hxxp://onetrust[.]com

Analysis

max time kernel
256s
max time network
261s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
17/08/2023, 16:28

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://onetrust.com

Score

1^/10

Malware Config

Signatures

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133367633790594309"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4800	chrome.exe
4800	chrome.exe
1552	chrome.exe
1552	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe
Token: SeShutdownPrivilege	4800	chrome.exe
Token: SeCreatePagefilePrivilege	4800	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe
4800	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4800 wrote to memory of 524	4800	chrome.exe	39
PID 4800 wrote to memory of 524	4800	chrome.exe	39
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2964	4800	chrome.exe	82
PID 4800 wrote to memory of 2284	4800	chrome.exe	84
PID 4800 wrote to memory of 2284	4800	chrome.exe	84
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83
PID 4800 wrote to memory of 2492	4800	chrome.exe	83

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://onetrust.com
1⤵
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb497e9758,0x7ffb497e9768,0x7ffb497e9778
  2⤵
  PID:524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1756 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:2
  2⤵
  PID:2964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2204 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:2492
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2128 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:2284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3060 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2936 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4592
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4540 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4572
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5036 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:60
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5104 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:4856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4768 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5076 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5152 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:3776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5328 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:4912
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3008 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5400 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:4588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5116 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5176 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3968
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3884 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:1096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5112 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4724 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:8
  2⤵
  PID:4360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5720 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=4708 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4952
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5848 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:1624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6200 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4404
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6192 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6184 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6164 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:428
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=7088 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6952 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:1848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6104 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7476 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=7648 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7380 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7920 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7808 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5724
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7884 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=8304 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=8340 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8580 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8784 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8936 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=9180 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=9184 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5636
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=9068 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9636 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=9520 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9664 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=10104 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=9948 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=10368 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=9844 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=10460 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=10100 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=10432 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3684
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10328 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10316 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=9948 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=9884 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=10336 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=10396 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=10384 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=10284 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=10052 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=8088 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:7080
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5200 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=5252 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4748
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6756 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=8660 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=5332 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:3700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=10196 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=10208 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=2340 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:2440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=8136 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=5848 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=6948 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=8032 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:1132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=8152 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:60
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=10384 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=6168 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=10880 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=10884 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:4104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=6844 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=9304 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:1000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=8444 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=6952 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=4496 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=6808 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:5360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=5288 --field-trial-handle=1884,i,2683513361555722065,3108336045543537776,131072 /prefetch:1
  2⤵
  PID:6832

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\34be1ae9-821d-4f7b-8563-be44c9402501.tmp

Filesize
6KB

MD5
e698e8e6d653615eab38481ee3b39636

SHA1
f1af20fbe03e72bddf44180cbcd838c765d5f4d4

SHA256
aea648a4fb6afb82fb6955e5d5c7bf3f1489f951d32d687fafc8d8f1d7b2f9a0

SHA512
a046c6d1b38464ae52b391c33aedb51894b37f5fae5888661af81dc3a00f088f6851b4650165796da0d714db73a1453c178403838e72b42c2dec3bb8bc2d18ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

Filesize
60KB

MD5
36239f6419245eaffcc0e9cedcdab3ca

SHA1
6f2d71ef605532d5aa83c3b07b5e203ecff8266c

SHA256
efc2f27c597a5d66a6475831689a34c51a3bd321432c295e23b68ebb4509654c

SHA512
652343de742643e37dd8ae3f785c987c1ca1a88fbc9ab28d9ee9d2f6f936ee273ad6531b36edb26ea7665599077f0b485d2f0e8a17214166251b97f4403801a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047

Filesize
28KB

MD5
25beff149185bb736a33c3ca87ba9253

SHA1
c44cf25eb11ff967a68c2809d4b0017d8458521a

SHA256
f414278e7e1b5c29be0617edcc9c09ed6beda41a450e1f547561ab69cfcca5e6

SHA512
3c382c068cdd8e6e4f3f8fc50bd5d62f0cc903c1b6395ef78027b4becc60626b2a813e18788b67b7657615c55ad304df6e5cf64c1648f0326fdf72b1c1698d3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005a

Filesize
126KB

MD5
9f0ba42592c29f9d6a0310f86406a397

SHA1
c1b45686a959c3ef166db2f79270df91d40c8797

SHA256
aed28944ca99ab26ed5bac0d2388d2f1ebdcc013009a94b018c46d6aebdacda2

SHA512
dd7a94f3725956899b651618736124f3761097a2f45ab832513f907d996aab37265dee8428496de10557b486162fede5a372927c993aaa67465553624d3d53fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000065

Filesize
29KB

MD5
040a25b5aa2dadeec37427aa01b569e2

SHA1
bd3eddd61fd747b0aafb02165494aac4e2e59310

SHA256
0d28b84ad90e5f70834c98dee27d39b6da0ace5aba5cd8393373b72b9a0f2e64

SHA512
b43adf0b9899dc1f8886e1684a56252ac12894eb41b9f8743d5525d7bf92d40c523afd26cf8e7e5b61b4e29ee57dc10acfcd5d227beb4658bea0ffcfeeae683e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068

Filesize
56KB

MD5
e0fb5a0b861106c23da6271366e7cd9a

SHA1
67dde80774c36b8c423f3b70eacf683e89bafd6e

SHA256
1bc4c32488ac1971c6a7192d3a1a702b6358051c450d998ded1e8d982f554b55

SHA512
0b84db83b74c9321c8b1ccf329fd25f372a2d8b91fcddff8139d5c3f5486e122c5d1f9af5bd051707a239a4f264ba50dfd5ef1260b81f97478efe9b4be423225

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000078

Filesize
16KB

MD5
9c6b5ce6b3452e98573e6409c34dd73c

SHA1
de607fadef62e36945a409a838eb8fc36d819b42

SHA256
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc

SHA512
4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
06a431da7cfa64ff7c2f50de91acb8a6

SHA1
ab27a1d2fa6d316f999e0a912221719e63156baf

SHA256
05d25dc9b489d564b6be39ed9fc33ddc351378a5448cc5e9fd52054ef5325895

SHA512
86f266c07c6c721e1d8d57ab965cfff708ee5e7054d3cc589ffd796418968ce2ab8c66e7f75eb1c3b8773e9f5b1574d0c1eae1b64259c40c14068d95f32b48ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
408B

MD5
473647825bf927f79bb7f50cbf65ced2

SHA1
62c10dee96f93878ddfabf2e220145263611bc20

SHA256
b550dd0b908ad74cafba541670de18f87a5553ed8cbedc740b78105c8f96d4ae

SHA512
491621e6c2bfa627c5ab75ebb1ad39f45e869f0d6fc482195594c30607dd87c59816be191db20bddc19bf65489df4860a53436f22d49d66f98eb98c29472fd70

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
5d756a8432ca89db7eda22a801601364

SHA1
81ac9b86af8b62ed279ecbd73eeb5c5a1a1e95a9

SHA256
610a5eac50f6cf3237452562c7145b69008722eff629a182e19a041468be613e

SHA512
0065b3aa0c044c8f8e6454df3a37c06bd69d5f52bd4e2607fe91c5a1243042da61b2fe08314ae29546685dcc96585136bd3007a980051c716a2425a06d43042e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
14KB

MD5
6535f817adb3a1f4f6c62fee26a22d7f

SHA1
dc77ff38ea61a27f0c6b96ec37b112256e506512

SHA256
94f2bc4935dbc61571c0312090bd9446d9511a27a817255f3ee15a1e7436a34f

SHA512
5ee4508d41cdc7728b95bb871e6ad348cd5f9f1a69e3bcacd32ec1983efcb786af4e2eecd438c814997187a3132870ad4db45f22d7e25f2751685de9a72ecc09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
d5295c9320738e04ede169569d44af6d

SHA1
dc119214ece4222d1bbcb9acc18bac098f0e5efc

SHA256
5b862332599420c4139c294d0ea7ae6c8aa7a5dd8a2c47a1445cea13545141b5

SHA512
37972a36473ae436d0ced17521a4f0e3ef3904d5e46a3a2c1b65f1aa32a5b444d5fd0ed65bf9b3066c3d9805ae695741f46f66e5e0aaec857a6cda5e92a11dab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
18KB

MD5
c1075f55185b9ec6a61e7516feb8c19f

SHA1
abe9e8f492326e5daca81c3fe0cd77d857c2186e

SHA256
3510efa88a3a88741e5e94fc1b9a9b263aaf325b5c25c50187a9ca11a78e020e

SHA512
67f491b5b90cc27f73d73d7bce7769c07145d41d23a7c803222d8aed8af53fadbed30db60aa5a2533e73e82bd0bd8b8a536622d9325f687db6e60d085e813e9c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
7c624d9242beaff8495b3aebad5d9c1f

SHA1
9d6ff83f7d33f14f6b8dd341c78b109d63a9b34b

SHA256
f4303b8c8b4ffc9d4640acc3b635c504200609dd637f22612f7fe7adae0d1933

SHA512
622d496364040fc4dc4507122445966c29ca14d814f546b9ba5498875e21a0219b3735584633b7486825e997f9bd67f76ddf831ff71640b3a8992f2d302e4718

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
5b9e0ddf865bdb982a1abb9197c48a57

SHA1
78bfe2a19e58ff9f03dc010b2283cc56bd43ba9a

SHA256
5227f6c2b4a9142bcb31d3c1979ddeaaeff29015f3efdc0cbaf9050a94fc7cd4

SHA512
53a71c7070f8da15afb270a6102c076e1fbd62c4f0fb3d1f162b6efe314461ef423d261469d06671a498abaa60ebcf188b82363b2c0b4077e374ebb5c3cc7c3c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
f9ed0984b5d6fdcb5e64748389907591

SHA1
92692998e167563fabd6bddef4f68809be66e22d

SHA256
a28bb7ec3a70f1d7c76ac0342c548cce15f152bea509a5cc36b13d8a44173f65

SHA512
5ce70a86a3ba7fd838d27b2af3a99c5bb54fb260c5b42bd0b4f4e8b1d46ffe8a4105ffe5712e0d07328d188e00aeb9e1e7d264091a6a3c883318b7371a926178

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
af4293a7a0a8b2047c4fe9d49401d948

SHA1
c7cf3f87fdf00bd117f02aaa5165d8029a652a3c

SHA256
b71ed04398b03340a5f7f971146886d7a5e770fd5fa704a749c8b779b2eb2fa0

SHA512
534fcea7d5a128da03bdcd951b8b61bfbac9bcecd880ceb4f80bd17f66b47669cf226146b03f9bc5d46033dc62b177e4d549c5c3f6f2f0961592ed00d886cbac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
df96b0f00e4504eb3c25cde383444294

SHA1
626061a3e31562a3778a91b2858a773a9f09e5ce

SHA256
db3fd50f36e289d0a22e35be280f1b050f39fd62388f4b25d1bea3a189e186e6

SHA512
f5381f5564c8b011059bd24f67a5fb32e14fd6bda975d29f144604b350df92d388892c634a0d00658b9c93ec05c10882f0348ea9b036532e075517e6a5ea9af9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f01c834fbbc8a947b7dbfc1752a4efa0

SHA1
e059421c73552102b64ca178df2819d2f8581fb2

SHA256
37adbb234ed45e0f3b25c8eb85ed37c9ce9c44c0fa5e7ae2bccb0ffbf4698ae1

SHA512
bc0b0e0727208c0e44577a3a4504d3a2fb07d9fd41780607a606a3844debe9999027dbd98f6aaf39c81f91c5f7c3b7caf94fbcc2eeb2b49b0e83de9ee3da94cd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
45567e79dc7d58a3627933c77a158c49

SHA1
771a6a875c44a66636643a8d067a6beae56d2942

SHA256
3453b38629d9d6dbfd2ea28f7b448dae8d8c02379619b93fd6c0e0ac49162e38

SHA512
e4d36fd34512563f78975e85d292ef522b67a581a818769c32ae20f18500201809ac31ce8ac82f7bc04371908c6ab079a19052828939ee65aeedb769fa0d1f90

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
00cd5ace7e51c827ff6173c3d412fffe

SHA1
80ef6303ce21830ca692c5e21ba81d7d2c34194c

SHA256
80351e04d153ad2ab1693bcf930407112a6bf2232d4baf159ff4f61c41a63cbb

SHA512
5a04bd9ec3c91bfcf233f2abac47ba5571cb6bad1aff0972c9d21b017d9f63d87c0ce6f6efc4e72c27dbcf727bbf775ca95e0ec7e4d858427527114101f0b6bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
dbef0d730889c9fce76e5d39ea209967

SHA1
7fefdbccd2d48b8ad08be76f153320afc869cb02

SHA256
fc3cc4368f58a0874652ffe46db90e87cc1663b138ae18888fcee4a70c3c49e3

SHA512
b3af3c28754d02ccc67e9a77401b3ee8060256c691f436e0b395b56cf65cbe84a42a37a7701e2ccf0c85a2c4fcc32019eb5b128dcb6705141d8d09d7ce1bee33

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
be9e154f051f3e11f93862712328f1e7

SHA1
9d04234dac3a24232733465c25149e0d8f1c8a2b

SHA256
7b14e168316a33507a39633267ae12a5898b32134c234b68e55a97112e89da48

SHA512
718c3bf15c17478a9b3c8d6e23ad8510add06b89c3873f7855cb370514bfd8380bc0aede1cba46518b904b40302d876c83dbca86e44017a273651feb683ff9a0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
2d130f92455e2c59544684719a65b150

SHA1
760d70863f224af542e4f3f4100e5051f21ea526

SHA256
e1ee3426ff63fd633c1c1a486aee346cf0948396714d8e458077bb4275e41854

SHA512
a59ecf03c8d31580b68e663732834b1620b5c632ed1a692b19a66ef87bb57f84cbf953d455192005eb8efc7b452075c4921010c1ba864cd1988b6e52750b6e30

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
42779ef1acfda09068a637b82014e1d4

SHA1
1d83f0169f2561abb8bd5283b8b5db1a33ca2f29

SHA256
914c544a29a1e68c2ccf644482001d284f69a48556160a37b94c2e802e8d7884

SHA512
2635c116c9f04a27eb1e98d91fc9c0a76d0b337f5e827b5cbc6d4efff3baadc0a220d8e118e00b5ebab2ace66ea722758d881268d158585ab173c50940b48e81

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
141feea748c1d40ca01d6373ce08fe8f

SHA1
67d67aba1b8f559ab6dcaab08e8857c80eba3653

SHA256
ffbaac6066ee4d06d53ac014f11066d3db648c0798d355cbdeddc3d38bc6fdaa

SHA512
e6cd1efd156013d96cf5fd52bbcf858a12a294fb07ded26a53e2579077ccefed85504f65f4978a5e7c5060a3b86b1d2ae34672554ba0e746fb6e6f0caa75e73c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
26ac610fa0cb3a19002832e45b444696

SHA1
0187e9bceea4fce212f04fa94a6f319a6e6b8d11

SHA256
c44907324b227b0bdb4e1deacd661bc666c3395b5526844549f4c6d45fb1190f

SHA512
644b514c89f751671b7f765bc052e7c11b55ef9a9dda976df32d461df4385d5df507e10973ef0ee37782d381a6a84bc49bfd3c4168969edfb529a446b1f138cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
722076d30db90b5412683bdb3f6ea642

SHA1
7a7584f2ae6350daf4a0723ee2f15ed7ba71e778

SHA256
1aa6b402e104d76c625e65bf617958a91047e21f75f0aeb4bc2d30c5f1726cc1

SHA512
fc4d74fbe4c6553ab899977e77a2dfbae5f1367923288b308ad8d6917d19beeda3b4aba44a8db27d53a7e66bc41c48000687b497ea0bf0b536dfcd58ac46e160

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
45c3086ea4fbf0cead724b1c95f5bbae

SHA1
da277e5cf334371a1107995e744f2c43cafab3e0

SHA256
d5c88abdf22d51b6b1a98564e828766528d7a9f4665b1f6e6c0a56fe5a42f4b8

SHA512
8229ebb8b0602c08d9f645954dff70d9472d060a497b3041efb8a9cd5d0cba4d2321b406584f63f64cd58aad15798b216b363a6f309da876cd227de13e8220fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
101KB

MD5
29f4418264180c4847b35704b3f504fe

SHA1
8c5b83027d80129a4268ee5a71965aafed1c8305

SHA256
8783e408c6f779fd3b51b195eb4f29d05f225fc383249908005165e51a0ea35e

SHA512
37d108c02c00bbc8c8694344c506072668410a74b58724b07218f4e2d460a13542b9c71c7d156b63acb097c79e356529cd3b3086360c96680a2f22d003f05cdc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
103KB

MD5
b463142b0745df749a7954eb090e98bf

SHA1
43c3c1a36764227dac0949c8e487d9935cf7609c

SHA256
e927389d57d688d44138b5a4d6759c380146174097507791e5cc5b22fd3b17a8

SHA512
62fe1715ab1e110c19cb1b42bddd879da820cf481d5e902edfcaf86b4b270945fa6e10ba2c7ae6acf7277dfbe4edd1ff3291595d7751adbf1590d2a69f0f2d24

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe584e79.TMP

Filesize
96KB

MD5
4eb3366e2799e0bfdeff2b9a69f02dbc

SHA1
6988adef497d80823461475f9104aaa05910e93e

SHA256
cb36600b68d033bbdc392f88361cdaa7ec1ead6642c1966945dee2a4d22b6603

SHA512
c775eacf4cc1af030e8e8ef6516b934e46861a18b94c918f500e2116ef6614bc04ed9cbccbedb62630f011c9125876dcf23d34d001cf751a003f0132fa4f38b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit