hxxp://youtube[.]com

Analysis

max time kernel
1799s
max time network
1780s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
17/08/2023, 17:07

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://youtube.com

Score

1^/10

Malware Config

Signatures

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133367674074980417"	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-618519468-4027732583-1827558364-1000\{C4BEF8B7-20A2-4D52-ABD1-C360A11652D4}	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4548	chrome.exe
4548	chrome.exe
4276	chrome.exe
4276	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: 33	60	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	60	AUDIODG.EXE
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe
Token: SeShutdownPrivilege	4548	chrome.exe
Token: SeCreatePagefilePrivilege	4548	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4548 wrote to memory of 2484	4548	chrome.exe	82
PID 4548 wrote to memory of 2484	4548	chrome.exe	82
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 1936	4548	chrome.exe	84
PID 4548 wrote to memory of 3980	4548	chrome.exe	86
PID 4548 wrote to memory of 3980	4548	chrome.exe	86
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85
PID 4548 wrote to memory of 3588	4548	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://youtube.com
1⤵
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8ff519758,0x7ff8ff519768,0x7ff8ff519778
  2⤵
  PID:2484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1668 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:2
  2⤵
  PID:1936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2196 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:3588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:3980
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2824 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:1
  2⤵
  PID:556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2816 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:1
  2⤵
  PID:4044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4496 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:1
  2⤵
  PID:4640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4500 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:1
  2⤵
  PID:2268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3140 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4904 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:3496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5444 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  - Modifies registry class
  PID:1120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5668 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:1352
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3152 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:8
  2⤵
  PID:3412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1008 --field-trial-handle=1840,i,17006796157285493826,10243064619549863295,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4276

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2104

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4c8 0x294
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:60

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
51KB

MD5
e9c191c97850fd76c90d924991dc07ab

SHA1
7a30f3031ad26dc8ec319161eff4824a6b45cfe3

SHA256
3d3246f769839dac22d2d33838b5c62e855c1db85454ea5829b4f50d3c8718f7

SHA512
ab6481308f32fbdd1ff75bebd2cf3444361a020d8fe414f99293b0a4726e3effce7d2c762078d4b59de89bed3240361357114da0e818b4bba4af0ac7de85484d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
600B

MD5
fd71cd1dd00bc60977bffefd3a703396

SHA1
3574606f1e2fe70aa06e7f32a15fcd24fa34c07c

SHA256
b5022fc69c2c9df1c43d140ab576edf62972317ff7366b53862762727b08adb2

SHA512
86775bb8a4b018e6330f5718f704804703ec788160028ede76d3222c8da270f27f221756123485f6029754208de54d5ed10977610aa22d73aeafacb3c6d8de9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
600B

MD5
a2e1a90912dafb0b716a0bff3a779c6e

SHA1
d248b88e554b3d71633f26faf24053f10b952899

SHA256
fe758a9c8cd8a3ac3b3d5c53c21b8d41510c4bf12bcde6217999191ce813d510

SHA512
7de6db5e2b204d3eaff8cf7aebcaa272bc1a3c88ebd9fbe5ecaadace3f9d8d85e3a8295ecc0f7365b5520b42e2f9673541d8b7bde11f933e72d4dc4a2498c9ba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
4fd4fcfb75953198a448e1385a4b787e

SHA1
8f2deffd65fc199dbaceaca8b87cc3e53eaf97f0

SHA256
0b521ff02d0c1b20b859c95707890de9eefa631f94c8606e6903b88701edc940

SHA512
4377137a2870e7f8c476b18e2a27bd8f7a085d6644e4d80878946fcc6b9b821b6b6c48cc25fc03dc06e7c7e0713b5e91609435eb2344a96a1b8fb36fbec62134

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
15fdfdc812f4ecccbf95f9e537acbbad

SHA1
71287baccb84e6cf217e6b275e6298a8bcbd1f33

SHA256
077293d1b9f87e85f1267de039fbd530879c4d16fcacebc08f8550e1975b8a8e

SHA512
886abd6ee05d87914e20a4670d519fc3ed13b7746e50afe9ec7ea47ec54a4dd621ec7038deb763812a5779b1a33651c5e0b1083c3fe6e572f2df9a14d63fc922

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
f1ea1bccb8512317fd6faa432f6ee51c

SHA1
2aaf99a9329be673ba4bc85c0a2697700092cec4

SHA256
775a0a31214f7773490ac80c14ed48019edc3a5d1bd30203609add88d2d3900f

SHA512
732bc90f8649da1c51be3712e012c2d3a6a86bc998739d82c370fbe0f881e530ac6bf1f96b9c74f5eca18892136d4b0f8b3eb1acd2ef13756a71f92ff7bd9e12

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
20686abcb0f7442c2ef003b8c19e94a9

SHA1
c98a8f7a13bdbba3e5058d9d75a6aa9693318f12

SHA256
7daa5c68f2bdb8abe11c735a81466bc188dc60a7695e31362862e1b6617dee41

SHA512
43558154e610ab425537d256acefe3010c774771e9565fa3d88d6fa21bff76366b197cd7234d61db9f78a130af31b743bbe3fed5ab4354fd7f1178cc66478ee2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
9f9a8adaab16cd5e6932b2aa42107494

SHA1
718de9747ee174baddfc7436ba3b271c4a6bd13d

SHA256
49aea104835fd35dc8391712126eeb5b08914d7ca3c5ec9ee5c4bcc401a486bf

SHA512
1af7f91aa953ed36ede40a35345171856f9eaab18b085e21ae9c029f48c2293dc76d4946a6145d4bbed9ab5ca204e2e3270b876d46a0695e6dc9f271f08ef40d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
d28af81204b47034c8422aa9bdad6876

SHA1
f57a5fe5a0204735a8357b14956a3b94862d6b42

SHA256
1e501c8150011427951d91c8f53cdef2a4b83840ace6c72646699e737fc110f5

SHA512
1d9c17504a73dc8b12052ccd924a3d2ad911016bb4a0bbe5a31a087ec3a56c9923c989fe6a1adf3d50d13ce9037bfb868d8e272d8ca86b2745fa6c9d42403f68

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
4757b17ed3f9fa1a79386f2cd515f4cc

SHA1
604343910bc9db6955c7065586444c15a3a78e22

SHA256
3a53277fd0fabfb22a55a589c64f621baa3215df39983b8f7962067cc9faa049

SHA512
415a111d2c30bccee3c1f62257f8c27cddf53b728a6c0a837dccd3ac87be26bbe1c065aefefa9d76368d466b211704e1396942d812632ac10d5434650ec1758a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
f1e325651434d97e359c444a99ea8439

SHA1
0ad60f404f172895a4082482273047eee1b69f60

SHA256
499b9e3953425aa5a2d2b462ba58b8b6275c681089dd8d46068b0f147de2e734

SHA512
4d1c0e6753b73a335eb9e1f89181d3e7da23f9aa60182af07540caeeee8a7f988266ecc0f327bca4a9dd30e1156342ca13fdb2a8ed7774aaf876f72b8c2ee589

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
32f3c1a024b0c31eddef956f2429f253

SHA1
77027cd140a72d88801ec35a707eb5867b4504db

SHA256
013fb92d44c89fd0a163517bd4734c9768c6e92e2d56e97754bbff34224131f5

SHA512
a65e19b8aa9416376a0c9a217092b7c8ddf6d6fb6473e7790c2cceb823a39c358546b57dee5f982cb0f7c25803abb5030ee91c41b77aaa4e2dc853a39fa53981

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
b7b0dcd5ddb43ba9ab0b2adbf4004c4f

SHA1
e7043d2be3816ba73d9a4f0d0eca3daff968b0be

SHA256
1ed388a6caa1f39d03470cee8b1dd150abe4d25008ce3f8618e3035ae809f9bc

SHA512
5d28ff3fb392c24382cb76d53d5288a8ff0f2de66c7c3fea07ce2fce9d0f913291f3763c3ca01927735c84795e37c506f91774badf720d5e26a973acb7959499

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
765776643a7e8474521ce8025fd4d381

SHA1
dce768661e2ebfed520f2859c59eb2912b788f39

SHA256
e3b4d4b832001e68060ce9d7b4f6f2697dab2fca986af116670abf14cf49c08e

SHA512
d66454fbefdc3df673be78b492d8995223c11f430450020792228c9e233f7cfc810de1f8c2d5d36fb8d7c3f36769468b39244b1dd5926fd335601753e1b5b7dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
874B

MD5
5c20305af19fe169e89b31c778004aaf

SHA1
9b617e23ea7a1cf58acd5e1ec949aeae4352a6e3

SHA256
b7c115c002bf2d65f78a4914cedb9d1e3a9385310fa2811dde32c050e86a2557

SHA512
ec38e92a5aa80c6b5102ce69b308ced45381debc7eb78d821ac38cf7068a1373082ee6d3ecf7274d403601f021db2b61a2460ddbb382a0dea201aea234809fd9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
874B

MD5
e58ea7f0b39d8a3522fb99ec99353620

SHA1
5b72b588cef5b512d3aadca46abba9e1a1cbd341

SHA256
068ed49e599005bbff86bd347c9d359eb224cf9769d2018f1fd2c1b6475e5717

SHA512
0960ed46616a786ed643124fe81d67cb614beab666f39f399c4c429f821bcd50d75fceaf6c280e504f6b90d83be72757fb1e6b32d6a93ba5cdda18744948b37d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
f2bd791063ffbff9389aa0d4bfc24c7b

SHA1
2c9dd8fb232718e2cd9a242524d8a27d040e27b7

SHA256
4736530ad8b27e8c4f748b4827e3e9fb353bc9174f9fcfe296e4a6ea2175cd81

SHA512
c77d8d3e28fed3d36315502f0e9bea317c03069f522ca7cd87aa4f3f543ed9fbbed5bf3caa140a5e4e56cf258a1e98c5ee6c02ff6419521ae2113ecdfcf7b23d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
28529a781e36a0ddcda9df5380bf6926

SHA1
4528a9fbc8a4f11dc695e151e3115317f7287e31

SHA256
9c15495ce093cba386bb6e208e874da72f965adbc4710d57a0c02bb6fedad07a

SHA512
c89a4b443e6535089e0b667152f32c05b50e06bce0db08d99dc25d9fb25b8e20ae31cfb03ad5588299078e4bb8768b88d71f58df17c6906fbcf61a256061a61e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ec246896-c6c6-4dff-95e9-19a55839df5f\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ec246896-c6c6-4dff-95e9-19a55839df5f\index-dir\the-real-index

Filesize
624B

MD5
86f72f372c2d9144bcb4e98834b82c4c

SHA1
db0dbad3397efc049c8dc4e44620e20fd10f95e8

SHA256
608fca300fcd87dfe36afccdbcf66d410df9a76063aa85bea038d60062980e28

SHA512
6f5869f2885f10d1f5aed99b71f3fce3d99dd4172ef6f43a7803b3b5ad1f68d582d2fef6b869d06a09f68055e30d016bbc7fd0ff5be3d1034e06794093549b3f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ec246896-c6c6-4dff-95e9-19a55839df5f\index-dir\the-real-index~RFe57e4a3.TMP

Filesize
48B

MD5
005e5093243f93e5ce94c1e73acdab53

SHA1
38e4af57f2ddafde092105bcfe4cf3fd4d48dd18

SHA256
ab3beb712f7abc1ca709441a2dfbd86ff87595b789806c3cd443f5c909fba7af

SHA512
6672a76dfd04b8b56bdba925d18e9eb93307931489de69fa2afe708aea75396c218a02c2d6690b0a3fe079fd45e3b975f1441d79038c19fb96ce862d9a756b26

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ec4722a6-a2fd-43d3-8b46-453979a58b1a\index-dir\the-real-index

Filesize
2KB

MD5
3dec1a938be73dab9a442f321dfb7d0c

SHA1
e742657b47720f78b60f602e1e7a60aa25e2650c

SHA256
dc7a3efa9d63603c5ec1584c0869199ec23499d0252868bbfa72ff42f6655228

SHA512
e195ef2ae5bc77eeafeb9aafce16f23f58f1c02b2d1f2e5520187be39cdd26e376edde6c0f8202dc3c5f6d3a5c2349e62d245d092d503b4c27caa9718035c831

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ec4722a6-a2fd-43d3-8b46-453979a58b1a\index-dir\the-real-index~RFe57e119.TMP

Filesize
48B

MD5
33bea5e4de8090e2ccd2d27a2b58824a

SHA1
bd9487d2fefd5550c4806575c8c95222346fd54c

SHA256
77c1001d0d345a57caef73c4ab6e4b0733e1a1e0d419270c80ff7dc2362a3dee

SHA512
b9b1cf8a84a76018734773e5d2f5dea0aa9bb92fd3896e89fcf3d0093409f820fc4da19d8b54f3c7ecbb2bfce196961b114104595bdffb52c983f80ff6b24414

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
d919de09bdc719283df27c873d951dcd

SHA1
6f102a022658027b3711eb7da9294d147ba7b1d3

SHA256
6d3d07d1c5bc8583ab8620c5495bfddd29c19cac95698067b9b338c62e0621c4

SHA512
fa6852da6183d94586cc365417303b00d1e2854d595755fb91e8befb97c7850a1f64e9a4ba1d2ae5130e082637e0bc3f737372acddd4f646d10768566332af59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
186B

MD5
9d927f257f98cd16f0433246efbba845

SHA1
4f644f30fb4766190901f0877c22a8c8927e6fab

SHA256
3755e5c1f85b424ab7024e3f588f293ea1d949ca18451ed34e6786c64f55f80e

SHA512
a7b1db29451e6558463c31fe2756fb3d5bd54db149bbf30a613018c7e2c50066cc4bdb117cbed139fe2df259d9c41dc487ff96f930da54f3f6cb63152e7a49ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
ae34639e0d632ee2e9c54635f4a32c34

SHA1
5a1a40a6b98a90c045c7bcaf84497cbb9d73b307

SHA256
4f2d9fad7661b8455dabb6fdb3897ce32f333764f3635c40ead29e3ae2d7b3ec

SHA512
0acd64a280e7ae7c940a9f33b4edbc5bc7c5e12b12f856c0063dadc9e88ecb7cec42c8d2d52a7b20774858a07dd148010743f4e884b92fef68ce30f9ee7ce1aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
2b902c66528794a2ba7e17e49c0b4bbd

SHA1
6174bf5b15aadb836cfa79639252009006573821

SHA256
5852bafee4fd983f0704c2c292b197903e9f339ced0551e9d8dfc6029be24cba

SHA512
e7e45dbbcb92d79a116ebcf63ac53600f20b6fb6fd08d17422209ac513a0724be8575a6a49b1180e2172eab88cf2e5bc09c2f9ce369d272fc2061bfdfdb2aada

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
b9980f13f7f54fdd29ab6efcdedbe456

SHA1
fa8dbce82b73472a3fe8741c3fbf109c6ec68bc9

SHA256
7dec3eea639a055efa99569ac8436e48b874a094315885592ec4d6c0707d6da8

SHA512
5ea1637c2ac5e705d1574142c53b7f850382a3d5f78272c9df09dcbe128287a654f71c47faa5f2922142c86cc0cd10060c36ca7ce091697bebaa7368ba13d621

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe577772.TMP

Filesize
119B

MD5
5fbc43665136600f81101a3b60e7377d

SHA1
66099f56b95dc598c2932d92ce34fc1378b89033

SHA256
d0d3a6cf0cb31fa963ca96603fcb7fa9e66d14ab2adbc030d6969e00d54dd0c1

SHA512
34a3a9d990c8832c035ac1ab1229682fbb125c57655e54578fbcf4c05f650ca2e54a39f8b55f75be3ba2a537da04297f73c3ccd72a6e1f3b34e961c3f22eb3d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

Filesize
15KB

MD5
7888f7c6868315b830d4c0172ff7ffa4

SHA1
131c7153a58b38551d87cb5523deba9d10afb72f

SHA256
46bb4b691fe54d8f13731333f17d0d2bddee326ed5980d75630d3e7bcd6ce0b0

SHA512
58a799b8a93dac9753f0a2d91fb007ca2d16505e1336bb016ef80598a7cd4aa87950e1c04f28749326cc96df33262923bda3c0510caa3ec951995f56224bc7bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1

Filesize
9KB

MD5
611eb9335af325a28e5ea7e1e892a782

SHA1
ba70078dfe0477ddbcf665571ae492a15c1a9e91

SHA256
07ecb224fb4ceffcd278b67f73c611838a3b59ea36c23958caed0f52325bde5c

SHA512
208f3512f0c13bae932ca050994b8f50de4a003cef7159c4a8274fe32a763c637e19f3796a74d9f478fc37ba2772c12090de78aa1d1470eca0e3bc173b4afbaf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

Filesize
154KB

MD5
c21595d1cf89be44804a936a77382ea8

SHA1
507b9e680a6aef1163bd2cbb1f93e5a37f637fe8

SHA256
fbcdb54d026b637b156bb7aee0fef16a4b28b90b961757e32fcb00140b54c011

SHA512
a6326e1db1f9113c3c759c91a059694fa0a19fd86ae5d24b077b200192b5966d8467a88a4ee5de491419636585b4c15fc14a8e84b4b014d83c030e0f56243d1c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1

Filesize
369KB

MD5
265cc2ef4d27de50d355d6994823f1dd

SHA1
c545b59c22533bbd22e7a7bfefcaf2188c50c86f

SHA256
4b6e4ed59d533c36a042b235969d18bd4ee3708d39d142cf2a9999bc211928e7

SHA512
fb1c8a1bd550ed830165e6a8fb86e14bbfadd1b976851e2dc8e4100054ac40ebb5f9c6fbf46b32fe9f08322e35611b9426e03cdac2764a552821d092309680fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
5bb40f9614dccf61d9824e0344e326ac

SHA1
a351f0bd669e88dbb64aec02c0b13b78410ecc32

SHA256
4fd5e1850e4df80ee4fa178323fdc98cbc195ccc702aede9f9dce176132eb867

SHA512
60a759646f54a6647852e94974ee140e50acfecc8fbf5284e8f3c99ef24a1491a3a5357890c1173cc992c013a8f4bdb67b23d8d79f6dd0482d1d69325edf47c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57d0ae.TMP

Filesize
48B

MD5
ff3b80c3dca12383ab77e9939068dbde

SHA1
4c7dda06e05cc4b13852d32ebe44fba7a626e702

SHA256
a1e9a5bb35626b0a51f596ab9890044d2ba510e467458c1e40aee9674d97ed1b

SHA512
36b1d977374a402067b3197c74ac0dbb59737e796529b6d199263f9af8d17b518bfdea2b1262c2bd77cc4c666c97239a7e99a639b1acd2f3670f9ef719d2af45

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4548_1018595061\Shortcuts Menu Icons\Monochrome\0\512.png

Filesize
2KB

MD5
12a429f9782bcff446dc1089b68d44ee

SHA1
e41e5a1a4f2950a7f2da8be77ca26a66da7093b9

SHA256
e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37

SHA512
1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4548_1018595061\Shortcuts Menu Icons\Monochrome\1\512.png

Filesize
10KB

MD5
7f57c509f12aaae2c269646db7fde6e8

SHA1
969d8c0e3d9140f843f36ccf2974b112ad7afc07

SHA256
1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f

SHA512
3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4548_92502108\Icons Monochrome\16.png

Filesize
216B

MD5
a4fd4f5953721f7f3a5b4bfd58922efe

SHA1
f3abed41d764efbd26bacf84c42bd8098a14c5cb

SHA256
c659d57841bb33d63f7b1334200548f207340d95e8e2ae25aac7a798a08071a3

SHA512
7fcc1ca4d6d97335e76faa65b7cfb381fb722210041bdcd3b31b0f94e15dc226eec4639547af86ae71f311f52a956dc83294c2d23f345e63b5e45e25956b2691

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
87KB

MD5
96a1f64a56ad16fcde2565ff2f350798

SHA1
b785756273154096a0a3b63841ee2953667cc10f

SHA256
cdd31df115a0a3910f048afe83653578b1b45dd0150054d429091d8f2a483296

SHA512
093e6d976c15689466c1c56a4f9b9bfa12d4cd9077797634473158739e67da009c4c4c663ab29e1cb6f652e3fde1ee2435018c24652a42ae95a9d56e0154e104

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit