hxxp://acmastersjax[.]com

Analysis

max time kernel
18s
max time network
136s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
12/01/2024, 23:48

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://acmastersjax.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2496	chrome.exe
2496	chrome.exe

Suspicious use of AdjustPrivilegeToken 30 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe
Token: SeShutdownPrivilege	2496	chrome.exe

Suspicious use of FindShellTrayWindow 34 IoCs

pid	Process
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe
2496	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2496 wrote to memory of 2204	2496	chrome.exe	18
PID 2496 wrote to memory of 2204	2496	chrome.exe	18
PID 2496 wrote to memory of 2204	2496	chrome.exe	18
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2568	2496	chrome.exe	30
PID 2496 wrote to memory of 2676	2496	chrome.exe	31
PID 2496 wrote to memory of 2676	2496	chrome.exe	31
PID 2496 wrote to memory of 2676	2496	chrome.exe	31
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32
PID 2496 wrote to memory of 2932	2496	chrome.exe	32

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://acmastersjax.com
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef68a9758,0x7fef68a9768,0x7fef68a9778
  2⤵
  PID:2204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1160 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:2
  2⤵
  PID:2568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1500 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:8
  2⤵
  PID:2676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1596 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:8
  2⤵
  PID:2932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2200 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:1740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2212 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:2544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=3288 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:2
  2⤵
  PID:840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3272 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:2280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=3848 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:2896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3948 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:2504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4080 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:1
  2⤵
  PID:1360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3724 --field-trial-handle=1252,i,8780914029917960487,10556466125054693232,131072 /prefetch:8
  2⤵
  PID:344

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2528

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

Filesize
230B

MD5
97645dbabeafca2937c65ab038c8b963

SHA1
573ffa519d309cec25379fa614f9755540122b22

SHA256
cbf1c6bee5c1e23772a9470a041e4857b4e2e5c5ed86c3ace1f731d9ad00a71b

SHA512
c87f1d0d38b79dd7e51245eb828a17f8075e84e03c0cda8fe90ee9dc844c9d99d7d858e837912e9b438625a868a8bd3d31b07a7a9b2143135de3ad88dc2dc172

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b1e70d3af51a580ec4d10498dfb0760b

SHA1
2c7e6c06c221dd5a071d60cb86c115584edb4039

SHA256
568483345c5f322db0e0a18b046b9bfacf7a5a8d4ee4aaf31755d2e1fdf96591

SHA512
d6bcc778690c86809b3c06b1f324ba70099f23b217b4349ba99f2344bfd82449437704aeea9f37d689dfd576e6c1ea97bd06160ebb8601065a24baa738358481

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6397921d65f84ed7204a96a5ba1a4190

SHA1
643a467101b6e0b071bcf8a48abc2819d78cce37

SHA256
99a90db214ef0c8767a4b95326e240f64c8dc8ed7d5d8f4118a63183693d0617

SHA512
8e5dcf50a11051e1afaf20376e928e6ea5424b84eac5705f6585d54762afe2bea2a65bbbb797b9163f4855dd28e94cb01f0f024e172d0be409112ca59d3e5fa5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c27706a915ea61a55be058894f5a1ae4

SHA1
5b18c968c3bd21036e7f967c7b80ecc7da01beed

SHA256
822cd702d108dad8f6907b4dd0db7d254cfd214d27b6e5cf351f19044e6af099

SHA512
b7310f0adc4a40813c7d5e3bde26e0e79e274347756d49d114af5cc89f51c5e45c3697f1d1e50457c95c09a3347a5582482bc6aa6523cac4e79daf10eb14229d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a10aef34d5e354b3eb54913e227838e6

SHA1
196f2daae206a1a0b2315634fea2d5d8ada643bf

SHA256
3d902c2634167b7576f3e52fe40ce9a9bf5b0c61401e36a3bccdafe16ee74034

SHA512
f6ca02465f84cbca5921a207ec8a11daeecbc413eddcfe532427795b6a38383d9a480a4951cc17dc6e0ca2c23a35842d16edc0149691a835c0929338504a25b3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
20b2001092a346de59a08e5bef081b6c

SHA1
857841a207349870352210063d7f928b1ababc9d

SHA256
b37b4de629932df4bc388da7e511e79a2eecdeabef05906a988d0f6f1048038c

SHA512
619d4570ba1b315cbba45bb6473ae445d9d4a834d6a907982ebe534cf378ba98941af4e856e6ae0b236c3c2f70990e75dbe8cdfe966a8d76872b7ebbd4be0d73

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4dc390bf32942d13f7fec0d6938eec6d

SHA1
f8024c6d7e02600da68880d17ebc95b96c8ad4f8

SHA256
7ef66061e142e020344622c3dbd4664e6430d9e01d710fa36af1ff835b54a73b

SHA512
e1c8909324e1e33b3fbb9c60cda689646891590c027382d69797d13cb05e526912051dda2cffcb27de8a86a8a95920a1d825ba98dd7260a95730acaccaf8679a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
40b943f331a9c35d6ecce3822a595d15

SHA1
57252ab2a5340c2d3945d56113dad765332f036a

SHA256
3b466d68d15db61211249721fe6eeb9390e2eae94247fd153b3410a1fd561499

SHA512
9526e86ea80459da1c45ecb2a67c33c624210d34d356d333b36c61972fc66676e820bf93a17e2b434ccec2593f9f18ab195aea76dd5bdd4d13e1fae54dabe531

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
77e75c669557fe6257a0d420361af32d

SHA1
5417850cef95b9e8603b8038a7757d06e15abc79

SHA256
9fe835a099052811fe30d081fd96c8cf3b2aca02b3b41fcd420518f8c7710b47

SHA512
e0aa33c3a52c3dcd5c589916a3c29fbcdce11d0fe2f6cddb8f021fca2d213456f3453faf12078e0fbfae6284710a77c4ef9374110955a7ca5a63614cb3fc346f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0ed38efbd43c9e581117e0aa23a55ed1

SHA1
a21ce577c1795f530c9e2beebdff56ab555c684f

SHA256
6166cedb147a574ef588bb5b5ee54bb173aad2972f0b10b3cf20c1f159447a06

SHA512
7834482226431d5f1ec8948bd19902646d1c644eb87f2f56e3dadb2355922cb4f564a03a73a80429fc9af065e5ebca986e1481a5716ae92ff8755286946072a3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d49b91056021c74c63a91b39481a18c4

SHA1
5a6ca5ad48c83a76e17085f83e78eb44a6a3b131

SHA256
b22d5a836c31519747b99abb6bfb1900c74bccd23c2705be3d74559147bf6c27

SHA512
ffb789e2f293ff5072f3ebba3d242ed291696da85aba9c541c6533393c63a8f395e5bc193e9142acdda1007c9a327e80090ef72ffe025b352b9b86d23e0dbc9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
201KB

MD5
e3038f6bc551682771347013cf7e4e4f

SHA1
f4593aba87d0a96d6f91f0e59464d7d4c74ed77e

SHA256
6a55e169bc14e97dfcd7352b9bc4b834da37dd1e561282d8f2cc1dbf9964d29a

SHA512
4bee876cea29ad19e6c41d57b3b7228f05f33f422e007dc1a8288fd1a207deb882c2789422e255a76c5bf21544f475689e7192b9a8a80dc2e87c94ee0bc6d75f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
c101a66c3ee97a4f6477ded27867b480

SHA1
c2836c6cea9a78c10f0623eab94eea03dd2a1b5c

SHA256
bde596b1e803e4df251ceb862890c2be75c591630819e7a87345bdb58b5d30d0

SHA512
c16322d6e1905beda0a3b71b707f075db8d9258d77b4fc9bb62654b323ec9675efe5e02457bdd20b8fe72c3b7600005182f03ea8df678f0fd3bda902fed08a07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
c6c686d15a78ad16e321a79d765cd8e1

SHA1
7625faca18238a53901798d117ea3d84a8294563

SHA256
d718bf73adb446206c022582c7aea36a33acb9d18e5a3941114fe6efbd1d36f6

SHA512
cc2c9fe1e145d2dd97f0e296546709a9df844db9afaa52df72942dd9157fa71f67bad6e5fb5ec6e9ae84987a04625cf611ff9689401b71f4ff90f9ebc16e9be0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
4KB

MD5
39e4e568d9d5fc74992ae7689c0f4ce5

SHA1
a4ff748e2a1ae7596d2f24e672734463855e3a7e

SHA256
dca34ab679e45b165a4d9b4bb5683af8341f3a7b0d94e39ef661658a8cbff692

SHA512
90d346689dedcf0a9c1ccdc55c13f022d112e683a4c1a8ec88b860378a3cbfc57954b81107f659e26444f409c8c21a9db7db7a941ff3c2e1366b6669df63432b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
554ee330206ee91aae38b852542682fc

SHA1
7990965dfae30e158d333b929d29b9c4a568afd3

SHA256
ee8180ab8e656c3685d7500f9e1bcb7026344c97d812a976a9438a7ff08f34cc

SHA512
14fd0b45f7df29fc91c2c52b06147cb01e25d5b29f8ad5ca0cd28f279e74ac62154212eaabc314024462c5cac6cdbe7b00237d2543019ed3e95a82698efe912a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
6089953fdc110b2a72c875f62d27fee1

SHA1
684f9b7e4d70ebeca654d173db2c993c3a62d75b

SHA256
e7486140d6b8f0e10ea58e92d0a8870e171c17cb8ab1041ad22a42fe3b0bc1b3

SHA512
1a4757599fedf239f2b73a890d574a172cbbda947641f2d309c763cf04807f14c0c0bcc78f398bcff827eb9d77fc82b8fb7609a35b2e9ba938e6c353bf80cce5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000007.dbtmp

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab6347.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar6EDE.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit