ee89dced643ff39471492ff594e91d79b125828b6d956430fb40cd20ec0d96f0

Analysis

max time kernel
600s
max time network
606s
platform
windows10-2004_x64
resource
win10v2004-20230703-es
resource tags

arch:x64arch:x86image:win10v2004-20230703-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
17/08/2023, 23:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

El-sistema-financiero-y-el-mercado-de-capitales-Guía-de-Apoyo-al-aprendizaje.txt
Size

29B
MD5

a58706ba5c599392168db3021f9fba9c
SHA1

8ab1fac127a6f0bef156cf0474cb6a9c3c1c84d5
SHA256

ee89dced643ff39471492ff594e91d79b125828b6d956430fb40cd20ec0d96f0
SHA512

b285652df4f43dafffbe62704a4d7276ce58ea6de1d76d743c1797a99093d936dac741ec6f103666406c222423854b89418aa5d3f012969c8d0ddff53ecc2852

Score

1^/10

Malware Config

Signatures

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133367877497753608"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4332	chrome.exe
4332	chrome.exe
5748	chrome.exe
5748	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs

pid	Process
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe
Token: SeShutdownPrivilege	4332	chrome.exe
Token: SeCreatePagefilePrivilege	4332	chrome.exe

Suspicious use of FindShellTrayWindow 52 IoCs

pid	Process
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe
4332	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4632 wrote to memory of 1636	4632	chrome.exe	92
PID 4632 wrote to memory of 1636	4632	chrome.exe	92
PID 4332 wrote to memory of 2752	4332	chrome.exe	94
PID 4332 wrote to memory of 2752	4332	chrome.exe	94
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 2408	4632	chrome.exe	97
PID 4632 wrote to memory of 4372	4632	chrome.exe	95
PID 4632 wrote to memory of 4372	4632	chrome.exe	95
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96
PID 4332 wrote to memory of 4764	4332	chrome.exe	96

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\El-sistema-financiero-y-el-mercado-de-capitales-Guía-de-Apoyo-al-aprendizaje.txt
1⤵
PID:3752

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7fff077f9758,0x7fff077f9768,0x7fff077f9778
  2⤵
  PID:1636
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2140 --field-trial-handle=1884,i,7185090366690915084,12257163632292014758,131072 /prefetch:8
  2⤵
  PID:4372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1656 --field-trial-handle=1884,i,7185090366690915084,12257163632292014758,131072 /prefetch:2
  2⤵
  PID:2408

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7fff077f9758,0x7fff077f9768,0x7fff077f9778
  2⤵
  PID:2752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1728 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:2
  2⤵
  PID:4764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2036 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:4652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1968 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:4708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3084 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:3332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3060 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:3856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4628 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:4512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4124 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:1072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4892 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5148 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:1012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5192 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:2596
- C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe
  "C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe" --reenable-autoupdates --system-level
  2⤵
  PID:3320
- - C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe
    "C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x238,0x23c,0x240,0x214,0x244,0x7ff67f507688,0x7ff67f507698,0x7ff67f5076a8
    3⤵
    PID:808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5004 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:4648
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5656 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:4256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3796 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:3228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4044 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:2184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5432 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:4456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6196 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6488 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:5516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5256 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:5596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5172 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:5972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=4984 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:5924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5896 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:6060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=932 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:1412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5504 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:1
  2⤵
  PID:5240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6868 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:1840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5212 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:8
  2⤵
  PID:5864
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=7036 --field-trial-handle=1716,i,3614530065926801378,14967939413358657995,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5748

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1596

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x3c4 0x3c8
1⤵
PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
c7230597ca16dd4709272c49a1d63158

SHA1
a3c5030684b7c39e894b50ebd778b5d3e69ba59b

SHA256
59ccf839e88266762a452679d678f50b1e35f81300001f681929ec54d0f8f01e

SHA512
de0c36f5edea397605fcd6dc24c8caefd3b7335ecef417b9ac5db100311218d3b896611a5ed2e68332d612cb3df8f8b443ee0eff7e0d540a052b6427dd44ff6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
c7230597ca16dd4709272c49a1d63158

SHA1
a3c5030684b7c39e894b50ebd778b5d3e69ba59b

SHA256
59ccf839e88266762a452679d678f50b1e35f81300001f681929ec54d0f8f01e

SHA512
de0c36f5edea397605fcd6dc24c8caefd3b7335ecef417b9ac5db100311218d3b896611a5ed2e68332d612cb3df8f8b443ee0eff7e0d540a052b6427dd44ff6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
c7230597ca16dd4709272c49a1d63158

SHA1
a3c5030684b7c39e894b50ebd778b5d3e69ba59b

SHA256
59ccf839e88266762a452679d678f50b1e35f81300001f681929ec54d0f8f01e

SHA512
de0c36f5edea397605fcd6dc24c8caefd3b7335ecef417b9ac5db100311218d3b896611a5ed2e68332d612cb3df8f8b443ee0eff7e0d540a052b6427dd44ff6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
c7230597ca16dd4709272c49a1d63158

SHA1
a3c5030684b7c39e894b50ebd778b5d3e69ba59b

SHA256
59ccf839e88266762a452679d678f50b1e35f81300001f681929ec54d0f8f01e

SHA512
de0c36f5edea397605fcd6dc24c8caefd3b7335ecef417b9ac5db100311218d3b896611a5ed2e68332d612cb3df8f8b443ee0eff7e0d540a052b6427dd44ff6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
32KB

MD5
3d1e4bb28c653742f690d6f5958773f3

SHA1
ccadd7aa0f8c6a8795d626e30540780a85fda097

SHA256
7a8ffafbe4336e22e7c3a4948d9299b8140065a093309cfe5bdd10f0229f6ab8

SHA512
c6ec95577b9a8d9a6b0a61f391eb429997b330ca159c2777623a1779efe8da1797c5f513c753f6b9363a5499c0ccf2b0d8ea2db740b7ddfd8f6c3c20ec631bc1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
766b22d56559e77ed31e4c3dc5b8cd6f

SHA1
00954297b7daea2fce009b87b534e9fd635a87b9

SHA256
509bc9b166fbb7e7accb990c7d79ec9c13cf4d50c7ceed5f003fce3e324ef5ad

SHA512
08f73d9c7ef885c0dea4e148be70178d8aade6f8e29275a3599ca3a629fd2fee31c4afc71c8cd233569379eab2b26657c3ffc4d071add72796fb7c506e17fd36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_twitter.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
8b11de1a3b4c5f845be5c8b3c832da0f

SHA1
3d1986a8cb67ea03a76f02c7bf34505fea37ea32

SHA256
04439a0fc1bbc4f12786d7ee89a5cac7e50d3f6cddacd5f6bcb0c1578f16db50

SHA512
c07fd1198e10e919d0651be370f42a948b74032a84a826ee99dc49ecd7f93e77b3086ad688bbe0a6bdcaa6e84b38f3b5a4250019d9674444277d6effa42dbdcd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
f1eaca3c0aff99acfcb5d4f83b7eca04

SHA1
27143ffa9adc07a5dbaf261d06dcda00087313bc

SHA256
a981e19c17e5b8fd3d3783de8a6b10de854795fb502b90897aed37c98b8db81c

SHA512
3a409ea596cadd9e574a00d60e76a1393d8ae420efe5c22d6de549b327928d405061d6b87d1f812aa230d380e4e4177d79cd2dacfeba2ced7b1cb1b4423eee7c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
8691092fdcc2280f5fa0b748e3a2dfc4

SHA1
512144e9463321f0ac5e7ce3df1aca2e98ce1dfc

SHA256
a869ae4048ae2a0f1c3fe6795c5d2739ca62e6eafb4788ac5afede39e17b0f29

SHA512
0df972f0e89a095aafaf2711f1b91b8ffa08421e3fbf6c65beeb6aa2094d00c11072e0fd9c39a9d560b41e3748e2efdad62584e8f62dbe41739f4a349c5ce86d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
5a028b2382c6aa3ffc1f3079fcff535f

SHA1
7d56483bd3ed26a842480c8b23736e851faab35f

SHA256
0911ca554f18bf9daa56016819a5eab049e21406a8816b1a34af565568949992

SHA512
9f8c9250f022c5ec3854e56482a137706525facbeeaf3893723904ea5881437401faf2c5eb1856a3cecaaba86da156506e2982f91fa02b56e4fb0ba80d2dd71b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f1209057d7c5f0b0e9d7bf73727efea8

SHA1
d27c6a4b1e12e090e7081eb173e414f11751286c

SHA256
4bf0161f91ba232d39d80c0d91a2a61593e4eb3753b1d0c707bf80aeec23108f

SHA512
24b1d4e1c5f3dd545e62769dc98605a68763addb2514b359ed2955be4564cfa86c3e6e03f5d25da7e0a3fe8e448cb6f1c30fe4af45cb54a98a673da4e9cecc16

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
70d9a7e795215f62674e43688b7db293

SHA1
bfefe08520a19740b211e9b9e018651d2498b955

SHA256
a67c3ff4d2ebcd89e7e79f4959e806335e2afc7d001555d02bb8029c29f9613b

SHA512
3494d513390aa87c06b81e57d0e51044d6be011240f50138a37315d7f8727081e274ef29ab637d27dd7b7e87625ddc325cf5f741f83c31cc1d2af6b2ebaffb6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
7eb5f3f5c60e8d8a4abc5893fdfcebce

SHA1
6d63bebc0625aaa822606db2ec23493568464519

SHA256
ba3c782cbaf4c1542faddad375b5f98645b9b13ce4d1e2c56828a099e61b22ad

SHA512
4bb4aea93fe5d613a19c3d34c87d39d2fb50e0709199068d576955d46fbc2e5c10564e757da77fa514bd8d82478fc890eb1d8b724ff59b21c03deb54408261be

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
3e7cb7af55e91301a3a7790868ee176b

SHA1
93610b31ceb2fdcfbc7c1b39f5ac4e9fab9978ea

SHA256
e0f2e6e12da210df71359c8c6678d9dff8f89dee43dca8089e99ded55ced83f8

SHA512
d858ad72a72f688f2f8f41db705bf6fb57c5e4f0a7f72378e30f3ca8979d2bbccfd5f6289eb1803178f18696c5f3b2cfa8f1beea1309d35de0fdf1012192b032

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
479f34faf2c6f1ba4be99877d38bdbd7

SHA1
53c142ee183a48cc633286f3890d1859b235bdd5

SHA256
e2fff788e3c9af178e58a10c0fe60496c2099aaa9873c6fae27feab55aef6f17

SHA512
1344f4d09348718660efe8386577240f90e4885ee3b291d7897cfe08a5909b5628a84071592f2cc8b60046ef09fb75a654f2feb92349d05a2a3f4ba3656687d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
66b8d962a1264ed5a67d3a10f62652dc

SHA1
e07b7284bd90ac2492cd6b290532e74d0242d987

SHA256
018c3a2f6499e334d0c6eee07b5f5ff5c49582d4cb74fe08830b86d705889fc0

SHA512
868493368886cd7caf5d49372e47297dc7fc39c0ccb75100f05cb0453291d97afaaf70745d56cbe2bd934f9925537fd73e7c987bda7355b42c5ffb4346b8dc15

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
5ac07ad7ce823065e04ffaf0bb94e689

SHA1
00a6ca2b45194a1cfe0dcfd6f1718b20b14a7aa5

SHA256
29f6c6c96e2c9fb6cf3bd4d88b1e8d27a6fe3f291a968f24dc8098079a7c3bcc

SHA512
895971581674f062d957dae09e15dd03670e676413daac180337884f616b86d7984028d80d8d90eb431f7d6192645c7709b6b67fa64cc231e4ed397f295496dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
2f6fe64b5bff1c0294b63e1731f5668e

SHA1
be0878a767bb0bae196c7f11912beb346532c5a7

SHA256
a1e8a08a7bb3ddfe174b38b5130755345f8c4f18b2f6aa481202a350c4294eec

SHA512
2a1310ea8afe77b8bca43b23b57db9232ddce44d1d44d64504da7b5e6ce0126f22cc3f78298253733770973565e09c827f594b93136dfdb3187ae4a7dca13256

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
494728226316312c7f063f6d9457009e

SHA1
3c48551b0ac3f2e1e0b79efc526f5e0a06615782

SHA256
009ea99a0a08d97926b3e2144340fa3e2f52fa83121b7f051b180ad8468e7694

SHA512
889682fcdfb32e90140ddf221cf0b3672cb95783b83ffd28b88252f51ff8f819cd8b63597a74a9ef589a50cd217d34dff7a3194d48e4b49a04010d06854c9791

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
4971436c02d441c010be8f47b79ef738

SHA1
ff7bc7d04dc2d1cd0f2637aa57acbfc9c7f9629b

SHA256
412459b0c2922b982ed2c6ab12ca6b23d438cf3a498412a96f906fde280bf3eb

SHA512
3b4c908458c7083d7f37d97c46f88548f9d3019e0420fff7b2cd94c261d14f67722fe063d3714a0069a26418d59e32e5ad2cd879740d2f248809148febba6819

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
7393eb18c2d765a7275812995643932b

SHA1
8ebf27eb78a88f6409f94d9eb5986608e76ba840

SHA256
a4cdf26fe865b8e3511ba44a4463a52ff83a8541bd5906a60fc4b7356870e4a4

SHA512
17c9c8e89c785a2b9f9a5834aae3afb74c1ae3051bcd8e2bdf386d6b4a842bddaacb76a6a0ebcd6075bc434d858098c5d7b7475ad0938a62b88ee3b8548605aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
b3906b9dbc631c7e943c48382d19dd89

SHA1
9874436fa3552a17e9e4d399143b43dc3b443645

SHA256
a49b66c3ec4bf27efc5520300deda1d93a335c68e1aaf766082170d66a6fb68d

SHA512
3cb6e3528ab959f319fdbc3a1c3314d247548f8901af4c1d83c9b3294eb0f2ac512c74b74c5d4ec3fd7844c0d1f82f666b8336c23ea7d9d75d99e57d73f9df0f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
48168c657fab747bd499ca3e899fc2c4

SHA1
95630e5c5b037bec5bb1b50615fceb417a45525d

SHA256
351d7e9d33af743373c015b8a9c4c148789646f40c0024afc57eccee92b20f3a

SHA512
a09fda32fe551abeb41548d660fb2c45d0f2c3469091e2a1f599c2aad76f219a13d0df9c20733733a318fe698240c6720a4675a0be4b6ae2705b51aa3a3ca151

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\5c2e0ff7-ef42-464b-861d-4413ffa8cd4c\index-dir\the-real-index

Filesize
72B

MD5
7aa8d32baec727557c7e04d8906f8151

SHA1
0daf7519d6c586366a68ac95f15b275f74b54fbb

SHA256
30ec8e111e1583e67b4dcff25671a7cdc5d7d000862af24b0a6535e4985c2bf0

SHA512
f94c159b2c4403aee337b18600f91c6378e33a115af4f4ef0017d144907e74f31837e8979ea790f2aaf0b3beb13f2537ee6c82e2dba5d6f2ddcec0c4fa542f9d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\5c2e0ff7-ef42-464b-861d-4413ffa8cd4c\index-dir\the-real-index~RFe58fda5.TMP

Filesize
48B

MD5
f86e58e635ab402cfd73b8d259c44ea2

SHA1
2a30bdbb3b02632d90cc27104eb210e709eb0a5e

SHA256
e82a3b169ff9a6739a87c5de7eeb82895c4e0f18270fec4f722ee3165febd187

SHA512
df50bda3eb8799b9e842b9506535f9b5cb93f24416074cb8d47d5ac26113efd32133233e96d8a9e6e886da74d48ed3c1f3d46905bd28a5fccc1724b4fe3c9043

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\a5618083-44e9-4533-b1ae-055c5053f22c\index-dir\the-real-index

Filesize
9KB

MD5
7cceacb2efc70aec7598939443cbcf8d

SHA1
4ead63706af36b68d781907058d6bc19b0dbae94

SHA256
14bee280f791daef63c0af2eda052ada2aeed9e6999850fb202cd60d2d1e2ec4

SHA512
7be624aa29b693bf122c0a33d0d99102053cd460a16a14191ec434eea0bedfd4a48928cadb4d486f4728ad690989a80f8c04a060b7bf297e97ec8c352e143cbc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\a5618083-44e9-4533-b1ae-055c5053f22c\index-dir\the-real-index~RFe59d72c.TMP

Filesize
48B

MD5
9fad9b37529b4fad863819a8a4bb6c9d

SHA1
1c8e078560e8a514f2a52c4ec7df4e2387c7e095

SHA256
cb5638dd3000388df2b82fafa9234f66f803676adc0e61dbfa4c9eaac0b71071

SHA512
18325c350917ddb997fb85b43b1f486cc8964a1c64a6c2623947b91e38fa6dbb90a319be5158ad469e4b953cca28cbc2575caf4cdcd592eae9c6c01fdab56ec4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt

Filesize
164B

MD5
c99a8dc33598872f9fc0061b34d9cd42

SHA1
51d9ff44021c1b4b0e053548331f926e05b8f0c2

SHA256
a778f8a247f83e23f378f2625da5d323cf3af19f0787d6ecd4ee7f05a21d5248

SHA512
aa4bfa140fdf553232962385ab2837de3bc1c0105cccf685ba8e912c0312a899d90d712dcf65119189f0053d078a562e0965cad6a639ec901c7948267ca9cf9c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt

Filesize
173B

MD5
b5ed947b275d1cda157f0659be9bdda8

SHA1
38d92712b122416ddcdcc847c8467028bf0af824

SHA256
99825666cfb85eb685a6b148df5df64d50468a55e9505539b826dc096851d1fb

SHA512
8c611232019c59772f63925c476df0cf9608b3d9842aed5e6fa64f9d2b67b7b8564bae29ea22ebabf582b8e88d7b34abb13744a65a6c1987c575a864d1b3436d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\8f7abdeb3486c1b8780fede76afc20e044eff1b5\index.txt~RFe58ab5e.TMP

Filesize
109B

MD5
e7dbac3ec2d58073d961d2365c040425

SHA1
54150c162a4ed5958c4615381c7f2adbe7d7d86c

SHA256
dfef92ac5537ba9ea4c47ed927b278f6ed592589b6bfd592a4301369e86fa7a9

SHA512
ed6b8f40b5f3225e1e9de4ca5f3c696f98d52aea813dbb655a984028403f23f00a2b56e1c966a5464209db2e790054fa482cc58553de0f121e161e730b19031a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
29799a8aa84aaad80fd7758468f72ae1

SHA1
386cc37b5433532200d4e7b7e05170a343a50ce7

SHA256
c5b096b96d0662cd2617c1caec6119f33705da729f1302ddc011ec17b0952029

SHA512
31eb486e0cfe2aeb4c809f0cb94fc3c4f27254e01e83eee223a94f6e54744504175e28baa99593652e9b1cab20821dfdb26a2d17021064d5bb73aaab687b38a6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58f97e.TMP

Filesize
48B

MD5
26d3f59b76324764bf709f25f9f098a1

SHA1
29b17b6aa1b1d17464670b616ab1542d0405f0d1

SHA256
8e7369b8998715fe0bfef10fdc1637ed2ada3333f675192fb91a9ae08d2f64d9

SHA512
441fbe4c2e338f21290caac1aa3210c2d96fde282c1c40ca6e8ea7ed26a17c1e96ee395bf60f686c76887f41037644ee9b198a49a939ca170b7fe2d4d119fb3d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
e2abc9da636274fa0553e0caf319178f

SHA1
5b56a8c3ac87cc8b76c211d71ceb79c46c3ab754

SHA256
aedfb2728c79fba45bed1cb35f2fc32a3bf8d9948b221c6d5331b01f055857aa

SHA512
d6c914b96ec752177360c1adcaa2e5dbb0d85635ad94553dbb2f8dfd2f33868070e69b8bb6ae2fc7ef1eccf1a8f19d958bf7b38b62f6004277afc38d5d707cd1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
178KB

MD5
e934de59d21ecc0c2a12db4a79889d39

SHA1
0667f2637f20534e48c8ec5200fdc1cbf8075a9e

SHA256
531f1d79f88c98d163a948ff78224cda04528ad1ade1cb32aed7372eaf43bd69

SHA512
2390fd974d32a1e24d135b71bfea119b704ac83da02675e5a710baf9978cbb00c37fa09af76947343e70ca475536a4eabef81e5796ef43d8466cc7c8e9cfd34a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
e2abc9da636274fa0553e0caf319178f

SHA1
5b56a8c3ac87cc8b76c211d71ceb79c46c3ab754

SHA256
aedfb2728c79fba45bed1cb35f2fc32a3bf8d9948b221c6d5331b01f055857aa

SHA512
d6c914b96ec752177360c1adcaa2e5dbb0d85635ad94553dbb2f8dfd2f33868070e69b8bb6ae2fc7ef1eccf1a8f19d958bf7b38b62f6004277afc38d5d707cd1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
107KB

MD5
7b88b7a6c44e388f10d0bbb167cb9198

SHA1
f92011d42d12ddcd07d10b241acb9435e41983c4

SHA256
e09055d45ae7d66ce21c39f9416758f35b9d4c7bc6208687f21fd7be92e52415

SHA512
04fcf902dde7cb006f171e706d70301f09bde687696b6b617242e6c3b95d519b2d3eb48b33a48054e47b692c0259c713252c354a1ac01b57bfb9c4df167eecef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
106KB

MD5
133b28d460bd4f737d13ee0ed57d1dee

SHA1
d8f77a09b190527ef82e33c4dfb3f9fc0ef8109a

SHA256
9fb07bb9cefcdd6a2a81652d454e7994c07dc8200e4f1711a7c222a3750bc3a9

SHA512
9fb42f9d32d5be8636a5f526ffe6c4900d6662a584ea7c44bf30f947878c39be5a1b5a14302690bfb79270d712feadfb3c0c85374967eb2a1e3e7b6cc50c1e6b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe584d6f.TMP

Filesize
99KB

MD5
58e9bc30d156d650ec41aa73771df9e6

SHA1
9a0aa969a3a9a4236f84173fc7035dfa5e53d867

SHA256
22a1ea70b452be940b08b01516d65fe8de79305c6a179a4a64fad48cf4480c02

SHA512
c416e14f387c8fcfec713bd7f95f8ae3d3e063ffdb038191d66c2cba18544140e9fa8755895e492640c255755226073ed1d320bc8cb8ada71dfd71a86574634c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
85B

MD5
bc6142469cd7dadf107be9ad87ea4753

SHA1
72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c

SHA256
b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557

SHA512
47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit