hxxps://sourceforge[.]net/software/compare/Amazon-Titan-vs-GPT-4-vs-OpenLLaMA/

Resubmissions

09/10/2023, 23:27

231009-3fqtfaba97 1

09/10/2023, 23:19

231009-3a1rfsha6v 1

Analysis

max time kernel
360s
max time network
361s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
09/10/2023, 23:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://sourceforge.net/software/compare/Amazon-Titan-vs-GPT-4-vs-OpenLLaMA/

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133413671987914397"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3852	chrome.exe
3852	chrome.exe
3748	chrome.exe
3748	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 47 IoCs

pid	Process
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe
Token: SeShutdownPrivilege	3852	chrome.exe
Token: SeCreatePagefilePrivilege	3852	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe
3852	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3852 wrote to memory of 540	3852	chrome.exe	37
PID 3852 wrote to memory of 540	3852	chrome.exe	37
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 460	3852	chrome.exe	87
PID 3852 wrote to memory of 2568	3852	chrome.exe	88
PID 3852 wrote to memory of 2568	3852	chrome.exe	88
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89
PID 3852 wrote to memory of 212	3852	chrome.exe	89

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://sourceforge.net/software/compare/Amazon-Titan-vs-GPT-4-vs-OpenLLaMA/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb64949758,0x7ffb64949768,0x7ffb64949778
  2⤵
  PID:540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1800 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:2
  2⤵
  PID:460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2020 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:8
  2⤵
  PID:2568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2064 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:8
  2⤵
  PID:212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2932 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2924 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:1920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3680 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=5040 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=5696 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5940 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=6136 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:2684
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=6492 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6816 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:8
  2⤵
  PID:3508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6860 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:8
  2⤵
  PID:5132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=6844 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5520 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5308 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5352 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5268 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5560 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5364 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7360 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=7176 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7372 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7956 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:6072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6376 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7828 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5484 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7512 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=2604 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=5072 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=828 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:8
  2⤵
  PID:5208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4784 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3748
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=3080 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:2928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7988 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7828 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=4024 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5228 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=1664 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:6036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6492 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5172
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=6596 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:1996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=6608 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:2292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=5500 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:2584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=5384 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7624 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=5280 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=2324 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=5296 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:1848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=2324 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=6452 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:5476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=6456 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:2676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=4948 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:6072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=5460 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:4672
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=7676 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:3820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=5864 --field-trial-handle=1888,i,15549021648154230548,6450245598053740413,131072 /prefetch:1
  2⤵
  PID:208

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4760

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x40c 0x418
1⤵
PID:5196

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
43KB

MD5
6581e191dcfdc9167ee2a0a19a74d5f7

SHA1
58ffc499f61cd3107725a8963bdb625802f10964

SHA256
57da61b083797a960c8916ba71c40b3fc3b689b25827eb3f4a9ab3bcd5dc49e2

SHA512
e9922158317c9b8b5a3c795e07f2bdcf14339738eeef8119fc14adddfcff278402c246299d830afb2a2f1c16a248f3912418ffef5fe787d540ffae5bf43c7c05

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
92KB

MD5
ae342b03058e876d58502a7abddba2b1

SHA1
2ff16688f81a109cdfce8491c18d5b104287cd37

SHA256
fdced3a4e5e80759e1d0aaa11b458530a4a4173098afb809336aa14680e66ad2

SHA512
6cbecc541d8f85dc5abe607625a90d8ee677be7a7a239d0c5fb26fabbd5715b8215cf01cc80d607c1c18939857ed0e2bf9e5b0304339dd710ae9b09568418d1b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
93KB

MD5
50062a636fab7f77f4a814dd9b14e5c9

SHA1
f5f7ddad7d88c3ef11928e70ef6442443f79b88f

SHA256
37e17b0e7558c69f3fe4150999708448e36aabc5781fb7b1f61364b484b549da

SHA512
f7c1dbd5ed1dbae281afbbaf17604ba61c39f58a15ff176f3d6f58ec5fbbb15beea12d6f6d10ab1df56bacf0be29dd4b50fb4bccb35fd5a67d84a2f09ded3ed5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
63KB

MD5
34d5015941e4901485c7974667b85162

SHA1
cf032e42cf197dcc3022001a0bde9d74eb11ac15

SHA256
5c166a5d40aeefd0679a14f95e47ff28824e66abba82adfa30be41803cc25632

SHA512
42cef1d6847f535a6e8afc0469b9f5ef79ce4ab21512ac7eeda8ef9667d5f24bb33b30aba9a29824b3d853d41d4addf6bdee2042cf4fbd0a033b61657c671f0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
22KB

MD5
cf385bd8f9a3340454da0027502997aa

SHA1
0e23444259093a7754689f23fc8604512e7cfdba

SHA256
364c1aa87a1589ce2d75eb54529df1745dc4c96594ede3525243313dda8e946a

SHA512
3eebe17679696945cc49d4a5abbe6b67482f0f509c2960f7e71275fe7d25477557f761be94d8ddb7d0e728397c02a0315dcd2940a2447a530b08d0d66b83e148

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

Filesize
28KB

MD5
bfa23e8e69b70066e94492df3450d6c8

SHA1
dfb4a8af9aab839bce0772b391db5b06df1feaf8

SHA256
263dd72edf1e97bce991a10b6cd432bb26643d619f9a4ca074cd6e1215cff945

SHA512
03c624203552d58a8c6e2675baf39e230aa9f0f922a764bcd382fe58984392436530379b44195441a55b9f52c5d8bfddab8d6182dcf779b7cf05c97e0e6c57d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

Filesize
131KB

MD5
4c3683a5f2c428a47cc4e90163ca40e9

SHA1
64622f8763358ba3350c11fa752b9d7c69587575

SHA256
ef5cbd44d04e25d4fb61bd2653ae8ce8103d72ac07d7575ad22a7192b377a077

SHA512
28c05e858b8097dd8ff24d6d10cd4073f37b99d82534b19a4c02823d4ec2f87d4f13ee3633a2dfd77ea0d12a2d14d434f87e484d8a224217d336048cca28fd83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

Filesize
52KB

MD5
ba4ec21bda8d165505e0aa11bce274b1

SHA1
e7c64cca0ccc2328217483675cc70d3764770726

SHA256
abd833ee582c2ebecc79bd3ce3cdf9d0e13f57345a9bbf99e7c0187e25e25ecc

SHA512
02a2073883249138dc7cc472724b7193baaf6add74e2774d95154335aeafe15938ea83619cd92e358218bbcb7a62b3102dbeb26708373065c766300f276916d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e1d8179eb364b679ea3c86408f9955c9

SHA1
f66b54e38dc882618c27b7ee75c0ab76d10e4315

SHA256
9461acc73365d2d5eed2d35a9fa9429e0cad56d9e1abc2d20c5c4460f93493db

SHA512
ef77e5f6479d3f965b58ddcccc057dc1db906390a7c99c47e36ea0fe197264ca60a8a25317fd8997a200dd0b1c7ee810ce7aa1557455d3fc5960651a7eb69bd4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
f5d60d6272c1e33a81bc1403c7bf7e93

SHA1
86ade36c32ddd741e52bcb754772f7f5c92b0932

SHA256
67f8bf27e3e506b7a0d6254c7c405c00b7f7bf85d320ad437fde48498f775399

SHA512
ef638b85544ba29e25ed7b00156d059f0b1ab2691aaaf8e50d54cc7700acda1a4185a7053e47f575c3844633d370ae6a5995ba558d3d026da1f1e3acb05ac896

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
ef556ec1c4ce6a71998fef3cb0ef1793

SHA1
cfbb3eb91a2c2a4b485d0e4b1035890e012d62d7

SHA256
504486c9c717731e914655480442e5ade2cd21c056e5e0bff60beb25f66abe56

SHA512
a9513eef9249454270e72b0ea9eeffd63c885cf0c7fc25164632f7775ae023cf584af5a45086fd14c0f00dd879e53ffce6bbc7f7224f21d286bb15761c31e6fa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
10KB

MD5
cfe44d480444717d6878b1c4aa4c6896

SHA1
cb15643b2aad21cdf6e14edd6e653380fc0218f7

SHA256
3b718a71c4a6a9c5b19c4e2015d29c0a97ab3366b467e6265d46a3c7f1ff7bae

SHA512
2a22722e7a90b79de57cdad5e1102282951253b6b7d3ceac0e541bc679bfab52f356f761576bbcd4eacb04b01a74b7feeadc7784d5a7f6fdcaeb5c091db60d87

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
19KB

MD5
4ac31df4e7084d6c90e52f391f048ab5

SHA1
3c8b4136b90ce957dd82314cb6ee979976363af9

SHA256
b4f755c12c9cef6fe0f930d18b2be1f25de268a1782f670c65375dd4456acbb9

SHA512
d96222d765b4cbe358dac4dbf557fcc9a11ba951d9c5bc3ac2b5d40e9d23f16a821f607a01b720308242cd766a985af2f161f8aa7dfd929261d5315c3bc24125

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
13KB

MD5
c33cf8743890d40487cf0e3a61c8b502

SHA1
1cfbae8df826e6881522dd4a7dae21b0884dca85

SHA256
2d9dc9c11375fecfd7ae2a2572ac0e62d08de49b00681c30864a5c2cc93364d9

SHA512
28c9c4a96d040eb70840213c5c09b091f950a1c85b1d2798ebd0e4999b72b05640d17e8798f2bce3a8099443bf5b0795e3cc20b7ec9ffb408238882965b66713

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
a7d75099826335178f4799971f5c689c

SHA1
68077f5d53bb5e67a0876738efc8a898f5d6ac70

SHA256
fd9478dfe529f3209070a2110a115b14fa59b417385c4f6874856b8f07b8b0d5

SHA512
3af3f68f614301b7c950472bbce3fe2229fec10d2cc038b3b4ff6be1660e6f8d731b2e026bf226bf21c8038c50d9ca9570f8b55f3483ec6524533c2ee1dd3d69

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
afdd2637e3b14f3f8cc10afb71fcee44

SHA1
64b63fa66a77b2218a6d110af22eab839c718a1e

SHA256
3d5113a2da8890ba66195ea71fc21e0a9ca09b212f61f734d76f1feb8f65babb

SHA512
454006d4815cc621d1ae1e0924636cc0b3c0786c3fc7d8e81561108fc0f934771e8e43ed91928fdea893202b4973092383422cb63b18f1c7b65463b52db4bb29

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
5e31354a541d5ca0bbafc18cbb071621

SHA1
0808025e8045827c41f15e1f51dd15a06a9ce8c7

SHA256
fabbe724fc7aabdaeab3f921d1f2fd22a69c981ad6b810923de679c6520e483c

SHA512
89541c222a69552080ad220afe039c61665a0aba34c665b613c2ed37233220d8698132d0d81516221423f50f6f3ba823173a31f213f4f64cfbf2d2e41d8a1916

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
c8e186164ca15568424ab84fb0116309

SHA1
769cb3e92cc7fd810dc4796810aa79ebf71b62b9

SHA256
30ae38c12b0cb583d884d324c5e6a7c64d247b3a614f7f0e1551e45911d8c466

SHA512
aea7d773e4f424fecbe074e3ace482c5947c30466619a1c1d29e3ae6db36924a3c8e8a4ea1f61cc0c8e53ac59f5f79adae8e08e6025cc69328d2556eaec8550f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
12f94e5932f840654663abcf3cca0a2c

SHA1
f3ec2879b30356544da828eb2fdc857dce8f10a1

SHA256
bd01c0564583d77dd0c6f206bbd164dfd2da34245267727200f9dece947ba855

SHA512
bf68547414a86c5ffc4b39738d77ed2dd8462ef88cf6343954a8a76ed7aa3253abcb29b84f01dbb0ee377b9b7fce773381491ad5e7d410cc00cd9fed28625c3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
fc6048bb05c85e09d6f87d5c76348969

SHA1
559f92ada7bb156a6e26a8fa3e001941485092d5

SHA256
42f7d2e91b54ba85ba04c86e338270422c89845bfa5015f82d885fcbe414c04b

SHA512
568e00eae95bf36d5378b0e1efbd78d9800f0c2b640798ed76624e0525b654b310bb7975e7a401d4a17fd44f3c27883bc230354309fd53aafb12a6b6dc2998cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
93d923150cdcabca06c2e6b35b9e6a77

SHA1
e0451b9c8ceb523a69d68c33af1ab91e27133491

SHA256
6e7b63569f2e5b7115112f8f0821d1002c6ef1cc7899fcbc0c0ded37b79ed251

SHA512
9469f5d70170282e629cb4d9032c67a920a6c59bbc8fcdccddce1488de08d78dd51f55c163b925ebc9f0cb6f298759d08f91eca8380631798858fa4352635787

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
584c4008d494e31f6ed9874a159ae125

SHA1
ad86bd807bae71de747b1e27ad47954930f8cfe3

SHA256
1b47962f8a0d3ced39e53f2f91d79b8618abb10a334911a87e06474ab056f65b

SHA512
807a7ded2c71e336487ec540bbfb2772617e03201abc96c29bcffd4f60ab2348979401614d52256ba65273c9a18bb1a4a8197850afd22f9b14e3ca206555a8d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
14e7537ef7348bf3bf2e665cc070c632

SHA1
a3222e3f6040c51c4e0f6e773720bb348ee1cbaa

SHA256
e1144bc435e5b54158c1b7d3ee6f4268239e3e887f41be81dc3b8fdf669f11ed

SHA512
261855b9083c983b4bdd90880611af6e88db092d5014b5020b9952cb473d9517f002d3bb29a26e13ae81c4db4895c3e24f7d74070a9b47dedbd84922f2112168

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e02623376ba8645e260f037930a9b1f4

SHA1
d4a7d6bb719bbb474db62c0d7f01f4c7e879ae8a

SHA256
e591383be92721e1bd9b038aea5c0cc8c71da6d5e6d97cea333b37c81978f2ed

SHA512
dbb8c74d45b0d16ac4be98b95c42e939a77eec110e324427c5d6d67bdc5f15dfd4c25d1c3d3acb7a8dea2e14d73e8bff1310ce3da8b19589065854e8c7829235

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
f41a0e445416f2c7a00d159682f32318

SHA1
03302eea9b77c7dc21ac55d17f564b5674e5ad22

SHA256
29e36ad2ddf51e6384d37c77a43ae8d095756d12d289fffc18ffadc9b04817f1

SHA512
1ec7c04b42e36d70d132da92191ad19c23bcaac1c9403585982eb01ba3bd35a4f480e87196d37c567ddc1f51a08c370332ae14a66d212308b8ef01b9bcdb97f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
3f1c12f8c5ba4a219ebbecf762544ab2

SHA1
e50502c8227143ebef5294b527ca01cf5566711e

SHA256
05624b85ed3cdb22e6dfaf2344d55d1f922e739235bece6e3ca0f26bef864076

SHA512
89e5b7c46a2520d66df4e89d605b6db2fb2cab5c6dfee7216f632726d1645b479816a0f2fdd569c220a0a2aec274b4069c8fa35977135b3d68a48ba31816641f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
f9e7b0f4605a10002f9ef5772e752bfb

SHA1
23ea3596d4173d89e8aceafe5301ee469eb26329

SHA256
e0b1cf83c4576f9f99cc6e29df2d56b2349e279327f32702dd83d71e730bca4e

SHA512
f00304037748977b8bc40d0dd4428e34929d34a082e2a399212a503ef4a6c76aebded61dfa6a64ad9a97b1f14c34f4fb589d94bdec3b52806a51315af14c4778

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
4126f8901f8dfc7073c955391da68ebc

SHA1
ca34f46dea63e29e2c63837f47590a52963938f0

SHA256
4b8e7bc64e68c23d67650bba331cfb691d36c1680c36de5510f98acacd46011e

SHA512
cee5593e5e0ce35a2e8b20f41c71faeb88e60c160f2d56c7cd8f9722939ed6f5bc091405bb01a71c364009481fd8582c1b1630b304089761b12b93fcb72edf9f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
14647efb1f12fdeb8d1d3503de5615db

SHA1
53c6dd80be3713bf16314d330ed977c1f56d98b0

SHA256
3020defa486e94688783b12a0982502a2dc0c4b720ac5d10cc177b19e93e06e5

SHA512
de213721866b62bfec3d39ec86613201cc8ee8182f1042b1bdb110b67a43e4b35caaa7b9b886d677ab750d5e00678225ab6d9b69212328a430ffc77b8bba78d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
19bebea673349417d6254c8746cb7700

SHA1
6f0b747c406bad56164db0ded4f9e910686e738e

SHA256
7613fb1ea89385dc3b1608c1e4ae34e37ada79f5f7cb00f32d4b84e5329b07b7

SHA512
c0efffe0da8cabb3847338a71d430ae855178fcd2bdcbe244d6dcd6c3b4b12f5996a770323f9e853642e6324dc690f9ad9a7924bacebfe72b5b009acff0f7152

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
deb5f09ebc65bcec9e50fda0e5347659

SHA1
8d13f10bdc78e99f934db74bdfd45136654dfb34

SHA256
167895c2741dc91d9e6145b4bb306fe9e165356a7af05261dac2f1cd02ab4fb0

SHA512
82abd325c3e75956f259ba3d39aad71350d2c382a9247bb9a006120101069c02edce49fe072f26fbe086080870a37e7f3d2403aaa305708e80d7520d79a55b42

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
decb5ef4845f2bc63e4899ea4a2d3f10

SHA1
caddd8365d64c3164cfe36ab4c08a80afd77e1d8

SHA256
133e6f52422b2dd2b68cc0ac4b8004f36bcc805c04ed9029e02cf731bf35641d

SHA512
3868da487e530f3f78b3cfed86218e2789273c4dc4ab5dc4c95cb67308dd05b3405a17f02f3161efe8d080b8471990b06903d8d6d216cd1162646045e6f136de

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
44dd7fae26f8e7b70fea8ae38e6ae321

SHA1
5425ac5def2d28d50dc258fdff19667d271ced99

SHA256
37ccc43b2c1e46b06f02bad9976c13cb0727cd351946e0c676c29d13e5fbf328

SHA512
1dc0a960e2e22ee9599fd69991626b00d66439d265df9058bdab30e899048ab3286db94773cabc273fdad91b910d6295ba57f08666011d0d4d5b32d198394c75

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit