hxxp://nexustia[.]com

Analysis

max time kernel
600s
max time network
602s
platform
windows10-2004_x64
resource
win10v2004-20230703-es
resource tags

arch:x64arch:x86image:win10v2004-20230703-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
20-07-2023 02:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://nexustia.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133342945518942955"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3216	chrome.exe
3216	chrome.exe
1404	chrome.exe
1404	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 26 IoCs

pid	Process
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe
Token: SeShutdownPrivilege	3216	chrome.exe
Token: SeCreatePagefilePrivilege	3216	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe
3216	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3216 wrote to memory of 4956	3216	chrome.exe	64
PID 3216 wrote to memory of 4956	3216	chrome.exe	64
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2932	3216	chrome.exe	88
PID 3216 wrote to memory of 2920	3216	chrome.exe	89
PID 3216 wrote to memory of 2920	3216	chrome.exe	89
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90
PID 3216 wrote to memory of 5044	3216	chrome.exe	90

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://nexustia.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff93b309758,0x7ff93b309768,0x7ff93b309778
  2⤵
  PID:4956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1784 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:2
  2⤵
  PID:2932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:2920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2228 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:5044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2992 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4648 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5272 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:4664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5376 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:1332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=1880 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3356
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5128 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:1496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5760 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:1216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5876 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:2700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5524 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5584 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5784 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4940 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4680 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:2240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5832 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5788 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5664 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=4960 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6112 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:2012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6068 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6104 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5676 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1404
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5976 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:1276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5896 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4024 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:1524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6008 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:8
  2⤵
  PID:384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=5724 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:3448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=4760 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=4652 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=5752 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:2684
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=4672 --field-trial-handle=1048,i,5296743202027681953,3079792978314375600,131072 /prefetch:1
  2⤵
  PID:4896

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4812

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
71KB

MD5
7736dc75f654906278f60fabc5dca253

SHA1
6ae41935dc90ba77c1dd2c4229f8c36f74a41fe1

SHA256
83cc73bad8f2ce35aed0431a8584cfed77733ea834df36cf2bd5489c93ba4a5f

SHA512
8a99439ec75ef2a99def7dc9e1193bea0e622651b6d219d6cba3df9a906c1c6da08f8c0e824734f4a9ea68983c6f7b6d27a8cf5df80f484063cd3094822ba625

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
39KB

MD5
8877fbc3201048f22d98ad32e400ca4a

SHA1
993343bbecb3479a01a76d4bd3594d5b73a129bd

SHA256
22f8221159c3f919338da3a842d9a50171ddc5ac805be6239bd63e0db78046af

SHA512
3dfb36cd2d15347eaa3c7ae29bfa6aa61638e9739174f0559a3a0c676108ccc1a6028f58dad093d6b90cac72b4468eb1d88b6414339555c9f872a5638271d9c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
144B

MD5
1cf45a0155f29827a27d1e790cfaae97

SHA1
cb56c04894fc660582f04db41111c3991803ddd4

SHA256
28b63f291706333a225279b99d6fdb02be3b0818678fa20ec2520c71d763ba76

SHA512
5a66ab9b513e50cbb70ae7f4c9de50b54ebc3177c1e8f4efcfcb996b89098d81dcefe9b19b07540e733067625340a9fe30592b982f447f714156d63b92a3baf6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
d02bf135d4c36adb502c832c2b88855e

SHA1
da6227923e9a56fd5f23728a8244016fbb926382

SHA256
e5ad344548403aed22f1bd69913a95e75e5ce1eda373de85f348ee48fefb8b76

SHA512
be2ff0a8bdb5e5919553ade0da0fcfaf2185373c616e4dda2fc72332bfd6782cfba11195d28329517107140d447ad8642d3ac23ab1b02a5415da4560cd418fae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
4b355e512c0f339dd69d26597c65a682

SHA1
aead30fb898bab4834452ed383c4a6bfe315b8f3

SHA256
72ca0fb4c9a8f1327d564b236ea90050d3628b46a68f90d8e2dd6b25b528f78b

SHA512
99a711ce0abcca75894de47c9a5be317a42c15d47b6d8595f00e57ebc6c66c4acc13106502a27e2a31caa5e0f004b945f9eec5e5aacca5edfe4ca6cc1f05fe3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_bootcamp.cvn.columbia.edu_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
3b196b72246b30e18e6157ac321f3d50

SHA1
ffe4139cacfff1af17258b35d4fa46a6f474f4e8

SHA256
8a63efba94d32f913a6f2fe308facd32cf59ebcc1a5c9e322b42d963ce0ca5b1

SHA512
e717f2895f6e44afd9ba4fabc8aa49d1925b96f26cd532afbd4869fe8eed72aa3b2aa5e8437135ca84d1fb4ee0daa17675c7049bc14b904e628ba23ef04e4556

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
fe9a25c31eb97f05fde057d043db471a

SHA1
efd6b6060829943355ed8890d437b6bd9071e351

SHA256
aa84f72704decae1e231070bfb6d8652a253446225728d0db893ac595002ce18

SHA512
9e9ed01ffa95cf4b9348365aed3cb58a1e19d380ddb4af332ecb582e6a877f928d122c1ca52d8bf1175463da70abd04fd08d443ddb3919136c5cb2691c4ef4a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
c91edd11f24345ad4f4761aa8a6e8a04

SHA1
d14178edcb15b616b1c050a7dfd9c3a3d85108b6

SHA256
6bb5ea29569024d72d831f68ced89581e687bf7149b7a847604c95bc43d22e00

SHA512
09d5198a81a00db1ed30c75c84090e50852ab7af82c4309bad5e912112c59ed4715451acc0244fac5942bbf2b355cae2bfbdec3b997386eedbc891913881f2cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
6dad0dee90ebbc8b843cfc7fe4369024

SHA1
2706f4cc7b74c411f7e9d7b6c48097a92eace752

SHA256
0f4e597216c9f1ccb8d805b45864392d9f18cb74ccf173afdb216c5e7316d9b2

SHA512
c64e1da6053737856478643c280c7f9b233dd83798f68ab598a9a6087dc9fb9b3c6dd3b8979516e6a7d44da8a65f7c17be66d91dbe1f3a3996af7224a3f186ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
62adc674ae164f7e24dc34fd90650b23

SHA1
ad7e5adb3bd7e87f8c94fad645ddcf94da14d19c

SHA256
ede39987e6f98e97834e92b33fb7fdae75810f5351664dfbe58b2ef6397d0b7a

SHA512
91716ee2df8512c5ee1f4d99d2a508bac57c06193d3bb1acb48c6bc726c4672cb2420d2f9141c02588edc41b183ffba07301d4a42414a3d270d98e68674ac5d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
fd05f875567591597ad0381eab12776a

SHA1
9445f4528d1f6d9d303bb78310d7a8ce90f23c02

SHA256
c952b6524db86e55264aa07f1116d23b9733c7cd72fb6f8290d1506030a3444d

SHA512
e6a071f927dc4e4a84fa9820f9552ea11f0989ef8fd96de67b4ce2ebf60aa3883a2fe64e2b553f1ff7a303c419bd8b10e183947885f24027ad602551d4f058fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
667f3fd07521a3bf05b12e18e032033b

SHA1
e799529678528093c8a4fa139d79d481449da74d

SHA256
cd0de41f1b910b05b11d01f920222c131bcad4f8ab3c05ec8467298dc79e3bdb

SHA512
5b405f4675d529d1dc388bb350adb843fc0943106fb3e9392f1529988640e92eb332cde989494d6e6666c62c0fa07e15559529ef723746a8b76836ae2756c9ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
abc211536fa44d33b4f88fb1ff939509

SHA1
03fe733a80bfa8e6f59ce5b4223153af2872d7ad

SHA256
634025b8a38407e5468612de2585688f24103bb3af0d023147db4df3d89bfeff

SHA512
449898ac15ce7dd8ac257605f9ad13ba9f3e7e405e917a0f484c41d0312f2f89cf99dfa94794a5963bc697e262e36a2f23f5baccd40390c2d88b5498869815d6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
d9d03a0d153bfc54f2ba31848c1d053a

SHA1
fefb8fdedac02a03da52a967a43a7f819b684317

SHA256
3085fc05889faa986d5378a91c15c8da297652efbb69210f800e88e4b2dcdc2b

SHA512
0b9096f736a45ccba62dea319a12c705d82d5bf9adb23f303094dfc516185320768a6cf0fa544f093d62004d3d945e3e5be21a527b8f596add0cf462350e9cb6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
85bf94db058a5baf73fb06d1f3325cb9

SHA1
298f195a883972f3ed7084030895cd14c4d14d65

SHA256
7bc6942c1312138431e834e758bb49cd49294cdeaedc51d9861acc28f836cc8a

SHA512
a727e9203254761484f5e6479bfd387cfaef46aa796ca8d195cbade6c6751b2a114b243df028dbc0ac1abb8bd5ffce065e71c438c7640dcc877fc0e51d09c052

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3df0c70b9f82b4b2f3d18f1e5ea96ab1

SHA1
04531c9398d182fa69d8969803e466aac0268717

SHA256
9e56eabfe8ea52cd7fc11997d86b02139d8aa7f4485d500da437e9632a503aee

SHA512
9e05cd177118517afaf402f5714e41ca2f53bc46ad50c0cefbc59d8b43f6aae40f94bdde8573f19cac65268dbea6e428249ebf4df96902b17a08bd06c101a09d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
fe961219e2eace0e805697f92f17c7cf

SHA1
20c151ce913f5211233370c21f8b75137fe3e977

SHA256
3e7892058e9340f23928c1cb354392e549ae4f0a79828fa92bf860137f1a4a6e

SHA512
ed9f294de88344f3eb4b036f7beb0f4863605c51852b83a012c7a45b1b87db38c170e545011601d85f642c58e68ec59fc9cdd7545b8809fc93b5fae5e969b016

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
90ae9d4e664b0129c7cf0ecd8e7e3221

SHA1
20d51258850c79b7c5162b15ee722abeb0ee4296

SHA256
4d184c3523cdc2db6dd1f0119cfddc68d02643f4a9c4996f125138785c3cac52

SHA512
28400626a65e8d5eeb9848ed24175326d84a161d6e66ae4dff53e3c27240d93b2e8e1b5e5f82e8e692a922508a580d11f014894f28dae268ec6682a2fd719765

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
9b83146090ce2a8e89cd75686385bf35

SHA1
e5f404795f46d5006456f9e444f759594f13648a

SHA256
45b36b8cbc76e71042486edf3815362898a327f5b74d1f3b5f6580b1edaa6532

SHA512
adf7e6cafc5a115f2376f95e11bf7bbab1a142f0a52eba957d849d99651f0713e7cbfeef8766c6eb15b9333c34d6e8312630ac4409b7aa9661b04c8659c21dca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
93fed21565d919eb29328dd720ce6b00

SHA1
53b199d3470f708a266d22212e6a70a1faf168cc

SHA256
2114a958f1be3a390752f94bfa1c801ba708136e61837653dc727606a2dbaeeb

SHA512
111d07a6d42b38519a8631be1912f3da97dc26581f37a744a911b916ac7b263b61c3781e5cc3a438ded33066f41932f420880d8f32b765841ce1a810310dcd63

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
e47d0bb6a8f12a28107749b580b9a942

SHA1
7baf17addfdffa16bfe4eff2cb396d0830f6ef49

SHA256
cd1c1eefca672804341d41d83a52cf7b39eebd13be39ee9866164245660b65c1

SHA512
26bfa16e6c2764d3f71e4047e37fa63d8523a0e6c1e628d8ecb11938d00d071e0fc90f9d19ee4d6b9b1d77df54785f5086c2af5c20bf5b3613d315fb70e3006f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
e0be60fc04557bfa0b0aa0e13f8e9ecf

SHA1
7ce38ae3f058385aea5caf7a9a0b543b752f3f8b

SHA256
4ccfaee10ce3771e10360c408acd4bae317d3e0a58efd580c619db62e3897743

SHA512
3f675b18aa4512aa557ffbea9f296d7867ec5c2459f06b6d3561505c1493dba03dcc21c5bef6192f1cdb031c31983903fcafcc467aaa6c77330b0d961e54b547

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3c15184b93050fa4f2d70bd3cd21d4c9

SHA1
a9b3ed9a6be66ff6b2ecc1285ba72512100159ff

SHA256
d81b5bb81923118a6e7e8a8de602da9139c69b704c078d9acb7455afabc4200f

SHA512
8367c50147bdcff05aa8eb13251a79247cb28394ed5de33db5e33bbbd1977b8a13a0e535298914a2959bcbed458c9ec16d2baee035f3b3727d985f0c74d890d5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
29b4913c8b3715387a1bf23b6c3ce5b2

SHA1
ff3577bafa2c971b9afdf30c1fc1be4629ac454c

SHA256
0923a1a640245b02e7e3888cf2e63c0be1874d97b88e32492072e9e7391eee3a

SHA512
d26e59abc40c7009052a03a4a9b952caa4061658d5e24932298da72b4f4d91f36f4aa4b594bfd8251a5ccfa581546d45c3ee67b8cdcd1605c851ebed3ce762c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
a8f56d9f22c1793eed2bf2ed199f5f3d

SHA1
ba94a07bee8f1f5880606bf6b9fa536a4be42baf

SHA256
2b0c7e4f9d0a0202bb1be4b61796bfc961585f6d5c11a773a9ff6bc2d1da1be0

SHA512
d2dc5d2d3c25b446dedc7cbcc85672ad8ba18e52e74948fc5351e295208b6973c566577b2485c6914a1b6fec187ad175b3654dcef87036d7d34c506e5c054f67

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
e85beb411c48ea3c4006749f68a4ca12

SHA1
8ed01917d0b841eebfc49195b60a320a75a41f47

SHA256
643e0f165b4e051f82a204f67c2bb3bb63475e7e5355b30be779f828a16f0c90

SHA512
47ef392622b9c6e00e72cf48a9089451b2900b6174a3e248eb54d6d3ad5b0a6c1968feeaabe19d67b843a6da1a38b983ffec2203ec6962e07ac3e16b4d7fb168

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
cf9c7aca253afa02fa4e346b89b1caf5

SHA1
a2fce792e06ac269f844180a3d59409a275c5706

SHA256
a6d6b59660248b1dbe851654ec1c121eb510238c6675811a1b51adcda6d5fded

SHA512
a0e536ce37dd21c92abd3f79100778982236588382a8e93e94d340f037062907f90fc483b6568d12fd136156b22ff5f8fd1611566606e29a10b979334bcb7e2c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
9cf2d66070abae63bba41ab01e85d6d4

SHA1
7c4256bf6ec748446c0e11f35cb567376b10f2f5

SHA256
43c08ed4ee9959e6c516631b9f97a60122ee53b8b20e9f1a8ec34aa145d0926f

SHA512
da855540cc9bade3f4f4f200b89ba93c6136daaefa74ba4b8b6fffb5c8b5e67a6f871e6229734166555cb65812eb9b0177a2ca26f11788d15ba77a36977a2ce2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
174e3d1e1fb9250e12bb103eb8f79bc1

SHA1
5572daf6e7f07a033b1dc5b852971d52901b4f16

SHA256
e393ae7203f4ff46395253903202547f23ff536e7c795b154f2881f818874e39

SHA512
fbc1509b918d2ceb2be8108ee4ec9f2019700e3f11de870f56466371d73d2b1779684da3c033a4c71cea47a72df621f50a5425d17abd0cdbdd54e777021d634a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
cf9b0091561589c4bcea67edf4526937

SHA1
ab0b1890466f1d9ff0528ee7dba78cbf0c699c80

SHA256
9eb98d50f2d401e388e6a12b4630adb7c94ba545f2a4684f600c1cb41b03cfe0

SHA512
63e06e50c0b910a16ff40367a53853109f0b9bb987264a1b17df5313a9159dda622f27c491700164fc1d03d1f219e96668071fa67b38740a60485dc503919f70

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
3178499b4c2980c58b0eed2b8cbc60aa

SHA1
ad463f55b0fc400e4cca5d6b789e4b5a2889cf6d

SHA256
4c071ce95957cdcafdc2e1d66c4409f68aeea245019f40e7816f6c3d9b128a92

SHA512
f6731740b4bf79387597a51645b96d4dd15a0a640d6ec77754fc1009c2f3423c4c801cfc077b151fc2ef6e816dd27a9144a587955d6f163da1d3d86c473c38d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
84e9acf667e649e915990b5786b8f75a

SHA1
53d22431b4826b3fa7b12d15c45bffbd4b6e645d

SHA256
c959b5016f9f964cba3daf5761771b5960ef74d5b2019b9f62ea2e51f675f53e

SHA512
e574a424547080f28d95fe9e7d99f96ef6812cf50a581c046056956b5be661e6d43f87afc3baed553fd0c5153a7bc21c3438d4821badec331840581b192bb4df

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
be1b9432b2634bcc83a57523d00aeeba

SHA1
e089c4c5556f1071966b43e4f1e4383b260ae52d

SHA256
fd15925317e87f2552aae5db7ac4ac1bd83f325c8a5e3df8354e1c28d3b004ad

SHA512
56a06a8176695130c7a09dcc1ac1aa3725e681cbcc9370a33d3b76333be5252ed8323902f2b8bb4e9c14dafbfd7d084c478ce05c5da403d569a457c7f3e6197e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
019e9dd6e2555614ab2c8ac7d781e44f

SHA1
cd9de96637a8f322265f48c9fc58a8f44e5fc978

SHA256
77a4db4a25fedd68094b1fc62890389af79018f9df0cc145ef54db34f40899c9

SHA512
0a52a3a74d305b5f6efc222c775c6e19d55219c1e654026e3969d6b104291e50980454ae9412d276b8f31513b42ffe1d00f02cbd742b46b7795c2311c7cab08c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
d30185e767eeef6f6083156e17dbfa1e

SHA1
bfeb5068e403ad9bf5e82578eb32acae774141db

SHA256
53189a41b69d6320feb9d181358a27ad500c2af40d9d224fc31103abcadb6a19

SHA512
97254191506e40cc13a592e944c01bdf54bf2ed211436f263bbab925c17784af55553d6734e2c7704cee102ae472a121dbc6007e9ac5a09ab73d4b7c2351ffc1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
869febaa43cdb0f64117b7c29f10841e

SHA1
0e87818ec9d4f1137bac663dd5554e066c49a0fd

SHA256
0c3945b8bd7e16b687c6da35bd98f02dc9e6b1687e0464f0350bc0023fbc1f7f

SHA512
f55c3010ba977f219465c20b71e40fa9e32eceafc76bfb1ee7d3464a19eaf7dd42e495ef6b7677ec215ae22424dc77d42dbfdaafb29eb5ee8720410c9cf098e9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
adaa6252ef6f52bf95bbdb5910dadb86

SHA1
64f0267ad305075c712759e2f077f2db29e521fc

SHA256
b83dc2dc637077ead35745b60ffc6aeff6b5b4f42f4586416e6689b9519f5102

SHA512
85afe5c3047c17a90aa376fa32a0f59c614df9f1c3fd130038a40926ac213137e2df8b4226b439dc8ee73cb3af8be6d3cca529e99830769c642d768139f1ea7f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
e4d65c97d08a3776b5162728bc4a20bd

SHA1
0753d41c714feee1bfc9bf7ef87434f2b9faceb1

SHA256
8d94d9e81742f72b4486a80907d585af61868200a99d81d7e87a4fc4524dca4b

SHA512
d04878d05fe7698a85db372658a42d3725a4c38646c94707d2585ddddcdb777c6a4f075444e1a802e809469b3d47908a058e1c0bcead466f8e418ce302c58c8c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
7af77278e901d2fab8f99afa228cf468

SHA1
ea02a5b826a0bd159ac7c069da9984d2b46334ca

SHA256
869536785ee52133d376b37e71046eba61666cf4a4b918affea2e078980d563a

SHA512
8c49423cb7a9ef0074d149325807f66d59d0278da3e579613cb4a04e5e26410cd5d7226035696919b4563cc867d94d414d375cc87df5769cd84b35a9de3a1f1a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
5bb0912b2bd2693f9c281dccd095cf0d

SHA1
ec71edc2603d5711d8ea8ad526eab423cbc572d0

SHA256
8b9244bf7fad5f898d287b8563f24bfc430de6f721e697d5960b97cb09055504

SHA512
80f1bcd943b7791801e6fe52cf66d81311eee45bd526e49d2aba954d87ee66cd036e6d0cbfe8dd3a4fa33ad64d5e4010b83d24a0587b50847adfd32ef71860c7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
45cd99446c7f07da2fd5a7f32978fbec

SHA1
d87ded907900b647d03228e1e1d4c7a55e527574

SHA256
9745da147a59c64b015787f5a2a0510e9087dab6a1ea13e98a9fe5cc7c33430c

SHA512
e100c8b5e00f7a26313718d247e08acdb46ede02947d3f0f70140e42270445fd02dbefd9cceeba37529d528ab9b8d6a0893e3e9ed61270a8fd367661a6707cdd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
e85315c61453339fd8f556cf25c29da2

SHA1
169b14a066bd47315bcad6ca7c8951e7d6ce8d71

SHA256
b9f485a1df3fb851b5613dcae8c297ba89fdd18f975fd9dc42336bc52d0c4a35

SHA512
baed44c4e9d071dc2645a71886a9e0fb124845a9134ec8a280c181ec75734d9428183c7d24728a9eb8f935fc217fab4bf757fd17d380bbfc5b092fa99414e876

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
ca485e71e419ebf8a958757292004f1f

SHA1
99bbecb8daed603cffcc95c527e6323489fdbce8

SHA256
2a4951ac1d27971187cc7a2d83892fc59738abfe917918bac385af52add90a7e

SHA512
fab3300712b40190d562b52c901911edece7f15ce7d448e4292adacab8322eea2d9e9be2a1d316bb2a40dca9665df31285e4a515aa7681b9d86444f1b2383b83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
5cd78133c0fb9cd2a81e72f25cbe3330

SHA1
cebcd688bb881b69e826101570f6f0d669e2b0d4

SHA256
5f4ce2003cbe34eebbd1908bfc2695cc92d49a8a359ccee5c73061185418948a

SHA512
4ac58b5390c8f2ccbd7e91e4a72e202940a8f74c978542d0ea6d3137f9ef2c36bf3c621067ef0955fd310efb909bb4381094d37d146be615e4ae8bcd5ef8402f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
89def196539a8ce9298d32f12ed993d8

SHA1
44cff2a64ac0c1cabf603bb1fc8ee3069119ef42

SHA256
f013ef990f398797005b48c2a96b5a4d895cfc7f2886295464119a629af58aea

SHA512
d05c649df3d24ea5e10a5d4f4d1c5c4bf70db679fa276d60cf8cb51933939c20a9e59f67fa7a84b16e7b771ea916fca4ae171bd23379fe623519f1253b577af8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3f7848cb72a31a9ee1b582215fb65c83

SHA1
dec3498e03d085ffe0495bf013144b1b58a79432

SHA256
224fbde3826dbf631fa816f46bf8c7ec2198aee0144f1a40d00774d715d028f0

SHA512
6d323b7df1849fec39f1d591f4a6450576bd1f71ac85d99f7868a363d67d49e59ef3dee761d0b42162360a2c274d02065e71efa12baa00a63d5292cfa08d4a94

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3fdaf800ba1409ad92eb33a3315b3c8b

SHA1
4e5f937fcf66770af17edfe3097702d5a7a9cb60

SHA256
5492e0c31764be8b5e95f08c9accfe351da8d27c92d0f42e9ee51fdaf66fd280

SHA512
8a960ff9fd01f8689f77c382c61058060e191eb4b4fa657fb3d254bdfbdbe6280409099169c004f52a033ab4311e87665eee5c11c07b38af0560d2058fea7542

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
25b65fa5a322bda483f6e381323e431e

SHA1
e86a79c990123d8256f60eda632bd896469a12df

SHA256
bf07e6ae9746e2947b500cad028f8b881e68e2645e6994cdf0dbc72922c7726a

SHA512
0cdcbf205f65a607e14c5aa9017f03a4c6fcd1537e2de730e0b1fabf19e23090e1249b8b6d3c43a3ee3544e62af069e0973f349c743f897d57505f30c6be2d42

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
47cfdbf630e753f39a4662b51104962c

SHA1
d1a43873157408559db4f6b95bb178fe4206d022

SHA256
fc59e3590e791575ca0e0be7299461251e124aaa80cfcda231ebb15dcb3c5885

SHA512
e67fbb106fd4a2e8ed5d102a4deffb3df373c38455def0fec6a733df0b67545175e36ed95c2e38106b1361f692f93e7712a6248fc7e80abfa3cc0af9708e67fc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
4136e71a52185087fd592f3bb8df6049

SHA1
0320a2cce6a326c0e5300ccefe729600e2017ff4

SHA256
e0465577169d64da1fa6ed6b6db5e826b79c31ce7d4c0e79e95fac7f23217344

SHA512
b928c92c30fd961f5ee4f05151e01da9fc2bba20407ce47c4a63dba97e24bb6147aeee644b568ac5f8ca2ef2540c99dd4ec68176bfd8ec48459f48ef6bdcadd3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
7cedd7b78e0b1553246c783e251391b8

SHA1
3903bd2e477c03e4b1c55384b05a813909879f1b

SHA256
c7ce3e581a777a71fb4594034f8a8badef12615e928dffc22586d3c0aedc00af

SHA512
514f69bd9cdc7eb48f9b955b7e55f13c1adf077db17f1100879cda929f2ca13efa13218fd70e3516b7e9aab34d6b67292d016da15e5d601644186013e4d61218

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ef9b5c568b37606027dd09e30a3dcde5

SHA1
7a5fbc771f6fe2d458afc709770b2fe8a380cce4

SHA256
ebc01925e1df9bc272ae3ee86c81098b9212ff1d35a89fc2a8369da4fa465fda

SHA512
815f6ce915306bb6fc121b5d4c5ea0fa8389637a5d2d1140ee1094921bd1c15665f02cd1f2e53a76e0fcf270109ee6f20c23b68e98b9fc55cccddef08ab2e68d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
8eefbb838c0057cb409928e5b427be46

SHA1
72a4ea3055d6938d6dc58384ea2148f43961e5ee

SHA256
5e0df83fd6cc1385e859469c81492408aa5f5915f77dcd08eab088f4dc177a67

SHA512
b6dee4432ddcf5bc66cf7f29bc597f11efb3f35a77a704036b467a26a7997c6654e3e098284df95026c947fa8e46090ad9e4beb2f63066cdd42c92f67b351412

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d0dc548e61babb47c983af2eb1263e06

SHA1
71e91b9b4331728c78855c7efc7aa6add9fd6628

SHA256
8792937a232c21b4d92b2fdcbfaf7695f879a01bace10216a4bff80d760129c7

SHA512
d26e65d8c480fcd0b52d17e508ebe9058988b517c3523f0f647d8836b6494a68179b13c972f80c5dc438bd657578d43fb64e469e7f37361dd76e23415950b0de

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
69eedd29eb41217bd211de9efc830207

SHA1
9c635edfa35c23213503680cb0c83223238d4c15

SHA256
d861dec88a9c68231d55b1a37f181b7473ccfbac49a4f68fb68868a3f5cd276e

SHA512
12f9c707574d1ba4feb60ea9175817e6b7b19c3d043551ebbf82b031efad26c978f1ae53d9419892d58b5a176e4edbfdc4baf1455913ba00b55c7fbd8b4ad979

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
20f180f0e17457875019a11f966b33b3

SHA1
79647a119407bb61bcf40b91bf4e1c833953b5d4

SHA256
8f80fe9b22330ab95ceb808299b592e23afa6fed43d29a38af3c5d48d9a53c5f

SHA512
6e211b67a607a9bac35e52f2d8c5c91e055ab4efc81953262e97c12900211354138e939716477faccbaf1f4471a478269904cec2d5a15d01958084a0a28b9043

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
51cbe3a58964dbea3cabe99e98fa38c2

SHA1
3c4715f33fd59a0ffb541ed24ec6858d531c498c

SHA256
888daf7578554dbaa840aad2968c1f8629f8f469e4838f2c788d45b2c49aea2e

SHA512
de78f5e1119331f23382bd0457f6edafbda9998fc7c1ba2dd707aaf09941855d22e8576e893aa7e79be82e1b67ac575d212061bc5bcd1273270ba0239fdbdb02

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\f5497c18-4a18-4c2f-b8ca-c373370bd010.tmp

Filesize
87KB

MD5
dd036084e2708cdfae6c3e388c629ffc

SHA1
b142bf7f80b7508adbb7cd34eb5dc027154e5df3

SHA256
cff2ededa1054f82482695119d2537adc11a1ac155178fa0294e2068ec993693

SHA512
742c80c02d103ad767e3cd56e0e19cb581b5bb274c2aad29513dd7a163d22155e2befe79e55d2bce2d45aa4afdb8861e32c89a04dceed63721404881cc135458

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit