hxxps://t[.]co/g1tranfzn6

Analysis

max time kernel
330s
max time network
336s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
21/09/2023, 00:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://t.co/g1tranfzn6

Score

6^/10

Malware Config

Signatures

Looks up external IP address via web service 2 IoCs

Uses a legitimate IP lookup service to find the infected system's external IP.

flow	ioc
409	api.ipify.org
410	api.ipify.org

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133397309419331212"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4164	chrome.exe
4164	chrome.exe
7504	chrome.exe
7504	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe
Token: SeShutdownPrivilege	4164	chrome.exe
Token: SeCreatePagefilePrivilege	4164	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe
4164	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4164 wrote to memory of 4468	4164	chrome.exe	83
PID 4164 wrote to memory of 4468	4164	chrome.exe	83
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1612	4164	chrome.exe	88
PID 4164 wrote to memory of 1512	4164	chrome.exe	89
PID 4164 wrote to memory of 1512	4164	chrome.exe	89
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90
PID 4164 wrote to memory of 4440	4164	chrome.exe	90

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://t.co/g1tranfzn6
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fff70d79758,0x7fff70d79768,0x7fff70d79778
  2⤵
  PID:4468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1644 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:2
  2⤵
  PID:1612
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2088 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:8
  2⤵
  PID:1512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2160 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:8
  2⤵
  PID:4440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3208 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3240 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4528 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=5132 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=5492 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5496 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5672 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5856 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5980 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5804 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3724
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=6340 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=6152 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6560 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6868 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5812 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:1016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=7064 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7204 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7376 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7404 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7396 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7464 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7440 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7416 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=7292 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6660 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6624 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:1176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6648 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7800 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=8004 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:1604
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=1940 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=1792 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:8
  2⤵
  PID:5460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9088 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:8
  2⤵
  PID:5584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8012 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:8
  2⤵
  PID:2508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=8484 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8524 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8296 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7740 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5080
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8048 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=2292 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=7048 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:1148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7984 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=8108 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=7884 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=4828 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=7812 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=4768 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=8140 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=7896 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10148 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=10020 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=9888 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=9752 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9588 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10448 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6404
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=10616 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=10748 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6492
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=10960 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=10972 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=11292 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:6956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=11452 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=11408 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=2148 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3572
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=3232 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=3484 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:4692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=4520 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=11952 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=12504 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=12368 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=12376 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=12532 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7672
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=12280 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2800 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:7504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=4924 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=11828 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=12884 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=12876 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:5284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=8684 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=12948 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=11616 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=12292 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:7628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=2792 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:2336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=2152 --field-trial-handle=1864,i,4137805806143608293,3573419246818509484,131072 /prefetch:1
  2⤵
  PID:3312

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3060

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4ec 0x504
1⤵
PID:3940

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043

Filesize
230KB

MD5
3d6a0401da4114425fe2865129221258

SHA1
b02046e04a3f1ea12f2fa4b1cb63d11d2f50649a

SHA256
a4cd5d50e11ac72fd84942fe41533c637c4eb7e734a83ac118b6081d9dc17625

SHA512
80ee43de2e709fc2a36cc3ef37c79da3a7dc8e8a10437a26c26d0c0fa1268d6a61801551c22b20bf09e7d6b77397dbb730b47b20eab3ec818e31c3a8743e327d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9339e4cf49ec9506_0

Filesize
64KB

MD5
cb3c7350a4f3a1669146eec6c4723932

SHA1
0975d765b41753e3375014a54920e86d887a381c

SHA256
674a9f689bb2d04d6db74b6010838b22f25b5a7e3a95e50e92180c8fac1cec1d

SHA512
65266b4868d1604f4d0cb07716ac702af8becbd284e361269b5403f4169a8c5a81ef700cf527e10f5145959985f4789825e9f14ac21b52808f0f3ff17bb70dc1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b76caa482b666032_0

Filesize
276B

MD5
63ed2da5ed9df3e7df5835601f97ebd9

SHA1
242f50acceddaba05307f07994740c6a05d4cebe

SHA256
c8ad785eee0763da99b9af9d099518eeb4d1377c1c61962c7a1119169ed39d64

SHA512
7ebef92d537d9dc0de5c80eb50a9cbc7775bfd3154623585ac184de56756e98ccc9de1fc10d6ffcb93b475c65632d1e5502a98a5d6919a5d1fb4f83fb5be133a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e8945b69d6d981c8b00ecc5a031941cb

SHA1
232dce35655cea7b07051dc8c765d3ec33b1acc5

SHA256
63e57ddc752f52151441d3528ceff4241df11b016789a0e4a2e8eba3cad30e2b

SHA512
2c8b6a946b2330f04aad1c7f042771b3126f714c238322cf98555183c77f47b77e12f90b9b690beb4ac01f82a6fc2908e5ade8767ea12e540de10f74531f1a3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
9988e0d0b0480e5283762e797f0e77a1

SHA1
4f1c4bc87fe3eee88a2512c661e89d50e86efda7

SHA256
6b5e1d8e75c3d0cbd8a9ec4341bb74886a5943174f9255a2a7049ca274893ab6

SHA512
550978a41dc60b4263e444971937e45bbaef4b495b5efdb533dc77bad43a7ba1a5363bdd2663ca69c0e32416259978546c31b45b9fcf8299c4a55d3955c2410a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
1eb416a8f648a08eaac35d878e11d9c0

SHA1
244515d744c64e7a4edba159e46f4f2c8599684e

SHA256
ec32b6c83d38e547baa206ef8d81ce73ec8b1980fd7fc15f4de60eaebc0853f1

SHA512
57e145e9fead33f46ce4c3be98302105a9cf285774544d15b7a19fc779446da6292565b31968884b1496dd1a33386371e07b6c8a9635857b5bad92896e772fa1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e0a272cda8569affc53b4f08d09cd292

SHA1
a9ad254b9c9ac09f719547323a10ce7a99115a55

SHA256
c6d298d30c25d6037b4027a9480d09cf982e7a2c9f91dda747494961205f05cf

SHA512
24871cfe0cc43a0e9c4ddeaf5718fba834aba9c3a1e7470384c26ffd7487778bfd43cc9ed35b68d5325f6773faa3773b100520d3d6435d7be86e0b2c128ee508

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e3dfe67f738a1e0e9088d5e903b75608

SHA1
7a5db0e86d3fd7c68d0f676af9ec5f290c5fb37a

SHA256
cf6057f9ad203a25c89837c0bea3da6c52f23ce2e88afbea00ef0e51b13b5c21

SHA512
442e657b721a782741695dfbdf1a2d362b0dd2baf7c37f438a198d0f0a39ad834b02cb6ecfc2a5bbafc4f01a7ac87f6cd928539be918f442af99bb1ba9ec1b6a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
60c4e14dc9212012d17c4b47d11bcf70

SHA1
1467b7c81afed69cf3e39364a8863d399776f875

SHA256
d434cb8866d710554e1f452be547ed70fc55cff53b15cffc78ab6d56326d334d

SHA512
64c82ed4316a5713bcf7b944f3e1cf63407b0f1cf71b1f77b2f3de156f0567bd4243119b53dd42f6463518ff4bf0750d7f205357912fa2b5e5ebf3fd91099156

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
f135fcbe8b179503146d30e8d055b382

SHA1
aa07b0438c7d465426a8efc5dc75739828ac15fa

SHA256
a763925922a08ef52394ee3e5b0c0879bfc518c5e9cbfea36c7877b331e315b7

SHA512
56af8bdeb4910df4fd0ac5275e2c975440950407f659811bde4a2ca02d3fd268afba5f2e7a2b832b8eb2a2d0b72ead91c3f4ca1038c4cb8091d78627ee870ab6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.resetera.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
20KB

MD5
89f2e3b9da73e7e2c58ba167c1173520

SHA1
3f0cecfc724d567c0d41866ed5285f0376c4e554

SHA256
e284f62754d420cb1e937a93f62d0bfa3df7ad9304a978912b4812a16d57bd21

SHA512
d312f3c4d75a6a4a7e89b7857e6a21c1e840c85ffa6de52da897b728381d01816ddc6a926cdc48ea5991b37d0b4cd375d826d80ae2df8626107f36e4a5ab803a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
16KB

MD5
947cd286a9a7e2dde14674e7c85f3dae

SHA1
a18e45ec8568fed7f783f39e6924e54ddff0f148

SHA256
f31065b81028514103284f807ad2d63e9d7de6e450bb2c7b3c46f77e3b987ad6

SHA512
8aaabb8d0e87fb1d5161188f63658292335205f7302e070cdb7dd687bfb80a87fe1f0e132781b0c52dee1974518f1d29db15370c8da0b201789386bd72d05aa7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
24KB

MD5
305b99f0cc87941d7c4d2f4dcb855149

SHA1
08f38a955b14eb394b66966eea3dba4b978300b9

SHA256
8f679ca0231259502ccdc86f63dcd7e01fe8e5e7336dc86e0953abde048f48cf

SHA512
a1f36ff63f63add391b668f59ac6df8b1f31e143c55b7be4b6485f6fbd3d14567f7c571fe639a03a746303b4de08c9a2a2b43ae75e6d46821daec7aa719c8db4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
0963cb6371f5278adf8e2d38ac4f457d

SHA1
83739cdf43ddd42b9b06697441b68531f5685736

SHA256
2e701ca1534362550eff38699489dd02490b46fd1d0394c7cbe42ae34ee29228

SHA512
d28f5c03a5fcd3260b299ffdb8a0bd8886b6a79863aa82080f00a9a5e0e0d0aee66d7d30c6d1e06f84f854cf90ad0995ede254978f21970c4a9884b166b8a239

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
1ca47b6fecc78f7cc1d8943c0dc6b07d

SHA1
8e2a7b7dbb5320b15876e271af79ad19a11bffec

SHA256
4639ab75c302be98ecb36648d9af865264f70967071bb5b58fdcbe42121a1836

SHA512
92dc7f5e6dcb165c117f065a1944a6e2e98fc374e5bc7901029a17c34f94943673ae9fdad3e81ee408bc1e45a146bf8a87a4dac7b64da3923e3f752e789472a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
cca890d1774d41c8c007ff536fd126c0

SHA1
8e757284f501b94cb39540f5edddeb5674e820c1

SHA256
a9f90f11d8bf64203a2939752dfd99bcbae7844a6c4d86b0fa1f8f1c12c6183f

SHA512
a5683dff08f78f0200b3591df53b83f39e008dc99ab418ff1870d8c036ec6a5416a1fc72d43f6ad910a7138a18e47523768e230a36d0f335f4e7aad4eb7b2cef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
b08f1cf8e8753bb806766f1ba37b14ec

SHA1
4108a40549de002c1b0bdc3ad8e2e634eb9ff7c4

SHA256
bef3adc0d064c27f66485db69d0d8b02d763d39909b6a2fd88bd21a6ff3d8b47

SHA512
41448ea6767d5b24ac733fdef9f9ca1cc9a5e178dea61b8902e1bb0de09ba95df23f2ae781834f1c092c2acc0290d2b8a7c5a3017f7b47f986994fab23e3c3cd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
3a36d2ed4c5655d341cddfe0fc88b6eb

SHA1
2930d403a1513553781e542302faed4fe113c9ea

SHA256
592e9da62610d53715ade834d102da79cf54ee9dd38c1950853756da5fb0d0e0

SHA512
5bdb62abd896be122a7f6685a3fbd6922a00f17201b9ef3b15472d4654e664f959da620aa7f4df2225f14be442c344c55a22e89dcbde70f09b37788235af4574

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
da8ec04bda2ea5aabc334d5e6ed43a27

SHA1
b9b01c7c1b97be3b40a09e09c9514bd5493a4940

SHA256
13a553f3d5b0e1a06cc6eaeda7ad086de2d5b79cb4e8a8a0512b96ffefedf596

SHA512
066af10b1dec6722bc3f1b9921c481fffffd86ee44abd2b0d05058ccb495a95a28e3aa7ff92ceefa25584804cda5dd160d3a02c9e851aa0da91de942bb88413d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
6406e4d14e612e5f3e9f3104149bb5f6

SHA1
ab8e6408b49ab0ac1ba62f5b4157e5aacce82f2e

SHA256
d635437953b44d8459237dcecf8a2b971affdd67fc50e6dc73e37b10a9462e94

SHA512
f778842bfaf282f162d1d0bfff2a7554f5eecc2930e08f9cf82db7f1bdee87dd4daeaf778d34f73efb6f801fc271d18a97cc664b59be0eee36fa9f98e32c17a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
c864fd9b04dadab6879786a5eba34e68

SHA1
b0d2aef5631ccb498b16e7bcc799d3406422cec8

SHA256
41c8da2d393135c0fb8946a6a32359ce0875cbfdd5b3938206fb2d5a93c4373e

SHA512
d899fe3b10f4bdeddd7504305cb02573f19060cd92a06458361e85c464351b11f28589ac353e30b239d6a4b4966bee3df7e158b92e8fced95d6afa421b694e9f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8283ee3f30d6e43b3d9c7a30bf83ef74

SHA1
6b071651e799bb5ab8a7770036304de178b95b94

SHA256
2772b0a2a3f5c29e585fadfa7a15282bd6fcb81394c820937d2962c433139573

SHA512
c742b9f4147e8b9382dde04f4f76a22deb33ad37f9279f3c6e0967e014746efec2be62970c02fef6fca7ab2d03b29f458f03f6435e77e6894bd33ff11d001a9e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
2e9cd623df4fcd96e11076d244f764aa

SHA1
8d4b959bdc4dccb3cc1e93a7d5f9f35d4824ba4b

SHA256
3177ca98ae099123adff0e56f7d594fd2c89a794387250570c2c479c80efe8ce

SHA512
7e384c7ae7344b9342f69b41496a1b94da9907941f71979e5278d3d3e8e484b306da7d7c4d0abb8d48afc116e38e43740b2a1a266169b3836c05b95f7a251552

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
a836aa16771a965b8e944a9d339ae2a5

SHA1
ee2463c1abd272dd4fb0b53dccd99fceba0c7a63

SHA256
683944035004384e4d64a1de65f06f5fc371cdca73269c092843eb03b52a13c4

SHA512
a301f63a51858d4907232f100d17727e01810e01842b233921b3469530238d43f7639da88c915cf42b48b2af99046cc5d0d8b3a10e1c1040fe680b52c06492f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
e2c219a4a131d4bede0b7d8bbc251a51

SHA1
d13ea8d9b4406f64ac2d8447c498793017dfa7a8

SHA256
fb4497f2a52f6ed4b26a57eda3b8de3223a18eadc953b4538bd4f42542ec9cc3

SHA512
88001cd497ddea44d505715b11b7bec1154d9a2eef979c2df822c6df70d6f8bdd77ef3b4403f243892f8f735e4c18b0d38f4b684afefab84cf89155202ac52d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
96f5663c40dc40773ccf53e5e80ff4c0

SHA1
f39b42802840bd2f72991dc204b8f98f31f3d0ef

SHA256
ba9b02ff1bdd2f75eb62db3f07ccffb1a9d5dcfa144eb41387106cd221b88eee

SHA512
469b609325ed62e030c088838b8801aacdf92ba0491a148548cc4a0138cf67777e4c8b065ec992fdb157ee13f80831edfa997c38b3353fe176f9c0bc2bd8bcfe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
363f51de5f17ecb183ca4ad41190e5ee

SHA1
6ee3d3a306e59550f9e18d2f5c1d4a8f8fcb2187

SHA256
01841d745426a256276e0292fd19c84002228224fda1cc4e9c8fbae989ee08dd

SHA512
ea175596749ab7da96080cead41d56e011a8c8713e0adf5a31b5a3097e02324ce3dfa9f374a898973cf7a4d5487b8609d5528963bbafb257aeb07f27d42303d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
5ee86c954dd0fbe50f656dcbf8f3182b

SHA1
d06111c0c9689a69cd78f178f5326a1bf1eb831f

SHA256
807839f3f5735af5ed026fa514a882dfe8c198a53c7d8213d5e3a8d397f7bf35

SHA512
ea1e218c3a62eb51518aa6713a92ddc625034485076ea4fc8667f5ec4ae3162feea3099f8942d1bbb32dcba08c2bd2748436be4e77f6746971e0dca513f20307

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
6ec7f62090953498dffbfab899a16140

SHA1
e81186e9fb8a679ea91f800251bcbba120801a1b

SHA256
6348f4e4dd377b97744eb14d31f11344f88d9e0583846c60c07c34b78c22e655

SHA512
c467e0f879d846161376b6c6e1651601d58904c60624b641e1e0aa5e76003d00b99fac95ffcfa1b58446f3739a8480a0e1b2537be7d993dbd8c1d10139cd464d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
8a885afc8f5a1bb26d7784b80f97d2d5

SHA1
13f069639cd924100e06e0a3ae8eda5f7dfa2158

SHA256
39ace4dacf10210c6d2102de6c9006699dce4f0defa5677306d0db9754e7992c

SHA512
eae637a4c0ca25fc54302ba61e3b8b9a27166a4922b81dc3a29be15eca43d5bddeeb1c4b7420f8e31039bf19c1c7be52fe7c159659063ef04434ca845689e355

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe582054.TMP

Filesize
48B

MD5
b5496bb1998001de01aa92fbf62471f4

SHA1
f3330437cbb1ccfc28441aeb91c6a6df7c1f7137

SHA256
84865ce6bf0cf68d4dcceb713f0a29815f66dfe3a698b2822b91179a8ce1b2bf

SHA512
e93b1e2465f3b4f08a73df7fb0d5132088d99c5d991f7498b2d473389f0dc78f07d3e9beb888e6cdd07f2989ab40de15142932b439b1abc9abad77f8c0ca65a4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
102KB

MD5
6b9c4bd5a95999957c3e50e9fe59938d

SHA1
890af0df312606729c73002b4b9cf28bd90c4f59

SHA256
f316830df96cd6986cca0572a2ed0e71314b854ba925fd8c5774e403ab2bdc98

SHA512
0f0a7f6a4aad2f2ff3d00f3eb595a487391973f2cd8c2b975be95d1b194c7c03f5d3cd86567c392a702e1ed6c968437b6f7936a4d00b42e32abb9a61976187ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit