837415683d56ba17ab5b260587855ac35076e05018a6281f4064cd1d03a46ac9

Resubmissions

18/03/2024, 15:07

240318-shhkqscb9y 8

18/03/2024, 15:03

240318-se9j2scb51 8

Analysis

max time kernel
33s
max time network
213s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
18/03/2024, 15:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

gx-browser.js
Size

165KB
MD5

e276a501681746b6a8c8a53352ee754d
SHA1

8d1821e0ec5d967e36cb4969763dd3c63e4cc220
SHA256

837415683d56ba17ab5b260587855ac35076e05018a6281f4064cd1d03a46ac9
SHA512

50fbbc879c24f13c85134d4713a66072eec6b8c37c60452f505fb624b85e94ef28530a2f1118be31936d503e3ab3af20398cab244ce87a056633c70d13afb393
SSDEEP

1536:WasZT/zlXf87fita72252wj+YSLct/xWpmgLODCcsLUazNcpBzaMB20AWiigzzoq:oL8Ly92YwNJ0PzDreFOHDlNDuG

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe

Suspicious use of AdjustPrivilegeToken 60 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe

Suspicious use of FindShellTrayWindow 34 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2628 wrote to memory of 2028	2628	chrome.exe	29
PID 2628 wrote to memory of 2028	2628	chrome.exe	29
PID 2628 wrote to memory of 2028	2628	chrome.exe	29
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2792	2628	chrome.exe	31
PID 2628 wrote to memory of 2604	2628	chrome.exe	32
PID 2628 wrote to memory of 2604	2628	chrome.exe	32
PID 2628 wrote to memory of 2604	2628	chrome.exe	32
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33
PID 2628 wrote to memory of 2720	2628	chrome.exe	33

C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\gx-browser.js
1⤵
PID:2992

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef6be9758,0x7fef6be9768,0x7fef6be9778
  2⤵
  PID:2028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1196 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:2
  2⤵
  PID:2792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1536 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:2604
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1660 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:2720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2280 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2304 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1488 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:2
  2⤵
  PID:1656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=1384 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:1424
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3856 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3928 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:1936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2392 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:2076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3940 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3852 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2064 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2412 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=1988 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:1900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3688 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=1980 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=3736 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:1480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=3876 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4020 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:2744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4060 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=2444 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:1
  2⤵
  PID:2828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3808 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4068 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:1632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4064 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:2616
- C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe
  "C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe"
  2⤵
  PID:888
- - C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe
    C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=95.0.4635.90 --initial-client-data=0x188,0x18c,0x190,0x15c,0x194,0x7506e428,0x7506e438,0x7506e444
    3⤵
    PID:2696
- - C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe
    "C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe" --version
    3⤵
    PID:2624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=1404,i,12678408869944914344,9106364196148473130,131072 /prefetch:8
  2⤵
  PID:924
- C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe
  "C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe"
  2⤵
  PID:1400
- - C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe
    C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=95.0.4635.90 --initial-client-data=0x188,0x18c,0x190,0x15c,0x194,0x73f5e428,0x73f5e438,0x73f5e444
    3⤵
    PID:1588
- - C:\Users\Admin\Downloads\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe
    "C:\Users\Admin\Downloads\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe" --version
    3⤵
    PID:2948

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2044

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
67KB

MD5
753df6889fd7410a2e9fe333da83a429

SHA1
3c425f16e8267186061dd48ac1c77c122962456e

SHA256
b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

SHA512
9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
be9b2f4cead23db8fa8a67ef79248417

SHA1
97b8146a76a8b7dbcde250ca753ab8378c6adc56

SHA256
659aafc54a562b26876203a6289ee7f260d7f807038676c58ea2b2803464b0d7

SHA512
df3815b02dafcfb80c688bb195d857cdf3f5b189dd184a53641b12ea497d7433e9a39382b1d840de33c11e1c42730b1ce2bbc9482a60cd6ecb17b0a358662725

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
faa21b63d1866b223b8d158eeabac517

SHA1
2f643c367452cb40a920cd8fa64400796fbdcef1

SHA256
1a0d319a16e4c22f7f701b7dda23dce2097778824e0650f8008a889cce3b597c

SHA512
088cd0411753ea68bcb55b12e348de7270f95ad401525e9fa92bfacbd086494f8b29937a513e1c61d743e0d2bd68e5b994b2e6403a2cc9bc49211b4906d80c09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\69441666-d350-40ae-939e-6fcb6fde7927.tmp

Filesize
263KB

MD5
290d085d6248c1ca2db11fcd8a7b9730

SHA1
f277b20d57bdcdb2cd551fe57b0d1567182d73d5

SHA256
d679c8e02a5368c128b00ac6b920aa68063f72ee5f7619668c5bab3051009086

SHA512
9c3eb493eec245d621148f03123e6b4d0ded39d480729f383dc5ad32e110438e11bfc4431cf4d85f13f8687f77b9ef8f17bed387c348b88107290242f66689f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\29beea6b-582b-4fe7-b5fe-95845b2bba2c.tmp

Filesize
5KB

MD5
b70709f66b5f69e50b7e953d7b5e1765

SHA1
c64d74adf897944c1b8a80f20d40e61445d95633

SHA256
f56a6b82fa12aa14b5ecb6539c14fd6a55578c0c16e3bbe0173d4824de876546

SHA512
0179af1cabd38b3d4a5857a4e3c260e4d2cd96fd8521aaf5d1dce0a709b9d6bdb0e8268e701475daa56f0c93ceb20b44d9449fa622397159d71f27a1832feea7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
196KB

MD5
813c1b41e435242e7365a4bcd7adcf23

SHA1
2d25e1564eaf93455640413b95646b3f88f9075b

SHA256
70cb2151ee4ef83195855d29819491a23c5eafee2e72b7ffd9041b35363d1542

SHA512
268c4fa1797700a205e37e716c1472592ad6242344645c703ab1ab8d4d68452c3ccce7cdc4d56a0b42d4061bdc793f1c79dffc397f038133387b94b2a1f4051e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
144B

MD5
977614444f1d20bc2d83480d47507cdf

SHA1
99a43428e87976ae4397d5c1a9955fdb5a1932a7

SHA256
f0223ab4f6fc7f2e1b4ec195a807ca9c308d25f1ebb00ea71f0f7742b8979cde

SHA512
e36fd6278f5e0ae10b0a003373779a36947869ddfc56bfa8a72ba05278b1c3b0891cafdb57bce704d9e9f89e85d8d1b64555f6e6cf9c02821262cd632df28878

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
9b220eb0bae4d00090e43c396a33b0fa

SHA1
8f0ca3a475d87fb9d49ff847b7ad5ed8d1dca439

SHA256
546cd53cf17d1de2c79d26a6fad1d3f324dc3dfe98b1b0f139e344a87aa1821f

SHA512
7219b5c2235c645416f618b1de2e5b146b8ce41374348718c44803df54528ffc9cf2235d4501d1c3b5aec7461a812fcd2054eab9231f1b959f29ca93e81ca542

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
86a7769854c565ead98189b1abb43e09

SHA1
161726388137e113c5829dc7552d7c8712c75f8b

SHA256
e064dd048df5dc5d227d10ca0fdfb5f96a8b26bc269ba6fe3b972f17cfd284f8

SHA512
c242ffc1121200a609e0d141599df5955c2433d06af882cd5788de308827c6d47fc7a8d4bcf9cfdfbfc4b649ca44836036bef11ce74905db94e8b9dac530a521

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
363B

MD5
f3e2f0e0792c83ba2caf77c250873100

SHA1
0861e387590aed26d582d83da8ae60aaeaa7d26c

SHA256
4764e86a92063a72139591dfae470f5fa30f318c5711efa34b3f4f784422c5e5

SHA512
5c12867c2c5f1aabe5c16ee28adb3c56b551e8d6c013940143bed787c961c2f04311cd370959febcc517be3b8766414676b031c6c1ec79cf0bf1f0f83f74ff76

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
527B

MD5
10e8629e8f490413f50e0bcaf897da44

SHA1
75b03ee007036f475afc2392e9a5ce2e2d154e29

SHA256
ec8e1b48e32c04d3add1c93983aa524cd9eeaade9923fb599839d19c1bdb022d

SHA512
8785c5df03e857dff74dd5253117b5fdc1595c5789162d0faa7b5c031e5978fcf3b1196296396e915fa375688b526acb7334f2f93d9368361f9d8fbc83afba14

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
8f3f8ffe57ad1b996f7af9a544aa9191

SHA1
319d6f1755511de75e8b3e481389fd30476fbaed

SHA256
5b0074a40fb2460a000bc1af927c44473f13576e7fe2413e1f53446735a4039f

SHA512
7ba0724ceb1385b1dce262de6f81e8159b63aa883949a23bf412efa0bb239a645d820547d11bc198fb1b9dde7c029ad76da4fb52bb481bce66600b44bcebe34f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
1e00a7b53f55bd55f140932635de7fe0

SHA1
76314ae78af5823d48da67d45a34671fa8d60a23

SHA256
25dbc0d84f83d83e9724cde39c8bb55d0a6de6e83ba8c50d96f0a9f27d5abb30

SHA512
34a4a5762c8b585e831bb19d10b5af2d773ac0e2c289ba7a38b8015169083408cb9130cf9d0f6b906478c2b43a4d8a0e03fe01975be190946401978f162c3804

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
4KB

MD5
7841332f323cba17994e65a0d6d501b6

SHA1
0079047b86411342fed4adf6096970805d4da6ad

SHA256
3cbf78f970dd949ad6c822c1c79f4c966a713fffe2313446df669597e5da3848

SHA512
595d9fcb2f58c0f6d3b2588ba4368e0fb42b91aecae096719403d1ad4faa0723c3e72ec533129fec641bfbf367343db36f6b45d3368837b00dc6444dfb581b62

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
4KB

MD5
e3024384d16119f7044f798fad9a1adf

SHA1
248b70ec618ae0488a4523f9f86d40c7d47a161e

SHA256
2b9770a0afc39f441dce45bf03a748b154437eef1b121ac967e2f2e52cacbc49

SHA512
4d0eb82c6adcbb76e9bae20fe86f410aeb6696558a764e2026f9cb6780e61eb20320c2563e8f5127a3f428381bb2111c0bced25f96cd0b5d85e393dae58b27c6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
6a1f92c0330dbfb549d64ab2dc2a8ac6

SHA1
c639c2728da0fa87f98b7278a10a1a2d5a8b2075

SHA256
739f1a9d2e8bf98e79167f9467f2a8c229390e9fa4a1b83cca4327b301e3e34f

SHA512
9e0be230ffac873023821155d0b6b88bc79108793b9be7cdc1111b6a4c963c7fc564bdc31eb222a3578bb9c7c5e27e0a097ed9856195d155a51c24c91fb9ce28

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
4KB

MD5
3541ce17e5c0a6e8a89ff16894ef694d

SHA1
2eef6168552558a8d66ad0b7bdd299a0dccc9725

SHA256
8ac52c7120efa66ad773eabf0c023834c40408d811aceba3a39c1b73060a4658

SHA512
81157685a7137c017fbd6b7a7a25348c0618da6d3fcd6f431432694c2bfd37732cb07bf76136eb15daa296cd5a7d88c82123cbf7717b5406ecbef8b95f4dc5cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
71407d669a13ec76873876cd35eae9fc

SHA1
42186e24df366a3f8763f185781d2e4d069a18a9

SHA256
343251b35e695fa2359043a19a65bdc47895b0bc79ba4027a0c97ad919ef76aa

SHA512
2620210a8c03e43da029c77de4288eb9e45e782c3a495c18ea75d7750ddd229e53f97560a8a781104931098093b6796ff93ae9763a0f0c59469e88add61627bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
bcf73a62a4954e7766621d1b0cda3039

SHA1
02df3ffdc595ff99e70a6e5c064317e8049ffd99

SHA256
041e57717d20d8c3162a66ec9008a5a5c3b35082ed7ba96052f2aec4db9ad7fc

SHA512
24b6c847418de6972e2e4deac8f84103308a093ab292d98709106efd8435463b34e0849bba6846113e2066c145f916f9ec473e800b2a0bcee66eb001a8ac1ed9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000007.dbtmp

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
261KB

MD5
cbd685f3318113de6d59f9c2b88e7468

SHA1
611f0e38f30a25f1ffcf8b2bdfcbf660b340f0fa

SHA256
326eea1d64b80e8eec18e4d85e095b4fbfee605fb32850d5b602acf527af4cc2

SHA512
3895ffe60ac29f5b53b4e779a14ae08bde9efce9e8dfa11f814a178ac4424ff20bf6138da702d2dd90d557add56c8a55dda2b60bc20ca15259af996b0a7ab233

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
297KB

MD5
6a732d599d5ae87d50c427cd7b04073e

SHA1
4258a362ff3e0396cc0995e24611847bbe038d05

SHA256
305e82947b15bf86b601008773109271c4632faed06f526de3f191230baadae2

SHA512
fcd409d24e7d9a7ae2d9bfd7b3c31d2d8cd6fc675540685e82e55523fd9ca104546d624abad78bdebe21c9841133f26dcd6f04d52edf0350a644ec5c605c9b0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
257KB

MD5
c032b0a7f011da80f4d1620dc762198a

SHA1
5698458daf70dc5872abd6e6b8dfe27c139fe9b7

SHA256
d7657a33cd32e7eb2017d96c5eb74a1dca65de2c3a0dbadb0f7de893550b09db

SHA512
ea805103ce53c9e56f5d676ed7c51c91ea88227518ac610579c260a6296fd75c17bd82c6138ca627496909b07d288361a5f33e3bba63d4e95bb4a09862ed835e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
82KB

MD5
676b2a20e86880948b25b6b9937d726a

SHA1
574b9078a079df985935dc84990bac99aff0ea5b

SHA256
eca124fd824fe6a8c0c809e1c305ca166f17109aa0c4cfcedacd67ac1852a023

SHA512
2705fdb2e9b0b5b5a43881758d8dd566479690d49d97c0bb1109d49eda692e413a2c61a155fa07d5238627be949de1fbeaea3f1f7fb3b5997dad950a3a22040e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
76KB

MD5
17405e47ffcc5b2b5bf3dfdd9c1d2180

SHA1
dfab2c5454fbc0dcc5636bc353aeda7514746134

SHA256
99c7557497244de4f227520a4ec643572d48512bacd414244f91be85f986b485

SHA512
372599c2f86d376aa24639da9833d3faed1cf2e8566a763404eb33d7ee2d60efeb060ca640c8c0a72625bf48bf0039030d67e53e6f0ec63b636ae0f1035bfc39

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe

Filesize
192KB

MD5
de931c795419cb0b94d98bb5d679853f

SHA1
011c32c2d2e91f2f25f4dbcc9b79646d752311e4

SHA256
a05fbf2c5240c8a226cf5e43fd7cd6eedd09ff7ff346a1e36a1cb49080aa4c8c

SHA512
f1c5dd228a1b4a38a1da2d52ee1e18665392e91b489b4733cdb33cb874cae7662643bc5dd242e8a17306194fe98ede91b13e56fa5dcbd6d426aea4b78ea34a19

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarD560.tmp

Filesize
175KB

MD5
dd73cead4b93366cf3465c8cd32e2796

SHA1
74546226dfe9ceb8184651e920d1dbfb432b314e

SHA256
a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

SHA512
ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

Download Submit
C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
19.7MB

MD5
d892fe333afff0ea1ce56deed9e8414a

SHA1
7e316ca10c127eb255a796b6916a6e6fa6383103

SHA256
967d516f1a44a87d97422d20a3e8dbbaf173e2ed1a91028a22ac91329b7c8cd1

SHA512
7c92289c831169a87329a911dbbb7d8899a6e15ccab8df70da3a5221f1be7962b2b70022bb60fdd2fe847a57ffb52f82239bc470b03e2c6447a8e7ad968b9086

Download Submit
C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
3.5MB

MD5
5b4a2dbdf245eb599941d233c538b888

SHA1
147d65da14f6dc3833c8b87ee32f9e15c87f66a6

SHA256
91eb581dcc16d7b9b56bfb68adc5998f4c96dea79da9a47de9d7d8a63957bf15

SHA512
f78c02e6012c3ddd64c5efffa9241dee109a94a9a1cbcdcd6a87188c47dd63c020e81dae2dbc7b75c6eed5d95c16518b48c62441c77fa9e93dc942958d969ad3

Download Submit
C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
3.4MB

MD5
1cf98773e7f15aa830e3651295fb0293

SHA1
80a8a9774c467cdf24572bbbee1ac0075cb62694

SHA256
c8cf9e644197329d7df68fb7fb0bd08e20d06773c90c7a8198b414e67c9414fa

SHA512
6afb92c4d13a4ae9dd86168148728d2b87a6f8398fca8bd781ccd074a509f07f6d1f3a5b4f7138b7b8e8ac1a797c4a440154895b121af962db9a966b5ab17611

Download Submit
C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
2.2MB

MD5
58cdb62aede4f118b85e9514de37ec25

SHA1
4c9fd2f4d513f0aa840ade923f36ea0109019b77

SHA256
4b251a6e93c51c39e20eb77573a13c73289a38af632711a2ee9059eca7fe2f10

SHA512
0a5dd53ce907220dfeda967afda0b22a0b866a71044fe5763577ebaa94d1ba9e25e17047614f67908f2acf7bf6897f3cd3e7f4f5afdaa0a13c80c0a96cd5860d

Download Submit
C:\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
704KB

MD5
cbebbab9ecec6a4381da9164fd40a03f

SHA1
41e570e014e5be052533bd1aa29bf5874dbf9193

SHA256
3ea47690c4f3292a503f94529e3dd05dd481ea39728a95c2f3e0d9f5d6aaf113

SHA512
65dafebc77de58100196935e66e9913d277239bee20478b14396fc0b43a564aae469351a5e808b760a055841773e4d9937772c5416821982c7004090a1254268

Download Submit
\Users\Admin\AppData\Local\Temp\.opera\Opera Installer Temp\Opera_95.0.4635.90_Setup.exe

Filesize
576KB

MD5
5d2e0609d676c2e5a2198e9ce185b0a0

SHA1
b2519125281b19d40ff084e7c79b27ebfe5ba3e8

SHA256
e1c73662f4f21f3a463b5aafb0d4aaca23b86d0f196b4e6712f05db65959826c

SHA512
9fe601d7d2e18c5955917b2dc79aca5d5812ab5050eb2b968c662eb684aed747bef0dd77ce974d0d2e8889db659a48c8752ef717d8ec8e96febafeb5dc6939b9

Download Submit
\Users\Admin\AppData\Local\Temp\Opera_installer_240318151020778888.dll

Filesize
4.6MB

MD5
d913b7da8552d17438497a274257c471

SHA1
4bc652c42326705b67b80471a76e4822f6536219

SHA256
09d2478c9e3792ff78f83b5de65c51c19cf18685c9d6c6d92e3148adbe928c6c

SHA512
f72a12029fcc679a3b94e475e56f8458d580e8e0493f34bbd0377b9bb74ce5ae01dfd82473036cf8000801874a24257a008cd8529967332e7da83c529f8905e5

Download Submit
\Users\Admin\AppData\Local\Temp\Opera_installer_2403181510222732696.dll

Filesize
2.8MB

MD5
60f5f5ccd83d38996294297c01292706

SHA1
c9d10b9234335bc67a025bc5e0b9235cb2d06543

SHA256
7051750451a7eab986e5c1a481389f85c27bbeaad79fde956afdff7b19007476

SHA512
c43ec7a8979847afffdebd1a0e8447a40a3ddf7b9cf5c187035b67c66243f2f82abea8027c02c4440793d0f2d73d1fb8b8e7bdc026eab3dfb157bda9becf6662

Download Submit
\Users\Admin\AppData\Local\Temp\Opera_installer_2403181510311402624.dll

Filesize
3.4MB

MD5
8c2c0bf0293e790348aad6f2c98fcde0

SHA1
3c4039f7b026949145d917176dd959a88deee0b8

SHA256
835246dd56eaab8dc552c4b03cf7befa0a9d29d85d461b81698b69d918ce507f

SHA512
723ee10c37575e98ae46dfd17acd1929881ef54f6f686494fe9486eef2957366787992b19801ddd9106497782e530d529c941f752df3139993f8d8588c959115

Download Submit
\Users\Admin\AppData\Local\Temp\Opera_installer_2403181510344921588.dll

Filesize
19KB

MD5
d2a55b5212cc664bfd3bf25751d66c22

SHA1
a7de9b38282c39162ac9fe137bf06fe5d3b06453

SHA256
88b6361aea34390c33079df71821d95d1d5f9828488cc968a68f5360a4cc37fd

SHA512
8cd112a84669c96bff5a2c5be156730df37f21772f10a51de2d7450629e73b11cb08b14d930b9815528f160040860703bdcdd5e59fe9a79809b6b333fadc917f

Download Submit
\Users\Admin\AppData\Local\Temp\Opera_installer_2403181510395792948.dll

Filesize
256KB

MD5
fd3a42f36f5501fd19202f9184ec2a92

SHA1
64e73a387e96909fbf7dfa9055d078dc9c378441

SHA256
1ecdd413845286fc00520dc058fa2acce2c6b48e6457d19b31c6618e3d253cb9

SHA512
ef0fbacfdf035c478dcc24562604debdce19545ef30a23ce84477d427e19e62b2d9f90e267e56932fc7273639b1988f79eb939cc53bd31a9246868cdbcf0c1cf

Download Submit
\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
3.5MB

MD5
713af7136d8e89e05637ef17c456d09e

SHA1
0aef63ff2b76f0e88437a9d2d4bb0d527bf9c1e3

SHA256
78caf2e3a0adb17223a914d9ca106ea182a16d1c04298de017f7e610e45cc5c4

SHA512
3e35a39e8bc1e68ba7ed7aca8c6ffb209c6f2938d08fb99e4dd48cd4d2a7397514755b4c224f58bc6c451657419cb9d4e6df4f29f0a69059bd4cfaffa3eeef4d

Download Submit
\Users\Admin\Downloads\Opera_95.0.4635.90_Setup.exe

Filesize
256KB

MD5
965b6a98f3f5b923a6c3658e59038a6f

SHA1
61d611294cab767d0ec361238663adbf0c857f31

SHA256
61280837d0439cb550cc61f2988f66526c67e5db57819f6663a7fac9e2e2e028

SHA512
0adf16af4c261df4890a55dae683c0637589422a87d52b60abdfea29631b8e3580252f00e45198d2bab09e22d928d6c4686e5bed10bf81bd327190876a224d07

Download Submit