hxxp://barent[.]skrans[.]nl

Analysis

max time kernel
52s
max time network
60s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
04/08/2023, 10:21

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://barent.skrans.nl

Score

1^/10

Malware Config

Signatures

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133356181109785763"	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
4720	chrome.exe
4720	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs

pid	Process
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe
Token: SeShutdownPrivilege	4720	chrome.exe
Token: SeCreatePagefilePrivilege	4720	chrome.exe

Suspicious use of FindShellTrayWindow 29 IoCs

pid	Process
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe

Suspicious use of SendNotifyMessage 26 IoCs

pid	Process
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe
4720	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4720 wrote to memory of 968	4720	chrome.exe	81
PID 4720 wrote to memory of 968	4720	chrome.exe	81
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 2856	4720	chrome.exe	83
PID 4720 wrote to memory of 1624	4720	chrome.exe	84
PID 4720 wrote to memory of 1624	4720	chrome.exe	84
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85
PID 4720 wrote to memory of 1972	4720	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://barent.skrans.nl
1⤵
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffadd019758,0x7ffadd019768,0x7ffadd019778
  2⤵
  PID:968
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1656 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:2
  2⤵
  PID:2856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2136 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:8
  2⤵
  PID:1624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1800 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:8
  2⤵
  PID:1972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2868 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:2112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2860 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:4996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4728 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:8
  2⤵
  PID:3624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5176 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:8
  2⤵
  PID:3660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5340 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:8
  2⤵
  PID:748
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5384 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:1004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4620 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:4220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=1592 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:2312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3020 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:4900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5364 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:4212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5368 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:3944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5712 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:1908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5672 --field-trial-handle=1896,i,11415483691257266598,1255681081909761611,131072 /prefetch:1
  2⤵
  PID:1928

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1120

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c

Filesize
26KB

MD5
48d399faaa696e710b9d841b934461e2

SHA1
8b867014ac0ae0a2b81a55f171deede8336a496f

SHA256
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d

SHA512
e5394eb68a809bfb251c26ee272f584bc786252667c4241f2f05e1f0f640cef65cd293f538d35d402633dd161bbbfa41898e6c4031848c9e68a03cfec36a5e70

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
e9b0fd3c61e4b38e44f84a9d80ec56ca

SHA1
b0c66fda9a3146a354fe0e254e4f1c03188a7178

SHA256
1b7c16be95f3b7db35e38ec9a6290c6c4d9582ef97be8fc222f6e093ab7ad1ba

SHA512
53d0617a8e37afb0ef126cfecc361734df6f918f525f38e4e9bf57706719585c864b2efa6bd7ad820aae9443dbb0a58a36f96214752999c6ac2dbd0bbb46dd85

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
eb8ce8469c847123f79df54555f38195

SHA1
d843176f173fe0fb5404634d0d71431ce7d327c7

SHA256
827440bbd34aec3530d23137d0c743a6d60974349e33c61ed16595157b7f3f65

SHA512
3dd394bc66b0799d26f33b8063f93c7f21415ae764e77eb05784a24a8a992e3ea4fcedde167158b5402b1c5d1cd8e7359017c4c3350ad44fbcce376642fa0cc4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
3520fc1db29b2f1bec16b3bbfc89f997

SHA1
85d714a9ace5699110fce384092783b9bc1a2911

SHA256
69f75915d7dc58f3a3797346c022c35232b13b03c8fa968db90b33b1c430bc94

SHA512
575183b9d62723e57a20a796dabfe7d11e474bfd203bb03e595c0984061f4d447479ceec9cd01675a28ceedbfb75e99d65c1c824a2a32b85419ca0e368ce22d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
871B

MD5
fca7f186014a010f3307577100d6e16a

SHA1
745923633b1221a6c65c90622ec59d451fa41259

SHA256
d170be35671d659e43451cff650722f668649f7886efc25ade126bcdaabb82ca

SHA512
38715ed2384283ab5bbcb6e3f483660ae0c69422ea5d9c43b57295abbbb34d922508bf7bbfbddab35d69e283f9aa4a87bfdb9fd511a0116a0888a891365bf9a2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
7e1a2e9c16d3d7b38e9df0d46f85a140

SHA1
c22ed3aedfbad6722017392e8a72fd6ab764d2b3

SHA256
013f683c81ec8a5f7f34273f082e375dca6bdcb673c7fcebb7cc6c2672b91115

SHA512
4fabf174c4fdf744b510513a209089af2bd760fb74195e17972b0459ccb9b4e8ff35a9f0f52ead0858614f86c4435cb01e84c629c205f8340776f2983ed4801b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
f7d62935aa1eddfabcd10750befb6c0c

SHA1
2f8ff917361d47b87fbf7588d0691ef55dda30d6

SHA256
31f965c112178f08cf9193acb1d75c2c9b237f7d4630d5e2f0018aef1ab30806

SHA512
58a7c61446a529f3778095592f1c9c85a9d28210987005a0a4f151b6b3d50096b86ff8b0a7b12eb1976c740385b2132784aa293db4c9c147abda3750473a7249

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
180c0bba4b757191e7e7f05cc06378a2

SHA1
da0ee778c701388338766d24e9e661f52e3336de

SHA256
bf460ec17f7dfb8ea88ba88d89db53446ed314738940179caefe7a0389630e58

SHA512
4b4abf11f8c2a64a123b4026c87ab00d6dba6039e9a408ebd0c3a388ad650173d04133014c6fc8f9b555ad1fcb12634190a74a4ca903c30299092b16c7cdd84a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
19a61d0696eb7c0f9bd996e2596f08d9

SHA1
dbe3e5b806a0afbefa569577f46e433214e13609

SHA256
1c2e12822cb36ab16ec906a89f86ee5f405ec009e8ef4a6116a50d0d9f87de55

SHA512
34c3ad19ed09e0da8cc3ec03ec5942c15c57479bb9b2a354f79a294430bf3df7453a7c27f8c5334637234468b9440da466e2dd7fc187660fff24d04d751f635f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\995e3e7f-2a4e-43dc-8070-85bf6890e6c0\index-dir\the-real-index

Filesize
960B

MD5
ea7122075c9d32987b212ea261d1d10c

SHA1
e748953d31dc1064325e35a56c017aeaacc139fb

SHA256
ad10a92e0529e5cdc78775303ad04c56c7c0735c5c93712095e511b29e6a6b00

SHA512
0a11ed3b5516f37b41aac5e552cd68c2ff9a101884461482578467c154c418619d115a6640fcb481fbb28c95a2efa9dc2a56f701c566c032881957b9adaeb8c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\995e3e7f-2a4e-43dc-8070-85bf6890e6c0\index-dir\the-real-index~RFe584273.TMP

Filesize
48B

MD5
5b7b0e1eebf69ba01ddda48265074fbf

SHA1
776c48f7880d857e9fcce67d410ba65e2ceae0a7

SHA256
39b5dd93ba9886ae321fc8a50c533388bb8480fda9520eec12bc926a7afcbeab

SHA512
b95e7b14eda025edc56f8cd628c37d381382f720191bac510cad197b40897c54f56a5eca2cb174b24e9ed686880a74ad266fffcdff22be32efa9f778fd896bc3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\b39d2e43-5a9e-428e-bdf8-15fa5e7348ce\index-dir\the-real-index

Filesize
72B

MD5
af5652468bf88de2e7eb155118be13e9

SHA1
688cab8717fba90f81211147b5f2f6704ad1f94a

SHA256
2fe3a791a070277eb65cdd6d7a77a06087af401027b8b3a9e82590ecef9af421

SHA512
7d34207e4fa1ab14cc1d4d6edd043bdd4991c6c36984fdaf526876eefb6d2040418803ba55d8404454022c68305ad7f24118103bfe383ac88e4b11ef46b16b0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\b39d2e43-5a9e-428e-bdf8-15fa5e7348ce\index-dir\the-real-index~RFe5842a2.TMP

Filesize
48B

MD5
ed464985b23da12ab7c9b15baf7f10a0

SHA1
e407759e9cd1e0ed3453332ffa2c585de1089269

SHA256
6426ef9162b6b4fd22c5c132b8d9d0f717eb78f6728de4995830b6abbe991352

SHA512
223460246d099e002ce4cfb81490a3d0d7469ca274932364837bcf9c86bb138cdd1895c9ede10d68dc61177c118654073173ea7c9b4be267505d088f946a9c63

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt

Filesize
166B

MD5
28686ae11102ba82efb4c85db6ebf94a

SHA1
854ab3434e6336f85aa393b9c97791ed60781864

SHA256
5eacd748069df5edb1207bae9fa13dbae62224610e6f40775ebbc808ae8440d4

SHA512
7293b53148641b407b6911124305e156b101d96508c64d49daaf9e6914d2bdf5182244c9d925e29f6cc19089dbdadfe29de395f09a4b16cd12e43203a1d1aaef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt

Filesize
164B

MD5
cfc6dcd088700286ff69cc1f5549ec74

SHA1
d3928fcf7553a93d6caebb2d1413f88df3bbfa02

SHA256
f2a3d3097a30d5b946ed13479797f2e57053fc849cf4b7555dad1feb800f84dc

SHA512
45bf686ad887aebd323ebf6b3e207f87dfcf4fa86265fa73f366cbc2958e6531a1e9f245cbeea574f6ea281c78c695f740755a641814f17929eb2f040eec4240

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt~RFe5826cd.TMP

Filesize
109B

MD5
6b662d361093fc9878766291adf1415c

SHA1
ca5026d9333d9704239c7cf34b1a941eabfc94a5

SHA256
d79f7f2cc8a856a83a0f2f0557eac42924a2fb8743aab92b140101c0a16845f0

SHA512
6bfe7f81b96dfbcd00195fa7b759a1ddabca3303530e976832b86c1ed07dc6e790883e668f22ee235a55690c6dc355c56de98091d1611cc0791621d36b09ec19

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
100a28d001936c88166c4d9e3d53b2b3

SHA1
45a14b9d9ca7f73595ebbaaea37acad48167091a

SHA256
7126a9639e6fb99c68cdf54f0ae415a554b9f4c815bc6e592eec60e36288c6f8

SHA512
926e9fa08adb4913baaae5f9fe510581eb18aee4cc2c218246916543e2a9b7e3d15d2c47d144888205f5f11fa04372bc394e223dbcd02957678817b15be1bf52

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe584292.TMP

Filesize
48B

MD5
da77a7f78a2ab17231bccbaad3287fc6

SHA1
e42812887bae4050bca8ceeb765fbb5ef85b452f

SHA256
7fc2978134116d3612eb141d8b7d4249a96dc6b4a617c41896a8359af4806294

SHA512
3ffda8ed3e0570e39ad05558704c8e1a170c2f73cbab53cdc12661f178200a8d03de6b14ff1ca2158d1a098974346bba36e9fa6cc5a8df2c7e829f04cc9a7c93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
582cec63e4cb0cfa9b88ecd229a035ab

SHA1
1cc54cfba77232369ac6d482e9632f0c36b06a4e

SHA256
8445ac16fc7b17b141b4f8256c9c940ab8cea919c5361285a44c97c3c0b64480

SHA512
44fec7dce8f4fea9628e86f8a47890d975fef7585a1e3ebbe85f20f754f38ea17f23992f6a3a15bbbce7d47d3c09016b4a3b49b798d959d2098bd47201127015

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
04e1c16749ee9626b33d06fa29529039

SHA1
85ef597687363fa83864d69cfd1c6fa82a3ee784

SHA256
e7830980f2c22852c6a765ff168f784f8d415cf02e315619fae86689940dd9eb

SHA512
121566ff370ea971793a6f9213e27969ec90085393285a1af191b70af38d87be5690b47f66d2cdad2ed96939b9de5d8f71002e5c6dbd0da9364a8ac17b925413

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
103KB

MD5
998e21c8ca0b1cd433c827e7ada49c80

SHA1
27331819b8f2af1ac4f550b886db9acecd1b6457

SHA256
290aa1b8dd36f479aa9903b2441843f15a4f1cad173adcfdc639467bb45477ee

SHA512
1ad26ff71f61001528b6f20fe5a12879a935c0c6a80265b8d6261337bc0ca841b6010378e9b89f0932bd7a0628065dd3b3160dfc70340cc3cda111285a1c9cd5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57e639.TMP

Filesize
101KB

MD5
9bf5a003c5b48660a79407109d1a2a32

SHA1
3fe9c5798ea74267475d8f02a0b7a5d3c743f403

SHA256
c62175c85bac63f16c1914668fd8f136176d8d7a6af13a305841fffb19ded099

SHA512
9990230b7e3e28123a3d2f68e6a723d1d087466e62808207bd70b6549b991d9856873e63f883d15339e799ea3055dc6f1d79fdc44a1d2425cb00f24d850f1f8f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit