Analysis

  • max time kernel
    125s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    23/02/2024, 11:50

General

  • Target

    lucky-block-fabric-1.20.2-14.5.jar

  • Size

    1.9MB

  • MD5

    cc2c2578f4218a943f7203298fe01254

  • SHA1

    89e225fce3f4e16b89db3727cb177d52fcaec8c9

  • SHA256

    40a688975e4975aaef91863c415d2fd696d2245bf799319f0fa77b5ccbe1aa66

  • SHA512

    b2db07ee5adbb142797408dcb5f5d9cf702bb296eb8cde47475911b27db3d9e0fa39f6cd83ab69b7ad327eb325f52e4db7e6b23097b3d9783a3ade229d7777cd

  • SSDEEP

    24576:yrFh7EzOWJxG3zv/i5byJ59U5MqTJndF6H0L+Z2Z7t/dC7YNGJuu1JS88bOmoWoD:yrFh7iDxG3f9039n+HS5cYNGJYRymZUF

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 34 IoCs
  • Suspicious use of SendNotifyMessage 32 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Windows\system32\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\lucky-block-fabric-1.20.2-14.5.jar
    1⤵
      PID:1724
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe"
      1⤵
      • Enumerates system info in registry
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SendNotifyMessage
      • Suspicious use of WriteProcessMemory
      PID:2664
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef7409758,0x7fef7409768,0x7fef7409778
        2⤵
          PID:2676
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1196 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:2
          2⤵
            PID:2412
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1540 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
            2⤵
              PID:2448
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1628 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
              2⤵
                PID:1048
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2328 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                2⤵
                  PID:2900
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2316 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                  2⤵
                    PID:2888
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1196 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:2
                    2⤵
                      PID:2080
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=1396 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                      2⤵
                        PID:592
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3528 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
                        2⤵
                          PID:784
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3704 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                          2⤵
                            PID:1388
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=908 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                            2⤵
                              PID:2872
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3380 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                              2⤵
                                PID:2228
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1076 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
                                2⤵
                                  PID:796
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=1368 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                  2⤵
                                    PID:2456
                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2564 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                    2⤵
                                      PID:2952
                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=1056 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                      2⤵
                                        PID:2004
                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4032 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
                                        2⤵
                                          PID:2412
                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4204 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:8
                                          2⤵
                                            PID:1668
                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4156 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                            2⤵
                                              PID:1640
                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=4364 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                              2⤵
                                                PID:2948
                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=4256 --field-trial-handle=1244,i,2152761395656830664,10943853538837890143,131072 /prefetch:1
                                                2⤵
                                                  PID:2280
                                              • C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
                                                "C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
                                                1⤵
                                                  PID:2940
                                                • C:\Windows\system32\AUDIODG.EXE
                                                  C:\Windows\system32\AUDIODG.EXE 0x56c
                                                  1⤵
                                                    PID:1824

                                                  Network

                                                        MITRE ATT&CK Enterprise v15

                                                        Replay Monitor

                                                        Loading Replay Monitor...

                                                        Downloads

                                                        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

                                                          Filesize

                                                          344B

                                                          MD5

                                                          617ae9a7c6f6e5cda04549d78487327d

                                                          SHA1

                                                          abbc85c853392f478c0590a534ff0dc5a64c5d38

                                                          SHA256

                                                          01f33fcf7e4753f44bcc40687d67009b1f9d280333e8840ee74cf4169b2225c5

                                                          SHA512

                                                          cfbe0829d678d522ef3c065114acee9e62333acaef7cdba40caccbd1f8a214f83b54df515daf068e95a0c1accbbd88ba7713742a984487123c137fefe97895a9

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\7916a7c0-b5ca-45d8-a29e-57b8f0012035.tmp

                                                          Filesize

                                                          6KB

                                                          MD5

                                                          da7904bea2e86182ba278c1ad0605e6a

                                                          SHA1

                                                          123c403983fe54303a234cfde373cc60971a42f6

                                                          SHA256

                                                          478adfdc552d3070e1c5776b05b689895d97652cf0aa6c88898d7d622211d560

                                                          SHA512

                                                          e1c5253d0f5b52ff3a1d7669a61d7bff4683b4bff6247b0cb0d0d5f26f376c220868158bc8bc607da4b426a3598485bde5ca7e6fdfe812ef345c390082be4f5d

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

                                                          Filesize

                                                          195KB

                                                          MD5

                                                          873734b55d4c7d35a177c8318b0caec7

                                                          SHA1

                                                          469b913b09ea5b55e60098c95120cc9b935ddb28

                                                          SHA256

                                                          4ee3aa3dc43cb3ef3f6bfb91ed8214659e9c2600a45bee9728ebbcb6f33b088d

                                                          SHA512

                                                          24f05ed981e994475879ca2221b6948418c4412063b9c07f46b8de581047ddd5d73401562fa9ee54d4ce5f97a6288c54eac5de0ca29b1bb5797bdac5a1b30308

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003a

                                                          Filesize

                                                          19KB

                                                          MD5

                                                          8d5a29da38f6a618f0e1eb3f5b1e26be

                                                          SHA1

                                                          1eb26474ef2908d939d8cc3da670e55ef8418219

                                                          SHA256

                                                          f9b094a95d2c3a0586c7b8638a4cfa73ae68e2f6164343806b750ca33e337ad1

                                                          SHA512

                                                          ec471da2cdd6a11248c85eb3dbf5bffeaafd11d5fb76043df0a294f27266b94eed4edd8041ce7eaab11c5337a7436d11fcffdec818280b1ddbadbbaad9874c50

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\338f7969b5e6f1c7_0

                                                          Filesize

                                                          3KB

                                                          MD5

                                                          a7060a6c6940f77db04413fd2f7c68fa

                                                          SHA1

                                                          327c8859501971d5df52c44f3b965fb50b6e1a01

                                                          SHA256

                                                          a588915b698f8218c75f02a79cf6c007d10b2a95878d4977b31a0ed14470fd39

                                                          SHA512

                                                          dcf9ce335af4eb9bd5ed88f15cef2c6bb74203c9a127202925bf040bb2090a6c60b3eeb2127480101acb886928a48a93a6ca6a5a87c8aebb30c74271a8063031

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4323da4b53d280b0_0

                                                          Filesize

                                                          51KB

                                                          MD5

                                                          3697526b725dbd3287d802b8193856a1

                                                          SHA1

                                                          4d90e19ed3d2ee685d2b0b9f92370df33c651409

                                                          SHA256

                                                          04b565edf048cc6c7a9bf59bf68a148f387d3e2ac213bd1533750acafaca77c6

                                                          SHA512

                                                          7558fd140e15e5df0ae228dfc96d024c50ace987ce8936571e6686499d8276fb9c7c9ef30dfcefded32a8b4dc2319fd8bf3d4ed1106716510875fb0cca2e99b4

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\51105c1fa2751288_0

                                                          Filesize

                                                          321B

                                                          MD5

                                                          86cf248191a6a840c5d0387c5f9c8ebf

                                                          SHA1

                                                          925a599332c1e9716605104106189fd2b082253f

                                                          SHA256

                                                          c42ea06656b3036d991d01e652af016c3e7fcbdc71030de9fac271e58c107996

                                                          SHA512

                                                          bafa6aab3d92f98377d27d6096537aef2650177e4be2a6ffda38854fed178edab87a0efa631eacdca4a637531a84ab0c6fa6a817beed8e65d3f670902f26799c

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5d5e81352161cda8_0

                                                          Filesize

                                                          32KB

                                                          MD5

                                                          7fc8ab85ed4d47c39c7d4b0947c6f3a8

                                                          SHA1

                                                          0973252cd58bbeaa50f148b80101c1fb286e2c47

                                                          SHA256

                                                          ed24eb864aec3899625cabcb647b0954ba3d74e62aee644975a58e11c13266eb

                                                          SHA512

                                                          6d4652917b8adfe0c59555bf6217496582fd13de52d9a1388daf16e70408f7c95909c96bffa3dd12e374364bc761cb36feb1e498258a3a607b25c1330548b812

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a589395ce1888182_0

                                                          Filesize

                                                          3KB

                                                          MD5

                                                          001279899150eb233437dff13ec9df40

                                                          SHA1

                                                          13e8ffa818ec673d3dd11ed7774ad65671d20116

                                                          SHA256

                                                          579b6f7d51c4e02e58b029a8b43c5d26faaf3071036aae54bad93f8ff2525851

                                                          SHA512

                                                          d743e73e3f62b4d6153a559330f32cddc379de70549aac4dc2ca94c80403d0627ba07d3a7c857cb80616e57ecbad258d82e81822e9d7366ac7c9eac8fc63ae05

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ce10ff5dc074691b_0

                                                          Filesize

                                                          292B

                                                          MD5

                                                          5c2d1b22655ae1f4039cb16a5a3f886c

                                                          SHA1

                                                          21bb03f3e42f15c63263754d723ba7574fef81fe

                                                          SHA256

                                                          47250670747516adcc08502c2a9b4d9dbb811c7db9aade83a2b01532bd203e31

                                                          SHA512

                                                          2297a65ad3f102431e48d8a42592757824e97a26e1702104c595819436f4d9c6c9919d3649bfe5f2c016562c299cd04a0f50ba335dd041f38bfc36a776d3b923

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                          Filesize

                                                          168B

                                                          MD5

                                                          bf7faecf20f4a36b284609b093e7a1e0

                                                          SHA1

                                                          db7aac97fa11fc09cddca4665f4df7ce53f8c895

                                                          SHA256

                                                          d67a5e172547bb1d6725a4a3d0aaf2be2a1cd80fa238c6e5daa37739ba6f717b

                                                          SHA512

                                                          d4c23e8de4d5839a5fc9a44de295520c58cbf2a8c691dfec4629fc933841cb0c4ca0bbd6b84f6e340ddc56e3872938899feed2498560a063f6a3df9343af5a31

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

                                                          Filesize

                                                          264KB

                                                          MD5

                                                          f50f89a0a91564d0b8a211f8921aa7de

                                                          SHA1

                                                          112403a17dd69d5b9018b8cede023cb3b54eab7d

                                                          SHA256

                                                          b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

                                                          SHA512

                                                          bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\MANIFEST-000001

                                                          Filesize

                                                          41B

                                                          MD5

                                                          5af87dfd673ba2115e2fcf5cfdb727ab

                                                          SHA1

                                                          d5b5bbf396dc291274584ef71f444f420b6056f1

                                                          SHA256

                                                          f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

                                                          SHA512

                                                          de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000006.dbtmp

                                                          Filesize

                                                          16B

                                                          MD5

                                                          aefd77f47fb84fae5ea194496b44c67a

                                                          SHA1

                                                          dcfbb6a5b8d05662c4858664f81693bb7f803b82

                                                          SHA256

                                                          4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

                                                          SHA512

                                                          b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\000002.dbtmp

                                                          Filesize

                                                          16B

                                                          MD5

                                                          206702161f94c5cd39fadd03f4014d98

                                                          SHA1

                                                          bd8bfc144fb5326d21bd1531523d9fb50e1b600a

                                                          SHA256

                                                          1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

                                                          SHA512

                                                          0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT~RFf780d4a.TMP

                                                          Filesize

                                                          16B

                                                          MD5

                                                          46295cac801e5d4857d09837238a6394

                                                          SHA1

                                                          44e0fa1b517dbf802b18faf0785eeea6ac51594b

                                                          SHA256

                                                          0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                                                          SHA512

                                                          8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                          Filesize

                                                          361B

                                                          MD5

                                                          0cee06591350e042f88f27994bb612dd

                                                          SHA1

                                                          be1deadb08087490fcc99c66f6cdbf4f49ca5c33

                                                          SHA256

                                                          13a7f1aed3a66a2cf27277129a5809206cc908813a8a44e74c1112e8e0d6083c

                                                          SHA512

                                                          a8e4f67cab42b998d8f29896c98edc61fe8fb43b16256837e4fd52e02ff64b787d3b9e58d0891a5cdb3c470231dba352f2cb0d930701ec0e1f60d2e8b463d4b9

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                          Filesize

                                                          361B

                                                          MD5

                                                          aec23f0be8c6d0a73ab9ea73137a609e

                                                          SHA1

                                                          0d90e2e545f17dd0a668f60cb683fdcbed659a95

                                                          SHA256

                                                          d2ff518e561babbead46831aa858b2a0b158e0f269fffc3e633ad27282433bd6

                                                          SHA512

                                                          9bfd33fb60e32a6e1d216437bba80a84dbcdfdd8ac3f54104cefa1c84dd36d94a87cc266f21fc2cdc79ef8814f81b67a7da15eab2015b0914fa77c9aa775962d

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                          Filesize

                                                          851B

                                                          MD5

                                                          8f8945a45eec8b71a45e04b1a479c38a

                                                          SHA1

                                                          ba526d370381c0bd63e744cbd7b9ac5f20a5b277

                                                          SHA256

                                                          e5cddb9f8dd354aa6d31112a486ebefdf66b6c41347f325148749a095a9ad54a

                                                          SHA512

                                                          51d324dd8c3e94bc9945099b8b4b19379858b31f0548e749ab0083d1a1edb779ff7657676427e45f4bc619b7cf7b64f2c397d5fd0147d9a5fe753d70516fff72

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                          Filesize

                                                          5KB

                                                          MD5

                                                          b6aa80edfc3e4f5fc394b0d4e206e66a

                                                          SHA1

                                                          1b55bfb7a802460613ad3f695a5df6d4e2027bfe

                                                          SHA256

                                                          4de4b4de6d05c3583a9d3177bbb74259a780afaf531c982f0b3c9e8405d1548f

                                                          SHA512

                                                          42ba1b0535e668e44cc4eec448656b24ba3ad358e9c04d5a757820f6c240817c5ca55eda904f96a2c8cefdef1ea6a0e1ff30ccf73bf066f862a059c2cecf15ef

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                          Filesize

                                                          5KB

                                                          MD5

                                                          713e8021c0bfa5e09e53ce26d653448b

                                                          SHA1

                                                          57bcf5b6b415c725f09ddb2748baad82c0fd45ea

                                                          SHA256

                                                          88e7bc5d730d485be74ea316f405de99e38ca09c6c0d137bb0e28431120f3170

                                                          SHA512

                                                          28e2f0913c48e7f96b9acb9b64c19a7432cd7955a49299eba1197ba33859ada4184db03c84d40b2e1cf5601e98597db68d3c4381556adb98a61e5b250f7cb5f7

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                          Filesize

                                                          6KB

                                                          MD5

                                                          531404f66c7bd531ae6a899c736f9fec

                                                          SHA1

                                                          c57b75c00764a5892a7e3f705737102ae35b2d7b

                                                          SHA256

                                                          7baa7d7c0db2aebd9d1abba42ce9fc0c92d8c675d3641805fe1b8f4dede18f49

                                                          SHA512

                                                          3de90dd165e7c586179603e5e93f80a61509d6f7385bfacd8ad09eb94946dd8ef6753712fdf592d4a6a6f4e05c070b093c3611ac26ad726bb0873b66cba134d3

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                          Filesize

                                                          5KB

                                                          MD5

                                                          0ded3d626d92de0519b889818221bb5e

                                                          SHA1

                                                          8624884bc616455e13261535f51b3075405983b9

                                                          SHA256

                                                          c7e404e6b835ef2ad62b3ca57757964b80a940db35db363c48f7074853f32122

                                                          SHA512

                                                          269b4c9bf9ca7ce50761d89ccaef71a7eb9e2ad7a059e1efcdf20e14005b09492259aa07112d8381aa4564887f6bb7541d7da33b4e9a0aa9d1f0b6f8eaeb5254

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000007.dbtmp

                                                          Filesize

                                                          16B

                                                          MD5

                                                          18e723571b00fb1694a3bad6c78e4054

                                                          SHA1

                                                          afcc0ef32d46fe59e0483f9a3c891d3034d12f32

                                                          SHA256

                                                          8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

                                                          SHA512

                                                          43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                                          Filesize

                                                          256KB

                                                          MD5

                                                          ac039bec00243356a82d8621bc0a7d93

                                                          SHA1

                                                          228c019d691ac529ce291cc8d12b4dc11395968c

                                                          SHA256

                                                          49faf0d761fb16f049b0ddad5566432e98f76352da238c8baa9122aab0400836

                                                          SHA512

                                                          7188bd9f737f1f187cc7d756c9e7c99a5c6ad6f94d4c0e22cd2d1c3e1e8e8fa6f7196727ec0ecf9b14d71bfaa424657910817a6dd768fb08c13375c6aeae6424

                                                        • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

                                                          Filesize

                                                          76KB

                                                          MD5

                                                          c6daf4068f3c7e3a95d17506ca01ce6d

                                                          SHA1

                                                          47e0cbd33a7df064260301a65e3454d4d652d9d0

                                                          SHA256

                                                          92098afbbf998035581c30d63db893c66acb3f0e2a4a9dca7683c4d712b8c020

                                                          SHA512

                                                          015be1f6046f1651fabc1968c59220123c93e72990a937a3cd9e7a480b37151b131b8fe671c330320e2b08bb2ed9776e8c9a2474f8e7fca2e5e3e13d180503f9

                                                        • C:\Users\Admin\AppData\Local\Temp\CabB608.tmp

                                                          Filesize

                                                          65KB

                                                          MD5

                                                          ac05d27423a85adc1622c714f2cb6184

                                                          SHA1

                                                          b0fe2b1abddb97837ea0195be70ab2ff14d43198

                                                          SHA256

                                                          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

                                                          SHA512

                                                          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

                                                        • C:\Users\Admin\AppData\Local\Temp\TarB61B.tmp

                                                          Filesize

                                                          171KB

                                                          MD5

                                                          9c0c641c06238516f27941aa1166d427

                                                          SHA1

                                                          64cd549fb8cf014fcd9312aa7a5b023847b6c977

                                                          SHA256

                                                          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

                                                          SHA512

                                                          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

                                                        • memory/1724-3-0x0000000002600000-0x0000000005600000-memory.dmp

                                                          Filesize

                                                          48.0MB

                                                        • memory/1724-10-0x0000000000150000-0x0000000000151000-memory.dmp

                                                          Filesize

                                                          4KB