f54af22215df3790101d25a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
9934b07d9ee8bf24f39733a5cc5fc65c

SHA1
084f08abd0ba2f6c4184f9826aaf3291ac28aba9

SHA256
2188f53e95d0dfba9de3dbfa48425fb1a076714fdb11f46841d0a256472edebc

SHA512
b785f3adadb548bfe049587089ee7121f87b707a2ecdba17d57f66a83c48c368a36252ac5e81beca6237d795b351498348a363f9c84321585da0895b6ea0fd01

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5b2dc3.TMP

Filesize
48B

MD5
9c2f6ab070d997e92c622b3907c7d06a

SHA1
2fbd20025f31a6239be8750c95eb1d03d75e376e

SHA256
23917996f071f0c07590f53602578ce9bf983b82b8bdc73cc6b92a531cbee6c2

SHA512
8ca598b023961387a3be8deb7efc61bf9a6714a5e8ead115e101d39f2e1973ee8863f151166a0347ad71b1470473ac35e4564e922120408f8dbd7e9ceae5b7f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
172KB

MD5
082d3a9bd3741ff4a730b42b2c445e68

SHA1
13aa8ef0ece2ec6c71d2cb4cc0a5dcd28f9d0ca6

SHA256
2326fcbf2fb90fd045febf7fd45a25434f8367cde015194d646b2fe9230d5f2d

SHA512
802d53ce11ecba476a6389858370f393eef9c78fafc2f2d8aa59cc0df3bd46748a8251cae83e2bf9584fca50b3777f2f8d32b993f36b6506afb8104f36a11296

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
110KB

MD5
b548f5c12de47accb17614c1db4c7a66

SHA1
61ba44aa7345de32acacd63307f043e19fa5ecc3

SHA256
99dac08c7ab83da00dcab3880b8ab0a6d850155c0a80aa7ffc9311116e2297b1

SHA512
9a55b299102959217bc97130df08dd80a25b4ff5cee16aef5f7014410bdc5e51c8261925c9cea61fa84acd30813a746a4984ccdeca98afc016023f9aaa236218

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
106KB

MD5
632360c961452ce5b3762bb3d7bbe190

SHA1
4c524bdf358201db492c935070bb28a6c24f7599

SHA256
c826450440c87dbbb3a4e25a19e44ab8c776502306461a6098e0a5dceef02e06

SHA512
2cfcaf9ff8fd71c51aa87edfaae7d8aeb76eee35af4ca49788044da8e75e4ed4eb55c9ca5d9fc64f537a2375145da12efe06e3983d165cef8e0788ee927f6111

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58532c.TMP

Filesize
97KB

MD5
c76422f4c7a97d8e6c91034ddd9f45c9

SHA1
06fe9041de85f9da0adb321920ac7408a056ff11

SHA256
f8c3bc9709b7d396e8a632976b0b6ecb0f5311c1fe379d8de7195305bebf0246

SHA512
ce9dd52fe766ca19fdd1a63363c99baaba8887d72a8bd3f8785a6dc269d44f3ff8c3bd021694c2e4fe339b3c223e71978e3b7766f4550f3a26a205ce9fbe9232

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows Media\12.0\WMSDKNS.XML

Filesize
9KB

MD5
7050d5ae8acfbe560fa11073fef8185d

SHA1
5bc38e77ff06785fe0aec5a345c4ccd15752560e

SHA256
cb87767c4a384c24e4a0f88455f59101b1ae7b4fb8de8a5adb4136c5f7ee545b

SHA512
a7a295ac8921bb3dde58d4bcde9372ed59def61d4b7699057274960fa8c1d1a1daff834a93f7a0698e9e5c16db43af05e9fd2d6d7c9232f7d26ffcff5fc5900b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\PowerShell\ModuleAnalysisCache

Filesize
53KB

MD5
124edf3ad57549a6e475f3bc4e6cfe51

SHA1
80f5187eeebb4a304e9caa0ce66fcd78c113d634

SHA256
638c51e173ca6b3469494a7e2e0b656021a761f77b4a83f3e430e82e7b9af675

SHA512
b6c1a9051feeffad54ba1092fd799d34a9578368d7e66b31780fe478c1def0eb4094dce2879003f7389f2f9d86b94a3ef3975e78092a604597841c9b8db120ee

Download Submit
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_c4xh2hw4.z33.ps1

Filesize
60B

MD5
d17fe0a3f47be24a6453e9ef58c94641

SHA1
6ab83620379fc69f80c0242105ddffd7d98d5d9d

SHA256
96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7

SHA512
5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

Download Submit
C:\Users\Admin\Downloads\Fluxus.zip.crdownload

Filesize
2.3MB

MD5
0ae0a6a9b090ff1645468003f45c4966

SHA1
08f3983824bf49b1b6ea24b8e60c9ed1b026d0ab

SHA256
52c33068b9931fdc17faba5a22551145953a49cc9937b22ff5996d64418c2615

SHA512
b1c6e174173a105b496473da77ddadbebc1ac9920ba3d6b590d35a396b18b6eedf300300340974d6c0f0d49a51eadf7f2335b2a184591c8c892c06fb62fad120

Download Submit
C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\Fluxus V7.exe

Filesize
2.8MB

MD5
75d23808e887ed436776b76286412657

SHA1
8541e7830c47179b2473db131f938e2ed6a7bc16

SHA256
4a8360b0fd876a88bbac486b66b53a8210cd0ee5fc2fbdc1bcd196f675959c45

SHA512
167b5eab875066d4ddaa161fe21a040e11098638f1502a409958b424b00e96d7dd5a7272e62a5b3f11129a0c2ffb8a2cec12bb6cf34f20c653d135d60f9fd15f

Download Submit
C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\Fluxus V7.exe

Filesize
2.8MB

MD5
75d23808e887ed436776b76286412657

SHA1
8541e7830c47179b2473db131f938e2ed6a7bc16

SHA256
4a8360b0fd876a88bbac486b66b53a8210cd0ee5fc2fbdc1bcd196f675959c45

SHA512
167b5eab875066d4ddaa161fe21a040e11098638f1502a409958b424b00e96d7dd5a7272e62a5b3f11129a0c2ffb8a2cec12bb6cf34f20c653d135d60f9fd15f

Download Submit
C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\Fluxus V7.exe

Filesize
2.8MB

MD5
75d23808e887ed436776b76286412657

SHA1
8541e7830c47179b2473db131f938e2ed6a7bc16

SHA256
4a8360b0fd876a88bbac486b66b53a8210cd0ee5fc2fbdc1bcd196f675959c45

SHA512
167b5eab875066d4ddaa161fe21a040e11098638f1502a409958b424b00e96d7dd5a7272e62a5b3f11129a0c2ffb8a2cec12bb6cf34f20c653d135d60f9fd15f

Download Submit
C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\bin\FluxusAuth.dll

Filesize
4.3MB

MD5
8b7c95c980646614b4fd21414e489be7

SHA1
19c4cfeb0a5c4d2d305022bb34e817d63c6d5f25

SHA256
9f766783ca687dc5b7718350b673bc895cb9b0eb7e9185ea0b8044867c2bbbfe

SHA512
8027b1036c6ccd18b5f51e95a5ab687c65766cf63d1e619da9c91dca16dbdc68b2d85acde13955f600d0a32a914b4fdb76912e7b1c00a10327835ad6882c402a

Download Submit
C:\Users\Admin\Downloads\Fluxus\Fluxus\Fluxus\bin\FluxusAuth.dll

Filesize
4.3MB

MD5
8b7c95c980646614b4fd21414e489be7

SHA1
19c4cfeb0a5c4d2d305022bb34e817d63c6d5f25

SHA256
9f766783ca687dc5b7718350b673bc895cb9b0eb7e9185ea0b8044867c2bbbfe

SHA512
8027b1036c6ccd18b5f51e95a5ab687c65766cf63d1e619da9c91dca16dbdc68b2d85acde13955f600d0a32a914b4fdb76912e7b1c00a10327835ad6882c402a

Download Submit
memory/3256-400-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-364-0x00000000105E0000-0x0000000010766000-memory.dmp

Filesize
1.5MB

Download
memory/3256-402-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-399-0x0000000001590000-0x000000000159A000-memory.dmp

Filesize
40KB

Download
memory/3256-326-0x0000000000A70000-0x0000000000D3E000-memory.dmp

Filesize
2.8MB

Download
memory/3256-327-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-328-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-398-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-397-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-396-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-335-0x000000006B130000-0x000000006B80E000-memory.dmp

Filesize
6.9MB

Download
memory/3256-366-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-357-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-365-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-359-0x000000000FE50000-0x000000000FEC6000-memory.dmp

Filesize
472KB

Download
memory/3256-360-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/3256-401-0x00000000057B0000-0x00000000057C0000-memory.dmp

Filesize
64KB

Download
memory/4764-133-0x0000000000530000-0x0000000000924000-memory.dmp

Filesize
4.0MB

Download
memory/4764-166-0x00000000053D0000-0x00000000053E0000-memory.dmp

Filesize
64KB

Download
memory/4764-165-0x00000000053D0000-0x00000000053E0000-memory.dmp

Filesize
64KB

Download
memory/4764-137-0x00000000053D0000-0x00000000053E0000-memory.dmp

Filesize
64KB

Download
memory/4764-136-0x00000000056F0000-0x0000000005782000-memory.dmp

Filesize
584KB

Download
memory/4764-135-0x0000000005BB0000-0x0000000006154000-memory.dmp

Filesize
5.6MB

Download
memory/4764-134-0x00000000053D0000-0x00000000053E0000-memory.dmp

Filesize
64KB

Download
memory/5080-296-0x000000000EFA0000-0x000000000EFAA000-memory.dmp

Filesize
40KB

Download
memory/5080-275-0x000000000BBC0000-0x000000000BBDA000-memory.dmp

Filesize
104KB

Download
memory/5080-297-0x00000000FFB00000-0x00000000FFB10000-memory.dmp

Filesize
64KB

Download
memory/5080-309-0x000000000DB40000-0x000000000DB52000-memory.dmp

Filesize
72KB

Download
memory/5080-295-0x000000000ED00000-0x000000000ED1E000-memory.dmp

Filesize
120KB

Download
memory/5080-285-0x000000000D4B0000-0x000000000D4D2000-memory.dmp

Filesize
136KB

Download
memory/5080-284-0x000000000D410000-0x000000000D476000-memory.dmp

Filesize
408KB

Download
memory/5080-283-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-282-0x000000000C5D0000-0x000000000C61A000-memory.dmp

Filesize
296KB

Download
memory/5080-281-0x000000000C410000-0x000000000C42E000-memory.dmp

Filesize
120KB

Download
memory/5080-280-0x000000000C560000-0x000000000C5C6000-memory.dmp

Filesize
408KB

Download
memory/5080-279-0x000000000C3E0000-0x000000000C402000-memory.dmp

Filesize
136KB

Download
memory/5080-278-0x000000000C450000-0x000000000C4E6000-memory.dmp

Filesize
600KB

Download
memory/5080-277-0x000000000CA30000-0x000000000D0AA000-memory.dmp

Filesize
6.5MB

Download
memory/5080-276-0x000000000C370000-0x000000000C3A6000-memory.dmp

Filesize
216KB

Download
memory/5080-300-0x00000000066E0000-0x00000000066E8000-memory.dmp

Filesize
32KB

Download
memory/5080-298-0x0000000006670000-0x000000000667E000-memory.dmp

Filesize
56KB

Download
memory/5080-251-0x000000000BC00000-0x000000000C228000-memory.dmp

Filesize
6.2MB

Download
memory/5080-250-0x000000000A2A0000-0x000000000A2AE000-memory.dmp

Filesize
56KB

Download
memory/5080-249-0x000000000A610000-0x000000000A648000-memory.dmp

Filesize
224KB

Download
memory/5080-248-0x000000000A290000-0x000000000A298000-memory.dmp

Filesize
32KB

Download
memory/5080-247-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-246-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-301-0x0000000006680000-0x0000000006688000-memory.dmp

Filesize
32KB

Download
memory/5080-299-0x00000000066C0000-0x00000000066DA000-memory.dmp

Filesize
104KB

Download
memory/5080-302-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-303-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-304-0x0000000005720000-0x0000000005730000-memory.dmp

Filesize
64KB

Download
memory/5080-305-0x00000000FFB00000-0x00000000FFB10000-memory.dmp

Filesize
64KB

Download
memory/5080-308-0x0000000006960000-0x000000000696A000-memory.dmp

Filesize
40KB

Download