hxxps://en[.]softonic[.]com/download-launch?token\=eyjhbgcioijiuzi1niisinr5cci6ikpxvcj9[.]eyjkb3dubg9hzfr5cguioijyaxnlsw5zdgfsbgvyiiwizg93bmxvywrvcmwioijodhrwczovl2qzbhyyatc1yzn1amdxlmnsb3vkznjvbnqubmv0l3jldmlzaw9ul2lul3yxljc0ljcyns41nzgumsisimfwcelkijoimguzndm3njatotzknc0xmwu2lwflngutmdaxnjnlzdgzm2u3iiwicgxhdgzvcm1jzci6indpbmrvd3milcjpyxqioje3mtmxnjmzmzisimv4cci6mtcxmze2njkzmn0[.]zth5ozopm0ppmr3lzqeiiai6aeppja2ilrobdcpqx2c

Analysis

max time kernel
360s
max time network
358s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
15-04-2024 07:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://en.softonic.com/download-launch?token\=eyjhbgcioijiuzi1niisinr5cci6ikpxvcj9.eyjkb3dubg9hzfr5cguioijyaxnlsw5zdgfsbgvyiiwizg93bmxvywrvcmwioijodhrwczovl2qzbhyyatc1yzn1amdxlmnsb3vkznjvbnqubmv0l3jldmlzaw9ul2lul3yxljc0ljcyns41nzgumsisimfwcelkijoimguzndm3njatotzknc0xmwu2lwflngutmdaxnjnlzdgzm2u3iiwicgxhdgzvcm1jzci6indpbmrvd3milcjpyxqioje3mtmxnjmzmzisimv4cci6mtcxmze2njkzmn0.zth5ozopm0ppmr3lzqeiiai6aeppja2ilrobdcpqx2c

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-2288054676-1871194608-3559553667-1000\Control Panel\International\Geo\Nation	avg_secure_browser_setup.exe

Executes dropped EXE 1 IoCs

pid	Process
5480	avg_secure_browser_setup.exe

Loads dropped DLL 6 IoCs

pid	Process
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe

Checks for any installed AV software in registry 1 TTPs 2 IoCs

Security Software Discovery

T1518.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\AVAST Software\Avast	avg_secure_browser_setup.exe
Key opened	\REGISTRY\USER\S-1-5-21-2288054676-1871194608-3559553667-1000\SOFTWARE\AVAST Software\Avast	avg_secure_browser_setup.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133576411030691727"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2288054676-1871194608-3559553667-1000_Classes\Local Settings	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
232	chrome.exe
232	chrome.exe
2748	chrome.exe
2748	chrome.exe
5480	avg_secure_browser_setup.exe
5480	avg_secure_browser_setup.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 62 IoCs

pid	Process
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe
Token: SeShutdownPrivilege	232	chrome.exe
Token: SeCreatePagefilePrivilege	232	chrome.exe

Suspicious use of FindShellTrayWindow 35 IoCs

pid	Process
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe
232	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
5480	avg_secure_browser_setup.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 232 wrote to memory of 376	232	chrome.exe	84
PID 232 wrote to memory of 376	232	chrome.exe	84
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2504	232	chrome.exe	85
PID 232 wrote to memory of 2580	232	chrome.exe	86
PID 232 wrote to memory of 2580	232	chrome.exe	86
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87
PID 232 wrote to memory of 4652	232	chrome.exe	87

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://en.softonic.com/download-launch?token\=eyjhbgcioijiuzi1niisinr5cci6ikpxvcj9.eyjkb3dubg9hzfr5cguioijyaxnlsw5zdgfsbgvyiiwizg93bmxvywrvcmwioijodhrwczovl2qzbhyyatc1yzn1amdxlmnsb3vkznjvbnqubmv0l3jldmlzaw9ul2lul3yxljc0ljcyns41nzgumsisimfwcelkijoimguzndm3njatotzknc0xmwu2lwflngutmdaxnjnlzdgzm2u3iiwicgxhdgzvcm1jzci6indpbmrvd3milcjpyxqioje3mtmxnjmzmzisimv4cci6mtcxmze2njkzmn0.zth5ozopm0ppmr3lzqeiiai6aeppja2ilrobdcpqx2c
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff85801ab58,0x7ff85801ab68,0x7ff85801ab78
  2⤵
  PID:376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1592 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:2
  2⤵
  PID:2504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1840 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:2580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2240 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:4652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2836 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2844 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4316 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:2084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4472 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:4792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=736 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2160 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2748
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4860 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:4948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4584 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4572 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5060 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5252 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:2480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4736 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:1672
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=1696 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4540 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:1328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4936 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5032 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5228 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=4636 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=2896 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5272 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:1128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=4140 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=4620 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:3948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5976 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6140 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:3228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6280 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6496 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:1020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6592 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=6740 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6924 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7120 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=6576 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7356 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:3960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7328 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7624 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:4204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7660 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:2644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7688 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8168 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8208 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=7824 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=8748 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=8872 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=8976 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9224 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5940
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=9372 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=9380 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=9492 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=9840 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=9860 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5192
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9868 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:5448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=10128 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=10304 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=10144 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10668 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10552 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6352
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=9800 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=11080 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6368
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=11120 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=11128 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=11144 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6392
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=11160 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=11176 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=11680 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6416
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=11692 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:6424
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=12560 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:7244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=12704 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:7252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=12712 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:7260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=13008 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:1
  2⤵
  PID:7600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12240 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:7712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10944 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:7736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=12280 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:7744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10292 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:7364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10500 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:1408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10296 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:3872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10448 --field-trial-handle=1908,i,11693541780399687264,16951317974812460409,131072 /prefetch:8
  2⤵
  PID:7860

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1060

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4572

C:\Users\Admin\Downloads\avg_secure_browser_setup.exe
"C:\Users\Admin\Downloads\avg_secure_browser_setup.exe"
1⤵
- Checks computer location settings
- Executes dropped EXE
- Loads dropped DLL
- Checks for any installed AV software in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
PID:5480
- C:\Users\Admin\AppData\Local\Temp\ajCD8C.exe
  "C:\Users\Admin\AppData\Local\Temp\ajCD8C.exe" /relaunch=8 /was_elevated=1 /tagdata
  2⤵
  PID:6220

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

Software Discovery

T1518

Security Software Discovery

T1518.001

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
16KB

MD5
6e79903f3ae9e350cd40cd0fc6d17db3

SHA1
915c1ed9bd7d03cc9b4da0ab5e31f7cc5aab33bc

SHA256
349ad64a4e14c76689e81216a1c732d3184be5f1cc2368b25a53463c485bd33d

SHA512
4a1d64bf8f96f0e7080cf671be406c43d9a4a8ebe6194783d0d76e0236c69e1d790c94b77655cb9bd9eaab6ef3a23a3f63b3b59330fcebc19d82d127f0a0c0fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
21KB

MD5
e56945281f8d555faab39d90c68a96f6

SHA1
aab1b520fd72a83bab40cb0691a98a94194bedfa

SHA256
fa45159ea8a7d2790ea5138bcbaf47192fd94f0df3d0ad83f017a425a91f69ea

SHA512
824c26b17156d2ee6d6f8ade73efdc638455b4c3e04751d3b4b32f61610929c31287713f0e1dd1d9ab3eb90204efe82a050f890011b55830f2918c4e7c20d996

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
17KB

MD5
19c73397068ded824edd2c5b13d0a9da

SHA1
7f0f149b66309aaba41974d524ca69390a34e4f2

SHA256
8c93e33fb098c30a82d774c6a9db9aa92ea0e34586e907ed7d9d2935582c6100

SHA512
8795cd26570fe65181d49676dd9cc9a8012bc22c3e505ac8ed8c1bea68ac7db7f77d6bade360a403a8d79cc4126ac18c2c10e3b83a163e3b42f2e3f60c32426e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
20KB

MD5
17ed87129f9b334cef63ef20b8f880fb

SHA1
c41936e06093d027a8ffff75bd148317b8d96b12

SHA256
2fe8f75104e92b17123c1ce14619a1b49f073dd7105f63b757fc12ecfc7371e7

SHA512
67e9a5283b2913828b83ca1edc150bbd4f1267872f37d2df0f08a398e0ae5d6ed01478d9e30c5f1d637f85668c0cc065c6c895df0fe2c88b0eadbb66a68e308e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
16KB

MD5
bd17d16b6e95e4eb8911300c70d546f7

SHA1
847036a00e4e390b67f5c22bf7b531179be344d7

SHA256
9f9613a0569536593e3e2f944d220ce9c0f3b5cab393b2785a12d2354227c352

SHA512
f9647d2d7452ce30cf100aeb753e32203a18a1aaef7b45a4bc558397b2a38f63bfcfe174e26300317b7df176155ae4ebaee6bdf0d4289061860eff68236fe1bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
19KB

MD5
df1857c9e584a3f1e297ea6f5c540820

SHA1
b7f9870d3323a87c35d30c56dc0471beebfb64e8

SHA256
c7ccef16e44f06a6a06e6de7e91911228d9289cf44f47c5451ee03cc6bf8b0ed

SHA512
5d5e9eba86a63bde5b491e10986097619961dfe2dfa7e7b7c2996d5c53823f90c052cf7fbd07030a837d556678d020fff7e57f6903049a1b523baae708e02c72

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
73KB

MD5
0390ecf09dfcdb5070078f39e899dd2c

SHA1
3d518730a5edf44d5fa2d82df066da1a309c2edc

SHA256
ab5d9838ff785e68f038e9b8269d0e2d1a0acca5070b813d5022e25bddd1021e

SHA512
158d9c33b5dd31b04357a766b6a1f8bce2a88efe5e5f418a0eb8851a597faa8f28a2aa7d2f9bb81424b69b3ef08398e325267de74ec98c17405e1e2a46e41b6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
28KB

MD5
021ed0cc9fc1162b72e34ad1615234c4

SHA1
bd45557a52a8cc1e6a609a58e08a2157a7416750

SHA256
2f2b5fc64e6c89e6dcdc55ced967a2045f14383fb6a62256cadf4710bca5dafb

SHA512
61fbe75c696097377d1d05808d684636e22389af037f919f72c45039ae455517124b56443d81b99501af3d0e005ffa16dcf97281b37f9b56833614a6d792df6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
127KB

MD5
617bd41063064fdd9ff7cb8a16836e62

SHA1
134bae74466d0d364a3039e9c796157dae8815a2

SHA256
c9168cb11754a65e3e37a7b854eef3041e5151d68e89386e1206a35743fb12ac

SHA512
1406b9df48ba53a4ec9a6e158cf9faf537b3e5a18b039c1c7286d47200dd87170afdf54c6643c632a9a6273b613ff54ab38d4c5783637515e665284b99b6ca34

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
76KB

MD5
033e13dca6f453c43af716041df73f2c

SHA1
dc23cd5b5f9f3a9b18ebb5ce80f151f72e379bb1

SHA256
397d40a789826fd0a360a207df0cb96eb17df635d5f96628df658afc3987b61e

SHA512
2a2889102c601514ecee4f7611313221b3a023464d263a76b2d5a4428156ab4fba3fdab32e06635119bf9052bd13467cbfd32565307a58d80e721dd367f59441

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
87KB

MD5
a0b2d3c6dacf612c96a3760e01bb96b5

SHA1
770b7cc7fcd77ca9acd963624e48ceacf6ef90d8

SHA256
0e1dbb773ac3472dcb90123a8625f6f5b84b04af007837093d110202762b8d0b

SHA512
e660654c12aa9fce5ccc36c6217f00c7ab5500681f45e627336c2ff7a02d53cbd00fa210676925eecfaae92e3653862e457c0f33a88c3570b7824202b9a9c7ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
139KB

MD5
3fda3a30098d8485f3b4982e6edd0b7d

SHA1
b9e98ae59b17fe8bd9fa9ce42d21b64a45b83fca

SHA256
d3b7032cd4d3ad8fc7a806569f8ce28aea6df537709cf0b6f96b098893d11bb9

SHA512
3d451ea46ece16febaf9211c4351c93b7f2c2826e9f4a96b5b0330fdb9987c2588b578d9d7605ba0b14fad8b43d6e9699466b23e77b5b952f2a7e30815d2abde

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
76KB

MD5
8c9115834956e924787080d76e05b5fe

SHA1
78b50ef003038e6e2ce1750f1f34e4a8191f0ff8

SHA256
95992f4bcb43b6acb93a6ba220fabcdfdfd006e5b9f9056f62c75049c596596c

SHA512
3025072fe8f6d8d9796ccdeb0134dc8ba28f4d489126889c609df503b1b6d111b8dd95f65e8382a3506cdeac997196a131dfc03243262cacb1917a5e9dac3404

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
90KB

MD5
c986423c8b70b986de492d6c9b469752

SHA1
cb1df86f3959e3a4664026f5b6378950a2306650

SHA256
ec625798ba7cd0de76641e97c0ffab059ab5bacce45887052e3787bb5eb8d35d

SHA512
c45e889434c9d42445313094da7502d588536f0e6c9640b75a1b6c3ee951ad213a9d36565c196a46e8ee2f2c3634cb507ee4e1a2af35267f838674425d2ddfc7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

Filesize
50KB

MD5
c2431cb01a51eae3f53213249607d02e

SHA1
390ec69f8a288beebce46d7a9baa381fed34983f

SHA256
973d4df695ae7f1cff474844f0672a1ac05d5c5417750655c84d0d7ef908779a

SHA512
6ce2250305c24a79dbc889fadb613796efb776be6113f496e45c7bff4b97c7f94ae1800afa6f49211ea99a264e7f0253b87f6b65fc206f4b538d484f1ccf279e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

Filesize
102KB

MD5
8982eaeb677fa94317f5feffdf3190b0

SHA1
64300ee35e8f267ddc8a86acc491da05244bddcc

SHA256
e70f62d1a617ccd2dec17727ce31b449a9a02ca1f8cda2f980afc74a99de8dcb

SHA512
30c4d8aceb32bd923813c30a40c0dde96deebb91b805f4ec31a403f25eced5f642477b236f39a7b214234553a7e139c4b1426c9d2a02338ee4d9f23b2ee60e6b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

Filesize
91KB

MD5
fe29eda4437f89ef7d8a3475136d3baa

SHA1
81f9043915fc8d2ec97d1f101e18f31384ce97ca

SHA256
b2e063c425dbc0bb53f545748000fc200c23cfdfe7a289ad10a07e283afe1565

SHA512
c4cad733fcc5ed935a836fa34ee3d3493703e53ad688df0937c824b3e4cfa53f7135f33d6fe8f4675de0600c56a74f3367923a8dbf04adc57cc40f60377cc092

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

Filesize
47KB

MD5
e04bfc8b440ecfd8849857610dc19590

SHA1
7cdd838ebfabe884914ebe2a2e119dce74e37893

SHA256
a8f4a7d95963bf83ff32c0572d851edfa13ccab20992426766380d56d7556151

SHA512
3daecdfa67858e74bdb2657db72a83cc23cda23e0f018c731c9d5708b9e7113b63e0d32e032e07047bcd0213ce2dc1807a0977686b25baffc43ba638311312ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
17KB

MD5
f29247a3454c93755a6dddc953eec0bd

SHA1
543affb9f16f5be3bfca1547b95cba6a8d67fcdc

SHA256
b1869e3ddbfc377c6209149cca7099bac5c72f81612538859458695665a82b80

SHA512
0111a598a817eaccf0a2bcd5adebdcfc3973d2411e1b960641228f272af17c192168952e0507790a4ca3eaf540fed9c8fcca507701cd97126ac22101b009fa59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
26KB

MD5
968d5820e7217263e87c7c25dd857524

SHA1
c3bd07dbde83fb68dabcf99d830d91d5cc56039e

SHA256
8223e36063316d3d39c1369e8580403f36046b9da644ae1b720df95c12c9a12e

SHA512
849e7fdd08b8b2fc2b5214bfb64d2773a20ff01ee864462288de1615d10ebbc54b9d4baa82e06a4327f102f0f411b7d350da8f6132290f72ed0b811a2894ddad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
71KB

MD5
5be56b937a766b9febb77387cbaffd79

SHA1
af626185c955d51ed1ff28f942d53ea020c9d717

SHA256
f417ad855be6bdf3b4130efe0715383af3aeb2f471b5f46b79d2f9a9eb2e7a88

SHA512
7f892faf158e66f4707441275c2c8dc5e7b4fa53848e472b91b9df2236134be51200614402475a0c4b9d4fa083ba3360629b2b7cdb1f749d67946ef451a4cca2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
528B

MD5
195ae9df33ca8e8429041cdba76a3f85

SHA1
0f45b90324a6827046dae9783e084bf19745ff3b

SHA256
55765785fcc93e637c29967f174ab09b8a4a2649de33351caac4d3d7e15b201d

SHA512
9220d605023ff9980b1ba0b6fae6fdd73dfd712e3241927b9ec98b0bb40cfacc2ac6fe11548d495857c34d692a99028887ff14440327c59ea1fa9bea7bf496b7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
8b4c31a39b81d3d2114fb857f6b250e4

SHA1
3a26b0d2fec7c01b8f905cce99c41c9624b7790f

SHA256
79f103b72271fa5fc3d3c3d6cc9ef4412320c871d9219fcb3cd1754240f07ed4

SHA512
ec2a77be04a4f3a7cfa3c0c636d2e25588d3bd6d75b480ea13699a055537372d8b519f3345e860de23e82387ce53c9b642aed52db4c3bae24d637b993b0d258d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
ca81d27bddbae744a02d8303bbf89e3c

SHA1
949d17778d5f895ab3b1dea260f901a417704d77

SHA256
b1d958d8fdd9a02910fd8bee32f0423d5c8b688622a8b8392ada4df549bb508b

SHA512
f307849764b7c6a75ca78317bd1435555bd848c1c47f1048a95edf7a6853333ff02ee99e23890528e4ee3b99c6a5852ffa7d52bfc7d95ffc544ec8d8f3b46e8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
480B

MD5
c47b8a32dc008d144594ffcea8123400

SHA1
27721a86cbb532e8960f7aee3d5355911cedbbaf

SHA256
d64aa870a00e38a300e34cbac705101632a205008c65dea005f755c63681bbe2

SHA512
90c942bf85178238adfbe589c6ac77d4e61cfcfbe54ac6c1f1b11b49573bfd4f6a615b08984ec0cbb1680c2218a24b03101f80236b9f0ee8312557617d1eb111

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\02c1baf8-6106-4798-98bc-8b0e36888035.tmp

Filesize
1KB

MD5
be2ba1b370725b30058357499b1520e7

SHA1
216d2f83d04450641f9a088b651a905e8c1e934a

SHA256
2198d918ad33f96cd4aff4dd9cac438c54d8494d69dc929bd54f368ed4f13f68

SHA512
6c6cc368dd3c6d0ad9c21bb581dc232f5338e6710f133e54745ee1c7ef33bdd10694fa160669152a62cadb2d6e102b5a46f3a92c4021e7a8b8088036c67ed3ca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
ce52d065993be186501fae4ee0c8bb90

SHA1
d54c1abf358550cdb6258c48814572bdd208a43a

SHA256
5d8e836b407e77653247993d4fc54648e45ee8970474ed08f7c396e0227b5ca2

SHA512
e9de20b922510d76e653610fbbb7d4bab32fe9758d303aa2e0611de8ddfc1248139d28deaa3c0b80f5daa7bb50d8cd11f494fbdb96f19f18cfef7d23174a0025

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
a9ea63d2987e940617bee862ce04101f

SHA1
49760c35e4f3281297fec748993437dba6d08810

SHA256
eaac291de8842d241ac7e3daf5456b81f0dda608a56f184561c19c760f046152

SHA512
d858fb060887185f9d71c02278bab5ad3d623777bf1361b6feefc566d7ea92f26e51db1cd73b3ce297b52fae05be378e5e78fa7a2de25badd38c2c63f538fbd0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
e13948cca30222cc13994717cba7dca3

SHA1
35ee5e774d154ddc1b4b7c7be7a3ef66b6fec0ab

SHA256
548f77f58be6250fc2c904b4608f363ccf35969f6099939f1f9a72957df57601

SHA512
1ea520588320cf72ce0faf45672d600643992ea1b8924ca53becba56f0b7b90a10987bfda87aac1d10d3a6ccc6e5e5643e9aa87f4d553491f659dfcb86c74d04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
fcc3d08a64b261f77b2bef2b069f7d4c

SHA1
b6a22762e7428932394423ccae043b5738d89eb5

SHA256
fbad545c1258771cff640a0d95ce1d09fcc184c78d6501d2216f5022a8158cef

SHA512
9be343110cbad398f62bf32b05f3e701d9dc2711d457ccf8fc3d30e04d53491f52bda829c6df19eee340d0a0b63d75af4cb4148941b30f684b5d3164e9410011

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
9870c22e498996d9769967a5db9b83b1

SHA1
c2c16712ea456051d3cc28bcae3b2ee3e4280724

SHA256
8d96c6d7f2f9e3764e36ed15a691879074a64cd11c44c142c09c093f1277f0fa

SHA512
7acfe093edfcf208365bddb4f11667a1ef770eced41b815892e87d6785a81bd067b890d860396b79c9d835a09fbb77dc6d2a4370f52ebed6569a621858b33012

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
45677c06cf781c240bbce7011200c64b

SHA1
6756a2ee2991d24396d5065c9106cc86949ababd

SHA256
69ef467db7cab80243cc60b827ba8c07d051b5fb2e9d102402eff9af16d921c5

SHA512
15bf379eacd0aae392dc10070ea7ced050fc96e962aaa625775043acbc73b4501cbfc48ef8535a76520bedf5a589122e93d4a11d6eea4683195b8ef26ca8fa31

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8b81c17684782a8b89d68d877742ef11

SHA1
9d5fac286fe8efcd56894d3701bed151fb4f171a

SHA256
b92a08360c4a6fa05f7d1ec8052c09d0b3d6568bc71360bee706f4ebedcf8341

SHA512
7b9c201c25339ef0274ca6bfb88d745b9a78bcf7d9b17bb157bad926d20c5265ef1c48a1e0520980eab94b4dbe7d4564a55a2f492e91bd3e2ac0b4ba756af914

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
faa32a5a14c9724dd5cb2a599ccaa000

SHA1
c582dd92ea170be84ab093be9c46961d33f84ad6

SHA256
42966cb95d9daf6b55245c62a484e07e6d17675c3b3189fafaa4d27ed6c63f3f

SHA512
b55d14271d2649c36d4551bb448cb14fa1c96965475e2d304641bdc1c70dff5cd4fca633042f35a378d6f465db9767f9c9d0389bfa81257994c9fd41b5963486

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
3e34b753b3eafd59da825d1a2968cc31

SHA1
dec66b415867a918e357ede837d6ed730ad7a8ad

SHA256
cb93a92c70e0cb8e4e89ae5d6feea8f0bd38414717ec296d8c7f7136c9c123f0

SHA512
ed3064534f8e1adf9726c63b480f0177afff126d226488d88e127d5664056686937f9395b23e656ee464e102fef26b02927fba5746b8ae28414b19401a6b19dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
ea41e9a6ffbb3e3da6b97b799399719b

SHA1
4a86a944bcbc4a1ebaec5b9f2cd1220efd3a8a20

SHA256
7f7e9d2c459b8e374e5a9aaf2b86152222418b05488a204d1e43311d86a11176

SHA512
f7832c99794bce58cf3c1a201f56c473002672763892a39db454ea7acb24c6da61ab7b9e0ffb8ff8771feb8fe67ca0637cfab29954c7a5605b9316995955cd38

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
d9f05d9897ed5f1c11ff2e86cb962c68

SHA1
158141439fdaba65f1cefc893b216fe1cd2e3b42

SHA256
abe990648225f45f8c29327a1001b414a005e4823441257215c1bb8ad107b4b9

SHA512
88aaba5506d0a2466955aa876b290c97573d9697ed071554d3e467943756e6acecdd8362836210e17e06a6f811c60b5cb30f9978c561f57377e2b18dea122d40

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
5eaad53f3d02fb1bfc3779cbbe2be3e7

SHA1
d2b7fea6565d2301a2712b174d512ff0204acd65

SHA256
6559cc6948ceaf391645ff921a0f4feef614708f17bd18070eb64017c6f9e5e9

SHA512
8fbe6c987607b1cf3023c3d1bc7c608ae0dd592bfd26e24fec219d124492b06fcb1cbf60d7a40df8a8af1c56b0d4ebf18c7a106d7f2f8a5fe29d9de86e5ddd9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

Filesize
76KB

MD5
348e1520e04d4acbc11e4a5d63f04f99

SHA1
b2abdf3eedab0655aa6a5c0fd1f391bdb779faf2

SHA256
ab7c3d6e9187a439d5baac50502c4c37afee1622e64626e0a5c773855701fece

SHA512
9d10d83e0a9fd717db981597862c470f1c19b510e756f1269750b5b40473192d7cd969d9760a34f27dcf2671bb85f29788ac9bcfbe61f4c342a9e3972136a8b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
3698cdd073584123d4e33e40ad5847fb

SHA1
1f0706b4bfa62e29e5783697eaea67d5919dbaab

SHA256
d7ccf7704556c3ed1bee82b0707aeddffeb316003b136e83f3e58064ca65e119

SHA512
e482faa32d3d3797ff474ad7eaa33a52ce985f9635563a49d6737fe88629262ba401d58efae3ddb634aed7cc8d275dbec3ffdb4ea5c33d74cfc611231acf03d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5b3303.TMP

Filesize
48B

MD5
b5656bbe3cf2643d6751e9d1f6a14cfe

SHA1
9b2e9cb4a05b5350ee562d504da7ae7e36939839

SHA256
91ccf50539fd4574c83e2699d1e428027b2161cac79f82ea6106525f509fcde5

SHA512
60dcadb24ef1fc0e9932c18d2bf20de5699a75fac9f352245cca505a48c7c4e8d52cb7532d10495bbcd1b4ad9841a145c4e0565fab50c0bae9ffddb31281b53a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
127KB

MD5
b997f2a437ba22e7dc0db6b26841c364

SHA1
85fc6e8b0237d04082caf9b036416afd4df3264d

SHA256
0041cdc2c87415d93ede2d9bdb3f62b1b74f4930ef8a8b870e2eb7454d9ddcd3

SHA512
578ae469549ecbf6e4c7fceba002ec12dd428ba75159f59f37f8b9395d8354b292da31bd57e64a013b845b99cf28a2e0f3b8ef1e31a9b3c169664c4f01694976

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
89KB

MD5
67caa4ac2b5777d158407835f2c6ee34

SHA1
cabef0a90d8dfad16722b33c07aac1eddb67f436

SHA256
e77d71807e24655e97b30826c0fe53807ee10025097f54103c6801e6e3a26873

SHA512
f1c6e2d04d6bbf3cd516ad8a92e1254335f5d9f63a55d512719838e361bb2e0fb9013ac2aec4738ca96b695cb341a1c2f7c6b668d39846fd1aa578a7e15084e9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
92KB

MD5
bde61859b701346926320003eeed632b

SHA1
f69ae3e6ac3be4ddfc8dc43ec4570270379893ce

SHA256
b03e73c197734037ffd8eb34552dea65ac0ca85574a47380705a9dbb4bc46557

SHA512
b917bb9e5824e294ea78aa4eec4613d0397649b5d2002d6f76031201f368fe948ea0233fccc58f35097a68ed3eb8250d05374efb674545373250ba74afe87f5a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
102KB

MD5
d7687df13ffc04f2b4b27a1be0d21637

SHA1
5025104ca89f38d223051844507077b3cfe2fb39

SHA256
00f96e35824592430ffd93a1eafde1bb81e56f0d0282cac6998c818ced63f54e

SHA512
72d55a20149a77faf3ad2fc12dd3d7178e81676c6f1548e927e249bf6d336e13d5649ce39fa87681ec448e08f7c1ef99bb39813cdaf6511ece8267d9b65dfcfe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5b5679.TMP

Filesize
88KB

MD5
5a570e38a173063ad766a964abea57dc

SHA1
37f2aae15bd7b03c9fc0749163336f0917aef9e8

SHA256
5392ab9d2f84a775663ca674fef87042edde9388b9c6606828c0e5c90f95f912

SHA512
9f679dd03d851655e2761109618d93094d5f824815e25355c3c108d6a974c3ed1aba600f015f28f49e197e1e59166897f66463d1566fe9fbdcbeeed0b969b69a

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyC398.tmp\JsisPlugins.dll

Filesize
2.1MB

MD5
bd94620c8a3496f0922d7a443c750047

SHA1
23c4cb2b4d5f5256e76e54969e7e352263abf057

SHA256
c0af9e25c35650f43de4e8a57bb89d43099beead4ca6af6be846319ff84d7644

SHA512
954006d27ed365fdf54327d64f05b950c2f0881e395257b87ba8e4cc608ec4771deb490d57dc988571a2e66f730e04e8fe16f356a06070abda1de9f3b0c3da68

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyC398.tmp\StdUtils.dll

Filesize
195KB

MD5
7602b88d488e54b717a7086605cd6d8d

SHA1
c01200d911e744bdffa7f31b3c23068971494485

SHA256
2640e4f09aa4c117036bfddd12dc02834e66400392761386bd1fe172a6ddfa11

SHA512
a11b68bdaecc1fe3d04246cfd62dd1bb4ef5f360125b40dadf8d475e603e14f24cf35335e01e985f0e7adcf785fdf6c57c7856722bc8dcb4dd2a1f817b1dde3a

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 512463.crdownload

Filesize
5.8MB

MD5
e126e85516c400f91c7faec6de177490

SHA1
364d5712f99012549c4c0425bebc0c6cd6bba218

SHA256
9742eb6f940a9bdc5a2f4323a0407ed7fc0903620a2fa3a3999a803b208ffd07

SHA512
028e8b84b732750739a9eae771ea8706006377bf184c333ebae26ad9244e00aac769c6cde077bfe63b5e53ea7ef7fce4390e930982dc50b9cd049c0989c11f5f

Download Submit