hxxps://www[.]unknowncheats[.]me/forum/downloads[.]php?do=file&id=41508&act=down&actionhash=1692133007-a91d0c905e2ecc0baced01327a6d8d7a38f2f195

Analysis

max time kernel
115s
max time network
120s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
15/08/2023, 21:32

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

https://www.unknowncheats.me/forum/downloads.php?do=file&id=41508&act=down&actionhash=1692133007-a91d0c905e2ecc0baced01327a6d8d7a38f2f195

Score

1^/10

Malware Config

Signatures

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133366087651865722"	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3011986978-2180659500-3669311805-1000_Classes\Local Settings	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2476	chrome.exe
2476	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe
Token: SeShutdownPrivilege	2476	chrome.exe
Token: SeCreatePagefilePrivilege	2476	chrome.exe

Suspicious use of FindShellTrayWindow 33 IoCs

pid	Process
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe
2476	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2476 wrote to memory of 1788	2476	chrome.exe	52
PID 2476 wrote to memory of 1788	2476	chrome.exe	52
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 4756	2476	chrome.exe	84
PID 2476 wrote to memory of 1816	2476	chrome.exe	85
PID 2476 wrote to memory of 1816	2476	chrome.exe	85
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86
PID 2476 wrote to memory of 1328	2476	chrome.exe	86

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.unknowncheats.me/forum/downloads.php?do=file&id=41508&act=down&actionhash=1692133007-a91d0c905e2ecc0baced01327a6d8d7a38f2f195
1⤵
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fff0b2b9758,0x7fff0b2b9768,0x7fff0b2b9778
  2⤵
  PID:1788
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1652 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:2
  2⤵
  PID:4756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:1816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2192 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:1328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2896 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:1832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2904 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4992 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4656 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5804 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:3504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5548 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5428 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5388 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=5276 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:3384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5844 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5860 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5656 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6552 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6320 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6472 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5900 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7208 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:2436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6908 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:1872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7208 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7228 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=2588 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5644 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5864
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7728 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7668 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=1764 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=7696 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5632 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7512 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6212 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:3108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6112 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=6708 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5200
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=6720 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=8060 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=8072 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8356 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8556 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8564 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8764 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:2864
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=9084 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:1092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=2592 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9092 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:5568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=9100 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:3292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9468 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=9904 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=9840 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=9852 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=10092 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=8380 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=10556 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=10520 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=11048 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:6268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10940 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10856 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=11900 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=11872 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=11716 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=11576 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=10860 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=10524 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=11296 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=12396 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=12256 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7672
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6824 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:8100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=1776 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=10216 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:4108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=3976 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=8396 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:1
  2⤵
  PID:7800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5480 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:4068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4696 --field-trial-handle=1876,i,18031953407800731246,3269967024297304753,131072 /prefetch:8
  2⤵
  PID:1384

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4644

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4604

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:4116

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:2396

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:916

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:4916

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:668

C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Performance Mode Tool_[unknowncheats.me]_.zip\Performance Mode Tool.exe"
1⤵
PID:5968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A

Filesize
893B

MD5
d4ae187b4574036c2d76b6df8a8c1a30

SHA1
b06f409fa14bab33cbaf4a37811b8740b624d9e5

SHA256
a2ce3a0fa7d2a833d1801e01ec48e35b70d84f3467cc9f8fab370386e13879c7

SHA512
1f44a360e8bb8ada22bc5bfe001f1babb4e72005a46bc2a94c33c4bd149ff256cce6f35d65ca4f7fc2a5b9e15494155449830d2809c8cf218d0b9196ec646b0c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506

Filesize
290B

MD5
08f141bf55bb333ff6d754a7d4c80ac9

SHA1
e9211b4278b9420e19e28f9e991e4e188db2e51c

SHA256
d705c386738c33b69fa54efda9b11ee019ccdcb3611a742b6b8eeb6cc502c6c4

SHA512
e6263ba19db7376b509d4ceabbb1b4eec725d1d849b1cf5501c8e82f4f295c54d35783951eefddf03e9e057246100a792bac3dcc16fa992402bf7a556fa77690

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E0F5C59F9FA661F6F4C50B87FEF3A15A

Filesize
252B

MD5
3e4119766f32e408876bca40323db92c

SHA1
12e66e4759afdd21682f52570d89e05c7e63b746

SHA256
030c07f87a11ed8f160606f922ca6a9572dabca89d44f8c00dec6bed95a431bc

SHA512
ce00cf7917436e5012f52088feaf5eb99181bfb04bd958381f515f5a394365c33fcd752f4bab00b77a289907dd1aa8398641bc29f46710cbe8683564af29a12c

Download Submit
C:\Users\Admin\AppData\Local\FortniteGame\Saved\Config\WindowsClient\GameUserSettings.ini

Filesize
67B

MD5
4eee6dabbd5ff1872cf6f9f4eaec69ca

SHA1
e41b7ce37778c7ac76e61af061f803a97d89751e

SHA256
3cf73f4cb64d07968a9f068a7e9321760b255901a17b62a4470cff3bb29c26f8

SHA512
79f702c131f4654ff0bb6eed2926802b160ddc74c496d162d7ad02e293fd912b52e0d49e640773a3d4938815fa48d8ba0bd4ae20630d41d3155d69ef1088fec1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
48KB

MD5
3ca3819333989578a509efa8dc996fb8

SHA1
e27f74eba16cce63e0d59a94eee310e605d79cdc

SHA256
d41c4ca7de48a8d54c6763413601cbf14dab7bac0433d0f320f33ccf89b4204a

SHA512
d9d0c55eb9c1fa4e13372bccb18988808bf3966daa94ec1754c39727a0b4a06f1785c28dc43d3df114757bd46ee62430208a6a3aff07df885e73151e3909031a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
85KB

MD5
cb149790e090d592f3410108d5520944

SHA1
a6b988afc96c3050359335a6d86eeac18be1dce1

SHA256
28da6ccb1a3c84f1c0e896d0aacd3e63a7e8390fecc7b2d3c0e7687849a5100f

SHA512
74208952ef0e6ea75d18bc0bf19810993f8b2c43a2972403579123ddccddddc18671e2a0b61cc2b9e9b5b22d75aa9c022afbd81e13e06f3cb41a9112c758ad17

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
29KB

MD5
dc7b291bdbf8c8644e5c94ffe6ba1ab8

SHA1
7823195b6c0782b817cf9b883dfdd603d10ba502

SHA256
4b1cb5b8ad7dbc6b4d6c238ea6dac75829b685f1476f11520c10e3fa0db8e9be

SHA512
e2431b0fd34a92178bfe0ee663ef36e86d1cd483250700b08a4aa995e40269355c72df1f65595e614ba3b0e3ae68ad5ba613c02ca8aa7859f1bba64122f0b560

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
30KB

MD5
7808e0e4b7a714230373852158500533

SHA1
4a79d18722a68a2f38d52e2d3a11b550bdd30b3c

SHA256
8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054

SHA512
ff9896a0599d770d54b86a875ce98135c5aa077ff19f2be6e075146b8501d92b874361dc8701a18ef4c14ab5400a7a48c928e069e8f05c36d6f6a408b90664f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
103KB

MD5
65ac143f09d064b2c7b2c59d0306ed73

SHA1
efb27a397a70d0a7cdf2aaf11fecb7b0487db631

SHA256
5c3a12d58a4530d1d92b84d5879d684f52187193988fd817a42eed76d7870068

SHA512
7bdad2a10504980133f54fb0bb151dedd9737b180ee1516a64340d69486298202f40b8dd3ad0c0f542209c66b6cb900ce13ed188e51d9ecff1acd875dde2ca8b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
27KB

MD5
b232126898704f746a4660a9ba233dd7

SHA1
8fe3c1c96b91f160487f4ee1e2eb5586f38ea981

SHA256
89042a9ee72cd9579d4465c60afa5e68419ff61a8197074034000fec4d0f6dc4

SHA512
b607f3ee5edca9ea23d342374748a96697f9b2ec8c9e439b68d70e6e8d6f49291193582c87bb9e279da333dc9a4a89014681dc3efa0ea91482bcc669a561e7ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
59KB

MD5
bc7e37b0ad23ab8b4db2b4baa9e4b82a

SHA1
43134b7f89359b20f68c87815bb38d04184c81ce

SHA256
c02560062cf421317a38cc1fb7f684dc20b7008cf44ef91d004d4e6782d12bb3

SHA512
57af007706393d4d2599266bc7fad4d61d479ac1936d869811bbd3ce68c07e665443b4d132a043400f42dece654ab192f1c4f4702a5c14a230bb563fa56387c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
126KB

MD5
9f0ba42592c29f9d6a0310f86406a397

SHA1
c1b45686a959c3ef166db2f79270df91d40c8797

SHA256
aed28944ca99ab26ed5bac0d2388d2f1ebdcc013009a94b018c46d6aebdacda2

SHA512
dd7a94f3725956899b651618736124f3761097a2f45ab832513f907d996aab37265dee8428496de10557b486162fede5a372927c993aaa67465553624d3d53fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
28KB

MD5
6c8a8d538bfaf5e3eee3cfe467f261a5

SHA1
bcde461be53d12188f8ab5deb098cc0d27f22775

SHA256
aa03bdee88ca027bb967b1d226632402658e092e041542465e09596f638152fc

SHA512
b6e5b998d9e6cfdb57e0010b5a4341bf621936206f2ad095db284061a72c535aef95eeff02af49fecc1e65b2e45e7cc8f55299a984c39c19ccf1eea617b9eed2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
78KB

MD5
cb160861ebc56bb938fa25ed2103dcfa

SHA1
060bd160007898e512c6491fa71279142ec90cd2

SHA256
2c8d543473810f2b3695f915d5b2447c1f5e53e5369d9f74401d3e7e76c65d88

SHA512
ee7140818d5fa61a20f15d7d2b72e842663f859cf1300741119530b9195936f7a960336c2c4525259ac613dc55962734fb84e272de4ad0dae801d658dd88b0eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
18KB

MD5
b5ee0a9b92b30103fe3d5d537bff64ff

SHA1
645244dca200743c5b2584afb0644c60282a9c51

SHA256
955583d43a6c2c74c3155f755c5937cbff074c3c71b4fd595228fbf12c88ffad

SHA512
9f830643a8a5c09208f06cc2b33f97898b1e473b1247ca6c94f06ff68cda2e9509f61a921b8d9f5b3cb530de7de5c77ba7e25686be858091beb1f084999864ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
25KB

MD5
88046493c34f96c352f8b2c3d8bf30cf

SHA1
0eead5605326ecbf661e30113c2b07e6ba044467

SHA256
e694c85ed8b36d9c006c4cc7914b6730efd09652ad06775c947858c13e21b7b3

SHA512
16840496ca1208716ab9ba98e158823ad59a6fb633770ee634584500d3dda5377c7a1beaba4911ddc5fa404a439a3ecabd2f22b5a9d6e2913f969bb411ff8c41

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
30KB

MD5
26ef64f4a7cd54af3dbf1ced9050df25

SHA1
40359f54d7b8bc9c0ea73abcd0edeb19fb66d27c

SHA256
de2d0c191094850064bfc295f68218c3abdc844f2f9d43e0809a6879b7a1f08e

SHA512
2748d7995c2b555272e8cdd9df86db01095f7efd1c2674b7360d71670f66f13807f560255b219a9928d7fcd9804813fcd5e67292b9969b898a9d41c05189a7b7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
28KB

MD5
e184d72813fa995d1b7b731b58968752

SHA1
e01f05fff509746d5b1205e4fad15c0de484157b

SHA256
2384a31451ba810ca02da05e6387ae12d9cae35c40620f0b4d54d3213a048399

SHA512
3168dfe136d963242478aaf365faaec303bd7d3326992c45f657d858ab7946ce76a77a486e798eb6e54c92ee93b82d1ee1874208e7180aa31390f82b3661366a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
ac82d773f643b20c2262544815223861

SHA1
97519364f76716995b2030e66366aea8ec1dad75

SHA256
aee0e33ed201c8018418560902c6ec74cadcb103c6f6679c1b90377b1443dd48

SHA512
5618f5b31997fd9fdbbdea0007d08548f4fcd24a15310f2e9c6818543ff671aade0cef8c561154196970afb2477184983e09a389b233753cca58b9d6f6b27a61

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
6795cb4dca786166a404417ab7baf4ef

SHA1
e4e11a88e44894d12065e22ed58aeeff625be2ab

SHA256
63363e71ceca1600167f06366fa93dc090531aa32da4bd2d32d690c879a54a30

SHA512
69ec024680ab9b0d03461cc969f522795948dbf2b864612b5a78e46ae06e85a7ab17a272d6369e314b49bbb8f384cbd9b7fb800062894db57ac9b6894df24519

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
16KB

MD5
b7a01537c7e777662561b64b5896cb12

SHA1
18f19069274e648c58c7bb1adbd3434fe9f06c2a

SHA256
20219ee7fa4d1897964dc94c86d5c17427b3cfc583fa0e7fed692d199be2a3ce

SHA512
908c712601c8993d109b4f9c6f9a7b95081b76296de858756d21c134d59abf775f109a8c46700f2997ed28fc69db5ad1d517e8741432e83f72a5df00c0facbfb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
5c261e15eb39d7d85edefd4f54adb63e

SHA1
f1a4cfd46eb792d92dd12223ef7a43e3fa6c683c

SHA256
bd434ffcb4c431165aa1e9da9562e512c25ffb671b64f863fc2265da32a6f1c5

SHA512
b506451b03d44ed443f3ba4d2d591a1902d1f1b362769d1f8ec7374bf2bc27f391a23934395f31e23262e616f134443c54248e8b586ffbafa89f82c17ef71ad1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
b3db245659d85279c05e4ca2ec34d016

SHA1
a17c0e398419bd36267b0dfae57e890a95c4414d

SHA256
fb07daf1850b745f81abdb21209fa10a1997088760681f55370b07cb619f24d1

SHA512
5816903051e0523e2895085ac96aabcb25054807ae8a631cef67f6c18cc9dfa3f85f3b80f3c442d87343568d22b6677f559963845cb05ee412fdc34409cb77ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
81c306f178f2fd3e31df34951afc68c3

SHA1
55ee9a2bd69b793837660a3ee542899bf1e3625a

SHA256
cf313739d7c2ff02a4a7cb902df06af5e672b2d0a12994ab725ad1a71383da1a

SHA512
a5265c2af7db5af04824eebfffa8ff22d035a46ccecaae9ab1908da1ddc20ce361312c71885f96ad1eff02dd3c933f1232e82afb1ab78b6535ac1286c3f29b5b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
48415df322aa2139ed7946513f385f34

SHA1
2c68669744138cb2c686ac8b1ce2ca6c96b2c4a7

SHA256
47e4bcef63c8289316d6908cea427a159b6870c5c2b272744270840da1efca6c

SHA512
383a8eb1b86b637fc0d3abf32e2e5dfc416b11e9225716a8ac272ca58bbb1a0f1940174796e8ecee2ac5e99b54f00bf334ee530d54f58c5a74ad5d4dfb372e54

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
82c55c850f90c5950c04b65dd4c4be5b

SHA1
76948d905b2fabc3e44d2663399071ff3a71403e

SHA256
c3dfb20f4d35e7602436540faa43f49959d8ffbc9ba03f1e471d3f9fce2590b9

SHA512
892e7bc390d6864d68f238ff7d7fd8458c2dc94ef00e448d707674eac44603f94a2aff980f8a1395bc0eb30c15db6033e37742aa113a1ba404500b5e801d5b0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
1aff3c5dacd50de226c886558ea3b7a2

SHA1
93dcf8f9d8cecd780a66a1eb172ed460d28d53af

SHA256
a3a28ab89247c50150f720d5f06cf24f8a7fde6a42eb3daa0e89f5e7b003f74a

SHA512
47548c80e4aa9b367995c9e4946f81fecefd57101e00eef44dd18df7ac9ca83cf43825279a00e260e36fce8fd9408f6c8f77db684848d3ae1e9ac91a88ff13fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
9be956b2be50e46b74472a8a52821e49

SHA1
a2fe0935ad45c3bc5db74725d6d7963fdf1c0463

SHA256
00cef8a2f012e75920555c1f4a899a3cfb594305ad0550a38246d866cd370e7d

SHA512
28573e1a9f40b54e61338a0ddd0fd8b1c4d0de9e1e0097fb2799d9471dbbdd579275f5a31496c5f12853eeef3a58db96696658cf2998febea5cf2dc9335d8b3d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
5a4eb1aff5be25be6af2a8d3932c8c45

SHA1
10c3aebe563968b75d94e0edf7f624e68c466c77

SHA256
143ab7cc5b0ce0e324f364ec33e5db32ffa4fdcad0097ace98345d88fa375d84

SHA512
e749aa1e31794e7fd610533e7d12c1fb4cbc7ada3ee3879f68c0fcc3e4ee6cd92e1e07e6eefff308b9a46b5062e657b7c08b091034bdbf9ca04cebc950eab495

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
0e2138df297f8ed911410c89dc7f2961

SHA1
44bb960445ce9744a86e498688f54afc891310f5

SHA256
4159087d321939448550e327a0b11305a043bb8b85b9855abbf7fc01e3aaabf7

SHA512
4dcd2c885d26b9e131d4fd8c0d38097873f490c3eb4a43d3509e7d5b61112a367446a6b386b9ba0a8fad28bb2d2f38be2ac01abae2f2900d04fcc632756e0d9e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
5539841423b534c094a57cdf60126ce5

SHA1
dcba60e258af4ba065764310d917020f7b43bddb

SHA256
b04e0e4566903a2cae450ee8164b2e45f9ff47db36da6e20691c6136f7dd5fb4

SHA512
624706e36a17e8d7766423dbeb190126cc030799cc9c0c93641d781d8b4bd7ec9cb1f68622df7b85c42681dec03caf3b6355f3ddf94327eee9703c92e3a0a192

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
2e12d30a34e44d7d3bc88e9d5edf5d13

SHA1
e26f98abe7f5450e78a2c4227bfc6703df97efbb

SHA256
ea2ab5b53b2ec21ef31bef3f407b138c2ecd38738cdce0a0df1bd3ed6cf0d89a

SHA512
10115e1c7d1f9fd28df6d65db331270b15fd62cca1bee0f2398e88fa3f7d15225d45c2994ed274ab4a8eceda346b4cfe79575381d59eddb80ab458c386f6888e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
105KB

MD5
1510b1d3f5b4a04965fefbb078b22a35

SHA1
e6da166c2b9d0be913a82e81be2dc52b1be63458

SHA256
fe2a1979ef195f9a8454545be1a8bdf48ebaa343fec3e961c184521c2d2e55ee

SHA512
2b5bbf826b71f0e5dc075dd35825f8d3b28ce2a430995711bf07bd11aeeeb25a63e07ba437ec18be72376f67a34aea884d93d8b4bfde4cb81fe96e4991823f8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
114KB

MD5
84c105d7e5f0ea55b3ab152fead07e6f

SHA1
351869b72e4bb6d25df87eec6773cf200adde0ce

SHA256
0a9e4fa0f24b42d87d6b447a3d2e7ff3bf00e0273bd76ce43c547bcaf4a1d6ba

SHA512
224ad6ae95a049d3668d784168f00ca6ab17c6483a52037b0b2fef52b0983e32d893628d0dec5fda5d9c167adeeaff19d29a3c42a58cbd877558c6b977f1b6d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58896f.TMP

Filesize
104KB

MD5
6e9479cdf932a8bd27890aca9fcfa5bf

SHA1
859012d9b71be4408325fa105fb934f6d4a79d33

SHA256
d52ec395336293dddaebbf3a7979622225832a69bf0968fa957430ce0a84b56e

SHA512
4ac13bc3781d832a2f21d6f27879e4e6801dd56ef5b4b0540c0f369b25a13a68222a15211a551eec3d68c10d8b8cd3f640359fe6a7963d67c83a4069c75781b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
C:\Users\Admin\Downloads\Performance Mode Tool_[unknowncheats.me]_.zip

Filesize
14KB

MD5
dd3bf1dc3b3ae81a2516c1f154e5a06b

SHA1
b6c4b47604ecd7bc248d59a983cc20042e14789b

SHA256
c9a15ff7b6bd6f5aa65a8d803b27cc0a20e92fb05e35fd53520384ee2ad96bce

SHA512
4fc11bbef2c4405b4f9c446f76c9d19300a90dd1c41a01cd9ec661f2a23ea65f0f4eddedc3b54561da076db97224a60638e25c47fc3d43fd406c1088fd068b40

Download Submit