hxxp://burgs[.]io

Analysis

max time kernel
153s
max time network
157s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
22/02/2024, 20:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://burgs.io

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133531071490816786"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4928	chrome.exe
4928	chrome.exe
1588	chrome.exe
1588	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 8 IoCs

pid	Process
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe
Token: SeShutdownPrivilege	4928	chrome.exe
Token: SeCreatePagefilePrivilege	4928	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe
4928	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4928 wrote to memory of 808	4928	chrome.exe	77
PID 4928 wrote to memory of 808	4928	chrome.exe	77
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 4176	4928	chrome.exe	79
PID 4928 wrote to memory of 2800	4928	chrome.exe	80
PID 4928 wrote to memory of 2800	4928	chrome.exe	80
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81
PID 4928 wrote to memory of 4556	4928	chrome.exe	81

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://burgs.io
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9f8af9758,0x7ff9f8af9768,0x7ff9f8af9778
  2⤵
  PID:808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1564 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:2
  2⤵
  PID:4176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:8
  2⤵
  PID:2800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2160 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:8
  2⤵
  PID:4556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2928 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:2024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2920 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3876 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:3136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3044 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:2284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4860 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:8
  2⤵
  PID:732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3864 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:8
  2⤵
  PID:1464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5028 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:2872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3996 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:3836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2608 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=2732 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:2936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5052 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:1
  2⤵
  PID:1004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4100 --field-trial-handle=1792,i,9688863398764864621,11522604757502276097,131072 /prefetch:8
  2⤵
  PID:1312

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:4588

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\00071f4a-4ea1-43e5-93c4-29d39518a2c7.tmp

Filesize
6KB

MD5
f9d974bfec4e4e64862af31c8045c1c7

SHA1
3b06f770da81fedfdbd0efd5f30a35fd244da2fa

SHA256
4a9546cb457b7a4b040b97838f3af63b38d4764182c5b6ab38ccd6af0f44b826

SHA512
ee3b17858346351a0ab286728116c5e6787a0a87dc310d87636c019b5c444737f931b8ec8d10d817c88f6c7249dd957a92015fc0b7ad80d9e41378f35736d95c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
195KB

MD5
873734b55d4c7d35a177c8318b0caec7

SHA1
469b913b09ea5b55e60098c95120cc9b935ddb28

SHA256
4ee3aa3dc43cb3ef3f6bfb91ed8214659e9c2600a45bee9728ebbcb6f33b088d

SHA512
24f05ed981e994475879ca2221b6948418c4412063b9c07f46b8de581047ddd5d73401562fa9ee54d4ce5f97a6288c54eac5de0ca29b1bb5797bdac5a1b30308

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

Filesize
24KB

MD5
b82ca47ee5d42100e589bdd94e57936e

SHA1
0dad0cd7d0472248b9b409b02122d13bab513b4c

SHA256
d3c59060e591b3839ec59cad150c0a38a2a2a6ba4cc4dc5530f68be54f14ef1d

SHA512
58840a773a3a6cb0913e6a542934daecaef9c0eeab626446a29a70cd6d063fdb012229ff2ccfa283e3c05bc2a91a7cac331293965264715bdb9020f162dc7383

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3e85aba93c4e741a_0

Filesize
280B

MD5
90fb8ac88b43bd66b6be81c38e9d873b

SHA1
1c0a646e1fe49ef1e7566b04ee012323c463e74f

SHA256
cd8bc38a79c17dd4d28a259b703fa339b37890f90fa9f10be84d2cee706a4c16

SHA512
a99b0b760afa5269e16861c3e613a3b9b2baa7608f86d0e08e7b3a2c0ed8321345e64fe507b37d3a7abe3e80aade063a725ccd2c6b85a723959385e10f1646ec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\95cff906a6740dd8_0

Filesize
18KB

MD5
d0ee43b964a1bd123840551ab5cf5cbb

SHA1
bcde1dbf6f1127860ae366f73614680820a06bfe

SHA256
02052f3d3f186aa13fecfbc67269fa3fb509036da1af7f6796efaf43b1d06949

SHA512
5ec58abc1c8138b164d1a44f43592b1256bed0975117aa6576bab69917897fef0283bac6091a6640ae82c53b13fd63d4c6545c3cf6b422bf799d1f7bd076b0fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
8f2300de6f55a7e134e1093423ef5884

SHA1
aa6fd62f9197389990f35acb22226de507bb96b2

SHA256
1cdc41292d54268ec6a50b92ab64f009d0bc8eeae3e330187704ba56106e0541

SHA512
96ce0e803f38c2226a53264eb9da372c6014e46a6d18004c792574a8a928aa55d35fc3cf6008839a9081057ca5366d09dcae919bd7685d1a54d5cc32ce7425a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
a7d02d919ff5bb8fd611bc255841ca7e

SHA1
c95ec1272f1e534b4e316e2fc9675778ee43a5e6

SHA256
d77fb73e76a4c7519e7ffe832f3e377e6faacf510cd26b0dbbd547f323edcfac

SHA512
59ce3d2159226e6eced6884927c26de5c9339410432901c34bb0a50169f4cb8fd4e2e54e3ad3d4ed89e6c7d62aa4e73685a70d0f87e9ee6fe37023f0794c1b53

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
d329c325b8fb7c3af72cecb5d34ad102

SHA1
f2573ae3afad14bc2d959a42ebcf9b43821a4c0f

SHA256
66262e9f0a3f252fb772a7bffbcd65b30ad4347c4197590c50068329532f6b2f

SHA512
295a2238041a4ec697d6c34d8fd6282163553c96d9ad5a855620e4fba86fd3e3c15300714f0aa172f3d27c37ab716f1f736b7e0c9b80088d8bc758f91c619e10

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
d77ec1a459f569ebcab4a7eb56e79637

SHA1
170c64d07c188f59bb750c99be3c5e628de20219

SHA256
44ceb9f22953bf313063314891a19e2b49bdd882429eb68fe59a99a2c9bcae57

SHA512
7225e6ec13017bf26c3473a306ded7c9c685d59e1a4f8011516243d9f2508c168a767030d3c91cc1c27ad775e062ccfc9185de75dd55c568c41b982bac715848

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
667da2c2778507fb6fb79012a1416eea

SHA1
43a884fd6e10f65579c8aa3d84820a97c040e3de

SHA256
7a27ecebea9624b66769e91079bcb10a3bc6110ed4492d1ed614cd6d06b0f5a0

SHA512
7ef44d7d934214db4b1696b3a3e8c3d3b496c4d073092694e5d77405c2f1d91052edc07b17a3dcf2730aec678b529b1b59709cd48cc46b5e7acb26e35341c5ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
1624413241801e0c71533bc2311d3936

SHA1
39266dbd5ac1da5bbb5a841327099aeb61ea7742

SHA256
d52662820ae961276bd1d4899eb11b20918895720d1306f7456906a0405bd9db

SHA512
908ffadf910cd2f7e06f73d583e3b3f694002c23728b0e800e1bc6bd34f37c69a836a7590c66630437e8a2d39bec7777e7a414a838001aad03f5d9bed0c17a4d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
19f26c447ccd92713d8767686e8c647e

SHA1
ddf8e309790c4757456f8550f0f2b67f325e9c70

SHA256
7e22421f7cfea92afa7bbdfcfd9458c3df3bfa4669e9fab63dfc276874db2340

SHA512
266e725caa734d59d632b7bc98fb31d554805ea0b16b761ec1d4c1adf6e3dc0d95cd1aa5ccb355e7fae336b7dbe628712abc967ff9b9a8779959cfbf9748c30f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
f65ae85e3125d519b2540a4ef504a7cc

SHA1
d26ecff3925267cf38515ed65c307405e06f0c6d

SHA256
f7bbce1923d73b043bf03593cdc8fece50cbd2d4360d780d470626fba72d1211

SHA512
156107c8a7c9d8a4d426d866d0aec269dcc76f67504f2338359a8c69fd6acd19aa7fbc308e48f2720710db1cf4d2530288795b6048ba7bcbabb4eb18ce21b70d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
9f44a425b8b9cea01982676064600bb2

SHA1
a6fee929be6222b637a7c8532f5469dd499ffa10

SHA256
66c338728fe912d33eedfe52da15e64dcd06aaae0adca072d082135c724ec483

SHA512
c6b2870774aa29c57c3b8c50e9ad81c6a573509e757f8b74a70dd9d05d1307d47c0d10ef5736b3976663ef417aa5f7614abdb818243dae905a0e4de917613d1e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
6c20ba1cd27cda5155cf9b5ab6ccb788

SHA1
d78a4c5283b69546448caa39d1eac1d6bed73062

SHA256
1b23ae34d0c47754c09bb0f4461755d9508b69eb032d3a5aa67adcb93f055066

SHA512
9b7fb3342b22378b87bcd7fa804d23764bbeea7850ca3a0568012537425b37571cd4ccf3e3b5ff8416cb7a12a30dadcdfd5965873d4feefffe542e4c6fc4ce7c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
256KB

MD5
6a6ce82dea20a29323792bd9d90ab133

SHA1
7efd2ff1908396e9fe9349551600a6d4e2d44c18

SHA256
f22150f9b8f4b57f10f41af05c7472dcc43cfa0c4429b6e2625d8bafc3a41fcb

SHA512
d78d6a3f3274c6e303e418113b179879c215013ad38a0beba0493de4b35e65a42ff7750187976728f0583f151e530101706c2855b6ffdcf385bf7a20e6c2792c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit