a228ce48ab6897a582db1ccc497a353ccf19c4357150fd5fd2a8b76d726cf71e

Analysis

max time kernel
1050s
max time network
1041s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
28-02-2024 19:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sample.html
Size

17KB
MD5

701eff5df12c110b52c9348b42c71a77
SHA1

3389f4a6b61c8afed6c9fc7ea5e28aaa3be2493f
SHA256

a228ce48ab6897a582db1ccc497a353ccf19c4357150fd5fd2a8b76d726cf71e
SHA512

ec640ae76af411d58f0eb76471f2624935c39a57ca2bf7c9e45483ab6b7740047b78f90a41d1090c97344110beee7141a7fb901f8d1363b7fd60f05c6d645164
SSDEEP

384:riMtTvjFKDpmReVoOs4qN9ylKeGMVU8HhhbhzM7GBN2weVpPMVJCBXQL:rLTvjFKBVoOs4qryI1M5BhbF6GOVGJQu

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133536222769452779"	chrome.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
2776	msedge.exe
2776	msedge.exe
4448	msedge.exe
4448	msedge.exe
5036	identity_helper.exe
5036	identity_helper.exe
1888	chrome.exe
1888	chrome.exe
3888	chrome.exe
3888	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 21 IoCs

pid	Process
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe
Token: SeShutdownPrivilege	1888	chrome.exe
Token: SeCreatePagefilePrivilege	1888	chrome.exe

Suspicious use of FindShellTrayWindow 52 IoCs

pid	Process
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
4448	msedge.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe
1888	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4448 wrote to memory of 4348	4448	msedge.exe	60
PID 4448 wrote to memory of 4348	4448	msedge.exe	60
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 1364	4448	msedge.exe	89
PID 4448 wrote to memory of 2776	4448	msedge.exe	88
PID 4448 wrote to memory of 2776	4448	msedge.exe	88
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90
PID 4448 wrote to memory of 2144	4448	msedge.exe	90

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\sample.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4448
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff88be146f8,0x7ff88be14708,0x7ff88be14718
  2⤵
  PID:4348
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2104 /prefetch:2
  2⤵
  PID:1364
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2528 /prefetch:8
  2⤵
  PID:2144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3232 /prefetch:1
  2⤵
  PID:3000
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3240 /prefetch:1
  2⤵
  PID:392
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4948 /prefetch:8
  2⤵
  PID:2284
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4948 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5172 /prefetch:1
  2⤵
  PID:4032
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5196 /prefetch:1
  2⤵
  PID:5076
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5640 /prefetch:1
  2⤵
  PID:4144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,12415931445233189496,8118604616236697392,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5616 /prefetch:1
  2⤵
  PID:3276

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:388

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1876

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:1888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff87cd09758,0x7ff87cd09768,0x7ff87cd09778
  2⤵
  PID:1620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1768 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:2
  2⤵
  PID:772
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:4140
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2232 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:2452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3008 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:3324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3000 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:1060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4624 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:4560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5092 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:4720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5180 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:3188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5232 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:4892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5192 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:3560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1220 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=880 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:1632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5904 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:2856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4900 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:4048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4628 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:1744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4064 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:2132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=1604 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:4768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6064 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=4768 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:1628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5540 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:3128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4560 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=4108 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:5056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=3844 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:2376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=3172 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:1
  2⤵
  PID:5040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3004 --field-trial-handle=1912,i,2672734570641618997,16784940931852334932,131072 /prefetch:8
  2⤵
  PID:4312

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3852

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\2f71ca60-59f8-4c1f-9282-45e65d339c2d.tmp

Filesize
6KB

MD5
9ac0fc4d153b8776c36f4a3f1e9a8d68

SHA1
439db36c86294d2d563585ba57f65e1f7c0a5cc1

SHA256
3528f3eda5440944c0a8ccd94459231f04bd5b6c532b53281dbec4cd549cdf3d

SHA512
b9b87cef9f5ce8881fcb0e91107e1e2c78805d6678734b54c067b449516cb3c80b0a4ee6825fbbf0a027379873d93b65d8a0abce4b5dd3f204cdd87ee68c31dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
195KB

MD5
873734b55d4c7d35a177c8318b0caec7

SHA1
469b913b09ea5b55e60098c95120cc9b935ddb28

SHA256
4ee3aa3dc43cb3ef3f6bfb91ed8214659e9c2600a45bee9728ebbcb6f33b088d

SHA512
24f05ed981e994475879ca2221b6948418c4412063b9c07f46b8de581047ddd5d73401562fa9ee54d4ce5f97a6288c54eac5de0ca29b1bb5797bdac5a1b30308

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
20KB

MD5
923a543cc619ea568f91b723d9fb1ef0

SHA1
6f4ade25559645c741d7327c6e16521e43d7e1f9

SHA256
bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd

SHA512
a4153751761cd67465374828b0514d7773b8c4ed37779d1ecfd4f19be4faa171585c8ee0b4db59b556399d5d2b9809ba87e04d4715e9d090e1f488d02219d555

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
74KB

MD5
8df64f08312fc0ee3a80b8358ff94c4e

SHA1
55688d2fb73a0125518c0ccabeddfff6d3c4ef25

SHA256
3feaa14533284f5713f8e2d85145f453186a16574ac7e47bec897c72eb2f7096

SHA512
36ae9ee70558e1f94579905532f646277bace1ba80a1f292b5a284099296031588c2bcf62e7515538ebcfc84db9af7b9e90a3c615cf2f4a8bd59c2b5a8c2ce65

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
40KB

MD5
d2d0c427f1d093c36a9fd6751a9a9d61

SHA1
dbd596ab1f2256ed3e3816be5eeb75d34f38f821

SHA256
b37bce0e0f504a7b54d3a01007169d4126c2a401be8f93afe35f665e62c3e34f

SHA512
b8418e074df9619ae62461b5c42fcc42d2ffb8b099e09ec0271bb481f8e1ad8d7655fd5149d8abdbce1d35226029f200623574946d6223df1c9c14c7824d63ca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030

Filesize
317KB

MD5
b204ba0cc1b65ea6191886121ab20c1e

SHA1
bed8ee740d40b7933f15ed19fa5f002a1f98082f

SHA256
ef0ffc41b42976432c64859f524ee8b673e01f888955a55d2c66a3f117da8d4a

SHA512
dfb2b9664506c325cd0de67dca4a901b0350055ff0ebc082fb7399957c708e2a17f96965bc1feea0b29a457b5585144f97d33bc598e4b3d4fc9aa0549a5b03e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

Filesize
130KB

MD5
0fcb50286722571ab41d9ef2841981e5

SHA1
c1bb1e5db1d0a6d733bcdc930415144e6e2b86d2

SHA256
499206380f1a688560cfad8c5752b6c8471b75de40e4a514f5f7f992fc028348

SHA512
051b1cc57cc2a69c6ef8057d9960d39f4a569965026bf6d3620f4e190f8c0129dc2a4998c12c2eeae08550454d06f23ba1821f87ebc238b606521b6b08a1358a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
a61517d12a0b8018638447a236bac8be

SHA1
ad271db7df5661fd7ad26ca30260d3422058d080

SHA256
e6e2448efdad2fdeba695730ad3dacbf729d27dd921958a15890b92d7340bb46

SHA512
4ff22b8c52e7c13274c0638ce39733cab2feec3572878cbe6a8a6a8f9820131a435010aa5e4ab5a03631d8abb3260d2efe3e42df9d1e03d56f48494ab32675a6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
3027a8c1539b3bb6467ffef802088429

SHA1
1f41270c3e345e754c3ec6f27b0cbb89c99ba24c

SHA256
b8e2d78947a828c4b2580caec205a53fd33937129a9a746b6ff6fe24337b23a5

SHA512
736c4128c775fc145cef2c4090b03efd8b5d20e57fd510de918e9533bb93c4824fd6fdc7fc23a8c5d657061c43e4d39cfa327a0a4ec3e02c55a4650a50ef3db9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
3a653c6e3c1f1e1641e2a39cb9025693

SHA1
a6a4acf45d5a1af4aefe584a1eea225a77c038d0

SHA256
c6f502c8bafdf5d515d980cf353c08de551531c6f919bd25f1c34682646ceae4

SHA512
35c243f34da24ca066c1f62aa04fca11479476340bb64c25ff69965c95347549724ec5ebee32e6936355255a25eab11b759940841c29b5477988561ca05b7fdb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
d337d4d4fc708572eb56d18839a5d5ed

SHA1
18ca93acba38b74437f9b3cc4dcc98be95188dde

SHA256
a8201a3b0266b9983681823fa1e3ef30f912de89e27e87d4973cdd2339f4de52

SHA512
acf6bd93e3f333819b21cc77ef1563ffc2d3ff733381bd494b62a9f680cbf5d52b6838c298569e53501c6be97b68899c2e36652b3e25be3a1cc01cfcceca8c59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
0d6402ef321c4fdd6c92ceab5b68a33d

SHA1
8b39b2cbea8952f6949e949767bd4e16925d1b34

SHA256
2e5b9bed19479d2c291c3262060e17456634c6809d8e950a42675d99ff0d050a

SHA512
69125aae706ca299eecac9bf5f1865f46506136ae7b7e0349318dc0a441edefe715e7b6e2a514c37215d649f37661061449a723490be8c0a0b3186e376edeb24

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
6a55d69d026fa88167b91f2e8af38e6b

SHA1
68e0efd21333ab21fd3d644c3aaae17782d19675

SHA256
50da3da977989da0c18e98b2921b0d618c489575271102f9ff4ddc205aa78f69

SHA512
576de497ca8aaa50d4b75da9a22aa4d52524e1ebaf86945a71f708e35a73f3f544fec8f2efad7dc68d072944300e8105be541798cd3b478a3b14f0caf8f650eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
7a88f9cb2adeda97278da5fe121b8b75

SHA1
bcd7da77040d7dc521204e035cade42c95ec17ae

SHA256
e0649392b2abb5544dbe0083385e37a4d572e7e43d7518d21d225606d85710e0

SHA512
3c88e1afea17065578d480edbbeed8c02b53aee5c93dc89f775c8054ffdfc5e963a2a51506c10710b9b8ca1375ae42e0b1eb9edf38b47c6cabcf4a0c3f0c7e9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
53d514c392d9aa72607ebbad1ccb5fd3

SHA1
ef46eb5afe75f054e3c15c5286f03fbd78ca3df7

SHA256
d2ddac3806873cdfea1550858e04ae5213d4d7a02f73385e296f9d14695037e8

SHA512
a2dc2d04f1f9fc2c63dff54bc21d166180270f89eba25025f3656aa932f0b6e2c16bf80317d935d6248d1c3fee48aea2a9c4a4e214b92e4b48d0b4a55ddcb038

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
9fb372367c42f142fa934a24e06c4487

SHA1
72eae07f0dadf4a20e5cb31f25815372a1e1472a

SHA256
8347daf059447c4a541ec22d4f97c8e8a961e2460391725605edc43ed724a873

SHA512
590e95e618f48706f5baa04c0c17fbd662c09ee7051560b176a9d1f474ba3ecff70b4f091aa405316c5839834d4c83746150a223e7329c3f819fae60cfb3db7b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
4df300dddfc0a7e7487017af6ff725c1

SHA1
5ff1bdb4f6355ce45b649eab51e17f93c20bce3e

SHA256
c53e7970f1b0a492a00858376735830959e3162a27d88ac78a25c316b6edb206

SHA512
0b280e7c1e21d1579de7ba4eb8196662d40f0e48719cee2316c9d10a7e124fcce39f1a5f9f61f1aa4dd4c3195b13762db2b8b9760fc73cf04fc35f8cdc320436

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
5ed5d05f1bf916351ee5d63fb3ce001a

SHA1
4c39b91b670c484ed741a85ed3bd43d6344e96a8

SHA256
898497743d9ea3288f90411b5e22f98f17c62174a3f6b401c13b76e0d159dde8

SHA512
b4a7b9ae37e65994baa0d9a14eddef761ea9d16c33f0fcea80faa163ea0632fc2e3c25a8964a78c1329a3c464e3b0931cc94a51f37580fe456257450c6c1f804

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
cd48c1eec7198635af0b01bf7226ae7e

SHA1
a170e79281f0192c8a7d759ee121692cb104b096

SHA256
cff4c24041721703d3ead7603d177bc24134e54f36e88c1f24e2d23301f14fe3

SHA512
f92c14a41cc2c28918f90823c5ff8d752087273688691a578fe3a215189051d304345434226c5f9667b5c49e49e5ad076270a9206975e49d113f62e54fa58d0d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
ae3e9704bff079862c3d5937b591dc9b

SHA1
87236951bc44810dd8260fca62c31d7f8a8568a0

SHA256
e9dfa5c188768bf67e21fb512fc340996b5e10f7b30933c6bf28ada9a7ad92a9

SHA512
76ca59bb4b944faeb3c570ecd73570bb226214bf07d6cec6adee2a4699672409d8bbf4f4ce5d8ea3c6370a1193bd87a530489fded5e15762138e095e1d2b24bc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
c19678a2851264f723b733d46af4c6d2

SHA1
fc859ad3eb91848dc38459895406e532359d9aea

SHA256
a63a4d2db7f1970ab69c5cf04f31e0a83e55af52ede698f5b22c4849c3d49120

SHA512
41bddabad09ed3ac7be8dfdfc42a3e4d6e42d45b895fccae169ee95b3d139f3dde1cdc7ad816f7719d8e4765e83d384f30c2f3b78d068aa10384b679c83cafee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
5ee909fef0c27ebf76156e529d1384af

SHA1
4b694d944090fa16effd83e296ddd67e9988d07c

SHA256
86477faa22fde6d7d8565ae59aecba706573d9184054686b9a70d4e5354169e1

SHA512
2e3441c0f8171b7a9e46ae3d96f440463b906e7f30d62905a9e4af50cba50a1dcda442ab14112e1dc2e5242b5fa8e5bb81a2fb8e9380de24af93285e4d266dc1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
8e3d650278a5b777e952a486a6c4e22e

SHA1
0fea757156e3c4da9a419b69a8386f8a2fe1ce5c

SHA256
04e6474f20e8da51a7df5b58c93c214fe43ea959430fbf3f0a5394c1cb3f3cec

SHA512
ff2b5a862ac932d28f7f8d28290856a872af628ab68be72d988e2c704a0981290f581bb203b77efd1f6747c62fc965ea2332e9950a5722c920103d181381a1c6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
6c886f4978ed840aa66b783c98ebaa77

SHA1
c7f8743f237d47fe8e8545c3c02526a28d7ca746

SHA256
924298b7d0ea00630c17754a432d700313794b63c51514fcac3b62ee453649ec

SHA512
68c15b85c75a71effe494184839afcf3c457deecf95eca0def67b75091f04ca696849fe930f1f6496f70aa28e285a0ba36789d964ada89ff3438c0353f335097

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
369B

MD5
80fb90d8abc9e91cb2c90a0777ebd2e1

SHA1
2532c904e6d7078c89054041165623ce3e64c72b

SHA256
7f14dd616b11286a45823c7c50b228919b9f2596d20aa8e3b7c8b16a43046085

SHA512
b75eb2b72f8ce72c717631c5ae94eaafed3061182ad6872d3957d2e72e4b0474ed9703430196a105a3cff6c0684ef43f10b48158b15e47a371c2109d1a3388f3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
a1a05a1060e5789884d398ad8136e278

SHA1
a514b3c591cf467d67b21b17d8130934453ac724

SHA256
1bb4d770bead8280a0f9b1cb8a23964772fc014f579cae0edfc7dc1aa5be7ccd

SHA512
b5a5a4977daee07281c317b36072dc2eee90963666ef672bb9fd48bd0567875fa61f85d35eebb0706e0c82056a0708c3d07137d340ee81ba9eb506431d917454

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
2b17e5d68cc80acc334539a2e29b0ccc

SHA1
5049c79123c8c9b5b87f57ac0364e32e08b47767

SHA256
01da59e18127c392c0c6e3fc407a817c4bfa6590f94b3182f99986320595d6a4

SHA512
fc3b622b52b95c498f39efe66f8b6649b32b82a2ad38c89ff1efdeb9cf9a474b97fa376dc4357d74cc1e809cca82230d3d9d1452e5907b190c857db74511b878

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3aabb9b6d037dc5638333fbb6210ccad

SHA1
3695b12f4effccc6cafe7086e8df1542b51ca2f4

SHA256
230243c02ca6a1fd4b486f5bd448a6852bd126775b1845e86603a3a7d6b9dd16

SHA512
26cf2ef92f595bf5934682390c24a015e6706f96e3034cdcf7513f625f03d00a05be4393c9cde7974d2a81c036dd9545fe2844bf50571be249f194a7a9b8eaf4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
bb3277b44c86e2ae2889be04f0bc2bb1

SHA1
6cc2a6d85e285951260aa72e95f7a228b5718668

SHA256
e5bebe343cd36c029a7e42324b8e4ec056caf54bd93b6f17c5fac8180a361624

SHA512
81e858f0d3ef14d907b3f037a886973b4cfb97c3536e5858e2bacde8e6bc0056b125c82141fb4806e5edb362dd10e614745441ed41eaa493a3cfee894c98c637

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3b89de8777529903a51197296575acd9

SHA1
5de47080309d99d22a7e93b4e904af4ca2e6c6fc

SHA256
7bc6a100e34c79cdb91b0df009f284345a4ead653bcdd9766250f4ca22753cd4

SHA512
bf0a0ebd08903942b451614c892e84be01133368e2f2db9c87095b29b80fdbf017eb40812de3560ffc3196eb391e97353a8a59b3f41d3795edbf8db3fd535eb5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
50662a042bbb70cfcc83b6079e3edf10

SHA1
718031decffc0de371f79068a3365ce912744bdc

SHA256
7e59c3438d9fe5143df51c99e6ec9324f881c4d54c7d2d75437e170dbab79d7c

SHA512
59867d6c00e5b0abc6661d92582bd348294b172aa1305daf904a0751355201dea7d8efdafa4544d29638a2e1ea15ac1b0313bc1a97c24364386c7aeee0ada739

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
9ab403b21f0ca388f032386d8ece8b25

SHA1
b4b98eafb73b9fb65e7f43410d30180fb879a4a7

SHA256
3344f9ffcbd2de7a43b475cb4c420de3ebf70fad70a2b7433a69c701ef5315ad

SHA512
65e7cc0bfeabb12575ea3e147d41d960463d7bbab03cff73d2c719d03f70bd9cb5c19535a82d858ea8a4fd5868cd5dacd75130ebb529bb7bbebd6745e32dd9a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
aa3dac96c9d467f1d06ad84792b14182

SHA1
a4c05084084a8fe5261df3e4997a5838fdfb1316

SHA256
8b7a51266da5def1a189cf25cb38c4e1c16a662f4255ce166200580d38a8a5b8

SHA512
cac411a05a1263e9a84ef5d21c743a256a10493fb0997969cc70b9a7e89a86bf84755f6539708ea81b0a58622c8a04cbacf9a75b6b8d851bc7df3f99cc7ccfd6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ea6dabf8ec076e43ce824c91bf2cf84a

SHA1
c0acb5593978809766164a473ce88b5b813d19b7

SHA256
c1bba9a07d52f48442973d32f6fcbba5dce84dab729419ac86adb9146a11b6ee

SHA512
37ccda3dcffb07d4bfa38995a0af3a3707104b727b164117f7e92cf7add8d9d9c4eb8d1c62f67484bd43506ef84ac6a87cfb90d18e4a7aa44ac5b576ae07899c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
d71dda52717b34fd9aaca2e5d842dfe1

SHA1
f3731394fbefa111c62237ce8aeb1e6500753a96

SHA256
48ed09fa82d1d0521c2e63e0e07fb8d5d900ab68c79239db21746eef6733e23e

SHA512
7a6d488c2edaaa570326d84f241aa3d683f434a20cc66ff5c1c4a69ff57534c8888a1b49805b89855ff1691a1c418da9098c8fe76752f1cbc2bf3ac35f8e5a89

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
eb2920d125bc652da332e807ddb7d526

SHA1
1ed2f02f06e58c9f7c74179e0f78bd240c7161f5

SHA256
f52fe794962c5d9a3a4ef6164c3d6c5974785a99c89b018feefc9923141df6c7

SHA512
5f6bedd5618f4e9f5d4edb99c4bdfed8e79c126709a76fc110e454f6d5658309364d8e43bb984a2ea37011c50dbc3edb090387c8312773a4da184874c87699ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
e0b31cff80939b09889d7a4ca91356ae

SHA1
bb6a41447f6c5cacfcf06925058bd6d75e518d4b

SHA256
235aa296c30d1175905a6624de0e9be82671b2a5b54e53e945f6e28c115d16cc

SHA512
210d2a3af396da2267450a364a4a2c5b1a3c30c9c2849b89134416ce78fc84c59b37a91fe25aa4acee2871d43206a023b6266dd3fd5f08604144af48bb975444

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
6f9f347fb4a3911ab4dfa47266f2b63c

SHA1
d7b7717afbb4f846dc35c402c98a60518d40b055

SHA256
6aa9bfbdc15a45c6c924260efe48adc80c2027e90e589dcd9c84174cdc2ba222

SHA512
39a44b1adb380aa89a170f9eae748b50705bcf851ebe9b514d42d48958fe447ed938bba5d76e9a7f76ca86832da017d42362a8a90a6d63e3ed7a5814e363e431

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
d0cb7c4131c32e441ad4e6a3e89ee42d

SHA1
b12c4cb506c8906510873e7c277b77acea4e25f3

SHA256
db9083af997849f0655b10d318b2655c45c2590c63c4b404ca9a78605f594554

SHA512
19fe775d459f6c5a0d8856853225945615fd1f4a4270538a50cc636c0f0bf7a56599978ea4d3d21171b722ab4c0aaf095c4ad6f5ec6beee19e3acb2451cc4f90

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
94275bde03760c160b707ba8806ef545

SHA1
aad8d87b0796de7baca00ab000b2b12a26427859

SHA256
c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968

SHA512
2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
120B

MD5
abe27373541e2d2558c09644df1dd480

SHA1
27eb517edcf47f28f75c06a1b421e36b82620d80

SHA256
af21a6ee924ed5cc175ecc8d6262b76f3286273aa28728af6c6c4797efb5abca

SHA512
1ec2a1c07ff0d8f0692caba4376d949dd3e88dd438988f0cd1fca1b0e7e75c64dea417ca9d0390b0df2c5041531555b9a02378e3a45d7c432bea76066cab8456

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5c7779.TMP

Filesize
120B

MD5
161af81021ad3be16fe2f0b1713e8621

SHA1
bfe2d2352a9becbb7c5a74e54f9b1c1204d31d8e

SHA256
e30b2c94ebf45d04c9a114d33f18ec19738cf938d1ced7450ff9bcfea507b1ba

SHA512
a5da9f305093629750ca14435b32afc19e9f8de48469aaadf72fd0e3dbdb9a2a8f6d1daf2eb6d6036fc20859e7ad032e92db391bcdac6ab1bc5a5563d7544f9f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
7422074ef30689382cd009b7cfe48681

SHA1
428bfa86fa6d50c1b17d48712eb868835c04aa43

SHA256
894de11ae297ef43897204f287c34cef7e0d1ebab4d090a2e66503015a07fcec

SHA512
33266cae7d6ac1af7320de4f08d5cdb7af39605423035f84f20b7a74ef9a6f6635a2b3c069d1519e2aa2853cd2185cc8c365ce6661a398df050fe3f567bddb4d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5bea5c.TMP

Filesize
48B

MD5
c33046ed91a06a0aa7055332525caf73

SHA1
b28c77301567f3ea07cde12453a3ed361b9c2178

SHA256
ad63f4b3ea3069e847cddecf4cf8f1c77b5bf34e06adf35eee15448a8772a5c0

SHA512
7e7f7e2b480d7e9015a19d489bfd1d95ee3353f9ece93b87dafcdd14c938ea013f9264733449bc0aed101bb54563f53583e870aae111a7c3b1ce07cbe2f25983

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
254KB

MD5
5e733b30b8be8c0eefd7e4c99eb33800

SHA1
9aa9bce131f81a8efc52ede7d57a487fad0ae52b

SHA256
464b10c9bf607f8529c107b3a42214b3ad7e0a4e942b3ca07d90bddbe4a353ff

SHA512
8dac54644a4d0afed1f70c76b8a3ae9e41bc73cc650c15547fe18a1a090deac8fb392b91ba6ee6840444f395adbeee9cf14dc94be5b2f0285d5f3d7fa8d9dcfc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
254KB

MD5
e96cc35770f4a7e7c1013afa9a5a01c1

SHA1
b6e43c7bc169df74088485837e96930d4cad875e

SHA256
8f95ef0781c376c71ddc6f3fe1c76c31370a9eaac4aa071e91688226f685d311

SHA512
d4b7746b8f45cf7e50b6ecf686afd9b199b2268bfd9a3bf5feafec34c771c7ee144f6a03370e54577ad1ed06b8ccb4cc43bc8e13c331cd750fcb049a0f66ecae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
254KB

MD5
c37f7f40ad6337387ebe7acd00876946

SHA1
6ee09ae0149194cab4681c81f24d9ea055beb26d

SHA256
4d07288d88610d2841410e3dfa71f07ab1b4981e8d637444d905e18e74d72030

SHA512
3a0ed08edb55a3f69d62cab41a762e984fb3e81cf626ed33cc4b2c28da21f0ee31177366aa7ce931557a243467968aa7ccccf9783bb676258942e10b1f66ee04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
107KB

MD5
eec998783e9789758b345fd5c75eb95b

SHA1
2049ce22340550b612f00399395e80dda2372779

SHA256
c0a0966a7581199341b731be50423bbdb29e6ea96b9f5b7b33373c7784b2f6e9

SHA512
4f1bfbd2ba941b0f6b965e54ae9abbdb00e0ac33b091e38ac9706679a03746580cc7bfce6623769e0355955ec0cccf7e14d4ac6b963b4ecd9e3bf5b8a58ec50c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
105KB

MD5
5302b0429f15240579faa642b957fc14

SHA1
5dc82f0e35346188d63eac02d650bc1a2a57cc8b

SHA256
3f21ffbf57b94c5be7777602a7c783d164033d14ccec78fd50d4d9b771112c0b

SHA512
059547dc3d280b2e24009e653120a44a495d13f41a21c0e19e96d18e4420b84f925e2da1def7206e20204ecc0f5425f10634b3d1ea6c1f2620a2e145a2fbcaab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
98KB

MD5
759e61aefc0929758fd594506c76ebfd

SHA1
736055fcc81e4a8999831c5796cfce46e6fc6f03

SHA256
20460faa638338aa30141052ad88d7041c21c4573b191f27aca814d2229dcee8

SHA512
323fb4bec15be4e72d650a6b0f86b3e0c936869a3e9be92a35568d8a5cc4c3c0d9a720da23b1dc1f445ee24fafc35b962395d6475d54c2b2f6ce40b33be1ce36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5bbec8.TMP

Filesize
98KB

MD5
9ee79a658fe244715e756ac60716e746

SHA1
81e409862eb57a09740afec25dad4b7b6528d264

SHA256
5efdf6b07b602f0924a4eeb3dc114e34d2bd146a93c498c51420d68ebb106132

SHA512
3da08b77f768c3e8c388a09be042d55623214b3b734f41a437aa36516ea64bea35811016ea11317005bbc4cbc4be0f8c78f3e1ba0a8717d55c3152244cc5da02

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
7740a919423ddc469647f8fdd981324d

SHA1
c1bc3f834507e4940a0b7594e34c4b83bbea7cda

SHA256
bdd4adaa418d40558ab033ac0005fd6c2312d5f1f7fdf8b0e186fe1d65d78221

SHA512
7ad98d5d089808d9a707d577e76e809a223d3007778a672734d0a607c2c3ac5f93bc72adb6e6c7f878a577d3a1e69a16d0cd871eb6f58b8d88e2ea25f77d87b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
9f44d6f922f830d04d7463189045a5a3

SHA1
2e9ae7188ab8f88078e83ba7f42a11a2c421cb1c

SHA256
0ae5cf8b49bc34fafe9f86734c8121b631bad52a1424c1dd2caa05781032334a

SHA512
7c1825eaefcc7b97bae31eeff031899300b175222de14000283e296e9b44680c8b3885a4ed5d78fd8dfee93333cd7289347b95a62bf11f751c4ca47772cf987d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
e0c2c0e39a27f14d1a569b29951fa754

SHA1
512bef784c4e8c3520ebcf76e9fd09df93ba4c11

SHA256
e38ba9a3fb7e32166b7404385e2c2787b066018444c00ce201e022dd54d5a2d2

SHA512
1c62e204b8aa5af89b1fe57928317f937e412fab9742154910db1b7a0cf3856b2d7758bd21535a4a223a071900c396f56acd89df34a4b05b16803fcd0b863078

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
8a024470ca2245f08163b75fd987fba4

SHA1
4c48ea7090f9551e60bdb99d0450828eb502b447

SHA256
0225d40069ae4e8d69488f59f8d24e094381a511023f7f052cdd8e3ffca7c73d

SHA512
80cb0a3d67f586edd0f5664c84d0a26231bd15f6e16a4bae3fd6066be92b4cf5d1c3755442792033ab52d252cddbbe2484a43ca9c291081740e1d9d85a0f09bb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
b491fe630ee219cf57569a8cfdfa71aa

SHA1
9f5b23e769d917a728ad746e75601403bad7fb0d

SHA256
5e8883b2c17d93e60bdefd8971dd2909faa03226b0fcb9e4134e5acd8f6727ea

SHA512
37efa79b9a4e370afffe5c95de9e991899da9d458482d7d3ff0b744d162aa473fb4f6acaed35870cc97036e8a95bd14effee80b32c7973c595ce359ded85c0f5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
62b32d4ebce3aa29b6f1c852925704c9

SHA1
c76dbe9a706d2dc1536d1f2169e21909ee350ce1

SHA256
f3cf00e931b78617391bf98c16c24d29fbed3d11d3d7db46bac8ac008f3165cb

SHA512
24cf446f0ec4e9105193adcdfa5fdf296268b3c4f006ed152ca1d76a786b452738d31fec192ced2fbbfc839adfad3b58c3f3ac594f8961e2c21dec05761f9945

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
a1131b2b678d772a8b1434aa55358177

SHA1
e23cb6ea959f9863a6f01633da0f3f2eb341c9f9

SHA256
a552e325f104f47a0faf4871bb5607ae22871d858e9b1e013688416d10eed166

SHA512
c2caea946662e38a076ea0511e67ef51ff70f14cdc93da995f1c07a3c36ad13fed045baf8653eb0d5aa7d0acc4d8ebdf0de0c6f75eab0f26e084cde7b6e2068c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
be6b14ffe96ae65fe0de1a19aff32360

SHA1
039760cc05c4e7df82ed498b20174292196fd1d8

SHA256
ed02fda7b284630957abde05ee3f55abf7e6cb45dc4d24640925d3c57a5a5c93

SHA512
b6580f5b659456827a2c00aab55f656ddeee120c9feee5c649c16a27a5cf514592741dc7f91bb9efa176483560add36e9e84641275cb0ca04c6a4f7b1005bbec

Download Submit