hxxp://cargosnap[.]com

Analysis

max time kernel
601s
max time network
607s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
11/10/2023, 09:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://cargosnap.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133414899311589465"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4468	chrome.exe
4468	chrome.exe
4484	chrome.exe
4484	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe
Token: SeShutdownPrivilege	4468	chrome.exe
Token: SeCreatePagefilePrivilege	4468	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe
4468	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4468 wrote to memory of 4104	4468	chrome.exe	86
PID 4468 wrote to memory of 4104	4468	chrome.exe	86
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 2008	4468	chrome.exe	91
PID 4468 wrote to memory of 4712	4468	chrome.exe	92
PID 4468 wrote to memory of 4712	4468	chrome.exe	92
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93
PID 4468 wrote to memory of 2948	4468	chrome.exe	93

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffcbbfa9758,0x7ffcbbfa9768,0x7ffcbbfa9778
1⤵
PID:4104

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://cargosnap.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1752 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:2
  2⤵
  PID:2008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:8
  2⤵
  PID:4712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2228 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:8
  2⤵
  PID:2948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2796 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:1
  2⤵
  PID:4132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2784 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:1
  2⤵
  PID:2936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4928 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:8
  2⤵
  PID:220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=5004 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:1
  2⤵
  PID:2512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5420 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:8
  2⤵
  PID:1220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5268 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:1
  2⤵
  PID:1460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2676 --field-trial-handle=1916,i,1128835960234633100,14538402640895244204,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4484

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1896

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
984B

MD5
c02d25794d6fe24a92e8539588646152

SHA1
394cd8a06af8464660534de1d6dce6bcb3a416d8

SHA256
9194a4aaae90ffd9c540a60c15667ab6e88d3c5c1cd7df03b3fc18cf8b6c4e42

SHA512
a41baa09c987946ce935dc284c9be8d2a5c1a24129f981902d4163856b67a07656ffa0c29589a56b3b46c5330fe9912885c803d60307bc106d647c5f59aa54f7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\7a5ca8b8-dd72-4620-bd00-84f03dda8faa.tmp

Filesize
6KB

MD5
ac2e4377e2749785e0a9523032e70040

SHA1
698ea1baba3e79377a6636f02d16bed9df38ce1e

SHA256
32038b8b3c215124538679d697cf8bce09c4dd68fba827e0ffd9a0f16c0c557c

SHA512
3ef6410a05e6ef35c79d2836e5cd7f9f096b362b65b46b178a6aa1278015077851bf59502dd4e3b8cac7726419144e82264e2677eb9b46ee1f444850b53a5327

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
248e766e897b923b3e6f41ae88f9aa4a

SHA1
5a979be4e78592bfea48a154b8243aacefdd881c

SHA256
7742d298098554814b31dd09cfcf741891a5b728e990ec61d29feb913fb9ef0e

SHA512
93ad772b78b2439bdfc2543fc9f4b4b8dc4dbbb66782146c9ea8c56cde84631160ac8f674360846f6054cb73445456522dc4a13fe65ce060d2fc24e21d97d2c5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
81c02f871e66f43ae7e3d1dbf1e0b5a5

SHA1
5b53fa181b2c01f7a126da4bbe625c69c5a34f5a

SHA256
2b92c3fb34353116fb43eca4d742615b872a3c84348af9c4b82eb21276106a11

SHA512
f47aeb3d25c3a4e128a0c7336bdab03052df6f9d62b2539a45c05f5cd47988a357c93bc5bd10fcf71884c3965d6a030957dcd0244315d574836488cd9782b4c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3508b59643aaf9215a86ac3ec8693e2d

SHA1
86c96c9a1ed14ebc4d93b336919cdf7f105fd877

SHA256
ed463a5f1cdba4c495cfe57e4f1cbd89d0dccdfd12c1d57bc1c0bb0589823c87

SHA512
4aafd384fb8b289a91c6dd6bb1c4c7814466f4498160acd5536d486e7bfc46729c61ea065815c030686ca634f9a619d9645e3682af2bfa743bab64ddc8154841

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
d1f33f8c0891b8e95ecf70c08aec8ba3

SHA1
eaa28247469af27cfeb5bb4432e2f3e6024a5ff0

SHA256
4347e718232e2981a0382be5e4ee9e06e849c309714a691a4d0cfcfe65b01ad0

SHA512
0da2c4f02a243a381743859ad04334aa5c0eae660a142ba1ee5f91716c187e043eb8b637319bfa2c8c51c9587ffc88d5a50635a9fefb33058e9dcc7dd647437e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
65235596184818213f83ede48a175e34

SHA1
2e06ae7aceed2260dd079b3377fbbc0fcb0766aa

SHA256
e008324de66968399bf774bd86345d222ed0e8f483649e75c603da961570d093

SHA512
51bece429c4da33d893dfcac8e7989a7c61c65a469de2b06d23ed4da181438706340b4c6d294af5f3588ede42252e733e50ecc84aa30b12f2968e2adb626cced

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\bfac77ec622a97f8000f872952dbef0c600f56fc\ddaa977e-1bdc-4fa4-944d-f87086a637fa\index-dir\the-real-index

Filesize
72B

MD5
bd4f4a43c234f881ced3ee820ed2c4d0

SHA1
a6f1405d4a987a9e63d047e1b70fa4401de7e6bf

SHA256
4485c271ac76d2abdcd585d75bc0153b15a38513577857532af616a93989f7b4

SHA512
91262babd8b45877e26d81b418c27f3f79f073e5b93646b3967b35a310ae4e65789263be5ab95f1a723caa34e2c447f794c77efae0def6dd8e845de41ec148f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\bfac77ec622a97f8000f872952dbef0c600f56fc\ddaa977e-1bdc-4fa4-944d-f87086a637fa\index-dir\the-real-index~RFe588ece.TMP

Filesize
48B

MD5
cdc712b5ddf56b71fa95bac8b1aacabc

SHA1
c018a651e835e083452502c08d221dcad80059e2

SHA256
de4910283b50e1b20fe69f9311ae498e271aaba2a12690f41ede79e65f451c0b

SHA512
468ed338aedee439bf37f40c483cb4f0514ba508a72935de0c19640cac062e869688410ecfa252cd49ef9a5b009614a38922f2067174ad949a171b0eeacee594

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\bfac77ec622a97f8000f872952dbef0c600f56fc\index.txt

Filesize
156B

MD5
916f5570644b89b698ffab83c916bc64

SHA1
5fddc3b68a8d440c6153754e9795b1a774757a6c

SHA256
0db8e8ecaed62e7a71b2a2e9ecfcb645e17919da93b5034f6e27a5495c6126f6

SHA512
ce9a6d6a5bdcd77c2ad8a6dd5334404f9bc9be73ca04ec756201545fd83d23665f8138b2d789836bb10e83a9817e8820636017128531d97f282f83cabe2bd66a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\bfac77ec622a97f8000f872952dbef0c600f56fc\index.txt~RFe588ece.TMP

Filesize
161B

MD5
81d29b348254f3eafd67bf58a9bb36cf

SHA1
dd5f7637b28e9716386bfd4b4e8be61324701144

SHA256
8de2e3362ea0b32d372f299c97e77a25c131c6d8dae1b7aac1a6ca4022f8b599

SHA512
69d6971c02ea7cfb31aff0ead5a3598dcf69d1e1ec2c81e991c6404c1f2c2e79e1c20b2c5c4bf68b00a838a8fd84c8cf65ea3a5333274f5f6b6dbb4b53a6a0aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
144B

MD5
8011dbe208a19efdb7c2eebd38296ce9

SHA1
a9d738eddadddbd0a87b868437eb5abbf1b89a8d

SHA256
897cb338ef8e094451b8c4888f8f08372ef03ec107bd0814cbda729e56c719cc

SHA512
2ea5abaedecf08136aa85c97aad2265c1f946401509d6a5f3b41de094a45dabeb44a245103b75b1cf83fb116506fbc1d30af702d09e5a5ee4960ae6f0b794e83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5875f6.TMP

Filesize
48B

MD5
373e2c6fe6f955d7c0bd7eba1001a090

SHA1
c7b63a40fe04822dfb2a8ce25539ab016e024f51

SHA256
d92137d8308dc11ec8a6d7c696819be296c50cf719304642913e7510dab3bd3d

SHA512
bd3e39d3a0607c26b8cf8950a7f01e8c271bfc887a45ffebf02049c6fbff4dbaa3dd57f25918f7be0b52b40ab709c54fb35775fe3bb3316a683ea12c3385d0b5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
26145331e478539c78fef9c68b898f54

SHA1
1c53ba7d9c2d74ea609e28ea7c1e7657ac987f0c

SHA256
9a3cfd89280c3509d91e7e5c85405a08e13bb88cf6399e40d7764ffb7f64ac00

SHA512
e5070c870bbae8f28679ebc61e9827f160d3e6ddf23366dd74a6cda8e26beff59b957614fee887cff142e2aa4b3c01894dcca23c321f04a3b66cc6b74150f84c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit