hxxp://foolishjunction[.]com

Analysis

max time kernel
149s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
07/03/2024, 20:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://foolishjunction.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133543183489975861"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3660	chrome.exe
3660	chrome.exe
1808	chrome.exe
1808	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 8 IoCs

pid	Process
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe
Token: SeShutdownPrivilege	3660	chrome.exe
Token: SeCreatePagefilePrivilege	3660	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe
3660	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3660 wrote to memory of 4192	3660	chrome.exe	84
PID 3660 wrote to memory of 4192	3660	chrome.exe	84
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2732	3660	chrome.exe	86
PID 3660 wrote to memory of 2960	3660	chrome.exe	87
PID 3660 wrote to memory of 2960	3660	chrome.exe	87
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88
PID 3660 wrote to memory of 4492	3660	chrome.exe	88

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://foolishjunction.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbd3c99758,0x7ffbd3c99768,0x7ffbd3c99778
  2⤵
  PID:4192
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1692 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:2
  2⤵
  PID:2732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:8
  2⤵
  PID:2960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2212 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:8
  2⤵
  PID:4492
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2752 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:1336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2804 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4568 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:4872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5132 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:8
  2⤵
  PID:2868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4748 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:8
  2⤵
  PID:540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=824 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:3824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=952 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4816 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:3232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3076 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:8
  2⤵
  PID:3560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=2924 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:3928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5128 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:2624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=2964 --field-trial-handle=1900,i,7466881917651767354,10264053025427795098,131072 /prefetch:1
  2⤵
  PID:1608

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2840

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
194KB

MD5
f5b4137b040ec6bd884feee514f7c176

SHA1
7897677377a9ced759be35a66fdee34b391ab0ff

SHA256
845aa24ba38524f33f097b0d9bae7d9112b01fa35c443be5ec1f7b0da23513e6

SHA512
813b764a5650e4e3d1574172dd5d6a26f72c0ba5c8af7b0d676c62bc1b245e4563952bf33663bffc02089127b76a67f9977b0a8f18eaef22d9b4aa3abaaa7c40

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

Filesize
269KB

MD5
16bc8797517f86c630b789fccf4e7cf1

SHA1
4389f3caffd89a80dd0be106852a04d03ad17264

SHA256
6f6a5b7952ed2224219fcb838a4b4d77a1f7cc9d240492994e07a7377c7ec36c

SHA512
4194cbc121a5dcaabb32516867c93660ffee2f1234da1990a120293a1916de2f4fa90548025f3a63e3fecfb31e39dfaf78523bdcd71e16d2865d2269feab5877

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
272KB

MD5
5651f8b684f5e1c21f95e5cec35623c4

SHA1
720148a644af2f752e8f1aca3fc64c7efbbfc127

SHA256
ce3bccab71f5ef8ee6f1f3130a0a0b389531f7889a19ef76d1b5fbd9b96baa19

SHA512
b908a1d0eeab3134b4f7ac42caf39622ecbef12a5c4d2fb17a8171035f50fbcbbf53f07e037c23e0d086141611ddce65ccf950f9ee183a2493485720b264eb86

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
90KB

MD5
72236e686b4b7248309ba0488da0c2b3

SHA1
3416844e22be7f075b4b5ea11ee0b42c99bb24dc

SHA256
58b759b77c079c9ccdc2fe6eebb0900a719f64674c05c342e2d9701e428241b0

SHA512
f920755837e1fa0091fadf9e33cd5726f5f814cfcfde1315ed008cea935ed13a8df1d0f97a264d8cbb254621adbef55918f1ca669e0efb70cc59e6787cb81916

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
f1da9af3b5efe9385515450de9c64660

SHA1
1aac51ca5cb535ce73759be536335b000a83c1ac

SHA256
d1c4051d6308feaf17131551164350090c50bc63925575f3e2ab7b4b54fad282

SHA512
d06384d55d818c1ca5018b0bcf91a89e442aad662b56cedb9576fee2dfc91788084a4b036119439b4dcea2ca50f07a94f1804432c7f4ea7b6bdde68d4741e6e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
a36eb795e240f85e3a562c568eb5dac4

SHA1
494a02cb407a364c9a4e12ffca832961c44430ef

SHA256
762f9adb91cc05cbb6dc59a1526adc10efda6ca6ad2e1fe18e8a013daa9c2e29

SHA512
1ffccbc68d245c0861cfd45535af8a3641493f4a93203632924e3705450494391bad7f06ecb20001cdc391e0ed94b25ed279811bec4d7eb9704c967458a74621

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
a6ed30adff9b2721375e2ab0681040e0

SHA1
a1bdbcf4d2bb480b4f78ca7d908b4826a93142f1

SHA256
a885f1530ae6f1c691b0187990a1d3566e74943d84f07f8379b7f203fbbe66de

SHA512
d31e08539b29767f3991cba9788b3f7edc7ca4e73f6ecc668f09f6db191a2bf547fa73bfbee58de2857e6fe91bfbf84829fda6d72681939f53a45b3026548445

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
5c3a00fbbe1e090a8a1eebca3fa2be15

SHA1
098b2dd3c68e4b9e425c15c79801c4f896f257bf

SHA256
c7648cd3e9cd11374e8bd502cf8f4d769740be4b3c00d6ec61ad5fb12fc42ccd

SHA512
be69b291425307bd955958ef43cebad784fba81ce39a4efccb3cc66bcfe5bf8b80e01dbd73eb2374630b3c09fd6ea992793a884ba678526a9199e3802b6a8042

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
38e71d0c32841145800660ae1b478ef2

SHA1
4f9b984b254f6f0d51a52883d562b6403b76f377

SHA256
f10d3e7284210f173a6cf2825b914f51225da3d4dad2feb23b40c0ad60853feb

SHA512
66ecf2950aedccc49daabc2b3c14ff4df2d603061b91f796b48069cc72e9b071ef81b46288a1d7f7b160383223a30ee2731b593711a2640e7ddcd2a1554af3f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
763cadb75ee5143df9fc92a2a3204821

SHA1
8074400e0ab657bef2eeabc130c5daa38b768935

SHA256
f771c8a28edce3bae430cef7f533abb1ad0375d9022b08f7221d90e8bc1e88b2

SHA512
2863aa775bb3bc2f7ff3a9b080a38d966da6d3268dc59618a771b7b6705fd7672e35b0aa0450f430b20508ca45d43220d466dae0b2d5d018c7eef042bf67b2ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
dd061a0e1f7d8a76e0ee580f34f9cf8b

SHA1
4a65d35d680975522bb279e76916e6f5089cc712

SHA256
e5cc24be042bfcaf046b91b88c025a67cf5efbefd8fef548e7ddba36307d4224

SHA512
f350b3a547818856da54b74c7e2784756203cd544a783b4932820b86aa0d7a4754a8845a0101953c5e7e06aeb4b3977ba7cccaf0a662c643a4f6da121f83c684

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
cd2a36115c1c8ef7a2316e7efc30018c

SHA1
515f1412fa152be3bed21cc9930fe5aae67c8393

SHA256
1a746575b6ae2624b31d989486aef36da743ce93e5c07c02b32476ece2ecbc56

SHA512
107005ba738351a7d40716467dde34fba51a045f1437a2f376bbc0f4c0dff34e2cb7885693609c41b2c4d778fa39154e8a09b63c84be43ddfeddb3956369c470

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
88bf0442e178e1b012f6e1c1808f6e9c

SHA1
ed7e03b8f6bf7742592e78437245c0519fc61a4e

SHA256
3543ba1d1faffb9ff0fa028d79230d584ab1f6a0c46af8a82c1389e68a8065b7

SHA512
716b8765da0147e071e92cc3647990ef62216f59a4cda0c5e9fc046f7411a6498101a1f6cbd0931ff64144375d4e8cccce8d4ca3a608496fb7042960014d30fc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
bb81b58b53df4d10938a86bb38f0395a

SHA1
3c1e657264c4966603743c5181e612a21ea09a25

SHA256
13956d5e53b32de1e64601a225eafdab4eae15a0f920762d8fc8dde8091b6393

SHA512
bacc96d4e6a7a97bae8cdf01f3ea16c102d027fc2b3d34ce647b4f38b708fc3926ff7c71f8a5857edffda4b91fd756af16414e62f6db78f93221ff9b5ca952d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
32bb191cb59e6283f52dd111490d10c0

SHA1
0e81b888bf24ffd205e8a1b3092bc62ba435a8f5

SHA256
86e4984db9ed01cf3fe409e3af603141d683230f71f9c065698f2fb1b57b7e9a

SHA512
269ee7061801867c2d8a267983d846ba38f177d55cacdff1bf398f6c5c7b15bc9c713f437341ecd9b028c44615e0cf38dc35c01ec8d6154908bbf7dc21313351

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
c62148163e67789176d8e432bf328787

SHA1
de48e2fda6cbdcfb8f950b1ed6e29c89a6377517

SHA256
85ee793082f2bcc3e84a63573f84f4aa83b8b75bfc750ba91dc4562d86caa3af

SHA512
4c735f05803464d97b0a41c13df865d7dbc4c82c699c9ef5b42bbb4a78c3cfcf0b04e85e590724269763074da21b5388b844a3d7e3ccbf5b0095e90b13a05a04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
8baf86b14c437d358f75197a68a35d4f

SHA1
950b52a106e7c414d5c3ce749343381876b22ac2

SHA256
b4f8fda8f0c7b152f36dc08fbebc2521c29eed608891c3ad4f49f74408653c20

SHA512
c1ef6953ea19e80f70ec5914ea95793ad84884caf2d192605a67d188a0a9b9cc27f2c6ccf59ad18e5572c79838378211b51c4ec84d1651dfedc22161ea35dd63

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
114KB

MD5
32b3cca5b49da15e27de942254016b51

SHA1
7d8d68ab6f3068cd329ed111aeeab351c7e57ba9

SHA256
aac2d0d9e1ab6152e3e33c9fe6b9bdcac957c76f26855ce79d67449ba5203a14

SHA512
3a2ed35300003f6df1882d41036cc9acf27ddaa95e917180647ffad09b0a36caffbccc1116f4ad2fa934c3cd2d8ff6a7371bd58cedee61314cbc696b20b6a189

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
101KB

MD5
241906e30a292582727ecc685497ac7c

SHA1
3a31b916c1067fc2edab4b7e3f2bd39563df44d1

SHA256
ec1283c680e03eb3b563051ba083c8853e05fe34f4b0a42e6526c41bc9f29cb8

SHA512
56f0f0aa8be1d1cbb8d74815fe60528dd6492e3eac8b3f0845a3c24ca46776041422600508478e45b8c0f408c7336c4305e310868a67b20b5fd162d3fbc662ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
97KB

MD5
5b84ea44573cefcbea21ab4d86b5ad8d

SHA1
a0f3bb9ad3d3621f7f4d66e085fa8b42dba00400

SHA256
b30cd0d46bdb1d177ed19097a6d58a7f8de5ea72a6e4108c6f9a1190337aacda

SHA512
fa79ac159c44e90f97f7de289bf791dc2022250103a3719d6fd66699b4833054ecaffce0805f5ed92e20802d56f0bc05812d21f75295aa67875910da4f9a9919

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit