hxxp://Google[.]com

Resubmissions

16-04-2024 18:54

240416-xkfw5sbc9y 1

16-04-2024 18:48

240416-xftmfabb81 10

Analysis

max time kernel
299s
max time network
275s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
16-04-2024 18:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://Google.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133577673081952882"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
1756	chrome.exe
1756	chrome.exe
4548	chrome.exe
4548	chrome.exe
2024	chrome.exe
2024	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs

pid	Process
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe
Token: SeShutdownPrivilege	1756	chrome.exe
Token: SeCreatePagefilePrivilege	1756	chrome.exe

Suspicious use of FindShellTrayWindow 53 IoCs

pid	Process
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
1756	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe
4548	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1756 wrote to memory of 1324	1756	chrome.exe	82
PID 1756 wrote to memory of 1324	1756	chrome.exe	82
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1936	1756	chrome.exe	87
PID 1756 wrote to memory of 1096	1756	chrome.exe	88
PID 1756 wrote to memory of 1096	1756	chrome.exe	88
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89
PID 1756 wrote to memory of 756	1756	chrome.exe	89

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://Google.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd091dab58,0x7ffd091dab68,0x7ffd091dab78
  2⤵
  PID:1324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1732 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:2
  2⤵
  PID:1936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:1096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2240 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2976 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:2828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3012 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:4976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4288 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:3332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3472 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4712 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:3760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5000 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:3336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=1244 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:4448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4484 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:1
  2⤵
  PID:1412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3472 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:3892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4292 --field-trial-handle=1796,i,13070570104346911286,12808780580120920990,131072 /prefetch:8
  2⤵
  PID:4980

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:3580

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:4548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffd091dab58,0x7ffd091dab68,0x7ffd091dab78
  2⤵
  PID:2380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1788 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:2
  2⤵
  PID:4172
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2200 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1700 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3112 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:1
  2⤵
  PID:3300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3120 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:1
  2⤵
  PID:2836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4408 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:1
  2⤵
  PID:1468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4416 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:3336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4536 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:3508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4780 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:2216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4764 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:3936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4704 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:8
  2⤵
  PID:3820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1760 --field-trial-handle=1928,i,1770600110819504684,8223170805868866608,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2024

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:3924

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
273d2cbce45caf2ede717d027049f931

SHA1
4d3880a875edaa72dd9cf1b44108c5748cb3dca2

SHA256
37b7d501862fc5714342a23f53d38d130e4f685f0c7302c4cf9df83e20d07154

SHA512
c2dfff0f1d845d68cac6758161653cad51fc47644cb4231bd92dbf4a140b50876312b254f9381a5b8c42723d00e123956706e94c2c41354d36c577c79de8f5ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
d64f036ecc99f525d64c44855ee8114f

SHA1
8dc36d0893f5a5cd7e1a78d223a104d2b9692aa8

SHA256
a7eabdb50b22cd45f02efb6aa1dd14690d02e1cf9efd4b5bd4ee72d421750980

SHA512
52b11da7710a4a57703dea2690cac1ee20203d68a54f5a5853b50382e9e504f579200c9e49d8b83066919a9b9f24643abba29e76b9303d54576d01fc305aae0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
d39799da0feebf42c0e059488f82e106

SHA1
a9a9e7d74bb2fb35eb6e9290ab973a6f87996ea0

SHA256
62e46d4cc89922185126f13063ef3cc49e45776e50659ff5a45c6ec3fa970b70

SHA512
47569900ec1909788e58bccdeb0634b1b44ebe5cfdb3416f5fadd0990d4e7810df31fdc64e836306a774c711c1f65ac1d1281ea43dcdd322c9d4495c2b7dee50

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
dc3878bb1b3389d03993cc9885951774

SHA1
92617194dd38247be876f9da823bb0b9bc5799bf

SHA256
1dae363f2fdbd69ec5c896bc70465f2575b3bd4ecc13bcbb243da50479065837

SHA512
a8081c9e56abae9323c6fa30dbbd211a752e05f8085e8b52ad7197d6d53b2d7766d60df16c595d82693876ef8a3ca6771fe547d7a8027263b07c1245dea0677b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
b71c7998783206babee53f604b370f40

SHA1
f5917adafa5dc950f6af53815083c5eb1f225156

SHA256
0cd12dea4936f17a7f77677ae990d568a1df448878920b6efdb95623e80ed9f1

SHA512
34969d0b45d1aca414dd6ec855b1d41518c4a669a7c42957c1f2f06f1776bbcf2d34b3bda533b4ce2fd261730fb667df89d05f17ab1510d0c001434aca54f5d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
56KB

MD5
b73ede6636525b251ea6be500b709abd

SHA1
e87f89aee4e702259c62059581a8c655d7ca340d

SHA256
99d32f9df4eebd158cac968e3b032d95558a813ddffc81747fd5c429762eaf16

SHA512
0d9e9007a6365eff7958219549d2ff36bf530d586d72fc883cf5bd4cec7ddfa6d9eabcc2fab11d24e715e6755f46c388072aaf1a60d0457cbe6ae897f71478dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
278KB

MD5
de8d49358a401fcccb4216210632cd17

SHA1
7bf85f83a25576b1bd6d48a55cf178dda54e7be3

SHA256
441df583761ed656ceabb15b4eb761bd4d3e1f27377e992d656662064c848bbd

SHA512
c20ae87af1c479bd7b35babfff78ea07e12a31a07af765594824bbd24d293b49ae15ba5e21be564cdc44c55898f7ca7e64fdbe2701a1eb10564d6e00b95d704a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
76KB

MD5
0628c5578f08ca0996c9f7b5492ede34

SHA1
99bd80e7cd381d197654b2a32df768436d32df59

SHA256
bb0dfa1a357c46fc93d26953ad6d927e5f84da4597a650adc9016ead29e094cb

SHA512
a7a2bafff35fa5876dbb04363a4f7245de05375f32c111bd9e80f212801188bec034e5c28cea550a1be73a8a7db3db5c482c6b68de7ad6e13d1e6957e10e5275

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
94KB

MD5
ac7af287a67cd7f6f2943806765a8e5e

SHA1
d2fc09939c79ac296eaf21e0d87de54d417fd47e

SHA256
ce719d8996570af314af409eaaa4f489237e166d1fe3b47d264365adf2659117

SHA512
90c8e0b55f30201b40da3134e0774527322b67ed573394b3c7310f1efd98e3c0bb8c584c5c34d6ed573fb8328bb8b794c97c7fce03d65df3cfb7928f0d80406f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
146KB

MD5
c7b0114d379e7b202db6d12d57690f04

SHA1
56140bd78d1e815b3fe4584b7b019ca192d2f2db

SHA256
f9255b5f7bb884a0a3bc851302c5526906da93c54a02b85b7e7c0018f31d2ab3

SHA512
80ee570a0f5dd45fb79fe2df1d466edea8553a89a05bb58c8ad37724c6825291adb57d8240054e6c5da69b42dd975dce8df1e193544ccae3cc9a1b5befded043

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
40KB

MD5
0f81b6d61de3f11df96afa46fb362f45

SHA1
b73925c797fcb5e23b0e0495ebdfb629d16f26e4

SHA256
7171337d694e449b8c4923733effa4185a3eddb330b96e9fd0e4e3497faf5364

SHA512
1c97e4e7357d385613f05f7a16439c25614d553cafdbd18a197c4a369726ec28b372ec6bed8b87a968d74a2585e3c999da9799e6cf558fa9ce25f87010d0e617

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
65KB

MD5
ea56641d8bfa5c452164df3267423f04

SHA1
b046704be32eebfb1f7c76fd0a8a20c0e4b318a8

SHA256
c6912da3a835799238bfb68ec7c58e3e67f7429b5f1ee7c118ae90d412110b6a

SHA512
d5430d0a32ba24ac42f19ddaf0f1da43d4c5f76aa2a5b9bbf091f56724995e1818e4bf33e100fe1016786ac5fd55b342b9e5b0a432a2f3301fddcaa6ddce54e8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
91KB

MD5
2e7c53d5de512c85687c4e679e44d574

SHA1
3914c04938ade45aa5d22bd709ade23b0373d919

SHA256
99cb8993007fcf945b64fbf3c1fe61ecf01168f685342c9ef87fa03e307d74f0

SHA512
c00c7c2bf7c3298cf90e4d7fc06ba722057d0259619c098bc5c599ecc682e7b37eb43655bdaf6f48be504465e156afd372f76ffce43d165dfc063aa47009a142

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
21KB

MD5
16ed7ffdc347c24c8275e6907b508257

SHA1
eea712285e89d88243c29f8a5b306a4b565a89bd

SHA256
d7f62ccd6d9784466fb9b92202b71a63182de790d0575e13641e027b39e0590e

SHA512
f906d22ea8354db0826210f6a94c4f654600bca2255fb8689cdd2bff13f33e578e95b46e6ca93a60a5793e62f1e2ddb1eaf67a8e4a01953301f7d5d7e5557f0d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
20KB

MD5
923a543cc619ea568f91b723d9fb1ef0

SHA1
6f4ade25559645c741d7327c6e16521e43d7e1f9

SHA256
bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd

SHA512
a4153751761cd67465374828b0514d7773b8c4ed37779d1ecfd4f19be4faa171585c8ee0b4db59b556399d5d2b9809ba87e04d4715e9d090e1f488d02219d555

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
81KB

MD5
46ab446b8ad6e70aa350a0237f29018e

SHA1
a4b6795958a39f6d21e78f1d67e2ccbd44387218

SHA256
f42b4ec2bf03068506fc5113f90bf5e83c46cc43e52b17e281f3054441059600

SHA512
6e8cade7097e220b584788fdac2beff5c32aab6481e64b585f7adc7e03261e8b995a0933ccfbbaac2a8979b25b0a8595b75e542b8d92272c936cbb4aae8bb164

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
69KB

MD5
86862d3b5609f6ca70783528d7962690

SHA1
886d4b35290775ceadf576b3bb5654f3a481baf3

SHA256
19e1a1ad6c54fc29a402c10c551fa6e70022cefca6162a10640ee7d9b85783ed

SHA512
f0746c23a06effd14e1e31b0ea7d12156ff92b1f80445aa46e1a4c65cf5df4bc94f6dabe7aead01f1bd6a6c7b851b577a11697a186426a2c8dca897c48515ef0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
323KB

MD5
c2552a7313fd395f6a3d618648b1aa3e

SHA1
02eef9be5d08510b5298d351ddca7c80af8386f6

SHA256
7e82782582194771f3325151e39948852373789bb7f2a836b0139872316cf9e4

SHA512
3563cd8a020840b7aaa37d0a323206bdee9b1ff578960f5788b792c7ae615aa37bcae940640c974ddcffec68d497dfbcdadc1ae34268cf94c11a4cc2bfc0d9b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
136KB

MD5
74023dd7e1298f9499eabad99575e738

SHA1
405f3833ea55b5cc863701d051268d5ad6e08758

SHA256
638a642107e49e51181c89cabc191ec70dfda7416a73b45e6cdcc02d972f3dad

SHA512
e8732d5bcf5b530e57b572e6a15ce00ac4302cc0a5410c1851128b05e5cb1e6635f7aa6d7a9ff8d0792cdee4faeb2c6fd5f1c2c66074070990b21de64b366b50

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
118KB

MD5
e3aaa5747209220c67854af4bb7c559b

SHA1
698ca282e2ca708d27b1e3f6d97fb12cd2d5cb41

SHA256
1d66571ada80e738ed570d1dec1eaaad744e0ba0ec77d9882a2527748776b89d

SHA512
676b8ac9a8d006e4a3573882858d8c1559b18c0408d82c106937b322b6d2c64721877d6a3304b4938c4c24c3c052c9c51acccac29e5fad8f73e2f670115e39aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
18KB

MD5
1d539a2d2fe4cd88589fc73fd9577666

SHA1
68fb8de6d4ddd5cd9972f29b01c0d8a0dc14e143

SHA256
9c9c5e8abf2811bf48c8740b3c91870b9ddeb0a07494bb37f777bb1dcb97bd0f

SHA512
d0241e30e78f4b4f099c519bdeddf26670f68dac65d29ac781ab651679b9733d9109ede56562177031b5d4e5825f21bf24ae6e2e31b20f359ca34cbeb196f98d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
100KB

MD5
5afec581a5c5d993a0826334f000151d

SHA1
9b1dc0774394a5901eaef5a22ad0ad94716eceb0

SHA256
0dce0413f0bb4ec9dc3ecad342620d24396f423f1fb45ad775b8520421f20e54

SHA512
28d9ae6b1edca7e1dd52d667d279ea788611db5e7c8cc705e55637fe9daae0370aa4970050f787d290936df5501c59bfef240ee7de5f21be3db77bd7378b550e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

Filesize
188KB

MD5
916bb71060a300094976413c61219c8c

SHA1
a0dc0dfd233ddd5d9955e7731030b8fde31523bd

SHA256
837bcdd44c48e757e9a69be5474cc9413f8d858b49cae848173b41d0103f364e

SHA512
4534a6f4d10f441d7c2ae2c8dde400ca935f15f94076ad84d06f16f580a1e5fb827bf5fadd2c2419a2fe0b77121d69b937c14fcd1413aa3ca7599934f4d9469e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

Filesize
126KB

MD5
39d0c40bfac0de3662ae537f13324422

SHA1
149359f114e16f5d779e0547106cf8dc671f9f79

SHA256
7f4616a88d11aecdb0e8f276d9eb2ed6ece6f0ddf17062e1a654f309f47f5d30

SHA512
7ce3eed7b1bbdc1196cf014427324ddd2b132e906c3ee6d2c1ec56924d81aaa021c1e086bff77a0768bfb120b4cc502f0e8b743cf3ca3e3d294d0048c03f2f57

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

Filesize
27KB

MD5
b58e6abfbdf0ac01c2f693326ae5149c

SHA1
fd77c36e4df6b39ce9a68f662cc27473dad3b5ce

SHA256
c7e2caf5a6998bcdb3643c701f191cbd4a6b9aeffc8e709942be4109c7bb10b0

SHA512
43a74ce80935c945edb890687d8c7bc73e15713b20846c6bdd9c2f218894586ec24849202e7fe345971a90fb6ad1761f86d3371ec260b849d72c1574c813bf10

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

Filesize
66KB

MD5
6b9d9b377ec42e899ba6c8adea01e34c

SHA1
7a11e38749e05773c6354319b10ac16f837a5974

SHA256
fdd8986eb65b0097c430928ad5560446f9c06f3dcd29411fa7c9e8d0d3c71384

SHA512
f781635ef7460ffd39921b41c8c0377eca8fd56f609f29165797413891779f6ea5035b93d8533e5651bdbe502c7e725819e42b2e8e0fc2c8759b79d8450cd668

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

Filesize
47KB

MD5
24edf43fe24e0e2e7352dbf325da6d4f

SHA1
26b8244d8366e748da623305c3640f7067c3c22a

SHA256
26d41b24cbbeb3c94bcbb52078ba4604564b15244e1f7a519d835a46101a7db9

SHA512
9660c8e0aac4c9061c535ffc8058d999b614e891b00bb60de16ba80a4910c79525538875174c7a6cdf430676fdb403ae63be39d2cba81518bb82e48cccf4af64

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

Filesize
17KB

MD5
0aaabfb16820b1594148b33a34733ef3

SHA1
5d55157e70a819e514681edd56da37814e565f45

SHA256
8ad52b626eba1e4a0ff0853e3699c41513041e90e5e6e2da32998ad0ac75f97e

SHA512
80d9083ad9a855b66870196851805dcc708354cfb81e7d3397f0de34b0baf0c3e9bf721350ad9450a79cd577e72d40d2d0d5249d4f0b6dcbc97b06062c3fa5fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

Filesize
95KB

MD5
fda9e2c67e4de13cfab86fabb12a2112

SHA1
e55b759d74f348cd977b913dc235d9010ddca9db

SHA256
d0d36247aa1580525b6328dc538077a9d47aae901933fdcd991cb9ab5b72fe48

SHA512
10bed8eb9e82aeebd79e96d5ec5fc0951f13d30d9448412773140e880233ca98b7c36e86c17fc039047cc4a4c5676449ca9196264efac3cd448ac953d671b8bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

Filesize
789KB

MD5
db0cfcb08efd9a0a0e89488d1fd18353

SHA1
41631cd823755ed2c40e063da274df9514ca1141

SHA256
e4829eac0d23f9a3d18504b81bf9af94b1faf815767ffa5ab0e7e0f38c1ff8f3

SHA512
54d9940ce434717483d326dfbf2827d218cfdc49f025e554e2850d40ba9d05b95f69928bd8fbd65cc49e4492ab64d9395f4944d7bef5db77a5ce69112a4dbc88

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
33KB

MD5
a0ae0d9aa4c048077055996bc1a6bcda

SHA1
5825279fc1f7ce7c90884d4df3a436bdd6eb9d8d

SHA256
062b2449a3d0306a78fabd8bfc3709a1c7a7c5814f88bba2f28d3fe91ef6d5d9

SHA512
9e1e0d1b9011d9c7598ea2903504324ed9294201ccce527519dde47645becea4da5979d8c42bb887dbf5d429358089d8ed38259930e82b6079471121508828d2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
35KB

MD5
c6450cd62d9f72d40ca1adea8df9fce8

SHA1
75cc903e3ad64bc85ef7f50791024f9b7cfeb9be

SHA256
3ad587ecce998fed957742c4f08eadcf86ac55b88c5169f7a7a7a3b6641d8fce

SHA512
6130793358c23a3f96111bd1015449ad54c3e671bf63dee89b5b0847068184e4abcf476fef67adcff13a2080293a8f0b4da2a2da50994e24ea1d300916ab2e6c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
58KB

MD5
9b603992d96c764cbd57766940845236

SHA1
4f081f843a1ae0bbd5df265e00826af6c580cfe7

SHA256
520408fec7c6d419184ec68ad3d3f35f452d83bd75546aa5d171ffc7fe72cb2b

SHA512
abd88ee09909c116db1f424f2d1cbc0795dbc855fef81f0587d9a4e1a8d90de693fa72841259cf4a80e0e41d9f3e1f4bf3a78c4801264e3e9c7d9635bb79ccf5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
936B

MD5
ef43cd5942117ebae30a726bca240e42

SHA1
66763f56ee314b008c8ac9232115d7e0e0134fc3

SHA256
c74a35a56626a17f004f9bfc061286753f9584c9a45648d7897a34764ed56734

SHA512
634fa594db3a19029e76f595f9774010d16e5a8ef9f293fc6ac819bd694210b00daa6f8d8157b5abff8a8057989dad16f05015e3420118f5fc4935ac0c29dc71

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
336B

MD5
9e5998defbbd831946fd145f28bd4552

SHA1
a267b34e8a8cf0671d5077203099f155b8ce832f

SHA256
e7a55c06ca463536f240ef1880f5eedb96808f14ce592bbdb3775cd6cc8b531b

SHA512
a99b03da717e6ad78ab9f48e251ef3e95ce091e2d5ab69beffd647385488c9e5d767bd31a0379eb7b3d8f96af5b1b5e3e6ebaa681510276444909d5170dbce84

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
24KB

MD5
9b4fdfaf148a514d6768f107239a40ed

SHA1
bf79d9b6c7664997c13cb556cf1e2888bde748a6

SHA256
3a0170df56e9af2984df98e83ad5a828ff43176be8d8aaf71089873ae03e2903

SHA512
ee7504cb40f26b75b4fb33ff2e47c69d3b0cd6ef8754b3c98818b0ed2065dff293f7f78bf182b79e2b2f35733390f7a281a51b84247e9300f3fa1b0f52f74386

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
2516b7030e7a0e2907a03b222de6b9ba

SHA1
ad611aa4c924bee6e8d1378d7fbb2bfae3b19355

SHA256
b70398c1a8adb08ec0c677313001c787b79024a8331018da8fffbbc679b4051e

SHA512
86a80c7d28060921893d7f9a4b9888638da505efcae0febdb149ec1fe62d04662a70fe0ccbe6d33bad83aee2ac756a671fa53df8d0ff2080f0c52099c3e4f32c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
152KB

MD5
5b1d7efc331fc7f953eda00bde5e5a31

SHA1
23ea086c49b3d52d9a91c864562d06e5599575c1

SHA256
cab18aacb9b069618fc68158b37f0e2eb1447788ec08c343fc5e0a26519828ab

SHA512
41ef69214ee4b0f512ad8ccb80b422bb9727db8ec78bcd7dda3f72ea16672e9c97d46b645c6cb0d62a1973fa6fd44c88c022b4d94c7a43fc2c0e49d670ee6966

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

Filesize
20KB

MD5
49a9ee8de1713f89af88d7520a32030f

SHA1
ac18999be72edf56f3b9f07d668c9fa7fcf35740

SHA256
603314cf8713d73054db153acff257e73681c0ceb195a77c2b5b397dc0074a5e

SHA512
4600e236c3ab3ab462c29234ec7c0de05f5227dffe46cfee8c613cc133910e63ab5033a777ddf7fe9e54f0f5cca262f1b161dfde30f33f9fbc38bde500eb8759

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
76cc7dceb8ff902a8894e42a9bbf7a7b

SHA1
ed92f24e30bf88a4ee082d7e021558d33b8c508f

SHA256
d234c9bc09a9cc3f2de1f995d113b5927363ca9f3be51528dfadfb9c3b141979

SHA512
06513439abaf30733873710800f287069c0f03ca0fd632c82982cc0a324181a90c50e4964ed67abc7771dc1f367bebf89d759710bb673db5fec24c2ea7f64650

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
5b414e1f2be0f1345e5f6fc972bdcfc1

SHA1
f81cc153518b8793b8603ba59d6cdca250597402

SHA256
a42c656624214f603d89543b890804f57033e1b1e7f283ac5632320f342992d7

SHA512
60412428a5565321a8d43cfcae5964b8ea73f141398dac31bf9a2941a59739f9a20f45e206170445d41f2ae5eea53b53e9bd0e11021c6e9fd401d98fa197d830

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

Filesize
36KB

MD5
650c736429a0c474c8c2b130bb3245c3

SHA1
d68325d2cacc1c1c505a72ac334bd469a103f744

SHA256
44f81befc494167379676fe38ffb54a8231942f7282c8812528957827a196328

SHA512
4e4035e2b79e801c57bb60022bffd40f731ea27b2127c02d6d13e8eb6f036ddada65125813d888b31571a963e464dd5f8ff8d54ba63dd08ae3590cb796e424ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
1c83c325bc7b0e6b36faa3ecf175df8a

SHA1
332a119ca1a155328ab48cf42f518a28acb371d6

SHA256
b6e1c15efbd89159bc1a991b8091db044a789cee0d8a1bef4134e8801d1c1161

SHA512
db3b2a5e3bbe98fd383195c4a5431f42a7443b834d9c572ce571b5a27005205ee0fd0e3d3bb7b3bc6492d837e9d5be01941ff9bd265a4c5786e408331bc22aa1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
692B

MD5
d7b7e7d9b5ca04ec325c62c4522db9ae

SHA1
d60dd184f16c78a91842765bc3d296b6c8bcc238

SHA256
718f80085d96b82907602b4a2a5f7c82325a385bbd2981f6a907d1f3ac84d890

SHA512
80c1f949a441f05e588b5eac3e7f21c23c34c6bbafcb8f87c8348cedc1aa147d9af742e9f8d63aebf63ece80fa9ab919757a0e032ee5ffc6f567fb32673b0b80

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
350b524587bdd50910af771765374039

SHA1
76b278805c99e9aeb8265b8dba211cc530c98f5a

SHA256
3fa7f2bcb1e493a7054e89b9b66261f9b24d8ec8488c457541b21837bcff74ed

SHA512
a2a7cfbb832c65650e58431e28bfe6f28154b14fe8a64e5ef0069e31ddec2e632de121d119ac1a4393d8b81b247c48b2cd3d9f9664e0ef7ecf654d963d8ec306

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
692B

MD5
f81fe180a563a7da90fe979cd87fb0a4

SHA1
82b9861e861f118b19ad91e607ef1b5d545048aa

SHA256
798593aeb7ff041ac6b44ec3f5726f473cb136697d77cc01a4363dc160f59bed

SHA512
9a037f6cc1e90f793f62fa1b618ec052e88b9f0f73eaf704bc61759101e5b99971d199fc3fc7c41f78eb3eb9855c89e53ec9e766e8130402365385d2f195ff86

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
692B

MD5
9e0d7aad51329633e92c85fc7d0663cf

SHA1
7e430fcbd806271bf44cec40764d6f94dc1ba05e

SHA256
711d058c9f9022c954debb43badeecac32a9b74edf2d7a648a4617618fb3512f

SHA512
2a112db8607ae5f6eb3d84c6f38ac4d5eb9005936220f57f4a9d21646295013387c6ebfdb514033f0055f28e501ddccb9996393a5832c660b9b06b16dd550c0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
730a064d143f19947d72b8da04de9a28

SHA1
4fc4c7a2c86d1ecf4d2f041f7e0d0e7d16ac39d3

SHA256
5b5be7153b628f5c841f9b646ebe1c0e76c53e06db8d4975b6fc0b6f5d66e7df

SHA512
340f714af66f84e7031ab456c5354b8f3bb745ab13ddc54accb68701c22eb4d88ac38f4e5c3c186df546b86cabcb09cf2f3d5a17e30a5ef773c79af64b7edf70

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
d8731ea529e10d4f459937be4097da6b

SHA1
00c9bbbfa572fd5a404d6a9a26ce35998d9208e7

SHA256
431b5264529751ce2da8d7a731fe42780a4c4e0829a7b8ba326dc2e2c1508883

SHA512
be5f3ad9965456a18680913fa8d5214ab149e9976bdd616e616f4b16b4959d5a1b4c29c2190e4b3ee29516824b32236e244dab2841139ee3434c522fa4b4cfef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
7f09892b157bcc4def9327e448b05339

SHA1
25283de43549d1a46d3750626fdabe592a842148

SHA256
405a7b288fa871619529a6e931f8e9b650867ad4e73ee08fd7df8bf40e683ff4

SHA512
4dd409fc707d9369a3d224d95ef719fe462b7bf995cd6402a8f10794f5fed956326d39f085cb33a094e258d50a613c35f27ea5c44513ab0b2dc897618e581b5d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
209c0bc24829ac6e5eefba1840020064

SHA1
b6c9f069df2ca4de3afd87989d5df98a5407fe37

SHA256
fb47d26dc9e6a82d4f8fd909595ff3a85ec3b8cb75f8be7adfd7ac2ba92d3738

SHA512
c662b4b1e01dc17c365a8981abe27ff45e74e573ee21d6ea5c1360f4f238a1fecc5eb7b3b750ec9e27a27701a85439826f73d3d7fa4c14a5e280f3cc7329995b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
e57ecf87d1ae48520dea341f4a86e264

SHA1
442bcbab5b92b9539a3d474321ac439c67609f5f

SHA256
e016ae8246a907b2ee1dd1656c44579bed50b2b7ad4b48693786c45e3cbd481a

SHA512
b0b3b27f5266984b251c3bffab6bd5e765b23215c0dbb7dd32c812e55fdc51bcd239e5c1103f52cd792167c35d05ba15af90a2bbc24a950314772757c9dda65b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
ae1bccd6831ebfe5ad03b482ee266e4f

SHA1
01f4179f48f1af383b275d7ee338dd160b6f558a

SHA256
1b11047e738f76c94c9d15ee981ec46b286a54def1a7852ca1ade7f908988649

SHA512
baf7ff6747f30e542c254f46a9678b9dbf42312933962c391b79eca6fcb615e4ba9283c00f554d6021e594f18c087899bc9b5362c41c0d6f862bba7fb9f83038

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57b2b6.TMP

Filesize
120B

MD5
e8a4e592dc8ed66f3ac0931213dc6cba

SHA1
958f427c1fd9ad0e00ae26953ee24d699baf571e

SHA256
296596faaaf27e754624ccf8aa099096a503da433e6368e59a35cdce3c3674cb

SHA512
c0459dabeb543d24c89cef46657a674f0c60867a1c3e6f9ef6f8cc60a4aaabe4a2aa49885e4f6020a35d17a7cb0a66fcac6ccb3e2465db5a1299e56afc8eae3c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

Filesize
15KB

MD5
f2e1c20c6e701d5bd3abece84990dbfe

SHA1
cf7d24f12ae8487f9ed460bba11d48e277c8079d

SHA256
346e496a572feee2b014fb924c0298b8921214ecbf8771c0869ccd25df01c1da

SHA512
46f0b90b85cff9713e06942d3ad9d82ed8bbedef53c7cdcb4be4c78eadf372e1ae9d478019d623da56bce000703116ba77dd80cefe6be0dd5d2c358d10deaef9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
1d345d176182cf098d4db886ca02bb69

SHA1
84e9c287f17aa9d191e72d49ea45e4f0352fd7d2

SHA256
5b13dd7592e62df1529adbafc85123d1d705a00131be933af29295735e32c6e1

SHA512
d4558014c2454aba6c74d288e663cf3c626c711c0374bb22d8cb11bbb19fe2c4fc023c644e4bcc44b733bf7e5cef5e54ab35860a53b4a6b2464878a055070e97

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
bd29fe6e1099208db7b741b9bcf09814

SHA1
5aec76e2df9193330e18c62eace3b5c95ee36b3f

SHA256
1d6862db2ff8ba6b8e60eee573576d407494fb4557d87d669e35fe95398052b9

SHA512
7238f0b7b846887e2a0bcb2feebcddcb88cfb23dda12f138160ea35b1c07e7b7a7657cb7e82e6eeb323b37d3b6836b13151902dfaa919f89d611cc8fab4449d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
009b9a2ee7afbf6dd0b9617fc8f8ecba

SHA1
c97ed0652e731fc412e3b7bdfca2994b7cc206a7

SHA256
de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915

SHA512
6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
127KB

MD5
9c466a2671112249fd58d5549f59c2d6

SHA1
97dfb87d4c2c0bb15a99d34bdd7722e2f501a071

SHA256
48a0c5ffc73d5277f66808b43a3dfea3f18f14ebbf2b678710e8d309badb9c18

SHA512
f3471f12929965320e5ce750bc4b18df45d040762e7f001a41856e6e54cf860e27b1a0c014d3d92553af547c227b68b4471c5d921ce2181079eabefce7010c72

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
127KB

MD5
7f6e920d01535b818a68a543f0263638

SHA1
1aa1fba77239ec337a3903dcaf07e12f44a0bdd1

SHA256
5a9900bd39ba4acfc4b58bc4d5cf45668af34b752a3b16562f0eb64a412a0a8f

SHA512
dee0a9037562f8b390c12be43ea3a120a23cef4e9e1dd9d121937079cb4c9e1eb0b30b7ecc98aeb108a196ec6728d20ebf59b941fe9e945af8feb9dd2306379b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
251KB

MD5
23a7cb13ec68c03b3938b53d959ed29c

SHA1
6f5df1c6bf54bdad005c5b70660b7b95a700ca32

SHA256
4f35bfb96c29c49eb0179616121b8b157aa139389e4cabbebc11fbfcc951e04e

SHA512
1e558bde5e04a2533fbb719e2f1c54a3c34f89f9f8ef3f49e65d0dedb6b4cda6a6455b5fd580b130b55a0110aad1a7ce8bfbc4380b7283d72d34292db3bb5c09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
91KB

MD5
d95a6fea883c544fdb548e2a8ae0aab0

SHA1
f7f94786d1d103f146119c36e4be55bcc9362690

SHA256
94da4527fcc7e260a342cc6767d5cf34341fd2173672d2bf1bfedd0c38f5a2c4

SHA512
605b48efde2fa6ec3d0b16bfd2c3276a8ad30c580df49bdc73fe3f0c326ad7a59b0d3eb9a4b4c2fcfca58f639c5bd10237ebff48345dc2c5087b83d726c302e9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
131aa4e6a816cfdb17f23a1c68a459f4

SHA1
7e70a47097281f6cf85a41df9df09a14dba543b2

SHA256
9be4382fbd34e171679d6031603b95c709ebee8379aaed6b0ee6c92a663dba8e

SHA512
ffa80aa5544ca1fa7ad6fd41e8545b1d4fca03382cc7e4516602fab807ef2ef5efaf4db3afaf32d0d1de5637b26f6d810fb1e29ca3569b5af260b33aee0296cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit